This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 3zpJDx7BOtJHuf2M/IQa5zTJWgvmArLJiJkT7dbTAZ4= Subject key identifier: 71:60:3C:A3:96:F3:D6:18:E2:86:E4:86:5D:94:A7:F3:D3:41:60:F8 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019AB6987D60CBD35EDCBE2501DC80D15CA1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B5D Signing time: Mon 24 Nov 2025 16:00:38 +0000 Manifest this update: Mon 24 Nov 2025 16:00:38 +0000 Manifest next update: Tue 25 Nov 2025 16:00:38 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: +yyjT2Otp0NvX83ZbpZRJHX4tM7tY/fp4tnZCb5syR0=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 25 Nov 2025 16:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b6:98:7d:60:cb:d3:5e:dc:be:25:01:dc:80:d1:5c:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 24 16:00:38 2025 GMT Not After : Nov 25 16:00:38 2025 GMT Subject: CN=71603ca396f3d618e286e4865d94a7f3d34160f8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c8:e2:24:7c:e8:ae:60:51:f2:90:f7:e8:80: d8:30:a9:22:75:31:07:99:9c:5c:ba:70:84:04:b8: 34:5c:fd:8a:e9:48:d8:b5:2a:0b:a0:6e:ad:2f:bc: 99:50:16:81:b6:43:8b:dd:bb:de:f3:8e:28:3b:64: 5c:fd:03:11:3a:03:9d:17:06:3a:0f:d7:25:14:38: 76:80:28:cc:66:06:70:b0:05:52:67:81:38:ba:b1: b0:50:40:fb:4b:94:43:cc:b0:8c:d2:93:fc:41:bb: a4:1b:1e:af:35:09:65:a3:10:c9:c9:87:44:49:4c: 99:23:83:65:65:52:fa:90:d9:42:90:bf:21:f7:d9: 58:15:7e:e3:1a:b0:1f:cc:24:69:e4:2e:2f:f1:c5: 07:00:4f:88:e9:ea:c7:fe:27:d4:0e:1b:bd:45:e8: 9f:3a:ef:2c:57:0d:8b:f1:0a:10:07:d9:75:f3:97: 4b:3b:2d:99:17:53:9b:9d:f3:24:c8:0a:6e:e7:bd: 14:67:76:c6:d3:9d:da:e2:c3:7a:e5:cf:5c:b3:72: 8e:ab:75:cf:92:10:96:ca:de:ef:f9:46:6c:99:a6: b3:27:88:cf:4b:81:70:06:4b:a1:e9:02:da:9a:1f: b6:96:5f:ed:6c:d5:1c:17:a6:d5:c0:35:89:5e:ad: 3c:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:60:3C:A3:96:F3:D6:18:E2:86:E4:86:5D:94:A7:F3:D3:41:60:F8 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:6f:27:9b:b9:ba:4f:fa:9b:e1:4c:0a:51:b8:75:4b:15:58: ba:81:56:89:3e:3e:5c:01:7e:0f:f3:20:d8:57:d2:a8:5a:da: ad:14:2e:1b:99:73:57:b8:0a:06:33:95:d1:3c:d3:ed:53:08: bc:ee:f3:0a:15:7d:1f:ae:8e:90:01:08:26:ef:6d:3d:a6:c7: ef:b8:d0:f8:0e:35:d3:1a:d2:36:fd:8f:bd:d4:32:47:69:bf: 67:f3:15:60:3e:d3:c9:f5:e0:cd:ea:d0:e4:ce:ec:60:d0:aa: 80:7e:79:0d:1d:26:59:1c:50:de:9c:50:f2:8d:f5:14:c1:db: 84:22:93:41:c0:b6:a5:a1:07:82:01:43:87:05:15:98:62:be: a7:a1:ac:10:f4:c4:2f:81:7e:56:18:7e:dc:9a:40:97:42:cd: 92:a9:65:f3:66:c5:9b:25:22:65:2d:86:ca:50:4f:da:f3:f3: cc:fe:96:19:29:ac:67:fc:d8:74:a3:2a:55:9c:ca:47:9d:72: 04:f6:ec:40:58:d5:20:8d:20:c4:57:6a:d0:2c:c7:70:f3:5b: dd:d9:2b:1d:98:c3:a5:30:a8:d3:79:23:6a:4c:4b:d9:f6:5e: f9:43:33:c8:68:d5:6b:dc:9f:d1:d1:7e:65:9f:c6:d2:f3:90: 8c:d4:aa:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZq2mH1gy9Ne3L4lAdyA0VyhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTI0MTYwMDM4WhcNMjUxMTI1MTYwMDM4WjAzMTEwLwYDVQQD Eyg3MTYwM2NhMzk2ZjNkNjE4ZTI4NmU0ODY1ZDk0YTdmM2QzNDE2MGY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAucjiJHzormBR8pD36IDYMKkidTEH mZxcunCEBLg0XP2K6UjYtSoLoG6tL7yZUBaBtkOL3bve844oO2Rc/QMROgOdFwY6 D9clFDh2gCjMZgZwsAVSZ4E4urGwUED7S5RDzLCM0pP8QbukGx6vNQlloxDJyYdE SUyZI4NlZVL6kNlCkL8h99lYFX7jGrAfzCRp5C4v8cUHAE+I6erH/ifUDhu9Reif Ou8sVw2L8QoQB9l185dLOy2ZF1ObnfMkyApu570UZ3bG053a4sN65c9cs3KOq3XP khCWyt7v+UZsmaazJ4jPS4FwBkuh6QLamh+2ll/tbNUcF6bVwDWJXq08awIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHFgPKOW89YY4obkhl2Up/PTQWD4MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcm8nm7m6 T/qb4UwKUbh1SxVYuoFWiT4+XAF+D/Mg2FfSqFrarRQuG5lzV7gKBjOV0TzT7VMI vO7zChV9H66OkAEIJu9tPabH77jQ+A410xrSNv2PvdQyR2m/Z/MVYD7TyfXgzerQ 5M7sYNCqgH55DR0mWRxQ3pxQ8o31FMHbhCKTQcC2paEHggFDhwUVmGK+p6GsEPTE L4F+Vhh+3JpAl0LNkqll82bFmyUiZS2GylBP2vPzzP6WGSmsZ/zYdKMqVZzKR51y BPbsQFjVII0gxFdq0CzHcPNb3dkrHZjDpTCo03kjakxL2fZe+UMzyGjVa9yf0dF+ ZZ/G0vOQjNSqkg== -----END CERTIFICATE-----Generated at Mon Nov 24 23:59:09 2025 by rpki-client