This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft File: wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft (raw, json) Hash identifier: KkZIhYDFSQHiamkytkP9NbU3BqWgvm5hRUpguanW91o= Subject key identifier: 5E:14:B0:06:6C:56:20:2E:FB:5D:F5:29:DE:67:EF:42:6F:93:96:33 Authority key identifier: C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C Certificate issuer: /CN=c21e32d047c5d1b9e26770c3840304cf6971de1c Certificate serial: 019B07B56B9915C6554847D2B40B1DFB0572 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft Manifest number: 0A8F Signing time: Wed 10 Dec 2025 10:01:28 +0000 Manifest this update: Wed 10 Dec 2025 10:01:28 +0000 Manifest next update: Thu 11 Dec 2025 10:01:28 +0000 Files and hashes: 1: 0YAlpXVId3LHx7bUr5xQcDkFv50.roa (hash: TFSQN0O8fIRBDFY4jZJFLp3OndkfiZIj1gXdcop7ZBU=) 2: wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl (hash: Xib+92EL7Js1+dDBAxecl/bRs5svuQjD3gAd4DR43KY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:07:b5:6b:99:15:c6:55:48:47:d2:b4:0b:1d:fb:05:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c21e32d047c5d1b9e26770c3840304cf6971de1c Validity Not Before: Dec 10 10:01:28 2025 GMT Not After : Dec 11 10:01:28 2025 GMT Subject: CN=5e14b0066c56202efb5df529de67ef426f939633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:5f:5f:97:e9:f8:47:5e:da:65:cd:5e:7b:f9: df:f7:42:a1:5b:a0:d7:35:38:8b:2a:60:6b:47:2c: fd:73:15:5b:37:00:5c:71:20:00:c4:28:56:b7:d4: 03:15:b0:01:bc:2b:4e:98:39:48:d1:60:d8:58:03: d5:23:f2:be:7f:4d:aa:20:66:9c:0d:a7:ec:b1:30: 5a:5a:ba:3c:fc:5c:30:97:bd:f9:d0:b6:0b:23:4b: 51:99:82:08:27:01:5c:a7:8c:cb:94:97:36:1a:05: d2:04:0a:bd:b3:c8:e8:ad:98:41:6d:26:00:fb:e2: a2:f8:79:a5:58:04:18:c3:05:af:06:dc:52:ef:f5: c6:6b:51:da:6d:93:da:dc:fa:a0:8d:d6:aa:f6:b3: 78:d5:84:35:96:ef:f3:71:64:b4:d4:2e:9a:17:6b: 75:85:9a:0f:07:ae:a2:8d:ec:bb:10:44:17:df:a8: af:17:52:e9:7b:96:a1:81:32:95:60:8b:ed:dc:5f: 54:04:ff:f3:2a:6c:30:b7:31:12:98:b5:08:50:73: e0:08:85:a4:7b:1f:de:dd:75:2f:65:4b:26:b6:ae: f7:a3:f2:05:0d:8c:a1:d3:79:92:1e:13:a5:ca:06: c2:c9:68:83:be:b3:31:9f:e5:05:82:69:0e:d8:7a: 42:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:14:B0:06:6C:56:20:2E:FB:5D:F5:29:DE:67:EF:42:6F:93:96:33 X509v3 Authority Key Identifier: keyid:C2:1E:32:D0:47:C5:D1:B9:E2:67:70:C3:84:03:04:CF:69:71:DE:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/wh4y0EfF0bniZ3DDhAMEz2lx3hw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/300bd4-0356-4c44-83cf-38efcfdc417b/1/wh4y0EfF0bniZ3DDhAMEz2lx3hw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:20:d9:5b:56:a6:86:ad:ac:96:83:7e:be:4e:86:00:41:2a: ef:bf:2e:43:40:8f:d4:5c:42:27:c1:a4:f2:3f:4e:f4:95:92: fe:37:be:34:3a:c0:78:b3:dc:49:91:5b:e8:3a:5a:bf:47:4f: 6f:21:b6:b7:a5:5e:4d:af:e0:50:64:2a:f0:e2:f2:a1:a8:0c: 2e:4d:f2:be:4a:1f:e9:f7:96:95:93:e9:0b:f1:47:82:a8:84: 48:90:99:a8:df:46:4a:c5:e1:ce:09:36:2e:9f:b0:66:d1:62: 7d:c8:3a:9d:e6:56:5c:7d:cc:9d:ce:e6:5f:c8:2b:38:85:3c: 53:68:eb:a7:44:f6:ba:da:85:37:67:4d:22:21:ef:8f:4a:1a: 2e:98:ce:42:cb:e0:91:4a:90:d8:e8:4d:c8:38:d6:3f:42:5b: 5c:61:f0:d2:99:f7:0e:cd:1c:4c:18:7e:f1:d5:a6:2c:a9:6b: 7b:39:c6:ac:6a:9d:6d:b2:4e:ab:22:bb:68:e7:da:43:65:d5: 5e:8f:74:be:7a:fa:d1:4c:d8:e6:e5:85:c6:b3:4f:ec:3e:0f: d6:77:86:e3:a0:70:5e:7b:80:1a:43:fc:90:6e:25:69:3d:df: a9:03:54:fd:ad:4b:7e:d1:b8:6f:fe:a7:48:53:ac:25:25:5b: 32:51:59:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsHtWuZFcZVSEfStAsd+wVyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMyMWUzMmQwNDdjNWQxYjllMjY3NzBjMzg0MDMwNGNmNjk3 MWRlMWMwHhcNMjUxMjEwMTAwMTI4WhcNMjUxMjExMTAwMTI4WjAzMTEwLwYDVQQD Eyg1ZTE0YjAwNjZjNTYyMDJlZmI1ZGY1MjlkZTY3ZWY0MjZmOTM5NjMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoV9fl+n4R17aZc1ee/nf90KhW6DX NTiLKmBrRyz9cxVbNwBccSAAxChWt9QDFbABvCtOmDlI0WDYWAPVI/K+f02qIGac DafssTBaWro8/Fwwl7350LYLI0tRmYIIJwFcp4zLlJc2GgXSBAq9s8jorZhBbSYA ++Ki+HmlWAQYwwWvBtxS7/XGa1HabZPa3Pqgjdaq9rN41YQ1lu/zcWS01C6aF2t1 hZoPB66ijey7EEQX36ivF1Lpe5ahgTKVYIvt3F9UBP/zKmwwtzESmLUIUHPgCIWk ex/e3XUvZUsmtq73o/IFDYyh03mSHhOlygbCyWiDvrMxn+UFgmkO2HpCUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF4UsAZsViAu+131Kd5n70Jvk5YzMB8GA1UdIwQY MBaAFMIeMtBHxdG54mdww4QDBM9pcd4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvd2g0eTBFZkYwYm5pWjNERGhBTUV6Mmx4M2h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNy8zMDBiZDQtMDM1Ni00YzQ0LTgzY2Yt MzhlZmNmZGM0MTdiLzEvd2g0eTBFZkYwYm5pWjNERGhBTUV6Mmx4M2h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNy8zMDBiZDQtMDM1Ni00YzQ0LTgzY2YtMzhlZmNmZGM0MTdi LzEvd2g0eTBFZkYwYm5pWjNERGhBTUV6Mmx4M2h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtCDZW1am hq2sloN+vk6GAEEq778uQ0CP1FxCJ8Gk8j9O9JWS/je+NDrAeLPcSZFb6Dpav0dP byG2t6VeTa/gUGQq8OLyoagMLk3yvkof6feWlZPpC/FHgqiESJCZqN9GSsXhzgk2 Lp+wZtFifcg6neZWXH3Mnc7mX8grOIU8U2jrp0T2utqFN2dNIiHvj0oaLpjOQsvg kUqQ2OhNyDjWP0JbXGHw0pn3Ds0cTBh+8dWmLKlreznGrGqdbbJOqyK7aOfaQ2XV Xo90vnr60UzY5uWFxrNP7D4P1neG46BwXnuAGkP8kG4laT3fqQNU/a1LftG4b/6n SFOsJSVbMlFZBw== -----END CERTIFICATE-----Generated at Wed Dec 10 18:07:12 2025 by rpki-client