This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json) Hash identifier: N8Nu923+8GJ4AzsqOqbSZFV6lU5zhdl5jyXV3Icahmc= Subject key identifier: 16:6A:03:65:69:D4:80:71:2D:11:39:53:8A:35:2D:51:59:C4:75:5D Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71 Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71 Certificate serial: 019AF12DE4D66BE3B3CD44695574B9E412EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft Manifest number: 04CC Signing time: Sat 06 Dec 2025 01:01:48 +0000 Manifest this update: Sat 06 Dec 2025 01:01:48 +0000 Manifest next update: Sun 07 Dec 2025 01:01:48 +0000 Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=) 2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: Dq0zYxANveXQWGIAqRqNLNwYPOXhxjP5zQBgX4iER/w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 17:27:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:e4:d6:6b:e3:b3:cd:44:69:55:74:b9:e4:12:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71 Validity Not Before: Dec 6 01:01:48 2025 GMT Not After : Dec 7 01:01:48 2025 GMT Subject: CN=166a036569d480712d1139538a352d5159c4755d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:63:16:d5:dc:80:d3:06:c1:5f:41:6b:55:75: cf:70:3d:13:ce:be:8a:de:c9:0d:d0:95:77:61:cd: 2b:12:d1:21:05:ff:70:16:f3:7c:01:bb:42:53:b8: 75:c2:a1:7c:63:0c:a9:90:f2:92:e4:7c:3b:d0:0f: 4a:5c:f0:e2:0a:fb:83:38:28:28:c7:27:b8:70:f0: 9d:b4:c7:c2:a2:bb:be:49:04:a5:65:45:ca:54:0a: ae:ed:a6:f1:db:a6:a0:8f:7b:20:3d:d4:54:34:d7: c6:58:36:ba:68:a8:4a:2e:2b:6e:c0:72:23:d0:2e: ae:c5:fb:61:d9:be:1b:b8:a3:85:d7:e3:db:ce:a3: 60:fa:4e:81:70:af:16:60:ac:58:f1:40:0f:eb:63: 01:b6:c9:d6:a2:b4:66:47:45:26:1f:94:22:d7:df: ad:bc:e4:ed:06:02:6a:36:4a:8c:4c:ab:6b:0d:e8: 91:bb:e3:9b:7d:b1:b1:51:dc:c9:4b:d1:98:67:b5: a0:9f:4b:aa:b4:11:bd:bb:73:78:7d:2b:65:48:5d: 82:aa:bb:9b:3a:84:24:0a:b4:44:0a:92:97:1c:b3: a7:8b:27:60:0a:30:94:5e:e2:c3:7b:c3:c3:74:2a: d0:f2:64:41:07:6f:40:94:2f:39:4f:0e:38:81:15: 92:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:6A:03:65:69:D4:80:71:2D:11:39:53:8A:35:2D:51:59:C4:75:5D X509v3 Authority Key Identifier: keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 90:38:c5:27:1d:a2:e3:6d:f2:de:1b:98:0a:07:71:55:cc:55: 82:8f:d4:e3:89:f7:b6:5e:2f:e1:3a:8a:17:09:48:e7:4a:f8: 03:df:92:91:68:d8:70:a8:f9:86:33:04:63:da:06:38:e7:1d: c8:40:20:e4:38:3e:4b:12:3b:6a:d9:72:eb:3a:20:79:99:9e: 33:a3:4e:5c:b4:c4:7a:9e:dd:2f:72:61:53:3a:f1:d5:72:e2: 06:9e:18:1c:6e:93:b7:db:33:ad:27:fc:bf:e6:55:33:c0:48: 65:12:76:b9:f0:7d:2a:e5:b0:48:bf:18:bf:3d:e9:a5:e0:a0: c6:bc:aa:c2:09:72:3b:65:6f:38:ae:c1:36:93:7f:ca:bb:c2: ea:c8:77:6e:c3:a7:9c:0a:b2:41:7e:9a:47:c6:64:f9:80:c0: df:91:15:c8:7c:de:06:03:1c:47:f3:55:5f:29:6a:d5:e7:a5: 22:6b:85:b5:f1:9b:0b:2a:17:f3:8f:18:5c:4f:0e:80:70:d3: 6f:b7:fe:e5:0f:70:02:cc:c9:6f:28:85:52:9d:27:98:b4:a2: c9:d4:b7:f1:71:99:06:0f:89:e1:0a:fd:0e:99:9e:c2:be:31: 05:09:43:1e:81:da:98:ce:c7:50:06:af:e8:87:a0:46:ae:96: 77:86:4e:6b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLeTWa+OzzURpVXS55BLuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNjUyMzcyZjBlNWQxNjljMjAwZjdkMWQwODBlODU3MGZm ZWRiNzEwHhcNMjUxMjA2MDEwMTQ4WhcNMjUxMjA3MDEwMTQ4WjAzMTEwLwYDVQQD EygxNjZhMDM2NTY5ZDQ4MDcxMmQxMTM5NTM4YTM1MmQ1MTU5YzQ3NTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5mMW1dyA0wbBX0FrVXXPcD0Tzr6K 3skN0JV3Yc0rEtEhBf9wFvN8AbtCU7h1wqF8YwypkPKS5Hw70A9KXPDiCvuDOCgo xye4cPCdtMfCoru+SQSlZUXKVAqu7abx26agj3sgPdRUNNfGWDa6aKhKLituwHIj 0C6uxfth2b4buKOF1+PbzqNg+k6BcK8WYKxY8UAP62MBtsnWorRmR0UmH5Qi19+t vOTtBgJqNkqMTKtrDeiRu+ObfbGxUdzJS9GYZ7Wgn0uqtBG9u3N4fStlSF2Cqrub OoQkCrRECpKXHLOniydgCjCUXuLDe8PDdCrQ8mRBB29AlC85Tw44gRWSvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBZqA2Vp1IBxLRE5U4o1LVFZxHVdMB8GA1UdIwQY MBaAFK1lI3Lw5dFpwgD30dCA6FcP/ttxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWIt NGNhZTMyNWMwZTI4LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWItNGNhZTMyNWMwZTI4 LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkDjFJx2i 423y3huYCgdxVcxVgo/U44n3tl4v4TqKFwlI50r4A9+SkWjYcKj5hjMEY9oGOOcd yEAg5Dg+SxI7atly6zogeZmeM6NOXLTEep7dL3JhUzrx1XLiBp4YHG6Tt9szrSf8 v+ZVM8BIZRJ2ufB9KuWwSL8Yvz3ppeCgxryqwglyO2VvOK7BNpN/yrvC6sh3bsOn nAqyQX6aR8Zk+YDA35EVyHzeBgMcR/NVXylq1eelImuFtfGbCyoX848YXE8OgHDT b7f+5Q9wAszJbyiFUp0nmLSiydS38XGZBg+J4Qr9Dpmewr4xBQlDHoHamM7HUAav 6IegRq6Wd4ZOaw== -----END CERTIFICATE-----Generated at Sat Dec 6 02:45:36 2025 by rpki-client