This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft File: q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json) Hash identifier: gCZjkbA+m7VioaJBkDj65QdIameoNo+g1zKr0W2pf48= Subject key identifier: 12:A0:17:45:FC:01:25:A0:F3:9A:FE:24:8B:98:27:8A:ED:D5:4E:4E Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC Certificate issuer: /CN=aba374394fe1080d64a219d7d35a49462e8e99ac Certificate serial: 019B202ACE9EF37F9D64F31E6E2EFBDA69E2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft Manifest number: 0886 Signing time: Mon 15 Dec 2025 04:00:34 +0000 Manifest this update: Mon 15 Dec 2025 04:00:34 +0000 Manifest next update: Tue 16 Dec 2025 04:00:34 +0000 Files and hashes: 1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: KNStOiWn5myDgNUOd/cKDRHVvBddabgP0LJyw3USi6s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 04:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:20:2a:ce:9e:f3:7f:9d:64:f3:1e:6e:2e:fb:da:69:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac Validity Not Before: Dec 15 04:00:34 2025 GMT Not After : Dec 16 04:00:34 2025 GMT Subject: CN=12a01745fc0125a0f39afe248b98278aedd54e4e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:54:b7:c5:cf:e0:47:61:7f:ff:c8:18:7a:5c: 4a:08:a3:99:6d:88:6d:07:a3:0d:7a:ce:85:02:46: ea:6c:bf:d5:dc:1d:f4:13:b3:37:23:9d:a3:f2:24: 73:eb:8e:2f:56:90:21:b6:4a:17:b9:63:f1:8a:85: d4:8b:13:2a:f7:0f:49:89:8b:85:1e:1a:a1:df:99: d2:4c:c9:43:5e:c8:e1:8e:e5:6d:01:6a:a1:a6:02: 8a:91:98:a4:b4:d5:75:ec:70:00:6c:a0:f1:32:26: d4:5d:16:96:00:61:5d:ed:df:a8:68:3c:fc:12:c4: 49:fe:2a:af:dc:8b:78:f2:4f:98:e7:ec:7a:2c:52: 8c:6c:ac:66:b6:fb:ea:4b:7e:d2:2b:66:d9:1b:0e: 20:9c:c5:17:57:86:e2:f0:bc:b4:17:15:c1:bf:87: 71:2d:f8:c0:52:8f:7b:d8:c1:bc:24:d2:71:5e:94: 59:42:84:ef:1b:ef:8a:e1:73:37:e0:2e:a3:4e:8a: cc:2a:1d:8e:82:f5:83:02:e0:ad:5a:62:77:e1:42: ef:ba:cd:74:19:2c:83:c6:01:7e:eb:5a:98:fc:a5: 77:5d:e2:2c:bc:5d:f8:0a:7f:eb:f7:c9:38:c6:5f: c3:1c:cc:f9:0e:fc:6c:90:b3:2b:96:22:60:f2:6d: b0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A0:17:45:FC:01:25:A0:F3:9A:FE:24:8B:98:27:8A:ED:D5:4E:4E X509v3 Authority Key Identifier: keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:fd:3a:69:5f:2a:15:8a:49:de:9d:c6:8f:4e:6a:ac:61:06: 54:a6:3c:de:81:dc:bf:a8:6a:47:cc:4f:5a:77:b8:b0:97:b4: 4c:90:42:a1:5e:90:7d:e3:51:71:4c:40:75:36:30:33:40:bc: 1e:c8:00:77:59:8c:d5:a5:38:73:d8:39:9b:00:ea:19:35:f4: 4d:90:95:92:cf:a7:80:07:06:19:d8:30:a0:0a:16:d9:b5:c6: ca:5f:d9:4d:66:6a:81:23:23:8e:89:43:7e:e3:f2:8b:13:41: 9c:0a:45:5b:b3:72:01:b7:6c:2a:b1:fd:7e:09:7e:03:c7:84: 8d:bb:b3:65:41:e9:d0:c0:9a:1c:9d:0f:4e:8d:85:35:c5:58: a8:02:60:99:0d:fc:d4:55:71:f6:98:1f:8f:ea:34:fc:07:c7: 67:a2:b0:f7:0f:b8:cd:5e:09:01:38:e5:37:60:9e:d6:53:09: a9:08:92:15:4d:05:45:3d:cd:67:5a:8e:ee:a1:a8:50:c9:2c: a1:60:0e:e7:4c:9e:62:78:ce:54:57:bc:99:2e:27:89:b7:99: 8e:ac:8e:f5:43:65:05:fa:26:8c:31:53:4c:e7:17:26:9e:28: 63:8e:b3:68:c4:7a:df:a2:2d:57:90:71:92:f2:12:e0:c6:20: b4:2d:35:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsgKs6e83+dZPMebi772mniMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYTM3NDM5NGZlMTA4MGQ2NGEyMTlkN2QzNWE0OTQ2MmU4 ZTk5YWMwHhcNMjUxMjE1MDQwMDM0WhcNMjUxMjE2MDQwMDM0WjAzMTEwLwYDVQQD EygxMmEwMTc0NWZjMDEyNWEwZjM5YWZlMjQ4Yjk4Mjc4YWVkZDU0ZTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwlS3xc/gR2F//8gYelxKCKOZbYht B6MNes6FAkbqbL/V3B30E7M3I52j8iRz644vVpAhtkoXuWPxioXUixMq9w9JiYuF Hhqh35nSTMlDXsjhjuVtAWqhpgKKkZiktNV17HAAbKDxMibUXRaWAGFd7d+oaDz8 EsRJ/iqv3It48k+Y5+x6LFKMbKxmtvvqS37SK2bZGw4gnMUXV4bi8Ly0FxXBv4dx LfjAUo972MG8JNJxXpRZQoTvG++K4XM34C6jTorMKh2OgvWDAuCtWmJ34ULvus10 GSyDxgF+61qY/KV3XeIsvF34Cn/r98k4xl/DHMz5DvxskLMrliJg8m2wvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBKgF0X8ASWg85r+JIuYJ4rt1U5OMB8GA1UdIwQY MBaAFKujdDlP4QgNZKIZ19NaSUYujpmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2Yt MjJjODdkZmY4ZDQxLzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2YtMjJjODdkZmY4ZDQx LzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZv06aV8q FYpJ3p3Gj05qrGEGVKY83oHcv6hqR8xPWne4sJe0TJBCoV6QfeNRcUxAdTYwM0C8 HsgAd1mM1aU4c9g5mwDqGTX0TZCVks+ngAcGGdgwoAoW2bXGyl/ZTWZqgSMjjolD fuPyixNBnApFW7NyAbdsKrH9fgl+A8eEjbuzZUHp0MCaHJ0PTo2FNcVYqAJgmQ38 1FVx9pgfj+o0/AfHZ6Kw9w+4zV4JATjlN2Ce1lMJqQiSFU0FRT3NZ1qO7qGoUMks oWAO50yeYnjOVFe8mS4nibeZjqyO9UNlBfomjDFTTOcXJp4oY46zaMR636ItV5Bx kvIS4MYgtC01mw== -----END CERTIFICATE-----Generated at Mon Dec 15 13:40:29 2025 by rpki-client