This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft File: w9bWn9WH0FQXblPRknJoI2GxZzY.mft (raw, json) Hash identifier: 39/KzP0M4fVtjvfhIZflF0r/YiQsMJoJWp38M9f5U+w= Subject key identifier: 84:FB:58:D0:0B:93:4F:2B:B9:59:48:4D:5F:39:D0:E1:12:F0:D9:EA Authority key identifier: C3:D6:D6:9F:D5:87:D0:54:17:6E:53:D1:92:72:68:23:61:B1:67:36 Certificate issuer: /CN=c3d6d69fd587d054176e53d19272682361b16736 Certificate serial: 019B4A03090D7907FD34A200499247946A2E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft Manifest number: 178B Signing time: Tue 23 Dec 2025 07:01:11 +0000 Manifest this update: Tue 23 Dec 2025 07:01:11 +0000 Manifest next update: Wed 24 Dec 2025 07:01:11 +0000 Files and hashes: 1: w9bWn9WH0FQXblPRknJoI2GxZzY.crl (hash: Q0LjLnYaVjajwhbrhFShaCniAfweO5thAKoq53ILpE8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.crl rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4a:03:09:0d:79:07:fd:34:a2:00:49:92:47:94:6a:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c3d6d69fd587d054176e53d19272682361b16736 Validity Not Before: Dec 23 07:01:11 2025 GMT Not After : Dec 24 07:01:11 2025 GMT Subject: CN=84fb58d00b934f2bb959484d5f39d0e112f0d9ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e7:43:f0:72:fe:33:44:e0:1f:83:43:d0:1d: 06:8c:14:5b:12:0b:b7:cf:79:58:ca:15:0d:23:7f: b9:fc:14:2f:8b:46:80:fd:0d:36:47:8c:35:8e:80: ea:92:24:92:f6:17:a6:2a:3f:41:14:73:d5:7a:11: e5:21:86:48:ea:40:1a:df:57:f1:c9:5b:39:d7:90: 1d:02:5d:5b:25:42:0a:b7:49:3c:6f:51:d5:f4:2e: 62:81:66:4a:2c:22:c7:70:64:36:c8:89:a2:28:c3: fa:ed:7d:1e:a0:69:6a:b4:4f:b6:5f:19:28:e7:14: c9:fd:8c:d6:09:52:18:47:7a:9b:ed:88:6a:b0:40: f9:fd:ca:65:97:2c:a4:19:ed:53:e3:7d:fd:fc:29: d3:e2:57:d2:3d:74:44:7c:78:9a:1f:70:e1:24:47: 01:2d:c4:37:8e:6f:c9:ea:21:6c:93:bb:94:f2:5d: 29:47:ed:f9:6c:f2:00:5d:6f:62:a6:e0:02:e6:c8: 42:1d:b8:ba:c5:cf:fd:8b:ff:95:d0:2e:06:1f:01: 11:35:f0:46:64:87:be:f3:90:04:9b:52:cd:1c:a1: 31:9d:52:7f:86:40:e8:da:90:71:32:65:cb:92:2e: a9:3d:3b:df:35:fd:09:1f:8e:9f:c8:f5:f9:85:98: c3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FB:58:D0:0B:93:4F:2B:B9:59:48:4D:5F:39:D0:E1:12:F0:D9:EA X509v3 Authority Key Identifier: keyid:C3:D6:D6:9F:D5:87:D0:54:17:6E:53:D1:92:72:68:23:61:B1:67:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w9bWn9WH0FQXblPRknJoI2GxZzY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/d774bf-00fe-4379-ad24-ca0836318995/1/w9bWn9WH0FQXblPRknJoI2GxZzY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1f:8d:08:49:eb:f4:7a:93:a7:9a:38:c1:97:5f:1d:f4:77:e3: d9:95:c0:56:8b:1c:e3:aa:b2:43:af:b6:42:1d:84:45:86:11: 02:5f:50:32:c0:51:25:03:40:d3:f6:11:56:c8:08:20:30:a1: 0b:62:99:d1:d2:2e:75:02:15:16:c3:b3:79:ec:67:7f:a7:3f: 2e:c7:3c:29:74:20:e6:02:db:b0:08:fa:e9:91:9b:d7:12:4f: 2d:ef:9c:7d:b3:4d:e7:6e:3c:7a:3e:7d:d0:e4:8d:21:42:0b: bd:23:8a:ed:17:1c:3b:68:c5:63:55:1e:57:73:93:86:4e:c1: 48:fd:01:80:2e:43:a2:78:ec:63:52:37:e5:e3:32:44:88:0e: 87:90:dd:c2:26:dc:f5:9d:af:4d:cf:7c:89:3b:6b:64:a9:62: 02:87:2f:82:2c:7e:04:47:bd:ca:69:7f:77:e7:82:ea:e2:f1: 6e:e3:41:9f:76:2e:90:17:19:d2:b3:d8:d3:6e:e6:13:d3:c5: 51:c8:6d:98:39:75:bd:31:4c:0c:fe:2a:84:cc:e6:e5:bb:60: 6f:30:9a:d5:87:2e:4c:da:ab:ac:04:e7:f8:63:d0:ce:39:b1: a3:54:7d:26:a5:86:c7:48:21:bd:48:40:b9:9f:dd:f1:8c:62: b5:d6:98:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtKAwkNeQf9NKIASZJHlGouMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzZDZkNjlmZDU4N2QwNTQxNzZlNTNkMTkyNzI2ODIzNjFi MTY3MzYwHhcNMjUxMjIzMDcwMTExWhcNMjUxMjI0MDcwMTExWjAzMTEwLwYDVQQD Eyg4NGZiNThkMDBiOTM0ZjJiYjk1OTQ4NGQ1ZjM5ZDBlMTEyZjBkOWVhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtOdD8HL+M0TgH4ND0B0GjBRbEgu3 z3lYyhUNI3+5/BQvi0aA/Q02R4w1joDqkiSS9hemKj9BFHPVehHlIYZI6kAa31fx yVs515AdAl1bJUIKt0k8b1HV9C5igWZKLCLHcGQ2yImiKMP67X0eoGlqtE+2Xxko 5xTJ/YzWCVIYR3qb7YhqsED5/cpllyykGe1T4339/CnT4lfSPXREfHiaH3DhJEcB LcQ3jm/J6iFsk7uU8l0pR+35bPIAXW9ipuAC5shCHbi6xc/9i/+V0C4GHwERNfBG ZIe+85AEm1LNHKExnVJ/hkDo2pBxMmXLki6pPTvfNf0JH46fyPX5hZjD4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIT7WNALk08ruVlITV850OES8NnqMB8GA1UdIwQY MBaAFMPW1p/Vh9BUF25T0ZJyaCNhsWc2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzliV245V0gwRlFYYmxQUmtuSm9JMkd4WnpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Yi9kNzc0YmYtMDBmZS00Mzc5LWFkMjQt Y2EwODM2MzE4OTk1LzEvdzliV245V0gwRlFYYmxQUmtuSm9JMkd4WnpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Yi9kNzc0YmYtMDBmZS00Mzc5LWFkMjQtY2EwODM2MzE4OTk1 LzEvdzliV245V0gwRlFYYmxQUmtuSm9JMkd4WnpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAH40ISev0 epOnmjjBl18d9Hfj2ZXAVosc46qyQ6+2Qh2ERYYRAl9QMsBRJQNA0/YRVsgIIDCh C2KZ0dIudQIVFsOzeexnf6c/Lsc8KXQg5gLbsAj66ZGb1xJPLe+cfbNN5248ej59 0OSNIUILvSOK7RccO2jFY1UeV3OThk7BSP0BgC5DonjsY1I35eMyRIgOh5Ddwibc 9Z2vTc98iTtrZKliAocvgix+BEe9yml/d+eC6uLxbuNBn3YukBcZ0rPY027mE9PF UchtmDl1vTFMDP4qhMzm5btgbzCa1YcuTNqrrATn+GPQzjmxo1R9JqWGx0ghvUhA uZ/d8YxitdaYRg== -----END CERTIFICATE-----Generated at Tue Dec 23 09:29:03 2025 by rpki-client