This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft File: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft (raw, json) Hash identifier: u6rr/OLccnrIb4gw8TDzEQUWWA6EIMA+0C1PaoR7byg= Subject key identifier: D6:53:AD:07:AE:F7:4E:24:08:13:D4:26:55:78:7C:95:54:F3:F4:E0 Authority key identifier: 58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED Certificate issuer: /CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed Certificate serial: 019B4FCED25E8DD1C2CA7628299860A4EB05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft Manifest number: 042B Signing time: Wed 24 Dec 2025 10:01:52 +0000 Manifest this update: Wed 24 Dec 2025 10:01:52 +0000 Manifest next update: Thu 25 Dec 2025 10:01:52 +0000 Files and hashes: 1: CqZAFiIzp-k21bzGsuj1395ZHTc.roa (hash: gXssHvpvQonpjegaCBTMeVVsQnPbWqrgEQgoKWzts44=) 2: WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl (hash: LLrpF6Zobh85P5ULxZFRm/BdO2B7SXo2cK5THi05xqY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 09:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4f:ce:d2:5e:8d:d1:c2:ca:76:28:29:98:60:a4:eb:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58b2b2f6113ba430f72e55445b5c7849dc7cfaed Validity Not Before: Dec 24 10:01:52 2025 GMT Not After : Dec 25 10:01:52 2025 GMT Subject: CN=d653ad07aef74e240813d42655787c9554f3f4e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:d7:4f:d1:bc:eb:7f:2f:1b:5e:18:c6:be:6a: ce:23:e3:26:1f:38:c7:47:bd:12:07:dd:6c:ea:f4: ec:05:09:0c:40:a9:11:1b:fa:7b:6d:a3:e8:d8:46: 27:9f:cd:32:a4:ce:25:fc:7b:cd:bc:21:8e:2c:f3: 3d:b2:ea:9c:02:7d:07:77:d9:e4:c1:86:0a:24:d3: b7:83:98:6e:0d:48:d0:d7:56:2d:83:19:58:30:f8: 1d:14:ab:17:8c:d7:4e:8b:25:d4:e1:29:13:e3:82: c6:ea:23:d8:38:8f:85:7b:ee:64:d9:bc:94:c7:19: dc:dd:4b:e1:ca:69:93:28:39:42:dd:95:ec:1f:2b: 1f:41:dd:a6:3a:36:cc:e9:75:0a:bf:a3:43:07:95: 02:81:80:95:ef:22:07:17:92:03:18:70:bf:33:d0: 7f:01:8c:6a:51:fd:a0:a0:8f:44:9c:19:f1:18:16: 45:eb:6a:68:c2:51:fd:d4:7e:9c:08:47:c8:f5:66: 2a:3a:de:94:40:fc:5e:81:56:26:c6:4d:db:9a:34: 59:1e:f2:c1:16:90:dc:74:88:88:b1:71:b9:4f:6f: 0d:53:4a:d6:cd:9e:86:0d:b5:de:ce:a8:92:61:e9: 2a:18:85:b6:40:dc:9f:9a:8b:ef:f5:a2:7a:70:aa: dc:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:53:AD:07:AE:F7:4E:24:08:13:D4:26:55:78:7C:95:54:F3:F4:E0 X509v3 Authority Key Identifier: keyid:58:B2:B2:F6:11:3B:A4:30:F7:2E:55:44:5B:5C:78:49:DC:7C:FA:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/53/7b369f-b06e-4af0-9acb-a4cccef8c4a8/1/WLKy9hE7pDD3LlVEW1x4Sdx8-u0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:00:be:60:f5:89:de:a3:30:d5:d7:61:c0:79:48:d0:a4:62: 4d:e5:ae:8e:92:b2:83:2d:09:cd:61:ed:42:53:6d:91:5a:d1: d4:92:d2:ed:ea:72:d2:15:c5:0b:e9:67:d1:79:00:bc:52:e5: f1:1e:8d:6b:82:d4:38:ee:9f:a5:30:6d:4a:e4:f0:64:5f:69: a3:bf:52:88:2f:8d:94:06:24:14:a4:9d:0a:40:be:00:a3:d7: 89:64:77:28:b2:15:6d:dd:02:06:3d:53:6e:f1:09:30:ed:da: 1d:92:33:60:c1:0d:dc:af:76:da:d1:68:b0:8d:d1:9e:16:6d: 3c:df:d3:f6:95:36:f0:39:26:18:48:4a:a7:e8:43:76:6f:57: 3d:ee:0f:c2:14:f6:8a:1c:d6:e6:ae:cf:1e:85:8f:1f:46:ce: 6a:57:3a:5f:4f:fe:f3:73:74:cf:8c:41:d7:48:6e:04:8f:8b: bd:24:ba:67:88:ba:1c:b8:44:80:30:8e:36:3f:88:9a:d9:6f: c4:ea:a3:3e:86:3c:c6:58:69:80:8b:7e:fe:26:08:e4:a4:4f: 75:bb:d6:10:bc:d6:e5:af:ad:dc:6a:42:33:c3:b9:08:ae:cc: 57:e7:6c:62:b1:dd:92:87:f8:e0:33:26:a8:2a:28:7a:5b:42: 6a:ad:25:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtPztJejdHCynYoKZhgpOsFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YjJiMmY2MTEzYmE0MzBmNzJlNTU0NDViNWM3ODQ5ZGM3 Y2ZhZWQwHhcNMjUxMjI0MTAwMTUyWhcNMjUxMjI1MTAwMTUyWjAzMTEwLwYDVQQD EyhkNjUzYWQwN2FlZjc0ZTI0MDgxM2Q0MjY1NTc4N2M5NTU0ZjNmNGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ddP0bzrfy8bXhjGvmrOI+MmHzjH R70SB91s6vTsBQkMQKkRG/p7baPo2EYnn80ypM4l/HvNvCGOLPM9suqcAn0Hd9nk wYYKJNO3g5huDUjQ11YtgxlYMPgdFKsXjNdOiyXU4SkT44LG6iPYOI+Fe+5k2byU xxnc3UvhymmTKDlC3ZXsHysfQd2mOjbM6XUKv6NDB5UCgYCV7yIHF5IDGHC/M9B/ AYxqUf2goI9EnBnxGBZF62powlH91H6cCEfI9WYqOt6UQPxegVYmxk3bmjRZHvLB FpDcdIiIsXG5T28NU0rWzZ6GDbXezqiSYekqGIW2QNyfmovv9aJ6cKrcWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZTrQeu904kCBPUJlV4fJVU8/TgMB8GA1UdIwQY MBaAFFiysvYRO6Qw9y5VRFtceEncfPrtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0xLeTloRTdwREQzTGxWRVcxeDRTZHg4LXUwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81My83YjM2OWYtYjA2ZS00YWYwLTlhY2It YTRjY2NlZjhjNGE4LzEvV0xLeTloRTdwREQzTGxWRVcxeDRTZHg4LXUwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81My83YjM2OWYtYjA2ZS00YWYwLTlhY2ItYTRjY2NlZjhjNGE4 LzEvV0xLeTloRTdwREQzTGxWRVcxeDRTZHg4LXUwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABgC+YPWJ 3qMw1ddhwHlI0KRiTeWujpKygy0JzWHtQlNtkVrR1JLS7epy0hXFC+ln0XkAvFLl 8R6Na4LUOO6fpTBtSuTwZF9po79SiC+NlAYkFKSdCkC+AKPXiWR3KLIVbd0CBj1T bvEJMO3aHZIzYMEN3K922tFosI3RnhZtPN/T9pU28DkmGEhKp+hDdm9XPe4PwhT2 ihzW5q7PHoWPH0bOalc6X0/+83N0z4xB10huBI+LvSS6Z4i6HLhEgDCONj+Imtlv xOqjPoY8xlhpgIt+/iYI5KRPdbvWELzW5a+t3GpCM8O5CK7MV+dsYrHdkof44DMm qCooeltCaq0lrw== -----END CERTIFICATE-----Generated at Wed Dec 24 18:05:49 2025 by rpki-client