This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: CGaSyyz222cwyVhgvo8f6+v815Ak+tgz3CdB6npW5lM= Subject key identifier: 3B:4A:9A:4E:0D:19:38:6E:15:BB:7A:F0:4C:F9:A5:54:9B:5B:9D:87 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B3757E78B6FFD8F436BDC398B3362E2E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BA5 Signing time: Fri 19 Dec 2025 16:01:06 +0000 Manifest this update: Fri 19 Dec 2025 16:01:06 +0000 Manifest next update: Sat 20 Dec 2025 16:01:06 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: mhgxhHXXf/cGPL2UG3iYT7tld1DcfwublO5jRR9vPm0=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:37:57:e7:8b:6f:fd:8f:43:6b:dc:39:8b:33:62:e2:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 19 16:01:06 2025 GMT Not After : Dec 20 16:01:06 2025 GMT Subject: CN=3b4a9a4e0d19386e15bb7af04cf9a5549b5b9d87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:00:ba:95:6b:bb:8d:5d:70:0b:32:b7:65:af: 4f:65:28:e3:a5:db:22:60:fe:ee:98:31:36:b6:21: a7:2c:e1:e1:29:36:d1:22:14:87:9b:45:8f:60:49: 6c:68:f6:fe:01:d4:10:36:bb:41:6a:8c:6c:05:f7: 34:4b:ef:4b:62:70:21:d8:9a:2c:73:01:71:6f:86: c4:d8:b6:7a:68:fe:98:50:b6:4a:a1:58:ed:c3:e7: 12:99:7f:94:99:2f:59:8b:65:13:2d:66:31:be:08: 8e:f2:62:74:61:84:4f:5c:26:af:a7:2d:92:ff:c2: 41:43:a8:6e:48:dd:ba:69:88:d4:3d:b3:72:4c:48: 99:40:27:3d:b2:ad:37:00:f5:9e:c0:53:32:0c:9c: 21:9a:02:85:ec:5a:9e:03:e7:2c:4b:bd:66:c0:07: 67:10:e0:4f:46:ea:f9:8d:e2:5e:77:d2:8f:e7:31: 17:c3:83:f2:ed:64:a3:e5:32:8e:4c:f4:76:ac:e2: fc:3a:ab:65:80:d6:ee:6c:5c:9f:ae:f9:c7:86:e4: 6a:fd:45:14:59:96:66:16:71:e9:5c:eb:c3:23:70: 48:a7:53:e4:81:d9:ae:48:8f:57:07:e7:64:ca:99: de:01:a0:3d:a3:0a:77:1e:bf:78:16:42:b0:fd:05: 67:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:4A:9A:4E:0D:19:38:6E:15:BB:7A:F0:4C:F9:A5:54:9B:5B:9D:87 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:75:2c:34:26:9b:af:d5:1c:05:fe:b0:24:c3:b5:3c:89:74: 76:11:55:7f:71:7c:e8:96:b6:77:c1:15:2e:2a:6a:72:bb:9a: 40:b1:80:42:33:18:e5:ce:79:0c:8c:3b:7d:ed:8e:ec:48:b6: aa:04:22:b2:58:55:31:f9:10:81:76:c5:a5:f9:3f:3c:1e:b1: ad:e1:60:a4:e1:04:00:cd:6f:6f:b2:82:d4:7b:4c:ed:5c:34: df:7a:0d:b9:19:61:34:1f:e4:3a:e2:31:e8:a3:05:32:06:2a: b8:9c:3e:6a:fc:1f:06:c0:e1:c0:48:c0:c2:b1:08:ac:b4:5e: dc:6e:d0:0e:37:78:5b:be:4f:5d:ae:85:83:b7:f3:63:9c:32: 34:a4:1a:12:76:6f:5c:14:3d:b2:ba:88:14:23:91:ef:76:4c: 1c:4e:3f:b7:72:7f:61:50:28:9a:99:21:fb:e5:f9:7b:f2:75: 61:f5:6b:e6:47:2a:98:3c:8b:e3:07:a8:07:00:39:c8:a5:7f: cf:71:ba:9f:2d:87:35:1a:46:08:c9:9d:d2:35:eb:a7:0e:55: 0f:3c:8b:18:77:97:d8:4b:46:46:59:ad:39:49:a4:28:c5:62: 3f:18:01:fb:e7:8a:8c:85:ac:0b:5c:b1:56:f5:2d:d2:86:4c: 48:a6:cd:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs3V+eLb/2PQ2vcOYszYuLpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjE5MTYwMTA2WhcNMjUxMjIwMTYwMTA2WjAzMTEwLwYDVQQD EygzYjRhOWE0ZTBkMTkzODZlMTViYjdhZjA0Y2Y5YTU1NDliNWI5ZDg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5gC6lWu7jV1wCzK3Za9PZSjjpdsi YP7umDE2tiGnLOHhKTbRIhSHm0WPYElsaPb+AdQQNrtBaoxsBfc0S+9LYnAh2Jos cwFxb4bE2LZ6aP6YULZKoVjtw+cSmX+UmS9Zi2UTLWYxvgiO8mJ0YYRPXCavpy2S /8JBQ6huSN26aYjUPbNyTEiZQCc9sq03APWewFMyDJwhmgKF7FqeA+csS71mwAdn EOBPRur5jeJed9KP5zEXw4Py7WSj5TKOTPR2rOL8OqtlgNbubFyfrvnHhuRq/UUU WZZmFnHpXOvDI3BIp1PkgdmuSI9XB+dkypneAaA9owp3Hr94FkKw/QVn4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDtKmk4NGThuFbt68Ez5pVSbW52HMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR3UsNCab r9UcBf6wJMO1PIl0dhFVf3F86Ja2d8EVLipqcruaQLGAQjMY5c55DIw7fe2O7Ei2 qgQislhVMfkQgXbFpfk/PB6xreFgpOEEAM1vb7KC1HtM7Vw033oNuRlhNB/kOuIx 6KMFMgYquJw+avwfBsDhwEjAwrEIrLRe3G7QDjd4W75PXa6Fg7fzY5wyNKQaEnZv XBQ9srqIFCOR73ZMHE4/t3J/YVAompkh++X5e/J1YfVr5kcqmDyL4weoBwA5yKV/ z3G6ny2HNRpGCMmd0jXrpw5VDzyLGHeX2EtGRlmtOUmkKMViPxgB++eKjIWsC1yx VvUt0oZMSKbNJQ== -----END CERTIFICATE-----Generated at Fri Dec 19 21:37:51 2025 by rpki-client