This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft File: q6N0OU_hCA1kohnX01pJRi6Omaw.mft (raw, json) Hash identifier: Ah9CfLDrMPrKk/KzbfC+8YXXIRm4k0IGe8OqMQxtSRM= Subject key identifier: CA:52:39:E8:58:12:79:CE:D7:19:B9:36:6E:64:C7:3A:9D:F2:4B:E5 Authority key identifier: AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC Certificate issuer: /CN=aba374394fe1080d64a219d7d35a49462e8e99ac Certificate serial: 019C43C71DCD2325C758642E90DF39E7E991 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft Manifest number: 091D Signing time: Mon 09 Feb 2026 19:00:48 +0000 Manifest this update: Mon 09 Feb 2026 19:00:48 +0000 Manifest next update: Tue 10 Feb 2026 19:00:48 +0000 Files and hashes: 1: q6N0OU_hCA1kohnX01pJRi6Omaw.crl (hash: VRqAGalUqXLrv9VkoZRc5ExQSIeHrQDX4iFd70fAJtg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:1d:cd:23:25:c7:58:64:2e:90:df:39:e7:e9:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aba374394fe1080d64a219d7d35a49462e8e99ac Validity Not Before: Feb 9 19:00:48 2026 GMT Not After : Feb 10 19:00:48 2026 GMT Subject: CN=ca5239e8581279ced719b9366e64c73a9df24be5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3b:4a:d9:a1:7e:bf:85:66:c1:0f:69:e8:fe: 19:60:d9:4e:8c:59:d6:99:b1:ae:9f:75:f6:64:fe: 66:af:92:14:90:d4:e4:8f:6c:de:fc:39:66:ba:72: ad:95:03:32:6f:9e:a7:96:bb:8c:03:53:66:82:35: 2e:64:35:33:29:da:e4:6a:76:3f:bb:b5:aa:14:56: f1:ff:0a:c1:83:9e:78:27:f3:04:5c:d7:37:2b:1e: 96:fb:61:a7:42:3f:97:40:f5:73:8d:e7:af:85:c3: 63:09:dd:3d:2b:00:57:85:50:8c:4e:72:92:54:85: b7:61:4a:f4:2a:10:e5:dd:4b:91:ea:09:bf:d8:1e: 79:04:32:d1:c1:ca:4c:b0:fc:04:e5:c2:ad:04:0c: 0e:6e:6b:50:fe:f3:d4:2a:72:31:14:aa:55:80:10: 28:5a:de:62:49:a7:af:06:81:23:d0:79:9c:e1:47: ce:43:70:52:87:1a:8e:a3:38:4e:cc:0e:0f:2e:3d: eb:0e:00:bb:f6:cb:0d:a3:93:22:f7:be:31:f3:df: ae:da:66:ec:97:7b:aa:fc:01:ca:39:10:b5:d8:ff: bd:5c:00:73:d9:cd:9d:c1:ef:3e:c7:3a:dd:26:c9: 53:eb:8f:2c:a6:17:a6:20:23:6a:cd:5d:ab:cf:fe: c6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:52:39:E8:58:12:79:CE:D7:19:B9:36:6E:64:C7:3A:9D:F2:4B:E5 X509v3 Authority Key Identifier: keyid:AB:A3:74:39:4F:E1:08:0D:64:A2:19:D7:D3:5A:49:46:2E:8E:99:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/q6N0OU_hCA1kohnX01pJRi6Omaw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/8104c0-be62-4017-91cf-22c87dff8d41/1/q6N0OU_hCA1kohnX01pJRi6Omaw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:3f:ff:9d:9e:72:8f:cb:4f:ec:b4:a4:93:9e:41:2b:ff:e4: c5:b0:37:bf:59:38:a1:36:dd:47:d9:76:9e:0e:10:12:b5:2e: 1e:86:7e:7e:b0:ec:da:6c:3b:a7:d1:4c:36:9c:a7:5d:67:3c: 99:c9:8b:54:2d:8d:e3:79:0e:78:f3:ee:b2:18:91:d3:7c:f4: 0e:54:6b:ea:f6:f2:58:fd:18:e2:8d:6b:1c:78:c0:72:d1:15: 98:eb:77:7b:b8:87:dd:c3:53:42:6c:6b:dd:7f:c2:ab:54:04: 4f:2a:bd:69:28:77:e2:cf:a4:f4:b6:ea:a4:07:b8:bd:bd:fd: 06:9f:38:cd:80:30:fd:37:4e:9e:88:51:e2:d7:26:3a:18:ad: 70:42:12:16:9f:7d:f7:c1:03:72:b0:fd:38:49:b9:b2:f8:d8: 75:63:5b:f0:f6:55:fc:49:59:ce:b7:3d:3b:a8:50:11:23:37: a0:b4:2d:67:18:f5:f2:6b:0e:25:25:d1:24:97:50:25:19:f5: 73:a0:f8:4a:d7:30:f7:2c:93:a7:35:9f:2f:be:50:f9:eb:c4: 82:f9:92:76:50:d7:13:b8:4e:9f:27:4d:40:10:f3:6a:11:d4: 73:3d:3d:9c:a4:d2:e5:f8:80:58:9f:fa:02:57:10:88:39:4f: 47:02:bf:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxx3NIyXHWGQukN855+mRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFiYTM3NDM5NGZlMTA4MGQ2NGEyMTlkN2QzNWE0OTQ2MmU4 ZTk5YWMwHhcNMjYwMjA5MTkwMDQ4WhcNMjYwMjEwMTkwMDQ4WjAzMTEwLwYDVQQD EyhjYTUyMzllODU4MTI3OWNlZDcxOWI5MzY2ZTY0YzczYTlkZjI0YmU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArjtK2aF+v4VmwQ9p6P4ZYNlOjFnW mbGun3X2ZP5mr5IUkNTkj2ze/DlmunKtlQMyb56nlruMA1NmgjUuZDUzKdrkanY/ u7WqFFbx/wrBg554J/MEXNc3Kx6W+2GnQj+XQPVzjeevhcNjCd09KwBXhVCMTnKS VIW3YUr0KhDl3UuR6gm/2B55BDLRwcpMsPwE5cKtBAwObmtQ/vPUKnIxFKpVgBAo Wt5iSaevBoEj0Hmc4UfOQ3BShxqOozhOzA4PLj3rDgC79ssNo5Mi974x89+u2mbs l3uq/AHKORC12P+9XABz2c2dwe8+xzrdJslT648sphemICNqzV2rz/7G1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpSOehYEnnO1xm5Nm5kxzqd8kvlMB8GA1UdIwQY MBaAFKujdDlP4QgNZKIZ19NaSUYujpmsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2Yt MjJjODdkZmY4ZDQxLzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC84MTA0YzAtYmU2Mi00MDE3LTkxY2YtMjJjODdkZmY4ZDQx LzEvcTZOME9VX2hDQTFrb2huWDAxcEpSaTZPbWF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASz//nZ5y j8tP7LSkk55BK//kxbA3v1k4oTbdR9l2ng4QErUuHoZ+frDs2mw7p9FMNpynXWc8 mcmLVC2N43kOePPushiR03z0DlRr6vbyWP0Y4o1rHHjActEVmOt3e7iH3cNTQmxr 3X/Cq1QETyq9aSh34s+k9LbqpAe4vb39Bp84zYAw/TdOnohR4tcmOhitcEISFp99 98EDcrD9OEm5svjYdWNb8PZV/ElZzrc9O6hQESM3oLQtZxj18msOJSXRJJdQJRn1 c6D4Stcw9yyTpzWfL75Q+evEgvmSdlDXE7hOnydNQBDzahHUcz09nKTS5fiAWJ/6 AlcQiDlPRwK/tA== -----END CERTIFICATE-----Generated at Tue Feb 10 02:55:03 2026 by rpki-client