This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft File: 0WLUzQwan_4krVFT0Zzpwx3LTH0.mft (raw, json) Hash identifier: Z3ONTdeb4iztF/09/qrw9W8cf1+4X3IUTP2SqyG6Iw0= Subject key identifier: 75:98:7C:0F:76:84:E1:9A:C9:AF:00:05:A6:92:AE:4E:FC:4A:1D:E3 Authority key identifier: D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D Certificate issuer: /CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d Certificate serial: 019AF2099F2E52DE1CAA003A285EF34799B3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft Manifest number: 175C Signing time: Sat 06 Dec 2025 05:01:47 +0000 Manifest this update: Sat 06 Dec 2025 05:01:47 +0000 Manifest next update: Sun 07 Dec 2025 05:01:47 +0000 Files and hashes: 1: 0WLUzQwan_4krVFT0Zzpwx3LTH0.crl (hash: I4cq15y2GEbGQ7dbU65MoPL3FdCu7tD1n9FXjZooXRU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:9f:2e:52:de:1c:aa:00:3a:28:5e:f3:47:99:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d162d4cd0c1a9ffe24ad5153d19ce9c31dcb4c7d Validity Not Before: Dec 6 05:01:47 2025 GMT Not After : Dec 7 05:01:47 2025 GMT Subject: CN=75987c0f7684e19ac9af0005a692ae4efc4a1de3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:70:15:e6:c7:06:b9:33:ae:5e:76:28:d1:d2: b0:52:8d:63:eb:f8:a8:6e:b2:1f:85:f2:44:5f:96: d5:90:9f:6c:23:eb:38:e5:7d:e7:63:2f:2a:5a:9f: c3:c1:f7:a4:c2:b7:5d:fa:c3:9e:73:80:44:99:8b: c5:b4:97:5e:9e:2a:57:76:de:90:e2:68:cb:36:1a: 40:1b:c5:e3:03:86:30:9d:e1:84:82:37:e7:8d:d9: 79:13:6c:84:9b:96:ae:56:3c:bf:71:e3:9d:f4:65: 76:ba:b1:78:64:43:6f:9b:92:d5:b9:75:e2:54:00: a8:d4:10:7f:14:b3:ff:4f:fc:a8:88:2f:d5:70:ee: f9:5c:4a:b7:95:90:ab:ba:ba:10:44:52:b1:fa:54: 17:e9:8a:45:6b:bf:65:6f:64:8a:b5:17:45:77:92: 2e:8d:19:75:29:7b:a4:5d:1e:8a:d5:e2:c8:bc:04: 52:b9:be:55:c9:ba:c8:42:80:fa:9e:87:5c:63:33: ea:5c:79:2c:61:bc:28:b2:fb:a7:ec:39:ea:9d:20: bc:23:db:99:de:e3:ff:51:0f:4d:4a:9c:76:26:1f: d4:1c:49:8f:c1:65:b7:8f:a0:dc:8a:b8:4b:f5:39: 9a:b2:4d:dd:a8:22:13:46:7e:94:2b:ab:59:e2:ec: ab:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:98:7C:0F:76:84:E1:9A:C9:AF:00:05:A6:92:AE:4E:FC:4A:1D:E3 X509v3 Authority Key Identifier: keyid:D1:62:D4:CD:0C:1A:9F:FE:24:AD:51:53:D1:9C:E9:C3:1D:CB:4C:7D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0WLUzQwan_4krVFT0Zzpwx3LTH0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/5f84a1-e8dc-4115-a645-e81720a3978d/1/0WLUzQwan_4krVFT0Zzpwx3LTH0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:b5:04:7a:ca:50:d6:e6:95:fe:f3:75:4a:18:c2:e3:fc:17: cb:cb:15:cb:24:f4:5e:85:90:a1:32:26:7b:63:9f:6c:a4:01: e6:fe:ba:19:c5:47:73:13:79:97:63:62:4f:f3:3c:35:2e:21: 83:1d:dc:e8:13:a8:f8:5c:da:df:1c:26:71:d8:48:b7:34:ca: 94:b8:cb:ca:7d:37:93:bd:14:24:3a:83:16:2a:8e:3a:25:27: 4f:ba:38:bf:bd:4c:97:68:16:7c:41:df:b9:47:fa:10:9c:54: 34:82:3c:2b:67:69:b1:37:b2:3b:14:0f:56:87:df:d6:1e:45: 1d:44:b8:d0:3f:36:c4:40:29:6b:e8:8a:45:fa:c4:00:47:3b: 32:33:2e:47:0e:74:fc:7d:a5:e9:9f:4f:0d:e3:4a:a1:8c:91: 48:ec:31:21:0d:ae:f0:f6:69:9d:09:0f:3f:17:ae:2b:f4:b6: c3:5d:d1:82:24:89:6a:bf:1c:33:6e:c5:7c:be:75:c3:e6:e6: 71:07:62:b1:8f:80:02:3f:18:fd:36:31:1e:f0:8c:03:c4:cc: 5b:93:93:c4:29:14:b3:a6:50:09:70:7e:5a:52:67:f7:54:c3: c3:7d:47:9a:26:4b:0e:24:34:fc:a3:01:67:68:a1:63:7a:b0: 9c:67:99:46 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCZ8uUt4cqgA6KF7zR5mzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxNjJkNGNkMGMxYTlmZmUyNGFkNTE1M2QxOWNlOWMzMWRj YjRjN2QwHhcNMjUxMjA2MDUwMTQ3WhcNMjUxMjA3MDUwMTQ3WjAzMTEwLwYDVQQD Eyg3NTk4N2MwZjc2ODRlMTlhYzlhZjAwMDVhNjkyYWU0ZWZjNGExZGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxXAV5scGuTOuXnYo0dKwUo1j6/io brIfhfJEX5bVkJ9sI+s45X3nYy8qWp/Dwfekwrdd+sOec4BEmYvFtJdenipXdt6Q 4mjLNhpAG8XjA4YwneGEgjfnjdl5E2yEm5auVjy/ceOd9GV2urF4ZENvm5LVuXXi VACo1BB/FLP/T/yoiC/VcO75XEq3lZCruroQRFKx+lQX6YpFa79lb2SKtRdFd5Iu jRl1KXukXR6K1eLIvARSub5VybrIQoD6nodcYzPqXHksYbwosvun7DnqnSC8I9uZ 3uP/UQ9NSpx2Jh/UHEmPwWW3j6DcirhL9Tmask3dqCITRn6UK6tZ4uyr3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHWYfA92hOGaya8ABaaSrk78Sh3jMB8GA1UdIwQY MBaAFNFi1M0MGp/+JK1RU9Gc6cMdy0x9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUt ZTgxNzIwYTM5NzhkLzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi81Zjg0YTEtZThkYy00MTE1LWE2NDUtZTgxNzIwYTM5Nzhk LzEvMFdMVXpRd2FuXzRrclZGVDBaenB3eDNMVEgwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAG7UEespQ 1uaV/vN1ShjC4/wXy8sVyyT0XoWQoTIme2OfbKQB5v66GcVHcxN5l2NiT/M8NS4h gx3c6BOo+Fza3xwmcdhItzTKlLjLyn03k70UJDqDFiqOOiUnT7o4v71Ml2gWfEHf uUf6EJxUNII8K2dpsTeyOxQPVoff1h5FHUS40D82xEApa+iKRfrEAEc7MjMuRw50 /H2l6Z9PDeNKoYyRSOwxIQ2u8PZpnQkPPxeuK/S2w13RgiSJar8cM27FfL51w+bm cQdisY+AAj8Y/TYxHvCMA8TMW5OTxCkUs6ZQCXB+WlJn91TDw31HmiZLDiQ0/KMB Z2ihY3qwnGeZRg== -----END CERTIFICATE-----Generated at Sat Dec 6 09:22:04 2025 by rpki-client