This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft File: wb80sZClHOUwAleRGvMEBPSVH7Y.mft (raw, json) Hash identifier: V/M3SVCJEftKCRQQWmge+ahPM00wop3SlQy2clQG4IM= Subject key identifier: D4:9B:CC:29:64:6B:7C:33:33:A0:54:DC:79:5D:DA:1D:37:4A:74:B7 Authority key identifier: C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6 Certificate issuer: /CN=c1bf34b190a51ce5300257911af30404f4951fb6 Certificate serial: 019AF12D7A6F74596D73D6FA53AD82547E40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft Manifest number: 175F Signing time: Sat 06 Dec 2025 01:01:20 +0000 Manifest this update: Sat 06 Dec 2025 01:01:20 +0000 Manifest next update: Sun 07 Dec 2025 01:01:20 +0000 Files and hashes: 1: 0tyV27ZaRKIuc5h8kTDsBiv4BZI.roa (hash: 1dyOdZnQpGVWWsvnKswgEprRwbXy0vsePve+ulQremU=) 2: wb80sZClHOUwAleRGvMEBPSVH7Y.crl (hash: 6RltTQ0pcQOCqFLqvE6qjy6uLTFQhiwuxxAKb/T7tlk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2d:7a:6f:74:59:6d:73:d6:fa:53:ad:82:54:7e:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c1bf34b190a51ce5300257911af30404f4951fb6 Validity Not Before: Dec 6 01:01:20 2025 GMT Not After : Dec 7 01:01:20 2025 GMT Subject: CN=d49bcc29646b7c3333a054dc795dda1d374a74b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:72:9d:80:9e:f3:1c:0d:d6:14:ba:63:8f:8e: 00:e9:d9:8f:4c:72:7c:0f:9e:f7:1c:d9:05:84:03: bf:58:19:c8:b7:a3:90:fb:6b:d2:a3:bd:3b:4f:5d: 9e:fe:98:ec:e5:f9:59:66:6a:59:ba:9d:a9:69:d3: 0f:8f:23:24:14:75:ec:30:0f:88:81:56:f1:3b:c8: 4c:08:60:cd:cb:22:0b:5d:27:95:6f:47:e4:18:fd: 1e:46:5a:96:ba:2b:e4:1d:4e:c8:06:b8:fb:2d:ea: 94:29:94:22:09:cd:ae:3e:e8:2c:12:5a:d1:15:54: 24:c0:05:2d:9e:0a:32:0d:27:50:5d:de:08:26:cf: 5d:e1:b5:80:14:1e:37:ed:69:7c:34:b8:28:8a:c3: 99:0a:ef:8b:9f:d9:b2:58:5c:43:91:00:85:05:80: 73:51:58:70:28:39:a2:96:37:fb:bf:45:32:52:89: 2c:d3:d2:72:b8:15:4d:81:e2:e9:c1:4a:5f:17:e4: 9b:e9:4a:65:12:e1:32:82:53:8e:06:10:14:d9:5c: e8:e7:46:25:ec:3a:e7:32:e4:6c:0a:b7:80:d5:ba: e4:16:5e:01:e9:fd:7f:34:b1:f5:46:eb:62:6a:19: 3c:d0:c2:05:d6:8d:23:6b:12:b5:73:53:0e:3d:2f: ae:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:9B:CC:29:64:6B:7C:33:33:A0:54:DC:79:5D:DA:1D:37:4A:74:B7 X509v3 Authority Key Identifier: keyid:C1:BF:34:B1:90:A5:1C:E5:30:02:57:91:1A:F3:04:04:F4:95:1F:B6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wb80sZClHOUwAleRGvMEBPSVH7Y.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/153d53-6e69-4301-abd3-f311bac2a37f/1/wb80sZClHOUwAleRGvMEBPSVH7Y.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:35:26:19:30:c4:41:1e:1a:ae:bd:b9:97:6f:2e:5a:ef:49: c5:ab:88:32:ab:b9:15:c0:cc:55:0b:cf:fb:b5:f5:c3:d6:4c: ed:fd:33:f6:40:a0:ef:23:73:f8:f2:eb:1f:f4:9c:50:e3:19: 44:31:8c:1e:36:12:76:88:98:5c:85:b0:1c:33:72:18:57:57: 15:31:55:4c:4d:8a:d7:b0:b7:f7:61:ad:8a:47:1b:79:1f:ac: 71:ac:ba:68:60:9e:8a:4b:f6:9b:47:97:4f:ac:06:8d:a8:24: 43:d1:c6:04:2b:8c:7d:3f:5d:dc:ef:c9:3c:da:6e:08:8d:18: c4:a8:59:d4:48:6b:8d:33:87:24:76:75:3f:b8:25:3a:82:aa: d0:f9:2d:1a:59:27:8d:91:c9:ff:e5:ae:96:71:68:43:be:94: 7a:f2:0d:1b:f7:ea:7b:39:01:b1:93:53:02:2f:72:f9:dd:16: 0b:87:e4:80:78:e1:81:0c:35:b9:54:68:ee:7a:52:c6:e1:5d: 43:97:1e:6a:46:5a:ae:16:70:3f:cc:ee:14:14:c6:4b:c1:b9: 89:61:d5:2f:ac:cb:a8:83:52:8e:0d:a7:16:90:ee:00:27:7a: 53:aa:98:0b:75:45:1f:56:67:61:f9:9b:e2:23:cd:ad:58:cd: 2e:aa:19:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLXpvdFltc9b6U62CVH5AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMxYmYzNGIxOTBhNTFjZTUzMDAyNTc5MTFhZjMwNDA0ZjQ5 NTFmYjYwHhcNMjUxMjA2MDEwMTIwWhcNMjUxMjA3MDEwMTIwWjAzMTEwLwYDVQQD EyhkNDliY2MyOTY0NmI3YzMzMzNhMDU0ZGM3OTVkZGExZDM3NGE3NGI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3KdgJ7zHA3WFLpjj44A6dmPTHJ8 D573HNkFhAO/WBnIt6OQ+2vSo707T12e/pjs5flZZmpZup2padMPjyMkFHXsMA+I gVbxO8hMCGDNyyILXSeVb0fkGP0eRlqWuivkHU7IBrj7LeqUKZQiCc2uPugsElrR FVQkwAUtngoyDSdQXd4IJs9d4bWAFB437Wl8NLgoisOZCu+Ln9myWFxDkQCFBYBz UVhwKDmiljf7v0UyUoks09JyuBVNgeLpwUpfF+Sb6UplEuEyglOOBhAU2Vzo50Yl 7DrnMuRsCreA1brkFl4B6f1/NLH1Rutiahk80MIF1o0jaxK1c1MOPS+uJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNSbzClka3wzM6BU3Hld2h03SnS3MB8GA1UdIwQY MBaAFMG/NLGQpRzlMAJXkRrzBAT0lR+2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2I4MHNaQ2xIT1V3QWxlUkd2TUVCUFNWSDdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8xNTNkNTMtNmU2OS00MzAxLWFiZDMt ZjMxMWJhYzJhMzdmLzEvd2I4MHNaQ2xIT1V3QWxlUkd2TUVCUFNWSDdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8xNTNkNTMtNmU2OS00MzAxLWFiZDMtZjMxMWJhYzJhMzdm LzEvd2I4MHNaQ2xIT1V3QWxlUkd2TUVCUFNWSDdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEjUmGTDE QR4arr25l28uWu9JxauIMqu5FcDMVQvP+7X1w9ZM7f0z9kCg7yNz+PLrH/ScUOMZ RDGMHjYSdoiYXIWwHDNyGFdXFTFVTE2K17C392GtikcbeR+scay6aGCeikv2m0eX T6wGjagkQ9HGBCuMfT9d3O/JPNpuCI0YxKhZ1EhrjTOHJHZ1P7glOoKq0PktGlkn jZHJ/+WulnFoQ76UevING/fqezkBsZNTAi9y+d0WC4fkgHjhgQw1uVRo7npSxuFd Q5ceakZarhZwP8zuFBTGS8G5iWHVL6zLqINSjg2nFpDuACd6U6qYC3VFH1ZnYfmb 4iPNrVjNLqoZBQ== -----END CERTIFICATE-----Generated at Sat Dec 6 10:56:11 2025 by rpki-client