This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft File: Wddq-QkdoVgbul7BPl29tzYtnQ8.mft (raw, json) Hash identifier: 18ejvvP5Hok0RyqUrImL8YOkhvWwXCY6FFctauib8TY= Subject key identifier: 6C:65:B5:42:EF:51:84:D1:0F:54:DB:03:BC:E9:B3:C2:7E:C0:0D:AC Authority key identifier: 59:D7:6A:F9:09:1D:A1:58:1B:BA:5E:C1:3E:5D:BD:B7:36:2D:9D:0F Certificate issuer: /CN=59d76af9091da1581bba5ec13e5dbdb7362d9d0f Certificate serial: 019B4882DFEE4D9575EC44227D84F873817E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft Manifest number: 121B Signing time: Tue 23 Dec 2025 00:01:35 +0000 Manifest this update: Tue 23 Dec 2025 00:01:35 +0000 Manifest next update: Wed 24 Dec 2025 00:01:35 +0000 Files and hashes: 1: Wddq-QkdoVgbul7BPl29tzYtnQ8.crl (hash: z9TaaDoYhXoRdxeud7kGgbQzXoNqjN7tRm1agx/cWnA=) 2: WxX1Hu2E5PBSUGmsXjK9hC9MNwk.roa (hash: yTqA3ZGTODQnxMnTADEBGt1VqhX3aMRxsME8/St0wzk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.crl rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:82:df:ee:4d:95:75:ec:44:22:7d:84:f8:73:81:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59d76af9091da1581bba5ec13e5dbdb7362d9d0f Validity Not Before: Dec 23 00:01:35 2025 GMT Not After : Dec 24 00:01:35 2025 GMT Subject: CN=6c65b542ef5184d10f54db03bce9b3c27ec00dac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:d1:cb:63:2b:91:de:b3:12:31:67:9b:38:2f: d0:38:5d:bc:96:ca:cb:19:a9:fb:73:14:06:7f:c0: bf:5f:62:67:82:d4:07:70:dd:3f:18:37:94:a4:ee: 1b:2a:9f:f7:53:45:c2:e7:63:47:b2:02:6f:8a:1d: 9e:67:8f:c6:cc:84:1d:f0:a0:6e:81:8b:b3:1c:f3: 1f:ec:ae:a6:63:49:48:fc:5c:f6:0e:c3:e5:0d:23: b3:53:e5:e7:d3:7e:59:1c:fb:a0:7f:82:e4:09:d0: 95:3b:24:ea:91:25:7c:3f:e2:71:d4:1d:c5:1d:2b: a7:57:c0:d9:e9:07:ff:f7:49:b4:1f:29:4d:d4:87: 1f:71:31:05:57:24:5c:45:02:b6:fa:15:d1:6d:a1: f6:90:c5:81:3a:d5:31:64:0e:f6:6d:76:7f:a0:17: f7:ae:5a:93:8c:29:e7:04:81:a8:77:58:37:82:63: 07:ad:c3:22:f0:c2:5b:17:78:fd:5d:58:5a:ad:a6: e7:3a:25:f0:64:16:0f:ee:fd:de:eb:96:72:df:c1: 12:cb:fb:b4:3c:ff:a9:54:eb:c5:96:7c:ee:fd:3c: ba:0b:46:44:f3:ba:5b:87:d9:5c:71:2b:80:be:46: c8:9f:2b:af:b2:6d:bc:09:d2:b4:98:5e:f3:e8:90: 41:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:65:B5:42:EF:51:84:D1:0F:54:DB:03:BC:E9:B3:C2:7E:C0:0D:AC X509v3 Authority Key Identifier: keyid:59:D7:6A:F9:09:1D:A1:58:1B:BA:5E:C1:3E:5D:BD:B7:36:2D:9D:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wddq-QkdoVgbul7BPl29tzYtnQ8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/83/08d1cc-6373-4840-b48f-0aa08edb9063/1/Wddq-QkdoVgbul7BPl29tzYtnQ8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:d3:f2:d0:d3:37:6c:ea:7d:00:f1:e5:6b:e5:c2:f2:76:03: 2d:cc:81:8e:13:4a:6c:5f:e7:8b:f3:01:c6:54:08:c9:50:e4: b0:86:e3:df:ea:53:e4:41:3f:b2:1d:68:3f:f0:a3:cd:c9:61: 7a:66:d1:b9:4e:2e:7f:38:9f:57:85:b0:4a:ae:6a:06:ea:19: 4a:33:df:fc:3e:21:b3:0a:95:94:f0:2f:72:77:77:c2:34:60: 3c:67:45:f1:2a:b6:dd:90:8b:98:4d:f3:78:a4:00:fc:a4:48: 28:13:d2:3a:b7:9b:59:f8:6c:d1:51:c0:2f:a9:ec:43:69:20: 2b:96:31:49:53:24:da:a5:8d:a9:21:ba:ae:ac:13:75:7d:d5: d5:47:14:45:d4:53:a7:20:a5:58:c0:01:4f:82:a7:3a:8c:c0: b8:b6:c0:10:3c:fc:b6:51:1e:63:66:29:ef:df:67:7a:0d:08: f4:7d:e6:78:0e:92:47:c0:ef:29:83:58:3e:1d:ab:c5:37:2d: b2:47:ca:c4:df:c0:85:3d:22:cd:75:97:ee:bd:8d:f1:c3:dc: 7e:bf:22:20:40:01:94:47:5c:db:6e:ff:20:64:64:0c:5b:c4: 6c:de:cd:05:87:0b:6b:c6:88:7e:ab:51:f9:a5:e3:9d:f8:4e: c1:bb:5d:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIgt/uTZV17EQifYT4c4F+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5ZDc2YWY5MDkxZGExNTgxYmJhNWVjMTNlNWRiZGI3MzYy ZDlkMGYwHhcNMjUxMjIzMDAwMTM1WhcNMjUxMjI0MDAwMTM1WjAzMTEwLwYDVQQD Eyg2YzY1YjU0MmVmNTE4NGQxMGY1NGRiMDNiY2U5YjNjMjdlYzAwZGFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAodHLYyuR3rMSMWebOC/QOF28lsrL Gan7cxQGf8C/X2JngtQHcN0/GDeUpO4bKp/3U0XC52NHsgJvih2eZ4/GzIQd8KBu gYuzHPMf7K6mY0lI/Fz2DsPlDSOzU+Xn035ZHPugf4LkCdCVOyTqkSV8P+Jx1B3F HSunV8DZ6Qf/90m0HylN1IcfcTEFVyRcRQK2+hXRbaH2kMWBOtUxZA72bXZ/oBf3 rlqTjCnnBIGod1g3gmMHrcMi8MJbF3j9XVharabnOiXwZBYP7v3e65Zy38ESy/u0 PP+pVOvFlnzu/Ty6C0ZE87pbh9lccSuAvkbInyuvsm28CdK0mF7z6JBBOQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGxltULvUYTRD1TbA7zps8J+wA2sMB8GA1UdIwQY MBaAFFnXavkJHaFYG7pewT5dvbc2LZ0PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2RkcS1Ra2RvVmdidWw3QlBsMjl0ell0blE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84My8wOGQxY2MtNjM3My00ODQwLWI0OGYt MGFhMDhlZGI5MDYzLzEvV2RkcS1Ra2RvVmdidWw3QlBsMjl0ell0blE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84My8wOGQxY2MtNjM3My00ODQwLWI0OGYtMGFhMDhlZGI5MDYz LzEvV2RkcS1Ra2RvVmdidWw3QlBsMjl0ell0blE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAD9Py0NM3 bOp9APHla+XC8nYDLcyBjhNKbF/ni/MBxlQIyVDksIbj3+pT5EE/sh1oP/Cjzclh embRuU4ufzifV4WwSq5qBuoZSjPf/D4hswqVlPAvcnd3wjRgPGdF8Sq23ZCLmE3z eKQA/KRIKBPSOrebWfhs0VHAL6nsQ2kgK5YxSVMk2qWNqSG6rqwTdX3V1UcURdRT pyClWMABT4KnOozAuLbAEDz8tlEeY2Yp799neg0I9H3meA6SR8DvKYNYPh2rxTct skfKxN/AhT0izXWX7r2N8cPcfr8iIEABlEdc227/IGRkDFvEbN7NBYcLa8aIfqtR +aXjnfhOwbtd8A== -----END CERTIFICATE-----Generated at Tue Dec 23 05:54:41 2025 by rpki-client