This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft File: Wy17v8Kblv03I3vOZ4bFO604D70.mft (raw, json) Hash identifier: d/qKnan1ypvT/3HoCEwSUb+5JC7ralFFa2CyMXUuA/I= Subject key identifier: F8:7A:F6:29:5B:08:4B:BB:17:40:60:6C:F7:BA:24:CC:27:24:2E:DE Authority key identifier: 5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD Certificate issuer: /CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd Certificate serial: 019AF208F172E3ECB48DAA34FEBC62F9FA06 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft Manifest number: 0333 Signing time: Sat 06 Dec 2025 05:01:03 +0000 Manifest this update: Sat 06 Dec 2025 05:01:03 +0000 Manifest next update: Sun 07 Dec 2025 05:01:03 +0000 Files and hashes: 1: Wy17v8Kblv03I3vOZ4bFO604D70.crl (hash: wVWhTGCTLCSsypjucWryOg6QxIC1n9zb0dgjS3/ykQI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:08:f1:72:e3:ec:b4:8d:aa:34:fe:bc:62:f9:fa:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5b2d7bbfc29b96fd37237bce6786c53bad380fbd Validity Not Before: Dec 6 05:01:03 2025 GMT Not After : Dec 7 05:01:03 2025 GMT Subject: CN=f87af6295b084bbb1740606cf7ba24cc27242ede Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:61:e4:d4:11:af:26:78:79:97:8e:4e:2b:c6: 84:45:fc:ee:14:74:c7:39:a5:58:2c:ba:37:65:11: 95:b4:3e:01:ac:58:f1:4c:14:d0:fd:1b:a3:4b:2c: 7e:69:a6:c0:f9:44:6b:fe:8d:87:3e:97:10:0a:56: 35:a3:50:6a:a3:eb:7c:46:e6:79:a9:03:ee:9c:2f: cd:01:08:94:8d:5a:c2:c4:f7:bb:c2:24:e4:22:fa: 26:85:83:29:5a:02:53:0b:07:8c:0c:3f:7a:f6:d4: 77:f0:16:9e:f5:84:6f:93:48:86:9b:47:1d:dc:48: f3:f7:e4:45:ee:e9:3e:ad:99:30:2a:8f:5d:41:75: 98:9b:ed:34:20:3b:04:94:b6:b2:7d:19:0d:f1:51: cc:b0:9b:20:5c:71:82:ff:28:cd:23:42:c7:f0:af: 98:0b:94:90:81:79:c1:56:63:f7:2e:82:03:df:73: 01:38:ba:e4:15:06:89:fc:de:be:32:13:fe:9d:00: ef:20:7a:f5:9b:77:fc:c8:c2:49:68:11:27:2b:53: c8:6f:89:f9:08:af:b8:f8:2a:2a:76:05:37:8d:12: 77:ca:e4:d6:b1:79:13:ee:7f:96:e0:51:d1:bd:2d: 19:d0:29:69:3d:ad:66:1f:d9:5e:ae:de:41:cc:b1: 86:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:7A:F6:29:5B:08:4B:BB:17:40:60:6C:F7:BA:24:CC:27:24:2E:DE X509v3 Authority Key Identifier: keyid:5B:2D:7B:BF:C2:9B:96:FD:37:23:7B:CE:67:86:C5:3B:AD:38:0F:BD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wy17v8Kblv03I3vOZ4bFO604D70.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/a57805-a97f-4462-ae38-d86156e61c47/1/Wy17v8Kblv03I3vOZ4bFO604D70.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:34:60:ab:82:78:45:d9:47:85:8d:ff:6c:f8:16:8e:49:c1: 33:c7:af:c3:12:49:ad:bf:36:87:04:15:63:71:dc:34:d9:fc: 1a:27:3f:19:d9:5c:a1:9a:57:db:17:52:53:a6:15:3d:49:b3: b8:85:e6:6b:e3:b2:21:c0:8e:6d:5a:a9:42:8c:a0:b8:6f:7a: 22:e1:94:2c:e6:53:49:48:85:c9:0e:90:d1:78:9a:b7:c0:84: 99:20:22:cd:e2:45:74:95:bf:e1:a9:16:b4:6a:4f:bd:18:32: 38:b8:41:6b:d5:7a:42:81:ca:2b:92:aa:84:7e:7d:a0:31:ed: b2:d9:cc:23:82:b3:1e:1d:12:08:e3:e3:27:1a:0b:80:c2:86: db:d8:83:7f:0d:20:2b:26:4f:98:19:a9:8d:80:f2:17:59:f9: 45:a3:21:89:32:81:a0:9f:df:e1:58:2d:c1:f4:d7:93:7f:1c: 08:5c:a5:f6:fa:0a:79:d3:91:8b:11:ad:d2:3f:1a:9a:05:23: b5:95:b0:9d:63:ae:a0:db:ef:f6:a4:a2:a3:58:02:32:f4:3a: 0f:22:de:8f:80:55:d7:01:84:d0:90:0f:ec:eb:8e:e3:20:e6: 53:cd:02:21:ec:c2:c5:32:93:59:b9:b4:15:d5:a0:1d:ab:ca: 98:f9:35:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCPFy4+y0jao0/rxi+foGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDViMmQ3YmJmYzI5Yjk2ZmQzNzIzN2JjZTY3ODZjNTNiYWQz ODBmYmQwHhcNMjUxMjA2MDUwMTAzWhcNMjUxMjA3MDUwMTAzWjAzMTEwLwYDVQQD EyhmODdhZjYyOTViMDg0YmJiMTc0MDYwNmNmN2JhMjRjYzI3MjQyZWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiGHk1BGvJnh5l45OK8aERfzuFHTH OaVYLLo3ZRGVtD4BrFjxTBTQ/RujSyx+aabA+URr/o2HPpcQClY1o1Bqo+t8RuZ5 qQPunC/NAQiUjVrCxPe7wiTkIvomhYMpWgJTCweMDD969tR38Bae9YRvk0iGm0cd 3Ejz9+RF7uk+rZkwKo9dQXWYm+00IDsElLayfRkN8VHMsJsgXHGC/yjNI0LH8K+Y C5SQgXnBVmP3LoID33MBOLrkFQaJ/N6+MhP+nQDvIHr1m3f8yMJJaBEnK1PIb4n5 CK+4+CoqdgU3jRJ3yuTWsXkT7n+W4FHRvS0Z0ClpPa1mH9lert5BzLGGsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPh69ilbCEu7F0BgbPe6JMwnJC7eMB8GA1UdIwQY MBaAFFste7/Cm5b9NyN7zmeGxTutOA+9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV3kxN3Y4S2JsdjAzSTN2T1o0YkZPNjA0RDcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS9hNTc4MDUtYTk3Zi00NDYyLWFlMzgt ZDg2MTU2ZTYxYzQ3LzEvV3kxN3Y4S2JsdjAzSTN2T1o0YkZPNjA0RDcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS9hNTc4MDUtYTk3Zi00NDYyLWFlMzgtZDg2MTU2ZTYxYzQ3 LzEvV3kxN3Y4S2JsdjAzSTN2T1o0YkZPNjA0RDcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANTRgq4J4 RdlHhY3/bPgWjknBM8evwxJJrb82hwQVY3HcNNn8Gic/GdlcoZpX2xdSU6YVPUmz uIXma+OyIcCObVqpQoyguG96IuGULOZTSUiFyQ6Q0Xiat8CEmSAizeJFdJW/4akW tGpPvRgyOLhBa9V6QoHKK5KqhH59oDHtstnMI4KzHh0SCOPjJxoLgMKG29iDfw0g KyZPmBmpjYDyF1n5RaMhiTKBoJ/f4VgtwfTXk38cCFyl9voKedORixGt0j8amgUj tZWwnWOuoNvv9qSio1gCMvQ6DyLej4BV1wGE0JAP7OuO4yDmU80CIezCxTKTWbm0 FdWgHavKmPk1bA== -----END CERTIFICATE-----Generated at Sat Dec 6 12:36:54 2025 by rpki-client