This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: M2N4XXAGraWuXzZLKoM9O3LIfrojMMrjvgiib9FS72g= Subject key identifier: 8F:53:25:0E:9A:74:04:F5:4E:7F:8F:AF:21:80:06:3B:CD:91:F6:D6 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BA0EA7305751382ED0468A778E8BEB2B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BDC Signing time: Fri 09 Jan 2026 04:01:17 +0000 Manifest this update: Fri 09 Jan 2026 04:01:17 +0000 Manifest next update: Sat 10 Jan 2026 04:01:17 +0000 Files and hashes: 1: 76LeK86AqDsw2hffaY83VrGgD0k.roa (hash: Cn1T0+QUKezjiIEXV7hXPpBfITvOtpQGGUudGUMuCmQ=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Qft8wuodTC4lIrdKc1VzC0cleZK8/xcLULoo3xf4QQU=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 5: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 21:02:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a0:ea:73:05:75:13:82:ed:04:68:a7:78:e8:be:b2:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 9 04:01:17 2026 GMT Not After : Jan 10 04:01:17 2026 GMT Subject: CN=8f53250e9a7404f54e7f8faf2180063bcd91f6d6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:95:99:46:2a:1e:19:ed:a9:2a:12:0b:18: 7c:75:61:02:dd:58:25:13:f2:22:c6:a5:08:91:3e: a0:d3:62:d9:1a:16:b6:e8:f2:86:bd:a3:22:76:51: e0:d3:a8:58:02:67:4d:7b:f9:a0:2f:a1:17:d2:0c: 19:d5:78:92:c4:fc:70:cc:db:30:00:c5:43:ff:c9: 7f:d7:2e:49:69:53:82:31:69:8b:66:a0:10:1a:f9: eb:39:bc:b5:25:00:44:ae:91:70:d6:d8:43:7e:2d: 4c:9b:77:61:0b:e3:8f:ef:01:1a:b5:f3:d4:ab:84: 9b:91:81:fe:54:6e:fd:dd:1a:87:32:86:0a:4a:d2: 13:3b:38:7f:d4:40:e3:c7:b8:78:98:0a:e9:27:b1: 8c:23:89:d8:11:32:71:61:ad:a0:5c:5d:af:eb:f1: 63:6d:f7:d3:a9:e8:4b:07:df:d7:29:21:6a:e4:d8: 05:0a:fd:db:81:25:ca:c9:14:67:76:29:45:0a:3e: 53:aa:17:f6:e1:f0:d4:83:f7:1d:9b:b1:98:61:e4: a2:82:9b:20:93:e9:2c:0a:c3:3d:86:26:2d:e5:87: 39:96:fe:07:d8:a0:26:28:d9:96:de:fd:8b:fa:0a: ef:59:eb:37:25:fa:0e:14:9c:af:e1:de:6d:6f:ed: d2:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:53:25:0E:9A:74:04:F5:4E:7F:8F:AF:21:80:06:3B:CD:91:F6:D6 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:fc:eb:a1:25:b3:30:85:42:34:e1:f8:d5:74:75:c5:b7:e2: a7:b2:43:b3:a1:f2:97:e5:1b:42:a3:c4:98:4f:5c:c0:fd:5e: 59:a6:c4:9b:e3:44:82:e9:fa:d4:cb:1f:c8:c9:ea:c7:9c:71: c6:43:99:dc:55:2e:46:36:1d:bf:4f:0c:54:12:a3:d5:a0:b8: 45:9e:3e:71:7c:b8:0a:b5:5f:30:7a:e0:ca:80:54:44:14:71: 50:e0:b4:fd:cd:ae:41:5e:34:c2:a8:76:f7:a7:84:1e:3f:25: 0f:79:28:0a:6e:a9:98:03:aa:4a:57:12:fb:49:22:26:35:68: c9:37:0b:aa:32:cc:b1:0e:21:83:f7:4c:13:8a:3d:02:0e:93: cb:d3:a1:07:b1:c0:a6:c5:8d:98:b0:49:6e:a4:6c:4f:18:5f: 7a:88:16:47:e6:10:7c:44:8b:44:08:c7:a4:fc:29:c5:55:b6: bf:4e:ef:58:78:07:a6:cd:46:1e:6b:3f:3d:0d:82:49:9a:b9: b1:7a:0b:34:31:39:9e:37:05:eb:ed:94:7d:e1:41:f5:21:0d: cb:1f:21:03:29:e2:94:3b:05:42:77:54:4d:95:e5:f6:6e:93: 8f:20:dc:85:84:a6:de:42:85:76:66:e6:f1:4d:87:d9:90:5e: d3:1d:36:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZug6nMFdROC7QRop3jovrK1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTA5MDQwMTE3WhcNMjYwMTEwMDQwMTE3WjAzMTEwLwYDVQQD Eyg4ZjUzMjUwZTlhNzQwNGY1NGU3ZjhmYWYyMTgwMDYzYmNkOTFmNmQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwtqVmUYqHhntqSoSCxh8dWEC3Vgl E/IixqUIkT6g02LZGha26PKGvaMidlHg06hYAmdNe/mgL6EX0gwZ1XiSxPxwzNsw AMVD/8l/1y5JaVOCMWmLZqAQGvnrOby1JQBErpFw1thDfi1Mm3dhC+OP7wEatfPU q4SbkYH+VG793RqHMoYKStITOzh/1EDjx7h4mArpJ7GMI4nYETJxYa2gXF2v6/Fj bffTqehLB9/XKSFq5NgFCv3bgSXKyRRndilFCj5Tqhf24fDUg/cdm7GYYeSigpsg k+ksCsM9hiYt5Yc5lv4H2KAmKNmW3v2L+grvWes3JfoOFJyv4d5tb+3SUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI9TJQ6adAT1Tn+PryGABjvNkfbWMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAPzroSWz MIVCNOH41XR1xbfip7JDs6Hyl+UbQqPEmE9cwP1eWabEm+NEgun61MsfyMnqx5xx xkOZ3FUuRjYdv08MVBKj1aC4RZ4+cXy4CrVfMHrgyoBURBRxUOC0/c2uQV40wqh2 96eEHj8lD3koCm6pmAOqSlcS+0kiJjVoyTcLqjLMsQ4hg/dME4o9Ag6Ty9OhB7HA psWNmLBJbqRsTxhfeogWR+YQfESLRAjHpPwpxVW2v07vWHgHps1GHms/PQ2CSZq5 sXoLNDE5njcF6+2UfeFB9SENyx8hAynilDsFQndUTZXl9m6TjyDchYSm3kKFdmbm 8U2H2ZBe0x021A== -----END CERTIFICATE-----Generated at Fri Jan 9 07:06:08 2026 by rpki-client