This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft File: qoxALCO4BeCVMBFbvkREAg9PIDQ.mft (raw, json) Hash identifier: ghGEl91czXlhnOizUN4u8Hc4k+Y60wCLiRNFVgv+u9s= Subject key identifier: 28:56:6D:A3:22:7F:79:93:0A:B5:E8:90:A3:0E:1F:17:BC:BC:7E:23 Authority key identifier: AA:8C:40:2C:23:B8:05:E0:95:30:11:5B:BE:44:44:02:0F:4F:20:34 Certificate issuer: /CN=aa8c402c23b805e09530115bbe4444020f4f2034 Certificate serial: 0198EF7BF83DBC536F079D88195F9FF2D738 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qoxALCO4BeCVMBFbvkREAg9PIDQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft Manifest number: 0755 Signing time: Thu 28 Aug 2025 07:02:15 +0000 Manifest this update: Thu 28 Aug 2025 07:02:15 +0000 Manifest next update: Fri 29 Aug 2025 07:02:15 +0000 Files and hashes: 1: qoxALCO4BeCVMBFbvkREAg9PIDQ.crl (hash: CRWzTlc+d4B4pbYuK0aR6UqYBD/EUCdPsZYBp1sxo84=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:98:ef:7b:f8:3d:bc:53:6f:07:9d:88:19:5f:9f:f2:d7:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aa8c402c23b805e09530115bbe4444020f4f2034 Validity Not Before: Aug 28 07:02:15 2025 GMT Not After : Aug 29 07:02:15 2025 GMT Subject: CN=28566da3227f79930ab5e890a30e1f17bcbc7e23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b9:5e:57:fc:24:15:cc:dd:f3:f6:53:5f:c9: ed:35:d5:e3:2f:e4:7b:38:47:a0:5e:0e:c9:4b:55: 9d:50:8d:56:f9:02:2f:52:fb:58:5c:f2:90:a6:77: 2d:95:69:51:41:22:dd:d9:c9:89:34:d4:05:d4:24: 6e:d8:7f:c0:c6:e4:06:3e:91:39:65:53:43:2d:ce: 95:0e:a4:19:ab:cf:5c:88:75:97:60:ab:2e:f7:1e: f4:a0:0d:c1:04:ee:cc:5a:e9:a3:ea:11:9e:0c:4f: 5a:cb:12:1e:93:39:3c:32:3e:06:a3:7e:a1:51:43: 19:b6:bb:68:ae:8d:7e:90:d3:4b:ea:5e:8d:35:71: 9c:d1:68:b3:84:fd:61:0f:bb:88:d6:50:66:d4:dd: b0:cb:3f:c1:18:37:34:25:f0:44:39:89:38:ae:89: 98:6b:c7:c6:e4:06:8d:ca:32:18:07:f7:64:04:f0: 66:40:c8:71:7c:ca:f7:8e:00:ec:bc:52:86:b8:b0: 31:e1:08:0e:3c:92:c4:e0:84:30:e5:a4:18:8f:ea: e6:d0:2e:72:2f:42:ce:89:48:f0:b9:00:58:aa:e5: 79:9b:a8:f3:26:48:da:02:8c:51:32:a7:8d:36:d0: c9:45:80:1a:08:bd:23:0d:00:1c:48:7d:55:42:4a: af:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:56:6D:A3:22:7F:79:93:0A:B5:E8:90:A3:0E:1F:17:BC:BC:7E:23 X509v3 Authority Key Identifier: keyid:AA:8C:40:2C:23:B8:05:E0:95:30:11:5B:BE:44:44:02:0F:4F:20:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qoxALCO4BeCVMBFbvkREAg9PIDQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/dba306-9199-4b75-a2c3-4f6af0883979/1/qoxALCO4BeCVMBFbvkREAg9PIDQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 71:bb:0d:27:89:d9:bd:cc:11:81:6d:78:1a:71:ae:a3:bc:8c: c3:25:84:c6:fc:13:b2:3a:d8:52:7d:1b:65:e6:14:eb:4a:09: 29:e4:57:47:c7:81:78:15:d4:5b:0b:3a:0b:cb:bc:a1:28:00: 3d:d4:ff:02:3c:8e:af:b3:13:78:95:c3:59:8f:95:d9:34:9d: a6:97:26:8e:d6:a1:8c:3b:89:1d:ee:b0:f3:c4:c5:11:d2:4f: 89:d5:86:37:cd:b8:06:60:db:14:82:93:d9:d4:45:a0:c5:c7: 80:a2:22:9d:36:5b:05:71:00:4b:39:ac:6a:19:28:4b:2f:10: 2f:00:ba:41:65:e7:63:e9:c8:36:3e:a0:89:d9:92:8b:1f:60: f4:88:e3:7e:55:f0:10:63:c5:73:e6:a6:d4:29:7a:8e:4e:b1: b3:22:9d:c6:96:8c:1e:40:5c:30:05:a7:b7:ba:98:bb:0d:c1: c3:f6:7d:9a:e2:c1:01:e4:b0:4a:ec:24:2a:1b:7e:a9:97:c7: a5:75:c1:55:09:05:83:f0:cf:2b:45:96:2d:68:29:a1:0c:18: 48:7e:2a:3a:b4:a7:85:84:8c:c7:89:ee:99:e9:6f:4a:62:65: 03:8e:8d:d2:b3:39:5e:05:23:de:12:d7:d6:5c:47:d6:24:c2: f4:50:23:06 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZjve/g9vFNvB52IGV+f8tc4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhOGM0MDJjMjNiODA1ZTA5NTMwMTE1YmJlNDQ0NDAyMGY0 ZjIwMzQwHhcNMjUwODI4MDcwMjE1WhcNMjUwODI5MDcwMjE1WjAzMTEwLwYDVQQD EygyODU2NmRhMzIyN2Y3OTkzMGFiNWU4OTBhMzBlMWYxN2JjYmM3ZTIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkbleV/wkFczd8/ZTX8ntNdXjL+R7 OEegXg7JS1WdUI1W+QIvUvtYXPKQpnctlWlRQSLd2cmJNNQF1CRu2H/AxuQGPpE5 ZVNDLc6VDqQZq89ciHWXYKsu9x70oA3BBO7MWumj6hGeDE9ayxIekzk8Mj4Go36h UUMZtrtoro1+kNNL6l6NNXGc0WizhP1hD7uI1lBm1N2wyz/BGDc0JfBEOYk4romY a8fG5AaNyjIYB/dkBPBmQMhxfMr3jgDsvFKGuLAx4QgOPJLE4IQw5aQYj+rm0C5y L0LOiUjwuQBYquV5m6jzJkjaAoxRMqeNNtDJRYAaCL0jDQAcSH1VQkqvUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFChWbaMif3mTCrXokKMOHxe8vH4jMB8GA1UdIwQY MBaAFKqMQCwjuAXglTARW75ERAIPTyA0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcW94QUxDTzRCZUNWTUJGYnZrUkVBZzlQSURRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi9kYmEzMDYtOTE5OS00Yjc1LWEyYzMt NGY2YWYwODgzOTc5LzEvcW94QUxDTzRCZUNWTUJGYnZrUkVBZzlQSURRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi9kYmEzMDYtOTE5OS00Yjc1LWEyYzMtNGY2YWYwODgzOTc5 LzEvcW94QUxDTzRCZUNWTUJGYnZrUkVBZzlQSURRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcbsNJ4nZ vcwRgW14GnGuo7yMwyWExvwTsjrYUn0bZeYU60oJKeRXR8eBeBXUWws6C8u8oSgA PdT/AjyOr7MTeJXDWY+V2TSdppcmjtahjDuJHe6w88TFEdJPidWGN824BmDbFIKT 2dRFoMXHgKIinTZbBXEASzmsahkoSy8QLwC6QWXnY+nINj6gidmSix9g9IjjflXw EGPFc+am1Cl6jk6xsyKdxpaMHkBcMAWnt7qYuw3Bw/Z9muLBAeSwSuwkKht+qZfH pXXBVQkFg/DPK0WWLWgpoQwYSH4qOrSnhYSMx4numelvSmJlA46N0rM5XgUj3hLX 1lxH1iTC9FAjBg== -----END CERTIFICATE-----Generated at Mon Jan 26 23:27:23 2026 by rpki-client