This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft File: WKNa-48AdsEVWKz_QGPy9YooF8o.mft (raw, json) Hash identifier: cEYmsYdafBm7AfCtaWxCyktu/z+G4ArAZjF5wyeImIQ= Subject key identifier: 28:72:3C:66:63:D9:55:E4:32:00:53:4A:9D:8D:CA:58:08:FD:B7:CD Authority key identifier: 58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA Certificate issuer: /CN=58a35afb8f0076c11558acff4063f2f58a2817ca Certificate serial: 019AF208FC67C1A65F377D4104A4BC6D3727 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft Manifest number: 0548 Signing time: Sat 06 Dec 2025 05:01:06 +0000 Manifest this update: Sat 06 Dec 2025 05:01:06 +0000 Manifest next update: Sun 07 Dec 2025 05:01:06 +0000 Files and hashes: 1: WKNa-48AdsEVWKz_QGPy9YooF8o.crl (hash: B3iRjZNBR5NxsUpxdQcuGe4old7XSi5ChhzJQ9koLYQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:fc:67:c1:a6:5f:37:7d:41:04:a4:bc:6d:37:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58a35afb8f0076c11558acff4063f2f58a2817ca Validity Not Before: Dec 6 05:01:06 2025 GMT Not After : Dec 7 05:01:06 2025 GMT Subject: CN=28723c6663d955e43200534a9d8dca5808fdb7cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:7c:cb:6c:5a:7b:d1:b2:46:d1:a3:32:9d:fc: 1a:cb:fd:ee:cc:ca:a8:98:59:3e:11:35:31:1b:c0: 8c:76:f3:f1:96:5a:13:e9:2e:99:12:86:c3:09:b6: a5:d2:cb:4e:d9:3f:2a:bc:6a:3d:de:fa:9b:6d:c4: 4b:19:a0:ab:07:75:39:e3:a3:fe:fb:7c:d9:a3:c5: 5c:f2:e6:3b:dd:e2:d4:1d:3a:59:9e:a4:0e:36:f0: ae:25:db:18:0b:1b:1b:2a:42:1a:5c:9b:ff:1d:5b: 42:03:c3:06:5e:ae:5c:91:ac:a4:1a:4a:86:17:8c: e8:ee:15:57:b9:ef:b2:af:67:51:cf:fb:b0:da:5c: a5:9b:21:16:16:58:c1:4c:65:86:17:d1:68:f8:60: d6:6c:51:d8:54:7d:b9:c4:ec:f3:bc:af:cd:c4:b4: 6d:e3:63:b5:b2:fa:30:90:7a:95:4a:c7:54:13:1e: fc:51:7f:4b:33:dc:10:1b:2d:ae:90:24:0e:1c:f1: 43:e9:3e:de:e0:07:39:ee:bf:b7:cd:1a:73:f0:3e: 56:c7:ac:64:d5:0c:6e:db:09:b2:d5:e0:79:92:e7: d2:9c:7b:8a:2d:44:9e:4c:0e:ca:e7:da:d8:1d:9b: c6:ce:83:cb:c9:e2:5d:f4:2c:a4:68:3e:89:49:82: c3:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:72:3C:66:63:D9:55:E4:32:00:53:4A:9D:8D:CA:58:08:FD:B7:CD X509v3 Authority Key Identifier: keyid:58:A3:5A:FB:8F:00:76:C1:15:58:AC:FF:40:63:F2:F5:8A:28:17:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WKNa-48AdsEVWKz_QGPy9YooF8o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/60/d27b3a-3cec-4139-87e8-3518d806ffc3/1/WKNa-48AdsEVWKz_QGPy9YooF8o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:d7:7a:b8:0d:12:fd:2e:bc:f2:b8:81:09:98:cd:d5:c3:ab: c3:6f:e4:2a:df:9a:4d:59:07:f4:cb:f2:59:1a:b0:24:f3:14: f5:bc:89:47:67:b5:46:67:da:9f:f2:d3:7a:26:e5:49:4f:e3: 9d:80:2e:f7:82:87:87:a6:8c:ad:b5:40:16:13:4f:8a:12:a5: e8:53:54:a7:e1:e2:cf:62:92:7d:10:db:74:af:09:b3:9f:09: 62:35:c7:37:3f:fb:96:e5:ca:4e:5a:8c:fe:15:5f:13:7c:b3: 99:c6:72:25:f3:35:0c:1e:72:88:b7:d5:0b:28:bd:12:21:ff: 15:52:8c:74:1b:fb:7e:19:82:8b:f8:cd:44:99:ee:48:56:86: 46:5e:79:46:65:07:73:3d:f7:1d:b6:7a:c2:00:2d:0e:d1:18: b6:22:ac:3f:97:7a:b6:82:7a:c0:04:29:ee:39:b1:c3:bd:86: 63:e9:f3:44:4c:8f:a5:a7:0a:59:4c:b6:12:2a:5d:91:5a:b2: d7:36:10:90:98:09:ae:3d:87:69:5a:77:57:a7:18:b7:32:20: 15:d3:76:b2:3f:d0:00:0a:b0:0d:41:d3:cb:24:ef:80:2a:ef: 01:df:52:59:e8:b2:db:e8:c8:cc:c5:66:0d:a5:54:fd:c8:17: 09:97:dd:8a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPxnwaZfN31BBKS8bTcnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU4YTM1YWZiOGYwMDc2YzExNTU4YWNmZjQwNjNmMmY1OGEy ODE3Y2EwHhcNMjUxMjA2MDUwMTA2WhcNMjUxMjA3MDUwMTA2WjAzMTEwLwYDVQQD EygyODcyM2M2NjYzZDk1NWU0MzIwMDUzNGE5ZDhkY2E1ODA4ZmRiN2NkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzHzLbFp70bJG0aMynfway/3uzMqo mFk+ETUxG8CMdvPxlloT6S6ZEobDCbal0stO2T8qvGo93vqbbcRLGaCrB3U546P+ +3zZo8Vc8uY73eLUHTpZnqQONvCuJdsYCxsbKkIaXJv/HVtCA8MGXq5ckaykGkqG F4zo7hVXue+yr2dRz/uw2lylmyEWFljBTGWGF9Fo+GDWbFHYVH25xOzzvK/NxLRt 42O1svowkHqVSsdUEx78UX9LM9wQGy2ukCQOHPFD6T7e4Ac57r+3zRpz8D5Wx6xk 1Qxu2wmy1eB5kufSnHuKLUSeTA7K59rYHZvGzoPLyeJd9CykaD6JSYLD2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFChyPGZj2VXkMgBTSp2NylgI/bfNMB8GA1UdIwQY MBaAFFijWvuPAHbBFVis/0Bj8vWKKBfKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgt MzUxOGQ4MDZmZmMzLzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MC9kMjdiM2EtM2NlYy00MTM5LTg3ZTgtMzUxOGQ4MDZmZmMz LzEvV0tOYS00OEFkc0VWV0t6X1FHUHk5WW9vRjhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAd9d6uA0S /S688riBCZjN1cOrw2/kKt+aTVkH9MvyWRqwJPMU9byJR2e1Rmfan/LTeiblSU/j nYAu94KHh6aMrbVAFhNPihKl6FNUp+Hiz2KSfRDbdK8Js58JYjXHNz/7luXKTlqM /hVfE3yzmcZyJfM1DB5yiLfVCyi9EiH/FVKMdBv7fhmCi/jNRJnuSFaGRl55RmUH cz33HbZ6wgAtDtEYtiKsP5d6toJ6wAQp7jmxw72GY+nzREyPpacKWUy2EipdkVqy 1zYQkJgJrj2HaVp3V6cYtzIgFdN2sj/QAAqwDUHTyyTvgCrvAd9SWeiy2+jIzMVm DaVU/cgXCZfdig== -----END CERTIFICATE-----Generated at Sat Dec 6 09:57:38 2025 by rpki-client