This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft File: rWUjcvDl0WnCAPfR0IDoVw_-23E.mft (raw, json) Hash identifier: vE9fe7mFvqrso2TsAumqqruB0YpnKAs4fP4kmjVtVP0= Subject key identifier: D0:2B:BF:D1:90:FC:CF:FC:A8:46:0C:9F:8F:6D:C0:98:48:FD:2B:A0 Authority key identifier: AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71 Certificate issuer: /CN=ad652372f0e5d169c200f7d1d080e8570ffedb71 Certificate serial: 019B424AB030B82097792FA91ED97B95A6AA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft Manifest number: 04F6 Signing time: Sun 21 Dec 2025 19:02:29 +0000 Manifest this update: Sun 21 Dec 2025 19:02:29 +0000 Manifest next update: Mon 22 Dec 2025 19:02:29 +0000 Files and hashes: 1: nQ9AG6h0t4BBBHaY1oIQ2Z7HXiE.roa (hash: bmhEBNk6LesEwcu8xwGODwFl5oPTmJlYZFKxsnvzgRU=) 2: rWUjcvDl0WnCAPfR0IDoVw_-23E.crl (hash: jukzoTM6sPeLxAWFHywbV3At1J4I7MYAc9bJg6lALvk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:42:4a:b0:30:b8:20:97:79:2f:a9:1e:d9:7b:95:a6:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ad652372f0e5d169c200f7d1d080e8570ffedb71 Validity Not Before: Dec 21 19:02:29 2025 GMT Not After : Dec 22 19:02:29 2025 GMT Subject: CN=d02bbfd190fccffca8460c9f8f6dc09848fd2ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:6a:97:1f:f4:17:db:10:4e:53:8b:f6:dc:0a: 44:83:d0:fe:8d:4b:7d:ec:f9:94:d7:79:0a:ef:20: e1:ab:74:1d:c4:8a:65:f7:b4:e9:e1:5e:22:6b:82: 3a:83:0a:f9:20:5b:a3:1d:a5:98:4e:dc:1c:10:5d: e7:bc:e5:c9:1d:b5:eb:b2:f6:b9:cd:b0:8e:0c:e1: a1:53:a8:b3:09:f7:99:fd:3d:4b:11:d2:57:b0:cb: bf:c1:d7:5e:a5:b9:49:5c:16:db:17:27:1c:47:89: dd:f5:ac:07:49:d6:bb:03:b4:8d:09:a7:18:55:8c: e2:1a:73:7d:d4:ec:a5:df:9a:f5:96:42:ab:7a:21: 2e:f4:0d:16:39:63:f0:96:86:1d:b1:66:86:40:08: 91:e3:7d:30:0c:35:54:c1:a4:27:2c:90:b3:a5:03: f1:58:15:05:02:56:94:ff:6a:63:c9:e2:17:54:75: 6f:f0:52:d8:c4:dd:d4:ed:92:7d:21:53:87:31:b4: ac:d4:86:83:94:8e:4c:18:8b:4f:c0:52:3b:45:33: 4d:9f:52:a6:0f:67:a2:c2:33:53:5c:1a:06:58:dd: 7b:31:0e:57:5b:0e:75:45:71:02:d4:4b:08:87:17: 97:a7:9b:63:0a:fa:61:3f:4c:1e:5c:f6:cf:ed:3f: 75:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:2B:BF:D1:90:FC:CF:FC:A8:46:0C:9F:8F:6D:C0:98:48:FD:2B:A0 X509v3 Authority Key Identifier: keyid:AD:65:23:72:F0:E5:D1:69:C2:00:F7:D1:D0:80:E8:57:0F:FE:DB:71 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rWUjcvDl0WnCAPfR0IDoVw_-23E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/bd98c9-fce3-4bba-b49b-4cae325c0e28/1/rWUjcvDl0WnCAPfR0IDoVw_-23E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:7f:fb:2c:59:b8:9f:7b:03:91:37:0f:df:f2:ab:04:66:c9: d8:62:b0:4d:c5:9b:d7:8c:1d:76:ee:29:10:e7:d3:13:61:2e: 1c:c4:55:a4:cc:de:40:d5:62:aa:b1:3a:ca:bd:7b:b7:b4:c3: 51:73:61:99:0e:a1:97:b5:68:82:15:1a:30:d7:12:96:f6:67: 73:6f:2d:5b:1d:b5:74:7e:74:0f:84:85:28:cf:35:07:e7:4c: 51:05:99:34:52:8c:d0:c6:89:90:30:63:fb:2d:29:05:45:9b: a3:9f:8e:ba:2c:99:0a:8e:dd:ae:54:2e:b2:1c:3b:1e:c3:8d: e9:68:b5:ae:8d:29:61:76:04:56:72:ab:8a:ad:8a:06:1e:0e: ba:b8:d3:8b:75:8c:59:75:77:98:df:79:48:78:33:9b:28:06: 35:4f:dc:87:6c:08:bb:2b:5c:84:8c:76:ec:c0:8f:49:08:12: 94:9e:91:cc:92:95:18:3e:9a:d0:d7:6e:f0:14:0a:f8:6e:2a: 49:c8:d4:f8:91:81:3b:14:39:c5:86:ac:a4:6c:97:0c:43:16: c6:ad:34:39:59:ed:8f:13:5f:a0:00:1d:a2:3c:ca:20:6e:9e: da:0d:0d:2e:0e:c9:07:86:9b:cb:eb:e6:74:9c:d1:0f:4a:f8: 11:14:b9:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtCSrAwuCCXeS+pHtl7laaqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFkNjUyMzcyZjBlNWQxNjljMjAwZjdkMWQwODBlODU3MGZm ZWRiNzEwHhcNMjUxMjIxMTkwMjI5WhcNMjUxMjIyMTkwMjI5WjAzMTEwLwYDVQQD EyhkMDJiYmZkMTkwZmNjZmZjYTg0NjBjOWY4ZjZkYzA5ODQ4ZmQyYmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGqXH/QX2xBOU4v23ApEg9D+jUt9 7PmU13kK7yDhq3QdxIpl97Tp4V4ia4I6gwr5IFujHaWYTtwcEF3nvOXJHbXrsva5 zbCODOGhU6izCfeZ/T1LEdJXsMu/wddepblJXBbbFyccR4nd9awHSda7A7SNCacY VYziGnN91Oyl35r1lkKreiEu9A0WOWPwloYdsWaGQAiR430wDDVUwaQnLJCzpQPx WBUFAlaU/2pjyeIXVHVv8FLYxN3U7ZJ9IVOHMbSs1IaDlI5MGItPwFI7RTNNn1Km D2eiwjNTXBoGWN17MQ5XWw51RXEC1EsIhxeXp5tjCvphP0weXPbP7T910QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNArv9GQ/M/8qEYMn49twJhI/SugMB8GA1UdIwQY MBaAFK1lI3Lw5dFpwgD30dCA6FcP/ttxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWIt NGNhZTMyNWMwZTI4LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iZDk4YzktZmNlMy00YmJhLWI0OWItNGNhZTMyNWMwZTI4 LzEvcldVamN2RGwwV25DQVBmUjBJRG9Wd18tMjNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATn/7LFm4 n3sDkTcP3/KrBGbJ2GKwTcWb14wddu4pEOfTE2EuHMRVpMzeQNViqrE6yr17t7TD UXNhmQ6hl7VoghUaMNcSlvZnc28tWx21dH50D4SFKM81B+dMUQWZNFKM0MaJkDBj +y0pBUWbo5+OuiyZCo7drlQushw7HsON6Wi1ro0pYXYEVnKriq2KBh4OurjTi3WM WXV3mN95SHgzmygGNU/ch2wIuytchIx27MCPSQgSlJ6RzJKVGD6a0Ndu8BQK+G4q ScjU+JGBOxQ5xYaspGyXDEMWxq00OVntjxNfoAAdojzKIG6e2g0NLg7JB4aby+vm dJzRD0r4ERS5Fg== -----END CERTIFICATE-----Generated at Sun Dec 21 23:13:14 2025 by rpki-client