This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json) Hash identifier: JTDAjeJ7w3ndp6oyWa6FXK+56fj2Vz8asaQhoGhnYxY= Subject key identifier: EB:8E:A2:D1:EC:35:02:41:E0:3D:28:BC:9D:7D:75:22:B6:AC:07:74 Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca Certificate serial: 019C42102A78B63AFA073500A2707BDF1063 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft Manifest number: 05F6 Signing time: Mon 09 Feb 2026 11:01:21 +0000 Manifest this update: Mon 09 Feb 2026 11:01:21 +0000 Manifest next update: Tue 10 Feb 2026 11:01:21 +0000 Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: Q2Y2dRFCMcHzhqUOcL5l7XjW4RzgfAvUxp7cMUuGTo0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:2a:78:b6:3a:fa:07:35:00:a2:70:7b:df:10:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca Validity Not Before: Feb 9 11:01:21 2026 GMT Not After : Feb 10 11:01:21 2026 GMT Subject: CN=eb8ea2d1ec350241e03d28bc9d7d7522b6ac0774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:28:8e:81:ac:cc:f3:9c:3a:2d:bc:fd:d6:14: 27:83:7c:ae:8e:c6:0d:5a:bf:75:77:f1:86:ea:b4: 5b:e7:f1:8c:4b:b0:c9:6b:a4:2b:5c:1b:fa:41:93: a5:e9:ed:e7:15:6e:32:42:52:cb:05:aa:3b:cb:3c: ff:b3:1e:df:b9:67:89:ab:70:2e:ac:03:5a:7e:bf: e1:94:c3:b6:44:d9:24:e4:f5:17:2e:09:05:f4:0f: ad:c7:a0:ff:70:bc:b4:23:58:b8:3e:8a:7e:62:0d: fb:7f:0d:e6:31:ea:8e:72:1c:59:6e:fd:36:f9:5f: 24:84:d8:e7:e1:81:b4:39:b0:8a:5b:00:09:ef:94: ce:87:01:f9:4c:44:fd:01:df:f3:81:bb:88:7c:56: 9d:7b:c2:f3:84:9f:dd:69:7c:dd:96:f5:78:a8:d6: 73:7b:42:fc:a4:d1:90:c1:14:e7:1c:31:dd:cd:b5: 25:4e:02:2e:91:ed:7e:b8:53:00:c1:3a:9b:d2:cd: 91:0b:60:25:90:55:27:0c:64:58:29:04:5f:af:92: a0:23:c9:89:c5:20:e6:ce:74:24:87:c8:64:09:a8: 39:a6:ce:42:28:60:5e:bd:40:4b:4a:63:bb:05:ac: 78:06:08:11:5a:dd:e6:d6:5a:a4:ac:13:82:f3:d0: 93:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:8E:A2:D1:EC:35:02:41:E0:3D:28:BC:9D:7D:75:22:B6:AC:07:74 X509v3 Authority Key Identifier: keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 02:e0:1b:21:25:d9:71:7d:8b:11:80:ac:88:2e:a2:44:99:06: 37:56:cd:8d:54:53:42:6a:52:cc:de:07:b4:52:8a:bb:5b:81: 03:28:71:a8:e4:bc:47:ef:6b:2d:19:92:d4:0b:d9:e5:35:d6: 0e:51:5a:90:74:bc:9f:60:4f:f1:35:32:3c:80:b0:04:23:0f: 3e:ba:3f:fc:bf:2b:d9:60:8b:8c:4c:c0:3f:3c:22:52:3b:9d: 73:e0:13:76:53:f3:89:cc:75:c5:23:73:ea:88:08:b6:46:06: d4:b7:57:c2:d6:f4:e3:b6:a7:9b:09:2d:e8:49:46:c3:c9:11: af:6e:c1:50:46:05:ae:68:b4:b4:83:77:6d:9a:5c:78:8a:a6: 90:f9:b8:79:36:22:8e:29:26:73:a8:e7:71:c5:6f:f3:40:94: da:d2:38:6e:1b:27:85:a3:7e:6a:6a:98:c8:33:90:4c:b2:3f: e3:f8:b9:6c:c3:6f:5a:4e:d2:05:4b:53:75:84:85:b7:93:6b: fb:06:f2:3d:c5:d2:08:65:3d:1a:99:99:54:a0:22:61:36:90: a2:21:57:2a:f3:01:05:d6:8f:d8:f6:0f:8a:8e:6f:3b:8f:f6: a0:9d:27:63:d8:0e:a4:37:52:01:e8:fd:b7:45:b1:5a:1e:dd: c2:48:08:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCECp4tjr6BzUAonB73xBjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YTM1YWZiOGYwMDc2YzExNTU4YWNmZjQwNjNmMmY1OGEy ODE3Y2EwHhcNMjYwMjA5MTEwMTIxWhcNMjYwMjEwMTEwMTIxWjAzMTEwLwYDVQQD EyhlYjhlYTJkMWVjMzUwMjQxZTAzZDI4YmM5ZDdkNzUyMmI2YWMwNzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSiOgazM85w6Lbz91hQng3yujsYN Wr91d/GG6rRb5/GMS7DJa6QrXBv6QZOl6e3nFW4yQlLLBao7yzz/sx7fuWeJq3Au rANafr/hlMO2RNkk5PUXLgkF9A+tx6D/cLy0I1i4Pop+Yg37fw3mMeqOchxZbv02 +V8khNjn4YG0ObCKWwAJ75TOhwH5TET9Ad/zgbuIfFade8LzhJ/daXzdlvV4qNZz e0L8pNGQwRTnHDHdzbUlTgIuke1+uFMAwTqb0s2RC2AlkFUnDGRYKQRfr5KgI8mJ xSDmznQkh8hkCag5ps5CKGBevUBLSmO7Bax4BggRWt3m1lqkrBOC89CTCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOuOotHsNQJB4D0ovJ19dSK2rAd0MB8GA1UdIwQY MBaAFFijWvuPAHbBFVis/0Bj8vWKKBfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgt MzUxOGQ4MDZmZmMzLzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgtMzUxOGQ4MDZmZmMz LzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAuAbISXZ cX2LEYCsiC6iRJkGN1bNjVRTQmpSzN4HtFKKu1uBAyhxqOS8R+9rLRmS1AvZ5TXW DlFakHS8n2BP8TUyPICwBCMPPro//L8r2WCLjEzAPzwiUjudc+ATdlPzicx1xSNz 6ogItkYG1LdXwtb047anmwkt6ElGw8kRr27BUEYFrmi0tIN3bZpceIqmkPm4eTYi jikmc6jnccVv80CU2tI4bhsnhaN+amqYyDOQTLI/4/i5bMNvWk7SBUtTdYSFt5Nr +wbyPcXSCGU9GpmZVKAiYTaQoiFXKvMBBdaP2PYPio5vO4/2oJ0nY9gOpDdSAej9 t0WxWh7dwkgI5g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:06 2026 by rpki-client