This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File:                     CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier:          8QGt8Q/KN2i2WWzLQoMWtgs/ou8JysfSxBpn4k0P/A0=
Subject key identifier:   92:F9:5F:50:AB:95:15:C6:33:47:EE:0C:C5:49:F9:8C:BE:E9:8E:FC
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer:       /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial:       019BD68F5B5D5A88DC724AF7613AC18CF1A3
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number:          0BF8
Signing time:             Mon 19 Jan 2026 14:01:17 +0000
Manifest this update:     Mon 19 Jan 2026 14:01:17 +0000
Manifest next update:     Tue 20 Jan 2026 14:01:17 +0000
Files and hashes:         1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: rHokuMC5TfK0Ct5l3aVRIO84MErYYL6Qz/ccVzle5nY=)
                          2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
                          3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
                          4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
                          5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
                          6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
                          7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
                          8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
                          9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 20 Jan 2026 09:01:26 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:d6:8f:5b:5d:5a:88:dc:72:4a:f7:61:3a:c1:8c:f1:a3
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
        Validity
            Not Before: Jan 19 14:01:17 2026 GMT
            Not After : Jan 20 14:01:17 2026 GMT
        Subject: CN=92f95f50ab9515c63347ee0cc549f98cbee98efc
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:9c:72:d6:8f:0d:1a:ac:82:2e:6a:72:64:0a:4c:
                    ec:40:d3:2d:ac:62:ee:cb:1c:79:88:37:24:09:63:
                    8c:f5:58:1c:b1:a3:32:79:7a:c1:c3:0f:7f:1d:9d:
                    56:a6:0f:9b:f0:c5:e2:f7:71:61:ae:33:ea:8c:cb:
                    e8:6f:30:a6:1d:d7:7b:07:e8:9b:4b:55:fa:c7:fc:
                    2d:0c:2e:8d:2a:db:de:4d:fd:a3:21:22:b0:9e:8c:
                    61:1b:43:42:2d:88:71:4f:0f:9d:de:17:10:e9:f7:
                    cc:48:cf:fc:01:13:3b:26:db:87:14:78:24:3c:be:
                    13:ab:43:9e:6c:ae:f9:f9:7d:36:8a:4b:f2:bc:c8:
                    b5:31:36:1a:ca:f1:00:eb:f5:e2:33:a7:d0:5d:76:
                    58:c2:4a:96:42:41:0c:55:9e:b3:a5:5a:c3:fc:da:
                    fe:dc:19:f0:18:49:50:51:17:88:f8:84:75:55:f0:
                    22:86:59:bb:92:55:7e:92:68:56:c5:c1:ec:3b:9b:
                    f1:ff:e7:f3:2a:b8:57:5a:84:25:9a:4d:6c:f8:64:
                    67:7e:16:9f:ed:c9:3a:25:59:01:f5:37:4f:48:62:
                    d9:11:9b:a6:0e:68:6c:a2:45:f6:1d:4f:ce:df:ae:
                    62:72:8b:53:31:26:58:b6:87:de:68:da:61:03:a5:
                    1d:a1
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                92:F9:5F:50:AB:95:15:C6:33:47:EE:0C:C5:49:F9:8C:BE:E9:8E:FC
            X509v3 Authority Key Identifier:
                keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         1c:2a:04:9c:c1:94:6a:2f:5a:4c:f2:5d:3a:d1:32:05:39:bc:
         66:fa:4c:3a:11:1f:96:6d:22:21:04:4c:68:56:b8:04:ea:7c:
         71:2b:6a:f3:68:54:55:4b:84:21:13:cc:18:0f:6a:9f:34:d8:
         a1:0b:e9:ef:82:cd:fe:26:c9:6c:10:7c:ad:34:d3:1a:f1:dc:
         38:ef:d5:74:5e:60:39:63:cd:95:5d:30:d7:86:d3:2e:9e:9c:
         82:89:04:61:e9:fe:bc:7e:c2:ea:dc:84:96:b1:72:01:b3:14:
         90:21:e5:12:c5:a5:86:ce:8d:24:dd:f1:86:2f:df:20:11:05:
         17:5e:5b:7d:7d:8d:d5:53:40:65:e8:19:00:d6:9f:41:cf:65:
         31:e1:c9:11:01:a0:13:a4:a6:01:fb:b2:1e:42:51:09:38:02:
         fe:5e:16:07:e2:a0:2c:44:04:5b:f9:be:c1:92:47:71:a7:a5:
         f3:8c:44:de:c1:6a:ba:89:06:42:a2:1d:5b:33:c5:17:23:d8:
         08:f2:e9:9c:07:8d:d3:7a:2f:94:28:b8:55:57:d7:af:c1:4e:
         b2:73:22:6e:9e:6e:67:07:e8:3d:5d:c6:47:4a:77:df:9a:67:
         d0:7b:a7:1a:f8:94:d0:39:1a:8e:b4:2b:79:e5:50:84:74:9f:
         1b:a9:64:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 19 18:28:55 2026 by rpki-client