This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft File: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft (raw, json) Hash identifier: 82zb1rJ6Nu9osG1eOvVZrfwDpCfE6rgJZBZn/tmCbZ0= Subject key identifier: D5:F6:4F:BE:D7:41:DC:F4:DE:25:93:4A:77:28:ED:F9:84:0A:FF:81 Authority key identifier: 58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED Certificate issuer: /CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed Certificate serial: 019B44394B25894E57367A811AFD4FC71801 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft Manifest number: 0425 Signing time: Mon 22 Dec 2025 04:02:43 +0000 Manifest this update: Mon 22 Dec 2025 04:02:43 +0000 Manifest next update: Tue 23 Dec 2025 04:02:43 +0000 Files and hashes: 1: CqZAFiIzp-k21bzGsuj1395ZHTc.roa (hash: gXssHvpvQonpjegaCBTMeVVsQnPbWqrgEQgoKWzts44=) 2: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl (hash: /vlAo+Q44UHrD0hyRYD3tUppYWT901TpINPFjJbbH7I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:39:4b:25:89:4e:57:36:7a:81:1a:fd:4f:c7:18:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed Validity Not Before: Dec 22 04:02:43 2025 GMT Not After : Dec 23 04:02:43 2025 GMT Subject: CN=d5f64fbed741dcf4de25934a7728edf9840aff81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:18:08:06:62:08:e9:6f:cb:89:35:5c:48:37: a6:87:7d:6e:db:3a:2a:1f:b3:7d:29:17:a2:0e:51: 6f:56:8c:1e:37:a3:7d:9e:b1:46:88:73:0d:51:b4: aa:0d:d6:a2:4a:2d:37:d4:e9:83:79:3b:89:72:9b: fc:55:6e:8c:27:5e:fb:92:77:60:21:88:a1:2a:44: cd:d0:57:8a:47:e6:44:b0:66:4e:1a:b3:91:96:f2: de:b8:07:98:f3:56:4c:ac:fb:6c:06:ba:f6:ea:bb: b6:3f:8d:2f:c9:d7:33:47:32:c9:5e:b0:de:4c:d0: 5a:44:a5:b0:af:ef:9e:fd:5c:13:d3:71:be:ba:3c: 66:28:48:74:83:7f:95:c9:2d:d2:65:83:09:bc:86: 13:56:af:d5:31:f9:f2:9f:ca:44:15:02:bd:d6:60: c4:a0:9f:ae:08:fe:49:ee:06:71:4e:45:82:a8:a5: 01:5b:64:3e:d5:ae:c5:63:38:77:4b:e4:db:d6:5f: f9:5f:00:bd:32:79:2a:58:c7:09:30:9c:70:79:ed: 94:3b:14:33:25:fd:fa:89:a2:51:50:fd:b9:07:e4: eb:4c:0c:63:2b:47:8e:62:e4:12:0b:ff:95:d6:98: 43:01:77:7f:77:72:d6:c6:49:41:26:4a:1e:bb:c6: 89:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:F6:4F:BE:D7:41:DC:F4:DE:25:93:4A:77:28:ED:F9:84:0A:FF:81 X509v3 Authority Key Identifier: keyid:58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:85:d4:69:8d:ed:37:17:a2:ae:ff:94:78:b4:c0:4b:3e:5f: 72:2e:17:d5:dd:39:57:f1:6e:ce:f9:63:67:10:93:53:a9:47: 13:1b:cd:93:32:bc:74:5a:a7:ad:e2:0f:ef:c6:a3:60:4e:91: b1:d7:ec:16:ec:21:04:9d:91:29:3d:39:75:00:f7:9f:bc:90: f7:a2:6a:73:3b:6e:0d:fb:a2:0c:86:28:cb:7b:cb:5b:c7:98: 58:89:b5:1c:2c:e2:52:15:54:75:df:61:c7:d9:c3:7d:27:ad: 11:64:c3:8f:33:af:f5:80:91:50:ae:97:41:99:2d:89:d8:28: eb:a6:11:84:b3:a6:ec:9b:e8:83:a4:44:e8:91:21:1e:62:82: 94:90:17:4d:80:21:01:b5:9e:55:1d:1f:4c:4c:50:d1:f2:87: b6:a3:07:d5:73:91:a3:e7:d8:d7:d8:aa:46:98:96:6d:ef:b8: 10:8e:b8:b0:e0:9d:7f:de:3c:ff:ce:86:74:37:11:60:4e:20: a9:01:1f:c8:06:9e:b4:22:5b:d4:10:79:e1:a9:c4:48:bb:c6: 57:9b:98:76:b2:f6:1e:c2:a8:3f:3e:57:24:0d:79:35:67:86: a2:eb:cf:bd:9c:e9:fa:c1:5f:79:35:d7:3a:d9:c1:d2:49:6b: 10:93:52:b3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtEOUsliU5XNnqBGv1PxxgBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YjJiMmY2MTEzYmE0MzBmNzJlNTU0NDViNWM3ODQ5ZGM3 Y2ZhZWQwHhcNMjUxMjIyMDQwMjQzWhcNMjUxMjIzMDQwMjQzWjAzMTEwLwYDVQQD EyhkNWY2NGZiZWQ3NDFkY2Y0ZGUyNTkzNGE3NzI4ZWRmOTg0MGFmZjgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqxgIBmII6W/LiTVcSDemh31u2zoq H7N9KReiDlFvVoweN6N9nrFGiHMNUbSqDdaiSi031OmDeTuJcpv8VW6MJ177kndg IYihKkTN0FeKR+ZEsGZOGrORlvLeuAeY81ZMrPtsBrr26ru2P40vydczRzLJXrDe TNBaRKWwr++e/VwT03G+ujxmKEh0g3+VyS3SZYMJvIYTVq/VMfnyn8pEFQK91mDE oJ+uCP5J7gZxTkWCqKUBW2Q+1a7FYzh3S+Tb1l/5XwC9MnkqWMcJMJxwee2UOxQz Jf36iaJRUP25B+TrTAxjK0eOYuQSC/+V1phDAXd/d3LWxklBJkoeu8aJfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNX2T77XQdz03iWTSnco7fmECv+BMB8GA1UdIwQY MBaAFFiysvYRO6Qw9y5VRFtceEncfPrtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0xLeTloRTdwREQzTGxWRVcxeDRTZHg4LXUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YjM2OWYtYjA2ZS00YWYwLTlhY2It YTRjY2NlZjhjNGE4LzEvV0xLeTloRTdwREQzTGxWRVcxeDRTZHg4LXUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My83YjM2OWYtYjA2ZS00YWYwLTlhY2ItYTRjY2NlZjhjNGE4 LzEvV0xLeTloRTdwREQzTGxWRVcxeDRTZHg4LXUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp4XUaY3t Nxeirv+UeLTASz5fci4X1d05V/FuzvljZxCTU6lHExvNkzK8dFqnreIP78ajYE6R sdfsFuwhBJ2RKT05dQD3n7yQ96JqcztuDfuiDIYoy3vLW8eYWIm1HCziUhVUdd9h x9nDfSetEWTDjzOv9YCRUK6XQZktidgo66YRhLOm7Jvog6RE6JEhHmKClJAXTYAh AbWeVR0fTExQ0fKHtqMH1XORo+fY19iqRpiWbe+4EI64sOCdf948/86GdDcRYE4g qQEfyAaetCJb1BB54anESLvGV5uYdrL2HsKoPz5XJA15NWeGouvPvZzp+sFfeTXX OtnB0klrEJNSsw== -----END CERTIFICATE-----Generated at Mon Dec 22 07:04:27 2025 by rpki-client