This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft File: w3URP9S_vTixBDhDwwkmoRDMD1E.mft (raw, json) Hash identifier: 7PP204PX8MEUbzCzYOdO4Ev7aBH4oLKWbZVJpt0o+zc= Subject key identifier: 94:D0:59:13:72:24:90:A1:0D:EB:35:73:10:E4:2D:59:D6:BB:68:5D Authority key identifier: C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51 Certificate issuer: /CN=c375113fd4bfbd38b1043843c30926a110cc0f51 Certificate serial: 019AF12E9F746BE84DB58F3C6926D9CDB4F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 01:02:35 +0000 Manifest this update: Sat 06 Dec 2025 01:02:35 +0000 Manifest next update: Sun 07 Dec 2025 01:02:35 +0000 Files and hashes: 1: TPJl-AnyNAOqe20bKX-5t3SrM4E.roa (hash: X6UgSBrAhCQSnYi9DhkcF/hdYKpsagcSW2GIdlVKxUg=) 2: w3URP9S_vTixBDhDwwkmoRDMD1E.crl (hash: ZCc9SEd1OY/NyqGLLu29oizSP0oP41659mzrF8Fkw0g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 01:02:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f1:2e:9f:74:6b:e8:4d:b5:8f:3c:69:26:d9:cd:b4:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c375113fd4bfbd38b1043843c30926a110cc0f51 Validity Not Before: Dec 6 01:02:35 2025 GMT Not After : Dec 7 01:02:35 2025 GMT Subject: CN=94d05913722490a10deb357310e42d59d6bb685d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:d0:cc:32:b2:df:4d:0c:95:0b:b6:67:08:14: d7:5f:93:86:cb:f2:b2:aa:14:f9:ab:b7:82:a5:42: a1:fc:4d:12:73:2a:62:38:62:2c:a6:49:9d:3a:4b: b4:0a:c8:a8:6b:9b:1d:86:57:21:14:52:f9:92:d9: f3:fe:91:ed:89:80:38:5d:3f:28:bb:2a:70:df:d0: 66:8a:34:e7:5a:97:34:52:8e:b8:c0:c8:d4:32:6f: 16:5c:c6:7a:4f:65:23:93:e9:a5:a6:58:52:2b:78: f1:e4:3c:a7:97:c0:cd:7c:fe:81:2c:fd:08:3c:0d: 2f:04:58:1e:45:b4:9a:84:59:77:f1:ea:b3:73:bd: 44:be:0b:70:6e:1c:61:ca:1f:0d:88:c8:74:50:8a: c0:4d:c9:64:3f:ae:1d:ff:22:92:e5:2f:3d:b3:c6: 1d:1a:2d:be:f0:28:e5:18:3b:5c:1e:3d:29:c3:c2: 05:a6:d6:f2:26:14:99:e7:a1:9a:dd:ca:58:f1:b8: 09:d8:a4:90:91:2b:19:27:fb:46:a7:45:e6:2a:8d: 6c:29:d2:63:5c:fb:08:09:72:55:7e:3f:e2:27:ea: 44:5a:35:ba:2c:9f:47:20:d5:5c:1a:af:b6:7e:49: 4b:dc:61:24:2a:40:b0:ba:db:e1:85:9e:9c:2f:90: ce:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:D0:59:13:72:24:90:A1:0D:EB:35:73:10:E4:2D:59:D6:BB:68:5D X509v3 Authority Key Identifier: keyid:C3:75:11:3F:D4:BF:BD:38:B1:04:38:43:C3:09:26:A1:10:CC:0F:51 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/w3URP9S_vTixBDhDwwkmoRDMD1E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/af9c78-6ede-40df-89c1-79725fa2e133/1/w3URP9S_vTixBDhDwwkmoRDMD1E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:5c:46:8c:1a:34:ac:7c:33:1f:1a:1d:64:09:6a:6c:e1:0e: 8d:fc:84:ce:54:cc:0c:d0:67:af:08:55:31:21:5d:57:cc:12: a2:7f:81:af:ec:2d:8d:1c:e5:fa:b7:e3:f4:fd:c9:1b:a7:ac: 92:e2:3a:d4:1f:01:c6:b6:7f:f7:57:0f:cd:77:dc:ea:43:ea: cb:72:7c:5b:e8:9d:2b:fe:22:8e:12:88:1e:8b:fc:32:b4:50: ed:32:59:1e:4b:22:48:58:7c:98:30:8e:ac:ba:4b:3c:74:fd: 66:98:c0:c9:77:de:7d:39:c5:88:24:6e:7e:cf:16:d7:dc:fa: f9:49:8d:f3:ae:1c:ba:7c:24:d8:7e:f3:4f:a2:2e:df:81:70: fc:96:2a:d7:44:7b:b0:47:f7:7f:ae:cf:0b:97:80:d4:7a:6b: e2:85:e2:5e:91:d2:4c:15:e9:70:c2:d5:43:1f:1c:01:78:40: 13:be:fc:2d:06:04:81:84:cb:47:8e:e4:38:44:dd:b4:7c:91: 8e:d6:ab:0a:8e:e0:6b:f8:26:4e:20:9c:9b:16:fe:25:b0:c2: 53:5a:89:60:8c:c5:65:39:36:ac:18:a5:6e:46:e6:28:05:dc: e0:ca:79:14:2b:fc:50:14:13:2a:a8:9a:37:6a:77:29:d3:25: 21:21:9b:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrxLp90a+hNtY88aSbZzbT3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGMzNzUxMTNmZDRiZmJkMzhiMTA0Mzg0M2MzMDkyNmExMTBj YzBmNTEwHhcNMjUxMjA2MDEwMjM1WhcNMjUxMjA3MDEwMjM1WjAzMTEwLwYDVQQD Eyg5NGQwNTkxMzcyMjQ5MGExMGRlYjM1NzMxMGU0MmQ1OWQ2YmI2ODVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4tDMMrLfTQyVC7ZnCBTXX5OGy/Ky qhT5q7eCpUKh/E0ScypiOGIspkmdOku0Csioa5sdhlchFFL5ktnz/pHtiYA4XT8o uypw39BmijTnWpc0Uo64wMjUMm8WXMZ6T2Ujk+mlplhSK3jx5Dynl8DNfP6BLP0I PA0vBFgeRbSahFl38eqzc71Evgtwbhxhyh8NiMh0UIrATclkP64d/yKS5S89s8Yd Gi2+8CjlGDtcHj0pw8IFptbyJhSZ56Ga3cpY8bgJ2KSQkSsZJ/tGp0XmKo1sKdJj XPsICXJVfj/iJ+pEWjW6LJ9HINVcGq+2fklL3GEkKkCwutvhhZ6cL5DO0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJTQWRNyJJChDes1cxDkLVnWu2hdMB8GA1UdIwQY MBaAFMN1ET/Uv704sQQ4Q8MJJqEQzA9RMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNS9hZjljNzgtNmVkZS00MGRmLTg5YzEt Nzk3MjVmYTJlMTMzLzEvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNS9hZjljNzgtNmVkZS00MGRmLTg5YzEtNzk3MjVmYTJlMTMz LzEvdzNVUlA5U192VGl4QkRoRHd3a21vUkRNRDFFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEVxGjBo0 rHwzHxodZAlqbOEOjfyEzlTMDNBnrwhVMSFdV8wSon+Br+wtjRzl+rfj9P3JG6es kuI61B8BxrZ/91cPzXfc6kPqy3J8W+idK/4ijhKIHov8MrRQ7TJZHksiSFh8mDCO rLpLPHT9ZpjAyXfefTnFiCRufs8W19z6+UmN864cunwk2H7zT6Iu34Fw/JYq10R7 sEf3f67PC5eA1Hpr4oXiXpHSTBXpcMLVQx8cAXhAE778LQYEgYTLR47kOETdtHyR jtarCo7ga/gmTiCcmxb+JbDCU1qJYIzFZTk2rBilbkbmKAXc4Mp5FCv8UBQTKqia N2p3KdMlISGbaQ== -----END CERTIFICATE-----Generated at Sat Dec 6 09:20:59 2025 by rpki-client