This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft File: q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json) Hash identifier: fLpO/K6py7di3aRzQ46tRDi0NQsJr4QEiQYw7GCfKpU= Subject key identifier: 1D:7B:E1:B4:A7:AC:7F:C3:74:CF:E3:CB:69:0E:5C:A4:00:E2:6E:99 Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC Certificate issuer: /CN=aba374394fe1080d64a219d7d35a49462e8e99ac Certificate serial: 019AF1D1FEF548EA0C69A9723E8AA06442C4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft Manifest number: 086E Signing time: Sat 06 Dec 2025 04:01:02 +0000 Manifest this update: Sat 06 Dec 2025 04:01:02 +0000 Manifest next update: Sun 07 Dec 2025 04:01:02 +0000 Files and hashes: 1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: A4+k6Q8jiSnNYL1+pFXvcU5E4cx6WeHlmCHlTEguQvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 04:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:d1:fe:f5:48:ea:0c:69:a9:72:3e:8a:a0:64:42:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac Validity Not Before: Dec 6 04:01:02 2025 GMT Not After : Dec 7 04:01:02 2025 GMT Subject: CN=1d7be1b4a7ac7fc374cfe3cb690e5ca400e26e99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3d:7d:21:cd:96:15:77:a7:e3:d3:12:ec:f6: ac:90:b6:1e:d8:be:56:03:f7:82:e3:e0:fa:60:1e: ea:ed:f5:e6:9a:b9:cb:c9:4f:25:91:2b:6f:da:ff: 85:dd:e7:b8:f8:b7:17:d7:3d:3c:cd:a1:30:85:cf: b7:7c:f4:fd:2a:ea:2d:15:80:88:91:87:50:73:39: ee:bf:8e:88:34:c0:85:41:6b:ed:47:cb:48:f7:8f: 01:c0:f7:1a:7d:51:36:4c:ef:72:70:f7:71:7e:f7: fe:22:cf:8d:59:b8:64:c6:42:d2:1b:8d:c0:19:e1: 7e:6b:63:50:5b:d4:07:14:e5:d0:64:45:db:13:5c: a9:09:ae:b0:b7:14:4b:63:7d:9a:fa:36:c1:2f:6d: 16:08:98:fa:f6:b0:80:a8:e8:5c:43:80:6b:18:9e: 76:af:4d:12:24:e5:a8:d4:13:4a:0a:a5:ff:c0:86: 88:f2:c5:e1:9f:9d:e4:8d:db:6f:bf:a9:e8:38:a5: 37:9f:0f:1a:71:41:2c:f8:c1:b5:3f:e1:49:65:c7: 7e:8f:e5:36:4c:b0:61:0e:fb:83:f0:5f:be:05:25: f4:5c:cf:9b:1a:87:16:15:ef:fc:9f:fa:4d:3e:02: b5:dd:5c:81:51:05:21:de:1e:0f:40:a6:fa:dd:75: 7a:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:7B:E1:B4:A7:AC:7F:C3:74:CF:E3:CB:69:0E:5C:A4:00:E2:6E:99 X509v3 Authority Key Identifier: keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:b3:af:69:46:e7:fd:fd:75:eb:d9:66:09:14:bf:fb:85:67: a8:3d:66:04:16:c7:01:60:8c:ea:a7:bf:d5:53:90:82:05:1b: be:a4:8c:d4:36:67:f4:57:a2:8a:2f:c3:da:bb:49:0f:56:5a: be:93:81:63:e4:bb:2d:a1:d0:ff:64:d9:f9:bb:a1:79:fc:6b: 7a:2f:51:df:d9:38:35:7a:5a:79:8e:b1:84:e6:f7:a1:c4:63: 50:56:0f:90:9e:45:e4:81:52:c8:04:4b:6b:26:96:79:89:9a: bc:f1:57:25:3a:e7:f0:8a:d0:e0:e2:9e:fa:5b:e0:58:bd:38: 63:c2:62:14:45:fd:70:ab:ac:75:a2:bb:46:fe:ea:12:58:65: 24:af:a1:d0:c5:fb:85:b6:49:0a:c1:15:fd:2b:08:fd:a5:50: 64:21:f7:cb:e7:65:75:59:e4:59:4b:ad:2c:08:66:c5:f2:c1: c3:c3:bc:48:b4:1e:da:bc:38:06:02:44:8c:51:3e:be:a7:06: 3f:74:69:4e:d1:91:c6:46:22:a2:e4:36:19:1f:15:27:bc:e4: de:66:70:fd:04:2c:d1:84:4a:80:a5:a6:e2:3a:a6:51:6a:ee: 8d:a9:7f:e0:f1:e8:2b:b5:d5:e1:62:a6:1c:69:bd:a3:72:c1: fa:ed:2f:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrx0f71SOoMaalyPoqgZELEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYTM3NDM5NGZlMTA4MGQ2NGEyMTlkN2QzNWE0OTQ2MmU4 ZTk5YWMwHhcNMjUxMjA2MDQwMTAyWhcNMjUxMjA3MDQwMTAyWjAzMTEwLwYDVQQD EygxZDdiZTFiNGE3YWM3ZmMzNzRjZmUzY2I2OTBlNWNhNDAwZTI2ZTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT19Ic2WFXen49MS7PaskLYe2L5W A/eC4+D6YB7q7fXmmrnLyU8lkStv2v+F3ee4+LcX1z08zaEwhc+3fPT9KuotFYCI kYdQcznuv46INMCFQWvtR8tI948BwPcafVE2TO9ycPdxfvf+Is+NWbhkxkLSG43A GeF+a2NQW9QHFOXQZEXbE1ypCa6wtxRLY32a+jbBL20WCJj69rCAqOhcQ4BrGJ52 r00SJOWo1BNKCqX/wIaI8sXhn53kjdtvv6noOKU3nw8acUEs+MG1P+FJZcd+j+U2 TLBhDvuD8F++BSX0XM+bGocWFe/8n/pNPgK13VyBUQUh3h4PQKb63XV6hQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB174bSnrH/DdM/jy2kOXKQA4m6ZMB8GA1UdIwQY MBaAFKujdDlP4QgNZKIZ19NaSUYujpmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2Yt MjJjODdkZmY4ZDQxLzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2YtMjJjODdkZmY4ZDQx LzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD7OvaUbn /f1169lmCRS/+4VnqD1mBBbHAWCM6qe/1VOQggUbvqSM1DZn9Feiii/D2rtJD1Za vpOBY+S7LaHQ/2TZ+buhefxrei9R39k4NXpaeY6xhOb3ocRjUFYPkJ5F5IFSyARL ayaWeYmavPFXJTrn8IrQ4OKe+lvgWL04Y8JiFEX9cKusdaK7Rv7qElhlJK+h0MX7 hbZJCsEV/SsI/aVQZCH3y+dldVnkWUutLAhmxfLBw8O8SLQe2rw4BgJEjFE+vqcG P3RpTtGRxkYiouQ2GR8VJ7zk3mZw/QQs0YRKgKWm4jqmUWrujal/4PHoK7XV4WKm HGm9o3LB+u0vHQ== -----END CERTIFICATE-----Generated at Sat Dec 6 12:10:00 2025 by rpki-client