This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft File: q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json) Hash identifier: mL7opecfr73vrzpoeqqIom1h+JVyyFGWgr0zf83D978= Subject key identifier: 39:60:A1:72:6A:80:BF:8B:57:02:B5:F4:CF:37:75:5F:78:07:48:4D Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC Certificate issuer: /CN=aba374394fe1080d64a219d7d35a49462e8e99ac Certificate serial: 019B44DCF65AB8CD3D849710663F200F3324 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft Manifest number: 0899 Signing time: Mon 22 Dec 2025 07:01:30 +0000 Manifest this update: Mon 22 Dec 2025 07:01:30 +0000 Manifest next update: Tue 23 Dec 2025 07:01:30 +0000 Files and hashes: 1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: 3+gl0896bArjHoW4cXgsac9Mmxy+JueIceBeTJH+JmQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 07:01:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:dc:f6:5a:b8:cd:3d:84:97:10:66:3f:20:0f:33:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac Validity Not Before: Dec 22 07:01:30 2025 GMT Not After : Dec 23 07:01:30 2025 GMT Subject: CN=3960a1726a80bf8b5702b5f4cf37755f7807484d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:f4:51:ba:01:26:d8:d3:ff:3a:1d:13:bc:a6: 7a:39:71:53:69:e6:6d:be:17:16:13:4c:80:2e:63: 2d:f4:11:f7:04:6e:df:7e:6f:d6:cf:c2:df:37:9b: 9e:0f:75:fe:bc:6a:c9:f9:2e:17:5d:8b:49:da:ae: b3:8c:19:d3:b9:6d:8e:81:9b:54:d1:e3:43:3d:00: d2:fd:80:e0:5b:38:66:b2:f2:bb:ff:61:a6:8c:00: 04:a8:c2:b8:6e:72:f9:b5:ea:db:31:1e:ee:97:3c: 2e:06:10:b9:f9:cb:db:44:51:bd:c4:34:e1:bc:e0: ad:81:f6:50:91:ac:75:40:41:af:f7:65:bb:cf:f1: b8:d2:4b:2e:74:98:67:2a:2b:56:b5:10:d4:c2:a1: 97:37:4b:b2:75:54:82:d1:c2:c9:e5:d5:81:c3:fa: 5e:9d:53:7f:a4:2e:14:83:90:36:85:4e:ed:b3:27: 81:cb:f8:4c:b5:e5:7f:a1:32:fd:e9:af:55:eb:d3: 9e:9a:7a:df:48:3d:5c:ad:09:55:6c:19:d2:90:f6: 64:5c:f9:58:b0:b3:ef:c5:20:89:da:44:54:a4:be: 71:32:25:5a:9f:27:aa:39:5c:c5:f6:bd:53:cf:24: 55:a9:da:65:5d:20:68:8f:55:ad:73:f5:3e:0c:88: b1:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:60:A1:72:6A:80:BF:8B:57:02:B5:F4:CF:37:75:5F:78:07:48:4D X509v3 Authority Key Identifier: keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:f0:7e:8a:98:4a:2e:76:4b:3e:ef:f5:4f:42:60:1e:8b:a7: 63:70:72:de:38:b9:54:94:1d:bd:43:c0:0b:ab:f4:39:3f:70: 88:8b:3b:18:9d:7e:33:69:6f:c9:56:38:9b:a6:68:ea:60:e4: 0b:78:97:33:c0:3e:3a:cb:15:f9:66:cf:20:7f:36:a5:21:b4: 1f:d3:aa:1c:5d:c2:71:3c:b2:3f:59:20:54:37:36:3f:e9:86: 3a:24:2e:72:05:53:30:59:d6:74:bd:c9:ed:8d:e6:fa:38:86: 3a:3e:cd:a0:85:d2:b7:a7:42:5a:02:11:dc:3e:a3:a6:35:35: 83:22:b7:c7:d1:10:53:8f:33:75:e7:a9:df:6a:d5:24:ba:7a: c4:c3:05:54:a9:23:5e:d1:f8:e5:b6:9f:30:e4:05:2b:1f:93: 08:81:16:36:21:b3:6c:2c:4f:74:d5:a5:3b:2a:9a:6c:3c:bb: 2e:af:2c:a4:95:6e:35:b1:b2:26:bf:1a:82:8a:a2:91:3f:c2: 41:98:68:bc:e8:f8:61:52:19:85:d4:b2:2a:aa:42:ff:95:fc: fc:ce:af:63:14:25:47:ed:91:f5:32:d6:4f:ea:cf:64:48:13: 80:a9:74:02:60:79:21:a2:69:4b:f9:1c:88:7d:6e:46:7f:00: c2:b7:07:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtE3PZauM09hJcQZj8gDzMkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYTM3NDM5NGZlMTA4MGQ2NGEyMTlkN2QzNWE0OTQ2MmU4 ZTk5YWMwHhcNMjUxMjIyMDcwMTMwWhcNMjUxMjIzMDcwMTMwWjAzMTEwLwYDVQQD EygzOTYwYTE3MjZhODBiZjhiNTcwMmI1ZjRjZjM3NzU1Zjc4MDc0ODRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwvRRugEm2NP/Oh0TvKZ6OXFTaeZt vhcWE0yALmMt9BH3BG7ffm/Wz8LfN5ueD3X+vGrJ+S4XXYtJ2q6zjBnTuW2OgZtU 0eNDPQDS/YDgWzhmsvK7/2GmjAAEqMK4bnL5terbMR7ulzwuBhC5+cvbRFG9xDTh vOCtgfZQkax1QEGv92W7z/G40ksudJhnKitWtRDUwqGXN0uydVSC0cLJ5dWBw/pe nVN/pC4Ug5A2hU7tsyeBy/hMteV/oTL96a9V69OemnrfSD1crQlVbBnSkPZkXPlY sLPvxSCJ2kRUpL5xMiVanyeqOVzF9r1TzyRVqdplXSBoj1Wtc/U+DIix1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDlgoXJqgL+LVwK19M83dV94B0hNMB8GA1UdIwQY MBaAFKujdDlP4QgNZKIZ19NaSUYujpmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2Yt MjJjODdkZmY4ZDQxLzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2YtMjJjODdkZmY4ZDQx LzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ/B+iphK LnZLPu/1T0JgHounY3By3ji5VJQdvUPAC6v0OT9wiIs7GJ1+M2lvyVY4m6Zo6mDk C3iXM8A+OssV+WbPIH82pSG0H9OqHF3CcTyyP1kgVDc2P+mGOiQucgVTMFnWdL3J 7Y3m+jiGOj7NoIXSt6dCWgIR3D6jpjU1gyK3x9EQU48zdeep32rVJLp6xMMFVKkj XtH45bafMOQFKx+TCIEWNiGzbCxPdNWlOyqabDy7Lq8spJVuNbGyJr8agoqikT/C QZhovOj4YVIZhdSyKqpC/5X8/M6vYxQlR+2R9TLWT+rPZEgTgKl0AmB5IaJpS/kc iH1uRn8AwrcHhw== -----END CERTIFICATE-----Generated at Mon Dec 22 17:08:43 2025 by rpki-client