This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: JCla5HqPNo0OS5nJg3T3ZuntB/PLVDwNbeedjTJBl7I= Subject key identifier: B0:2D:37:2D:4D:06:D8:1B:89:01:E2:9B:3B:27:39:CE:25:6F:08:AB Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019ACBD73DDDEC4D69CE3FE994499CE3EC38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B68 Signing time: Fri 28 Nov 2025 19:01:12 +0000 Manifest this update: Fri 28 Nov 2025 19:01:12 +0000 Manifest next update: Sat 29 Nov 2025 19:01:12 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: hBlubxvULJDzvs/+x8IjluqQNrKA+I5gDhxySO4uPrk=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 29 Nov 2025 19:01:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:cb:d7:3d:dd:ec:4d:69:ce:3f:e9:94:49:9c:e3:ec:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 28 19:01:12 2025 GMT Not After : Nov 29 19:01:12 2025 GMT Subject: CN=b02d372d4d06d81b8901e29b3b2739ce256f08ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:bc:54:1f:a7:a3:05:fd:e9:4b:9d:de:20:c9: d4:28:af:a6:17:e5:bc:29:8c:3d:84:86:73:e7:a7: 28:e7:0b:9c:b0:79:fb:55:f8:ba:e9:d2:83:42:2e: f1:81:78:d9:f0:2a:66:8b:51:60:eb:eb:e2:29:9e: cc:92:11:26:5e:7c:b5:79:9d:16:e5:c8:de:b4:a1: f5:70:03:c9:77:19:b7:01:19:97:8b:5d:b2:ca:e4: 7f:2e:b1:ad:5d:a0:b4:b3:61:57:1e:1e:e3:28:49: 99:ff:c4:3c:8c:d9:51:63:01:af:37:16:ec:0b:62: 96:57:92:bc:e6:a4:11:29:54:36:3a:05:0d:5a:b4: ed:a1:f1:b4:c2:34:48:db:e7:8a:fb:d3:1c:a2:03: 57:05:00:30:42:7f:4c:b1:a8:2c:0b:75:71:31:cc: 39:d5:a2:c9:b6:e8:a6:70:2f:08:e6:fc:fb:9d:dd: 0f:14:98:0b:f3:cd:8e:c3:7a:48:ec:56:39:12:e8: 25:ef:78:5c:50:23:1a:69:62:9f:46:11:99:de:aa: 32:5d:55:d8:77:12:2a:a8:4e:b9:72:f2:1d:e9:47: bd:d9:76:00:de:25:38:83:f6:06:a5:08:8c:ff:1b: 60:d8:1e:4e:84:f9:61:df:56:bc:3f:da:29:9a:05: 71:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2D:37:2D:4D:06:D8:1B:89:01:E2:9B:3B:27:39:CE:25:6F:08:AB X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:36:b7:0c:ff:09:22:0f:cb:69:6e:26:1d:e4:36:ba:c6:0a: 53:5d:9c:22:22:4a:83:0f:e0:29:cd:09:8e:57:d8:5f:e1:1b: c3:40:5f:c3:85:ce:40:03:a9:97:16:48:ae:23:fd:4b:98:33: 93:b0:6c:42:6b:98:48:cd:07:cc:37:18:b7:27:b6:f6:d2:d1: ba:b9:e8:e8:7a:3b:d4:4f:53:9a:59:23:66:74:b7:a6:01:98: 54:89:70:2c:e6:17:d5:16:b6:4b:fe:a7:aa:0a:52:00:7a:c4: 26:90:1f:58:b5:da:e1:b9:b7:1b:7e:dc:57:02:de:06:71:46: 1a:2d:09:f8:ce:04:45:6c:61:ae:4d:5c:22:bd:4a:3e:5e:3a: 43:97:0b:ff:43:5b:b8:ec:80:56:c9:dc:20:37:e5:33:30:cc: c0:2a:ae:0e:57:f1:c6:40:0e:88:a3:36:5d:bf:df:f6:b8:61: a9:c3:89:9b:a6:9c:d5:b5:9e:7a:d9:bf:53:92:4c:a3:32:e8: d4:24:9c:41:ed:43:d6:58:7a:40:c1:5e:3c:87:b2:d6:bb:18: 0b:86:d9:8d:29:bc:03:93:84:89:29:74:2a:3d:bd:87:82:16: 96:66:d0:ad:d2:87:cc:72:e7:67:83:fc:ed:8b:69:e8:bb:a8: 23:3b:1e:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrL1z3d7E1pzj/plEmc4+w4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTI4MTkwMTEyWhcNMjUxMTI5MTkwMTEyWjAzMTEwLwYDVQQD EyhiMDJkMzcyZDRkMDZkODFiODkwMWUyOWIzYjI3MzljZTI1NmYwOGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmrxUH6ejBf3pS53eIMnUKK+mF+W8 KYw9hIZz56co5wucsHn7Vfi66dKDQi7xgXjZ8Cpmi1Fg6+viKZ7MkhEmXny1eZ0W 5cjetKH1cAPJdxm3ARmXi12yyuR/LrGtXaC0s2FXHh7jKEmZ/8Q8jNlRYwGvNxbs C2KWV5K85qQRKVQ2OgUNWrTtofG0wjRI2+eK+9McogNXBQAwQn9MsagsC3VxMcw5 1aLJtuimcC8I5vz7nd0PFJgL882Ow3pI7FY5Eugl73hcUCMaaWKfRhGZ3qoyXVXY dxIqqE65cvId6Ue92XYA3iU4g/YGpQiM/xtg2B5OhPlh31a8P9opmgVxXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLAtNy1NBtgbiQHimzsnOc4lbwirMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARDa3DP8J Ig/LaW4mHeQ2usYKU12cIiJKgw/gKc0JjlfYX+Ebw0Bfw4XOQAOplxZIriP9S5gz k7BsQmuYSM0HzDcYtye29tLRurno6Ho71E9TmlkjZnS3pgGYVIlwLOYX1Ra2S/6n qgpSAHrEJpAfWLXa4bm3G37cVwLeBnFGGi0J+M4ERWxhrk1cIr1KPl46Q5cL/0Nb uOyAVsncIDflMzDMwCquDlfxxkAOiKM2Xb/f9rhhqcOJm6ac1bWeetm/U5JMozLo 1CScQe1D1lh6QMFePIey1rsYC4bZjSm8A5OEiSl0Kj29h4IWlmbQrdKHzHLnZ4P8 7Ytp6LuoIzseqA== -----END CERTIFICATE-----Generated at Sat Nov 29 03:04:41 2025 by rpki-client