This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: SgfPPBp9PRv34zljvGBP7cdZaug3fdbGNV8z5JTJD7Q= Subject key identifier: 22:BB:26:5E:F2:17:C8:82:5C:1E:1B:82:36:17:81:24:3E:84:17:D1 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019AE9AADC2D7B63490D1F1D36B7D5C805C9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B78 Signing time: Thu 04 Dec 2025 14:01:19 +0000 Manifest this update: Thu 04 Dec 2025 14:01:19 +0000 Manifest next update: Fri 05 Dec 2025 14:01:19 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: mak8vrWjPEI1n7iBkEKDfQCToUrJdYn8sRqSKEzunx8=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: EVMsfS_gj7nu6QBPzwHM9-nv1dk.roa (hash: JkA/lHi+qKLwWerCwFGo9R5oWx1tdygUbUd8zkkpqNk=) 5: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 05 Dec 2025 14:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:e9:aa:dc:2d:7b:63:49:0d:1f:1d:36:b7:d5:c8:05:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 4 14:01:19 2025 GMT Not After : Dec 5 14:01:19 2025 GMT Subject: CN=22bb265ef217c8825c1e1b82361781243e8417d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d1:c8:d0:d7:d7:5e:68:ba:63:12:69:7d:46: fd:95:92:ff:6d:50:5c:c5:53:71:b4:3e:30:55:ce: 88:b5:cf:70:e0:fa:73:5d:50:c4:f0:89:36:0c:be: 18:01:d7:19:5e:8d:ff:a2:12:20:18:a5:41:a5:6a: 77:27:40:59:18:49:60:df:8b:01:22:78:a7:4f:56: 4f:a3:c0:1c:c0:54:46:c3:39:d2:c5:51:d8:c9:62: ff:6d:81:81:06:6b:6c:2a:f0:a1:98:d7:b3:32:83: 5b:2f:5c:5c:4a:b9:45:e1:98:4d:f9:90:78:17:75: 76:73:da:cf:d4:35:10:a1:f3:8e:d9:5f:45:3f:0d: c6:a9:f3:41:1c:a3:d2:fa:de:12:ed:d3:ea:18:38: 6f:d0:77:a4:22:83:fb:19:f2:3f:8d:37:b7:a4:d0: 77:19:12:23:dd:80:b4:14:0d:68:82:f2:1a:21:5c: bc:35:c4:24:58:66:fd:da:e3:96:f7:fb:b0:c8:5a: e8:60:b9:2b:ad:64:29:b9:11:a8:ab:96:74:e5:a8: 23:5a:bb:95:2d:0b:89:79:b2:5a:62:d4:77:ae:5b: fd:9b:2b:1f:3d:33:34:a7:2f:49:d4:e3:3e:c9:ea: 40:94:1b:5e:7d:f6:df:af:0f:f8:44:8b:55:31:85: aa:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:BB:26:5E:F2:17:C8:82:5C:1E:1B:82:36:17:81:24:3E:84:17:D1 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:22:80:b2:44:b7:42:9a:be:f0:95:86:a8:d3:63:12:db:04: c9:a6:85:0b:9d:bc:c0:c3:27:1d:32:d3:d0:cc:1a:71:51:ec: c7:1e:81:d3:ec:86:e1:5d:61:61:eb:d8:82:5b:92:b6:ea:4c: 2c:26:8e:0a:75:09:43:0f:ff:fd:f9:a2:d5:33:40:38:d6:28: 40:49:c0:b6:7f:08:36:1d:e8:5e:2a:c0:42:10:98:36:a9:be: 48:17:c9:5e:21:90:74:e0:84:0e:49:48:52:7f:74:76:df:fe: ff:b5:4e:62:bb:d2:d4:51:90:d9:fe:c9:b2:e8:ca:98:61:43: ee:09:e5:05:cc:20:e5:7d:1f:0f:23:76:e9:ae:2c:c6:29:d1: 07:b9:8e:2f:83:02:bf:08:88:ab:41:8c:35:25:53:d7:87:49: db:c4:8b:f8:cc:0b:0a:08:ad:6e:bc:65:d6:d0:d3:be:33:9b: d2:e4:67:b3:7c:79:e8:14:61:1e:22:fe:f1:3f:88:5e:3d:4c: 28:1c:d3:9b:52:f1:da:58:5c:7d:ab:ea:f4:20:29:77:97:bf: f1:12:91:54:71:5a:48:9e:7d:0a:1b:55:8d:89:42:d1:92:9e: 23:60:9a:25:bb:e3:66:97:7d:d9:58:90:a4:fb:c8:fd:ce:48: 51:e1:a6:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrpqtwte2NJDR8dNrfVyAXJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjA0MTQwMTE5WhcNMjUxMjA1MTQwMTE5WjAzMTEwLwYDVQQD EygyMmJiMjY1ZWYyMTdjODgyNWMxZTFiODIzNjE3ODEyNDNlODQxN2QxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtHI0NfXXmi6YxJpfUb9lZL/bVBc xVNxtD4wVc6Itc9w4PpzXVDE8Ik2DL4YAdcZXo3/ohIgGKVBpWp3J0BZGElg34sB IninT1ZPo8AcwFRGwznSxVHYyWL/bYGBBmtsKvChmNezMoNbL1xcSrlF4ZhN+ZB4 F3V2c9rP1DUQofOO2V9FPw3GqfNBHKPS+t4S7dPqGDhv0HekIoP7GfI/jTe3pNB3 GRIj3YC0FA1ogvIaIVy8NcQkWGb92uOW9/uwyFroYLkrrWQpuRGoq5Z05agjWruV LQuJebJaYtR3rlv9mysfPTM0py9J1OM+yepAlBteffbfrw/4RItVMYWq6wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCK7Jl7yF8iCXB4bgjYXgSQ+hBfRMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHSKAskS3 Qpq+8JWGqNNjEtsEyaaFC528wMMnHTLT0MwacVHsxx6B0+yG4V1hYevYgluStupM LCaOCnUJQw///fmi1TNAONYoQEnAtn8INh3oXirAQhCYNqm+SBfJXiGQdOCEDklI Un90dt/+/7VOYrvS1FGQ2f7JsujKmGFD7gnlBcwg5X0fDyN26a4sxinRB7mOL4MC vwiIq0GMNSVT14dJ28SL+MwLCgitbrxl1tDTvjOb0uRns3x56BRhHiL+8T+IXj1M KBzTm1Lx2lhcfavq9CApd5e/8RKRVHFaSJ59ChtVjYlC0ZKeI2CaJbvjZpd92ViQ pPvI/c5IUeGmOg== -----END CERTIFICATE-----Generated at Thu Dec 4 18:58:43 2025 by rpki-client