This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: WQPwTZvhJsiRls6CMjPNlT94lEBWiM2jF23I4cS2BHA= Subject key identifier: 6E:5C:A0:D4:D3:9E:4E:73:FA:6A:A0:85:FD:79:57:65:27:B2:4E:05 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B7CDD7EAAF274B941C03D0649A7F8894F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BC9 Signing time: Fri 02 Jan 2026 04:00:49 +0000 Manifest this update: Fri 02 Jan 2026 04:00:49 +0000 Manifest next update: Sat 03 Jan 2026 04:00:49 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: YNycWeh1zsiRC5APkHRC09YGW8nqMY2B3hKQWcrL4sU=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 03:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:dd:7e:aa:f2:74:b9:41:c0:3d:06:49:a7:f8:89:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 2 04:00:49 2026 GMT Not After : Jan 3 04:00:49 2026 GMT Subject: CN=6e5ca0d4d39e4e73fa6aa085fd79576527b24e05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:c6:02:5f:23:e5:f0:76:f5:07:bd:6f:06: ca:db:83:34:18:d4:9e:e7:a0:85:14:42:c0:04:b9: 2b:e3:cf:08:47:fb:82:7a:f7:b1:cb:ca:2b:3f:fd: b3:51:70:d2:07:74:78:5a:e9:8a:c1:d0:39:63:82: 31:a6:ff:c1:c2:0d:49:36:cf:80:5c:f3:48:41:c7: 0f:df:4a:0c:9c:a5:5a:9b:3d:36:c8:25:80:db:24: 4e:e7:09:a4:f5:8a:40:58:fb:2a:51:6e:d0:ed:5b: 9e:63:a8:27:17:ca:9b:6a:7f:99:9d:d8:af:79:fd: 74:ee:e9:e8:d1:c7:ff:93:8b:b2:77:62:e7:ef:14: 81:db:97:42:e8:f4:28:d1:d5:24:1e:07:b6:c7:2f: ec:e0:9b:29:6e:65:02:e7:d0:3e:6b:0f:7f:d1:ce: 58:c2:fe:a1:82:07:17:aa:bf:4a:f1:c4:17:bc:00: fa:a9:ec:a6:c5:3d:e4:c4:be:cd:ce:e6:34:88:64: 17:3d:5e:26:3a:25:9e:69:37:f4:1a:27:9e:f7:1f: 59:38:5d:6e:6b:3a:03:03:35:39:78:05:4b:3e:88: c6:08:22:2b:6f:0e:a6:a8:87:12:ae:62:a9:2e:59: 52:b0:83:cf:9c:c8:74:98:aa:bc:e5:8f:b4:08:d1: e3:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:5C:A0:D4:D3:9E:4E:73:FA:6A:A0:85:FD:79:57:65:27:B2:4E:05 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:76:2f:03:a5:68:e4:62:eb:54:e4:99:ac:fe:21:ba:3f:3a: 8f:84:27:d7:12:66:d3:c4:f1:a4:64:2a:13:0e:39:43:54:3e: 70:00:46:af:36:89:4b:ad:37:c5:4e:bd:09:0f:96:09:93:95: 9f:3b:a6:d1:36:f0:12:8a:26:00:ba:4c:e0:c3:80:8b:ef:85: 13:51:34:5e:78:d1:de:c6:bb:59:a5:7f:7b:8f:a7:d0:d3:ac: e9:f0:6b:e7:4f:24:0a:fe:ac:99:bc:ec:09:7c:f8:69:be:8d: 72:ed:89:e7:00:c9:d1:d6:33:53:44:ff:16:9f:5c:6e:f9:1f: 03:bc:db:3d:99:6a:90:bf:8c:2c:4e:93:c1:79:b5:b4:0f:bd: 28:0c:7a:54:ae:ca:43:4f:ae:d7:60:0e:4b:f5:5c:b1:4e:69: d2:2e:1b:62:7c:81:0e:ee:bd:fc:03:69:05:59:c9:b5:76:af: 95:96:bf:5d:bd:e2:b5:b0:07:cb:8e:9d:44:b6:3a:a9:b3:07: cb:4c:fb:35:29:a3:56:39:d5:c6:35:68:5a:3d:70:b2:01:97: 15:4f:55:ec:2d:4c:b3:02:5f:96:e0:f0:fa:a6:69:75:be:a4: b7:42:15:97:3a:c0:b8:80:9c:0f:c7:bf:65:75:33:1f:6c:de: a6:c8:9a:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt83X6q8nS5QcA9Bkmn+IlPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTAyMDQwMDQ5WhcNMjYwMTAzMDQwMDQ5WjAzMTEwLwYDVQQD Eyg2ZTVjYTBkNGQzOWU0ZTczZmE2YWEwODVmZDc5NTc2NTI3YjI0ZTA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxm/GAl8j5fB29Qe9bwbK24M0GNSe 56CFFELABLkr488IR/uCevexy8orP/2zUXDSB3R4WumKwdA5Y4Ixpv/Bwg1JNs+A XPNIQccP30oMnKVamz02yCWA2yRO5wmk9YpAWPsqUW7Q7VueY6gnF8qban+Zndiv ef107uno0cf/k4uyd2Ln7xSB25dC6PQo0dUkHge2xy/s4JspbmUC59A+aw9/0c5Y wv6hggcXqr9K8cQXvAD6qeymxT3kxL7NzuY0iGQXPV4mOiWeaTf0Giee9x9ZOF1u azoDAzU5eAVLPojGCCIrbw6mqIcSrmKpLllSsIPPnMh0mKq85Y+0CNHjYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG5coNTTnk5z+mqghf15V2Unsk4FMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMXYvA6Vo 5GLrVOSZrP4huj86j4Qn1xJm08TxpGQqEw45Q1Q+cABGrzaJS603xU69CQ+WCZOV nzum0TbwEoomALpM4MOAi++FE1E0XnjR3sa7WaV/e4+n0NOs6fBr508kCv6smbzs CXz4ab6Ncu2J5wDJ0dYzU0T/Fp9cbvkfA7zbPZlqkL+MLE6TwXm1tA+9KAx6VK7K Q0+u12AOS/VcsU5p0i4bYnyBDu69/ANpBVnJtXavlZa/Xb3itbAHy46dRLY6qbMH y0z7NSmjVjnVxjVoWj1wsgGXFU9V7C1MswJfluDw+qZpdb6kt0IVlzrAuICcD8e/ ZXUzH2zepsiamA== -----END CERTIFICATE-----Generated at Fri Jan 2 09:12:50 2026 by rpki-client