This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: /DokhiXc6x9oVM6SCVL+3/N4sRFg9nV98/OwYYrExsM= Subject key identifier: A6:E6:57:74:2E:DF:FD:7B:79:A9:84:01:C3:3D:9A:10:74:9F:CA:6F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019AC60C1A439416851011D69199664741DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B65 Signing time: Thu 27 Nov 2025 16:01:13 +0000 Manifest this update: Thu 27 Nov 2025 16:01:13 +0000 Manifest next update: Fri 28 Nov 2025 16:01:13 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: dyjwAa4brtHweyXwQ/2trb5pxQx6aLhKA9Fn1eD0MVw=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 28 Nov 2025 16:01:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:c6:0c:1a:43:94:16:85:10:11:d6:91:99:66:47:41:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 27 16:01:13 2025 GMT Not After : Nov 28 16:01:13 2025 GMT Subject: CN=a6e657742edffd7b79a98401c33d9a10749fca6f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:e8:1f:76:a1:93:19:6d:f4:ba:51:a7:7e:c7: be:36:02:65:21:46:35:24:78:98:8e:0e:f3:07:ec: a2:6a:12:e7:e3:d8:46:79:57:85:cd:df:b0:32:a4: 6c:23:d8:1f:eb:0f:b0:09:9c:e0:d6:43:8f:a8:a8: 84:81:09:e7:69:4d:34:63:33:ad:d8:ff:a5:ff:97: 59:b3:a7:4f:92:5b:86:f0:b3:f0:7e:d4:22:5c:89: 0d:ec:db:89:3d:75:db:7e:5e:db:16:f1:7e:37:f3: b2:b2:bd:a7:77:54:90:7d:95:d4:5f:d8:d4:ae:69: 6e:3d:6d:f8:6f:56:75:50:bd:7b:37:d7:5a:c2:60: 31:92:bd:eb:36:14:74:ca:de:50:99:2f:1e:41:16: 95:15:34:cc:e2:57:e1:eb:78:dd:b6:94:4a:26:ee: a9:06:c4:6a:0c:24:25:da:d3:3b:5a:7e:b3:8d:5f: cb:35:8a:5b:21:d6:5e:2d:c0:36:3a:37:b1:ce:df: 95:e6:ae:ab:8a:0f:44:f6:c5:ab:99:24:24:00:c9: 47:68:00:fa:39:e0:c4:6b:47:24:9a:a1:f6:44:c4: 10:3f:f1:bf:2c:45:61:a2:b2:1b:bc:af:ad:d4:6a: ea:48:24:2a:7c:aa:7c:2b:9d:d2:41:6e:da:9d:02: 73:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E6:57:74:2E:DF:FD:7B:79:A9:84:01:C3:3D:9A:10:74:9F:CA:6F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:ab:57:82:a5:02:de:a8:49:9b:9e:be:d0:c2:12:63:0d:77: 53:07:b7:7a:79:a8:c9:3d:e2:72:6b:23:60:c0:00:2e:b5:1f: 89:09:4d:7c:69:cc:bb:a6:77:67:34:30:fc:cc:f0:59:da:a8: 86:7f:e9:75:23:74:6f:98:e4:a7:6c:3a:ae:90:ce:a8:c0:59: b5:3c:a0:69:a9:de:e1:8f:e0:75:5b:92:57:25:6d:c3:40:a2: 3c:55:ba:9a:b9:70:96:16:6e:6a:be:b2:a5:53:86:da:03:ab: 5f:ad:c3:a5:61:ef:6d:1d:26:ea:a4:62:07:d1:14:50:6e:8e: a5:12:52:f4:04:53:b1:23:d0:6e:e3:3d:a6:d1:ed:7f:bc:c6: 96:3c:2f:61:65:2d:c2:72:4b:20:6a:fc:69:4d:08:2b:f4:de: 00:71:b5:95:f1:4a:e8:2f:80:dd:4b:68:6f:0b:28:a6:c3:61: 30:83:65:c8:20:f6:48:23:c0:28:9a:49:01:a2:27:34:33:62: 17:09:fd:04:8f:fa:a0:7d:07:e8:80:c8:fc:9c:4f:1d:b2:67: be:6f:5c:84:bf:3b:db:53:a9:bf:9b:b3:f6:e9:52:93:00:9c: cf:19:5c:4c:58:27:db:e3:e9:81:18:13:2d:27:54:d3:87:76: 01:da:89:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrGDBpDlBaFEBHWkZlmR0HbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTI3MTYwMTEzWhcNMjUxMTI4MTYwMTEzWjAzMTEwLwYDVQQD EyhhNmU2NTc3NDJlZGZmZDdiNzlhOTg0MDFjMzNkOWExMDc0OWZjYTZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0+gfdqGTGW30ulGnfse+NgJlIUY1 JHiYjg7zB+yiahLn49hGeVeFzd+wMqRsI9gf6w+wCZzg1kOPqKiEgQnnaU00YzOt 2P+l/5dZs6dPkluG8LPwftQiXIkN7NuJPXXbfl7bFvF+N/Oysr2nd1SQfZXUX9jU rmluPW34b1Z1UL17N9dawmAxkr3rNhR0yt5QmS8eQRaVFTTM4lfh63jdtpRKJu6p BsRqDCQl2tM7Wn6zjV/LNYpbIdZeLcA2Ojexzt+V5q6rig9E9sWrmSQkAMlHaAD6 OeDEa0ckmqH2RMQQP/G/LEVhorIbvK+t1GrqSCQqfKp8K53SQW7anQJzZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbmV3Qu3/17eamEAcM9mhB0n8pvMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJqtXgqUC 3qhJm56+0MISYw13Uwe3enmoyT3icmsjYMAALrUfiQlNfGnMu6Z3ZzQw/MzwWdqo hn/pdSN0b5jkp2w6rpDOqMBZtTygaane4Y/gdVuSVyVtw0CiPFW6mrlwlhZuar6y pVOG2gOrX63DpWHvbR0m6qRiB9EUUG6OpRJS9ARTsSPQbuM9ptHtf7zGljwvYWUt wnJLIGr8aU0IK/TeAHG1lfFK6C+A3UtobwsopsNhMINlyCD2SCPAKJpJAaInNDNi Fwn9BI/6oH0H6IDI/JxPHbJnvm9chL8721Opv5uz9ulSkwCczxlcTFgn2+PpgRgT LSdU04d2AdqJ1Q== -----END CERTIFICATE-----Generated at Thu Nov 27 23:29:57 2025 by rpki-client