This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 54TaKswlyZlkotBnHG3WSNgTnMjCwocMV5Ap+BUnJa0= Subject key identifier: 91:0C:8E:1D:BB:46:84:7E:C8:C5:27:1D:6E:F8:8C:96:FA:29:2D:1F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B46CB2FB0B05B6644DD25A0A76D03A83C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BAD Signing time: Mon 22 Dec 2025 16:01:19 +0000 Manifest this update: Mon 22 Dec 2025 16:01:19 +0000 Manifest next update: Tue 23 Dec 2025 16:01:19 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: KAGgRG08X9gkExsEv8fLjkWJsV/gAu8G1WoMf/uh1nM=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 15:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:46:cb:2f:b0:b0:5b:66:44:dd:25:a0:a7:6d:03:a8:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 22 16:01:19 2025 GMT Not After : Dec 23 16:01:19 2025 GMT Subject: CN=910c8e1dbb46847ec8c5271d6ef88c96fa292d1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d7:bf:d4:1f:93:3d:a1:c3:a0:e6:f9:93:12: 13:e0:e4:1c:5c:71:c4:1c:37:6b:f3:3c:cc:b5:b6: d6:82:bb:43:79:c4:33:00:97:41:41:b3:5e:a4:fb: 1d:db:8b:ac:74:09:90:d4:09:06:63:8b:f5:07:fd: 25:b5:30:b4:e9:d4:45:ba:2c:cb:b8:46:c9:50:eb: 26:d1:c4:cc:e8:61:4f:77:d7:8a:29:c3:9c:3f:39: 8c:77:7c:26:77:e4:31:f5:c6:4e:87:da:e1:2a:c4: 66:e5:bf:23:52:bd:cb:77:2a:23:60:57:b6:fa:da: 56:99:a4:df:e8:8e:ba:f8:63:17:74:f3:a5:55:a5: 86:b1:50:86:20:cd:75:61:bb:21:fc:fa:f8:e6:de: 46:b2:02:2f:c1:3b:b7:0f:45:c6:6d:6c:58:f0:3e: 27:7c:df:31:42:e5:e5:3d:5d:8a:cd:62:14:d2:05: bf:93:45:3d:4d:5d:b5:4a:a7:50:a6:96:16:31:3d: d3:52:3c:5c:e4:63:e6:90:89:8c:32:6b:78:69:22: 0f:e7:95:52:0e:e5:fa:e8:1e:b1:4d:c5:d9:ab:c6: db:f4:20:17:4f:54:06:15:e2:f1:d6:77:9a:6a:e0: a6:9b:66:3f:c0:ba:fd:c4:de:8b:47:09:6f:34:5d: a6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:0C:8E:1D:BB:46:84:7E:C8:C5:27:1D:6E:F8:8C:96:FA:29:2D:1F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:73:b7:95:d0:8e:26:f7:ce:59:3d:a7:c9:84:06:7c:c9:d4: a5:aa:9d:3f:4e:36:be:99:a4:21:e6:9d:3b:bf:cf:43:7f:7d: 3e:a8:69:c7:a2:d8:78:ad:c5:4a:33:3d:1f:7e:7e:a0:3f:f7: 12:c6:44:fc:fc:89:f8:f2:a2:56:3d:7e:3c:63:f1:cf:65:1f: 68:89:e1:ce:89:5c:9b:b2:7e:a4:8b:61:35:35:cf:05:de:3d: 78:35:f7:1e:4b:76:d4:5c:5e:e9:36:a4:93:f8:6c:9d:1c:73: 74:e5:29:2c:83:97:2f:3d:78:a9:d3:ae:42:e2:ec:0b:f5:7e: 80:db:d1:e8:87:4b:26:5f:16:28:52:6a:b6:7b:85:d8:42:2e: b8:96:4c:26:94:f1:83:3e:e7:7c:b4:7e:51:64:d4:b4:00:85: 6d:06:09:a0:79:c8:b0:23:fb:00:d2:d7:ad:cf:f8:4b:77:6b: 93:b4:06:08:de:11:99:f3:cc:50:5c:52:32:0a:34:d3:eb:05: a7:34:6e:b1:89:14:cc:81:ce:e9:64:b1:af:2b:8f:16:ca:9f: 4b:02:db:df:b1:80:a6:f1:f4:30:04:6a:40:76:54:23:0d:80: f0:c5:14:70:71:21:33:20:69:89:73:17:89:8f:7a:26:9c:bd: 97:b1:96:38 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtGyy+wsFtmRN0loKdtA6g8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjIyMTYwMTE5WhcNMjUxMjIzMTYwMTE5WjAzMTEwLwYDVQQD Eyg5MTBjOGUxZGJiNDY4NDdlYzhjNTI3MWQ2ZWY4OGM5NmZhMjkyZDFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvte/1B+TPaHDoOb5kxIT4OQcXHHE HDdr8zzMtbbWgrtDecQzAJdBQbNepPsd24usdAmQ1AkGY4v1B/0ltTC06dRFuizL uEbJUOsm0cTM6GFPd9eKKcOcPzmMd3wmd+Qx9cZOh9rhKsRm5b8jUr3LdyojYFe2 +tpWmaTf6I66+GMXdPOlVaWGsVCGIM11Ybsh/Pr45t5GsgIvwTu3D0XGbWxY8D4n fN8xQuXlPV2KzWIU0gW/k0U9TV21SqdQppYWMT3TUjxc5GPmkImMMmt4aSIP55VS DuX66B6xTcXZq8bb9CAXT1QGFeLx1neaauCmm2Y/wLr9xN6LRwlvNF2mvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJEMjh27RoR+yMUnHW74jJb6KS0fMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANnO3ldCO JvfOWT2nyYQGfMnUpaqdP042vpmkIeadO7/PQ399Pqhpx6LYeK3FSjM9H35+oD/3 EsZE/PyJ+PKiVj1+PGPxz2UfaInhzolcm7J+pIthNTXPBd49eDX3Hkt21Fxe6Tak k/hsnRxzdOUpLIOXLz14qdOuQuLsC/V+gNvR6IdLJl8WKFJqtnuF2EIuuJZMJpTx gz7nfLR+UWTUtACFbQYJoHnIsCP7ANLXrc/4S3drk7QGCN4RmfPMUFxSMgo00+sF pzRusYkUzIHO6WSxryuPFsqfSwLb37GApvH0MARqQHZUIw2A8MUUcHEhMyBpiXMX iY96Jpy9l7GWOA== -----END CERTIFICATE-----Generated at Mon Dec 22 18:58:11 2025 by rpki-client