This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft File: WdNqIemzaNdIurjHe-vd4sInxsM.mft (raw, json) Hash identifier: w9lAYSQEf/1kv7N91jVpF+tffyiYS9hmp1yCBAgu5mA= Subject key identifier: EC:69:01:AA:46:EA:90:DA:3D:3F:5D:38:C5:0D:2E:DE:5A:F0:5C:4B Authority key identifier: 59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3 Certificate issuer: /CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3 Certificate serial: 019AF49BF17F30B360DBDAF43F8E3B003929 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft Manifest number: 0941 Signing time: Sat 06 Dec 2025 17:00:51 +0000 Manifest this update: Sat 06 Dec 2025 17:00:51 +0000 Manifest next update: Sun 07 Dec 2025 17:00:51 +0000 Files and hashes: 1: CZOyLCDq6Iq_ffaqvjI3PSVVOvU.roa (hash: nxYpf3d1kInNnFvQ38+l8rg/HLKSq+o3Lo1uxdJMCqg=) 2: WdNqIemzaNdIurjHe-vd4sInxsM.crl (hash: KT77IaOADiK4ejWQUgvVafzGDo6F8YYcnA96vDvrxN8=) 3: k47IkFzsvbAU-luJwFSjcXBgPII.roa (hash: LRzevFO33ciORneOuJWjPwolGOd6frxZBqlkG2Q4ros=) 4: lEEyuAddblYNTeWx211i0OkHLwc.roa (hash: xrs17fe1+/VBDSqf3ILWe0WvYIKh2Ut8uQHgq7w6B3M=) 5: skXm2fkwzq64ONGiXwLfUYMzOOo.roa (hash: eZX3z+2+p9WFafZJ1Sv1eq5Rzpet45IDFVeaiO++2eM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:9b:f1:7f:30:b3:60:db:da:f4:3f:8e:3b:00:39:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59d36a21e9b368d748bab8c77bebdde2c227c6c3 Validity Not Before: Dec 6 17:00:51 2025 GMT Not After : Dec 7 17:00:51 2025 GMT Subject: CN=ec6901aa46ea90da3d3f5d38c50d2ede5af05c4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:4c:e7:1f:24:b2:27:24:ae:b1:66:7a:61:24: 03:c7:a0:8f:a7:8b:e5:f5:7a:ce:db:1d:41:32:7c: 1b:99:7d:e6:62:da:68:21:b2:5f:60:97:e6:2c:d7: 9d:52:34:13:03:d2:a4:88:54:b1:62:69:60:29:79: da:39:7c:8e:56:fd:53:33:6a:f4:cd:85:e6:2d:3a: a2:30:fc:87:28:6a:0e:b9:ea:4f:97:f3:0f:e5:f1: 1c:a1:75:db:8c:d1:28:69:f6:14:ee:84:af:ab:af: fc:ee:7b:4a:4a:96:c0:a9:da:2a:24:45:a5:ab:39: 1d:0f:ec:e4:71:09:f6:cc:23:41:c6:23:7c:20:1c: fc:08:1d:93:b6:25:1c:7e:07:af:00:6d:7c:b3:83: 1d:24:2b:f5:5d:75:65:83:b8:d5:42:9b:b7:8b:b8: 6c:18:29:fd:75:e6:00:89:fe:e4:72:be:fc:8e:d4: 4c:ce:98:ea:c6:e3:dc:12:5a:d6:16:1a:d8:30:b0: 68:9a:3c:cf:64:52:28:b5:e8:60:32:1c:28:c2:74: 66:97:23:5b:5a:b3:69:0b:c4:89:50:9a:c5:44:68: ff:7f:13:9e:f7:d1:8e:07:d8:a8:fb:43:72:60:46: 91:a0:f0:96:a6:de:3c:f0:c9:6d:57:b1:74:4d:93: e6:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:69:01:AA:46:EA:90:DA:3D:3F:5D:38:C5:0D:2E:DE:5A:F0:5C:4B X509v3 Authority Key Identifier: keyid:59:D3:6A:21:E9:B3:68:D7:48:BA:B8:C7:7B:EB:DD:E2:C2:27:C6:C3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WdNqIemzaNdIurjHe-vd4sInxsM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/7a7dc1-e168-4d47-b46d-40ea80892f03/1/WdNqIemzaNdIurjHe-vd4sInxsM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:e3:fa:46:95:0b:9b:2c:96:d7:08:07:68:70:89:a8:07:61: 97:49:13:0a:83:29:6c:2f:6b:90:c1:b3:7c:cf:de:3b:86:44: 38:b8:13:ec:6d:91:1a:89:3b:d1:81:1f:c1:ec:e3:77:76:2e: 62:63:5c:ba:99:13:38:6b:6e:89:e7:5c:7c:67:e0:25:63:72: df:50:f1:be:bb:c5:1b:dc:d3:f2:11:61:17:8b:36:fe:5f:37: 0d:96:b4:8a:ca:8f:54:c7:2f:18:df:28:62:01:53:7d:d3:db: 8a:fc:58:8f:ed:53:e8:e8:a8:f4:b6:7b:7e:b9:0a:e1:e4:6a: 9a:b4:9f:6b:42:f3:17:79:10:95:ca:b1:66:5a:32:65:a4:0a: 9c:f1:d6:6a:c7:d0:2a:0f:d7:b7:cf:fe:93:93:96:26:c7:4a: 77:7b:87:2e:54:d2:88:60:02:a1:e7:ef:d8:80:29:fc:1d:79: 48:d1:67:99:5e:3a:1a:a0:0c:42:b6:99:21:39:34:7e:86:96: e2:1a:f5:e3:b6:68:c4:7f:1d:68:5e:7b:b0:d5:89:b3:13:92: ca:db:b7:47:0b:1d:62:0a:78:57:97:f4:12:60:95:0b:27:ea: 1c:ac:74:c2:b8:39:a8:7a:6c:b4:86:af:2c:f1:81:55:50:e6: 96:0f:f0:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0m/F/MLNg29r0P447ADkpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU5ZDM2YTIxZTliMzY4ZDc0OGJhYjhjNzdiZWJkZGUyYzIy N2M2YzMwHhcNMjUxMjA2MTcwMDUxWhcNMjUxMjA3MTcwMDUxWjAzMTEwLwYDVQQD EyhlYzY5MDFhYTQ2ZWE5MGRhM2QzZjVkMzhjNTBkMmVkZTVhZjA1YzRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA30znHySyJySusWZ6YSQDx6CPp4vl 9XrO2x1BMnwbmX3mYtpoIbJfYJfmLNedUjQTA9KkiFSxYmlgKXnaOXyOVv1TM2r0 zYXmLTqiMPyHKGoOuepPl/MP5fEcoXXbjNEoafYU7oSvq6/87ntKSpbAqdoqJEWl qzkdD+zkcQn2zCNBxiN8IBz8CB2TtiUcfgevAG18s4MdJCv1XXVlg7jVQpu3i7hs GCn9deYAif7kcr78jtRMzpjqxuPcElrWFhrYMLBomjzPZFIotehgMhwownRmlyNb WrNpC8SJUJrFRGj/fxOe99GOB9io+0NyYEaRoPCWpt488MltV7F0TZPmdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOxpAapG6pDaPT9dOMUNLt5a8FxLMB8GA1UdIwQY MBaAFFnTaiHps2jXSLq4x3vr3eLCJ8bDMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvV2ROcUllbXphTmRJdXJqSGUtdmQ0c0lueHNNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS83YTdkYzEtZTE2OC00ZDQ3LWI0NmQt NDBlYTgwODkyZjAzLzEvV2ROcUllbXphTmRJdXJqSGUtdmQ0c0lueHNNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS83YTdkYzEtZTE2OC00ZDQ3LWI0NmQtNDBlYTgwODkyZjAz LzEvV2ROcUllbXphTmRJdXJqSGUtdmQ0c0lueHNNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABOP6RpUL myyW1wgHaHCJqAdhl0kTCoMpbC9rkMGzfM/eO4ZEOLgT7G2RGok70YEfwezjd3Yu YmNcupkTOGtuiedcfGfgJWNy31DxvrvFG9zT8hFhF4s2/l83DZa0isqPVMcvGN8o YgFTfdPbivxYj+1T6Oio9LZ7frkK4eRqmrSfa0LzF3kQlcqxZloyZaQKnPHWasfQ Kg/Xt8/+k5OWJsdKd3uHLlTSiGACoefv2IAp/B15SNFnmV46GqAMQraZITk0foaW 4hr147ZoxH8daF57sNWJsxOSytu3RwsdYgp4V5f0EmCVCyfqHKx0wrg5qHpstIav LPGBVVDmlg/w2w== -----END CERTIFICATE-----Generated at Sat Dec 6 19:13:14 2025 by rpki-client