This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft File: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft (raw, json) Hash identifier: IvDseqz/OteD/mIP/eCnsKN32h0vPtDJUO5X2PvlQ/k= Subject key identifier: B1:5A:81:52:8A:90:7D:8A:86:0D:CB:88:CF:DD:D8:A0:89:E3:D2:B7 Authority key identifier: C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84 Certificate issuer: /CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84 Certificate serial: 019B3D9063E004B16751B45D5E8B4CA3EED3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft Manifest number: 0747 Signing time: Sat 20 Dec 2025 21:00:31 +0000 Manifest this update: Sat 20 Dec 2025 21:00:31 +0000 Manifest next update: Sun 21 Dec 2025 21:00:31 +0000 Files and hashes: 1: w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl (hash: c9u2d+G3Ph7//+rPkxawgUsydtdESsXUhjD/MVGDLvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:63:e0:04:b1:67:51:b4:5d:5e:8b:4c:a3:ee:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c3bc2d2f6817b94c26aefdd89ff943a88f3f1c84 Validity Not Before: Dec 20 21:00:31 2025 GMT Not After : Dec 21 21:00:31 2025 GMT Subject: CN=b15a81528a907d8a860dcb88cfddd8a089e3d2b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:09:3d:19:3e:d2:9a:04:a0:40:ff:c9:06:af: e8:2d:ad:f0:83:05:d1:66:37:28:39:10:de:98:eb: 2c:66:55:83:bd:39:38:29:e1:a9:8c:85:fa:fc:6e: 9e:36:56:94:15:a7:50:fe:e3:86:35:d4:9a:7e:91: 04:c2:cf:d1:a3:80:95:12:ec:ae:82:b2:be:2e:f8: 13:8d:9c:6e:a4:60:68:64:8f:db:fb:ed:4d:60:6e: 33:72:1c:26:13:9e:1c:18:4b:01:a5:52:18:b3:8e: 24:99:04:9a:0e:a1:46:10:31:35:f2:91:ca:56:7e: cc:b0:75:ac:11:22:6a:f5:b8:a3:b6:71:5e:ef:d7: a3:47:e6:7e:9e:ee:90:b9:20:92:62:e5:96:b9:ad: 57:57:c1:b4:d6:4f:18:f5:98:3f:e5:aa:3d:db:5c: 73:b0:75:d0:20:bd:7c:fe:c0:0e:50:67:70:d1:d1: 9f:d0:a7:d1:5e:62:97:d5:47:95:41:6e:9d:7f:20: 1c:a5:fb:45:29:3b:21:17:a5:1d:3b:87:90:a4:7a: f6:2a:ec:33:e3:52:54:fc:0a:b2:5b:de:c3:bc:1f: 28:6d:e7:4e:0a:08:4b:e0:28:9d:e6:9c:ea:72:a1: 80:04:bd:05:1c:d5:20:54:9f:70:60:f9:29:bd:76: 0e:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:5A:81:52:8A:90:7D:8A:86:0D:CB:88:CF:DD:D8:A0:89:E3:D2:B7 X509v3 Authority Key Identifier: keyid:C3:BC:2D:2F:68:17:B9:4C:26:AE:FD:D8:9F:F9:43:A8:8F:3F:1C:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/e54bf9-6b55-4c3c-aa50-153eefe70cf6/1/w7wtL2gXuUwmrv3Yn_lDqI8_HIQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:8e:2a:bb:65:f1:ce:46:2c:8f:8d:7b:59:97:08:53:04:02: f4:94:75:19:9e:ca:d4:1c:a4:64:f7:53:86:34:fd:58:18:38: b1:dc:f8:1f:e3:34:45:40:56:37:8b:fe:24:93:32:d7:90:be: 0c:6e:61:98:a1:8f:66:01:33:fb:d2:e4:c5:19:92:6b:e4:ad: 94:58:27:08:e8:a2:8c:46:c3:4d:51:9b:f5:bf:4b:98:f4:9c: ef:70:55:56:50:09:24:4a:ad:da:81:cb:26:6b:64:72:8f:e9: 66:63:6f:6f:d1:4a:81:90:45:4c:bd:83:e2:e6:44:71:02:22: 98:7a:27:44:a4:fe:e1:db:f8:8d:9a:95:38:37:8a:47:44:41: 0f:e1:91:e9:0b:de:d0:9e:16:51:40:d7:89:ef:4c:e3:b2:f6: 01:5c:3c:52:ac:3e:19:cc:98:ce:55:5d:13:a0:42:ae:ed:6c: b9:e7:6b:9f:ed:8b:6f:55:10:f6:14:19:72:8c:48:f8:b7:bf: 08:87:a2:96:b3:2d:a6:7b:0a:a7:60:d1:78:0c:6f:27:c9:2c: 94:84:31:9e:82:36:9b:48:b8:9c:e8:b4:72:02:19:e2:a4:f3: 51:fb:0a:57:31:37:e3:9a:33:7f:0e:d2:5c:ba:8f:00:e6:dc: 35:08:4d:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kGPgBLFnUbRdXotMo+7TMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzYmMyZDJmNjgxN2I5NGMyNmFlZmRkODlmZjk0M2E4OGYz ZjFjODQwHhcNMjUxMjIwMjEwMDMxWhcNMjUxMjIxMjEwMDMxWjAzMTEwLwYDVQQD EyhiMTVhODE1MjhhOTA3ZDhhODYwZGNiODhjZmRkZDhhMDg5ZTNkMmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgk9GT7SmgSgQP/JBq/oLa3wgwXR ZjcoORDemOssZlWDvTk4KeGpjIX6/G6eNlaUFadQ/uOGNdSafpEEws/Ro4CVEuyu grK+LvgTjZxupGBoZI/b++1NYG4zchwmE54cGEsBpVIYs44kmQSaDqFGEDE18pHK Vn7MsHWsESJq9bijtnFe79ejR+Z+nu6QuSCSYuWWua1XV8G01k8Y9Zg/5ao921xz sHXQIL18/sAOUGdw0dGf0KfRXmKX1UeVQW6dfyAcpftFKTshF6UdO4eQpHr2Kuwz 41JU/AqyW97DvB8obedOCghL4Cid5pzqcqGABL0FHNUgVJ9wYPkpvXYOTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLFagVKKkH2Khg3LiM/d2KCJ49K3MB8GA1UdIwQY MBaAFMO8LS9oF7lMJq792J/5Q6iPPxyEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzd3dEwyZ1h1VXdtcnYzWW5fbERxSThfSElRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMS9lNTRiZjktNmI1NS00YzNjLWFhNTAt MTUzZWVmZTcwY2Y2LzEvdzd3dEwyZ1h1VXdtcnYzWW5fbERxSThfSElRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMS9lNTRiZjktNmI1NS00YzNjLWFhNTAtMTUzZWVmZTcwY2Y2 LzEvdzd3dEwyZ1h1VXdtcnYzWW5fbERxSThfSElRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiI4qu2Xx zkYsj417WZcIUwQC9JR1GZ7K1BykZPdThjT9WBg4sdz4H+M0RUBWN4v+JJMy15C+ DG5hmKGPZgEz+9LkxRmSa+StlFgnCOiijEbDTVGb9b9LmPSc73BVVlAJJEqt2oHL Jmtkco/pZmNvb9FKgZBFTL2D4uZEcQIimHonRKT+4dv4jZqVODeKR0RBD+GR6Qve 0J4WUUDXie9M47L2AVw8Uqw+GcyYzlVdE6BCru1suedrn+2Lb1UQ9hQZcoxI+Le/ CIeilrMtpnsKp2DReAxvJ8kslIQxnoI2m0i4nOi0cgIZ4qTzUfsKVzE345ozfw7S XLqPAObcNQhNng== -----END CERTIFICATE-----Generated at Sun Dec 21 04:04:29 2025 by rpki-client