This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft File: WqKpJUebz8vBloipUqJDAfTnaDk.mft (raw, json) Hash identifier: ZDzJVOwJPqpenGQUlsG4xmfDEYWPDI9kKGUOt7KEo1k= Subject key identifier: E3:A1:E2:6B:07:82:A2:08:49:BA:BE:AA:40:96:C5:4A:9D:B2:5F:AF Authority key identifier: 5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39 Certificate issuer: /CN=5aa2a925479bcfcbc19688a952a24301f4e76839 Certificate serial: 019AF464E0134275A6131BB43C1C63496EEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft Manifest number: 08BA Signing time: Sat 06 Dec 2025 16:00:42 +0000 Manifest this update: Sat 06 Dec 2025 16:00:42 +0000 Manifest next update: Sun 07 Dec 2025 16:00:42 +0000 Files and hashes: 1: WqKpJUebz8vBloipUqJDAfTnaDk.crl (hash: yLjaNmi/+ehuSA0CxVxqE2gb1tkjDSpa5DLBZUK6/C4=) 2: jYQY-U25B3NSBy3Axt-DvgoJjdQ.roa (hash: zP4WnXpWxsW1++MaE9e5/n5ALBQb36qRJjvWEAaaUiU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:64:e0:13:42:75:a6:13:1b:b4:3c:1c:63:49:6e:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5aa2a925479bcfcbc19688a952a24301f4e76839 Validity Not Before: Dec 6 16:00:42 2025 GMT Not After : Dec 7 16:00:42 2025 GMT Subject: CN=e3a1e26b0782a20849babeaa4096c54a9db25faf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:79:43:c4:84:8c:38:75:df:c8:39:9d:e8:88: 73:f8:3c:68:03:7b:78:50:8c:03:d6:74:96:8b:4b: 36:f3:27:cc:77:52:6d:73:75:d7:d8:af:c3:9c:1b: 50:c5:6e:63:31:e5:8c:08:f9:27:16:6d:30:e5:d7: 44:fd:54:db:aa:d0:e0:ee:cc:b2:c1:21:89:90:52: 9f:76:a8:ba:b6:f8:a2:17:81:ac:46:c6:6f:c2:39: a1:c9:bc:ca:50:0c:37:4c:8e:b0:15:5f:ab:e2:da: f1:a1:ee:32:e8:e5:d7:4d:c2:55:fb:24:23:6c:9f: 5e:92:fc:dc:1a:73:0f:cf:43:bc:72:9a:68:91:c8: 34:10:20:fe:65:33:88:f3:ee:a6:56:03:23:bb:25: ab:2e:ab:0b:a1:07:e8:94:f5:8e:16:c9:9e:3d:59: a3:f1:ee:65:c2:8a:30:c5:9e:d8:ab:5a:59:47:ec: e6:a2:5c:13:91:fe:ef:18:ab:da:6c:a0:bf:5e:0b: d0:7b:3f:24:74:72:c2:4b:6d:12:34:4f:64:d4:2c: 42:62:7d:c2:66:06:81:2c:7c:22:4a:b2:b0:09:25: fb:3f:82:82:f2:53:28:a4:c8:fa:95:80:10:a6:c6: 43:bc:9d:75:61:18:f1:c5:e6:1d:f2:03:9b:4d:5f: 96:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:A1:E2:6B:07:82:A2:08:49:BA:BE:AA:40:96:C5:4A:9D:B2:5F:AF X509v3 Authority Key Identifier: keyid:5A:A2:A9:25:47:9B:CF:CB:C1:96:88:A9:52:A2:43:01:F4:E7:68:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WqKpJUebz8vBloipUqJDAfTnaDk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/0a030f-abb5-4e37-96a3-b4f120122922/1/WqKpJUebz8vBloipUqJDAfTnaDk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:fb:e7:06:e2:a1:7c:96:66:ef:e1:a1:20:8a:b6:4e:2e:db: 8d:72:b7:f7:64:e8:8c:7f:fb:9b:85:41:30:56:8d:43:ac:bf: b6:a3:7c:6d:95:5a:4a:16:f3:c5:9f:bc:16:35:67:11:73:79: 8c:0d:e2:d8:80:e7:f3:2a:9e:9c:ce:94:e5:6f:86:99:86:80: 2b:6d:66:fe:1d:cd:36:93:34:9a:d3:e9:02:f7:69:68:c3:60: e3:6f:13:4c:89:01:32:68:11:0b:05:1a:1d:ea:1f:84:8d:29: 2c:05:50:f4:83:d3:46:d5:c7:03:32:61:dc:7b:dd:37:33:22: 5f:d4:d4:bb:53:f0:be:e6:e6:88:d2:81:65:43:b6:26:cb:88: 75:6d:10:21:db:2d:63:12:33:40:60:cd:f9:e2:97:ad:30:50: f6:ae:ed:ea:1c:e2:83:2e:0f:b2:56:8c:97:0b:4f:dd:08:56: 52:13:4b:0c:72:83:73:10:a4:32:43:67:6f:0c:d4:ff:43:d7: 97:d5:0b:8d:b8:21:7f:b4:dd:c7:bb:eb:18:0d:81:57:fd:2f: d4:f3:29:28:d0:cf:34:dc:33:1c:b1:fd:27:d2:ec:1e:c7:46: 8b:a6:90:8e:0e:1b:05:6d:6f:b2:48:b7:35:55:b8:b7:c8:7c: 19:6b:44:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0ZOATQnWmExu0PBxjSW7uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVhYTJhOTI1NDc5YmNmY2JjMTk2ODhhOTUyYTI0MzAxZjRl NzY4MzkwHhcNMjUxMjA2MTYwMDQyWhcNMjUxMjA3MTYwMDQyWjAzMTEwLwYDVQQD EyhlM2ExZTI2YjA3ODJhMjA4NDliYWJlYWE0MDk2YzU0YTlkYjI1ZmFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsnlDxISMOHXfyDmd6Ihz+DxoA3t4 UIwD1nSWi0s28yfMd1Jtc3XX2K/DnBtQxW5jMeWMCPknFm0w5ddE/VTbqtDg7syy wSGJkFKfdqi6tviiF4GsRsZvwjmhybzKUAw3TI6wFV+r4trxoe4y6OXXTcJV+yQj bJ9ekvzcGnMPz0O8cppokcg0ECD+ZTOI8+6mVgMjuyWrLqsLoQfolPWOFsmePVmj 8e5lwoowxZ7Yq1pZR+zmolwTkf7vGKvabKC/XgvQez8kdHLCS20SNE9k1CxCYn3C ZgaBLHwiSrKwCSX7P4KC8lMopMj6lYAQpsZDvJ11YRjxxeYd8gObTV+WuQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOOh4msHgqIISbq+qkCWxUqdsl+vMB8GA1UdIwQY MBaAFFqiqSVHm8/LwZaIqVKiQwH052g5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8wYTAzMGYtYWJiNS00ZTM3LTk2YTMt YjRmMTIwMTIyOTIyLzEvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8wYTAzMGYtYWJiNS00ZTM3LTk2YTMtYjRmMTIwMTIyOTIy LzEvV3FLcEpVZWJ6OHZCbG9pcFVxSkRBZlRuYURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApPvnBuKh fJZm7+GhIIq2Ti7bjXK392TojH/7m4VBMFaNQ6y/tqN8bZVaShbzxZ+8FjVnEXN5 jA3i2IDn8yqenM6U5W+GmYaAK21m/h3NNpM0mtPpAvdpaMNg428TTIkBMmgRCwUa HeofhI0pLAVQ9IPTRtXHAzJh3HvdNzMiX9TUu1PwvubmiNKBZUO2JsuIdW0QIdst YxIzQGDN+eKXrTBQ9q7t6hzigy4PslaMlwtP3QhWUhNLDHKDcxCkMkNnbwzU/0PX l9ULjbghf7Tdx7vrGA2BV/0v1PMpKNDPNNwzHLH9J9LsHsdGi6aQjg4bBW1vski3 NVW4t8h8GWtEKQ== -----END CERTIFICATE-----Generated at Sat Dec 6 19:42:49 2025 by rpki-client