This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft File: HkQmt06M9v_e23sGBBgIMqhiXzI.mft (raw, json) Hash identifier: YoFDHra5gixXYRclR3b6hLo/TeTzB44oAYiaqkRErKE= Subject key identifier: 10:9B:F8:E8:46:1A:FA:CE:51:44:C8:84:B1:A2:2B:1E:FA:E6:54:A5 Authority key identifier: 1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32 Certificate issuer: /CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32 Certificate serial: 019B785BE4C09F5D2893EF298E6005FFE2B6 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft Manifest number: 08B8 Signing time: Thu 01 Jan 2026 07:00:46 +0000 Manifest this update: Thu 01 Jan 2026 07:00:46 +0000 Manifest next update: Fri 02 Jan 2026 07:00:46 +0000 Files and hashes: 1: HkQmt06M9v_e23sGBBgIMqhiXzI.crl (hash: sajK5rU/IucXppaiVamLYsHQ4gTIpkdVFBdad3SSdgA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 00:18:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:5b:e4:c0:9f:5d:28:93:ef:29:8e:60:05:ff:e2:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1e4426b74e8cf6ffdedb7b0604180832a8625f32 Validity Not Before: Jan 1 07:00:46 2026 GMT Not After : Jan 2 07:00:46 2026 GMT Subject: CN=109bf8e8461aface5144c884b1a22b1efae654a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:b0:6d:b1:75:94:8e:25:0c:37:d4:9c:21: 55:8a:b4:81:b0:95:98:a8:af:b2:52:58:a3:11:60: 03:5c:23:37:57:0d:b3:22:ed:80:29:ea:e8:d8:f0: 5e:8a:64:0e:7a:11:52:c1:a7:6e:17:8b:70:26:20: 13:ba:54:c2:29:b7:73:1c:0a:ea:98:a2:8b:33:db: 50:6f:7f:1d:e1:e6:25:55:5b:61:e7:a1:44:57:64: 71:6e:99:78:a8:0e:d8:40:d8:fd:e4:0d:e1:20:2f: d8:92:49:35:72:d5:13:cd:fa:11:72:36:ef:20:be: e9:89:35:4a:88:6d:31:15:de:4d:53:60:23:da:0b: 05:5c:b2:80:9f:27:a2:8b:bc:e8:ff:a9:52:19:fb: 12:7f:3b:66:c1:38:c1:67:1f:7b:30:4e:c6:20:fb: 13:86:8c:ff:86:36:bc:f6:48:e2:00:da:12:45:ca: 3e:22:98:cc:28:8b:ea:9a:5b:f1:c5:7b:90:0e:18: 30:b4:a0:20:35:01:08:1c:33:9e:c8:41:05:e9:f3: 04:90:fd:c5:7c:37:88:10:30:5b:37:c7:46:41:be: 73:29:74:76:52:46:b2:1f:b7:c7:ad:b5:03:41:bf: a9:c0:a6:70:fc:d5:e4:14:cf:0b:17:3e:40:a3:5e: 51:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:9B:F8:E8:46:1A:FA:CE:51:44:C8:84:B1:A2:2B:1E:FA:E6:54:A5 X509v3 Authority Key Identifier: keyid:1E:44:26:B7:4E:8C:F6:FF:DE:DB:7B:06:04:18:08:32:A8:62:5F:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HkQmt06M9v_e23sGBBgIMqhiXzI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/57d08e-1fb8-4ffc-8a71-b4740a2158f0/1/HkQmt06M9v_e23sGBBgIMqhiXzI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:e6:7a:94:60:f4:cb:68:1f:3e:41:d7:1a:50:26:90:a7:a3: 4b:94:cd:84:94:9f:3d:23:8c:6a:ec:9b:24:92:a4:8c:87:69: aa:e6:2b:0b:1c:8c:9a:8c:29:a5:74:42:3f:18:d9:c5:f7:67: d1:2c:e9:a2:0b:aa:33:22:23:17:74:f1:80:36:82:ce:6e:0a: 58:18:bf:5e:17:60:10:07:f7:94:2b:bc:8b:c4:1c:ba:10:9b: ab:6d:36:3b:f9:c9:cb:70:55:e3:d3:9b:38:11:5b:d8:62:99: 38:ab:b4:f8:fd:22:c6:e1:26:10:62:07:0a:d1:81:12:72:9a: 00:d0:f7:33:4c:b3:26:35:a8:53:03:34:f8:db:9e:cc:d2:36: 1d:e2:06:d0:43:41:95:b8:b4:4e:18:63:c6:be:97:2c:4d:ef: d1:f6:02:27:53:4b:70:2c:eb:49:7e:f0:de:a1:23:d1:f4:34: 3c:bf:0f:89:50:49:a0:a4:b0:1d:4b:f5:87:56:1a:52:96:bb: 50:bb:af:bf:44:f4:4e:14:6d:dc:95:e4:27:28:f0:7d:5c:1d: 4e:58:a0:25:95:5c:7d:b8:04:dc:45:26:12:77:7d:ab:89:c1: f7:a6:d5:81:61:2e:22:83:db:de:e6:c6:12:4d:29:d3:e3:a3: 37:c1:46:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt4W+TAn10ok+8pjmAF/+K2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDFlNDQyNmI3NGU4Y2Y2ZmZkZWRiN2IwNjA0MTgwODMyYTg2 MjVmMzIwHhcNMjYwMTAxMDcwMDQ2WhcNMjYwMTAyMDcwMDQ2WjAzMTEwLwYDVQQD EygxMDliZjhlODQ2MWFmYWNlNTE0NGM4ODRiMWEyMmIxZWZhZTY1NGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDGwbbF1lI4lDDfUnCFVirSBsJWY qK+yUlijEWADXCM3Vw2zIu2AKero2PBeimQOehFSwaduF4twJiATulTCKbdzHArq mKKLM9tQb38d4eYlVVth56FEV2Rxbpl4qA7YQNj95A3hIC/Ykkk1ctUTzfoRcjbv IL7piTVKiG0xFd5NU2Aj2gsFXLKAnyeii7zo/6lSGfsSfztmwTjBZx97ME7GIPsT hoz/hja89kjiANoSRco+IpjMKIvqmlvxxXuQDhgwtKAgNQEIHDOeyEEF6fMEkP3F fDeIEDBbN8dGQb5zKXR2UkayH7fHrbUDQb+pwKZw/NXkFM8LFz5Ao15RrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBCb+OhGGvrOUUTIhLGiKx765lSlMB8GA1UdIwQY MBaAFB5EJrdOjPb/3tt7BgQYCDKoYl8yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSGtRbXQwNk05dl9lMjNzR0JCZ0lNcWhpWHpJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYy81N2QwOGUtMWZiOC00ZmZjLThhNzEt YjQ3NDBhMjE1OGYwLzEvSGtRbXQwNk05dl9lMjNzR0JCZ0lNcWhpWHpJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYy81N2QwOGUtMWZiOC00ZmZjLThhNzEtYjQ3NDBhMjE1OGYw LzEvSGtRbXQwNk05dl9lMjNzR0JCZ0lNcWhpWHpJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADeZ6lGD0 y2gfPkHXGlAmkKejS5TNhJSfPSOMauybJJKkjIdpquYrCxyMmowppXRCPxjZxfdn 0SzpoguqMyIjF3TxgDaCzm4KWBi/XhdgEAf3lCu8i8QcuhCbq202O/nJy3BV49Ob OBFb2GKZOKu0+P0ixuEmEGIHCtGBEnKaAND3M0yzJjWoUwM0+NuezNI2HeIG0ENB lbi0Thhjxr6XLE3v0fYCJ1NLcCzrSX7w3qEj0fQ0PL8PiVBJoKSwHUv1h1YaUpa7 ULuvv0T0ThRt3JXkJyjwfVwdTligJZVcfbgE3EUmEnd9q4nB96bVgWEuIoPb3ubG Ek0p0+OjN8FGhw== -----END CERTIFICATE-----Generated at Thu Jan 1 08:46:11 2026 by rpki-client