This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: adZYIaWX8QiAcbe5wwLp8A3njmx9APvvvgASySWMy2w= Subject key identifier: 84:63:21:BA:91:1F:0D:54:A7:49:89:C0:79:79:E0:1A:5F:30:DD:68 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BAE6F9BF11212DF4F947560D5073D03E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BE3 Signing time: Sun 11 Jan 2026 19:01:48 +0000 Manifest this update: Sun 11 Jan 2026 19:01:48 +0000 Manifest next update: Mon 12 Jan 2026 19:01:48 +0000 Files and hashes: 1: 76LeK86AqDsw2hffaY83VrGgD0k.roa (hash: Cn1T0+QUKezjiIEXV7hXPpBfITvOtpQGGUudGUMuCmQ=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: +/5j8Dp/BYr3+T2PCVeeIC7mEjXIj/rHSJpEH4Fy8ow=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 5: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ae:6f:9b:f1:12:12:df:4f:94:75:60:d5:07:3d:03:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 11 19:01:48 2026 GMT Not After : Jan 12 19:01:48 2026 GMT Subject: CN=846321ba911f0d54a74989c07979e01a5f30dd68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c8:3b:de:4d:d7:84:2a:95:5f:7b:2d:be:4b: eb:5d:01:35:d1:99:c1:d0:b3:52:88:7a:e5:fd:2d: 6c:47:aa:0e:bd:39:54:f2:db:67:bd:b8:6f:82:90: 51:97:10:9c:f0:37:a9:e6:5e:b8:40:2a:b3:d8:c4: 87:dc:34:41:0e:f5:ce:86:cb:f4:93:32:49:2d:31: b1:30:48:64:f6:b6:4e:0d:ec:5c:0a:97:b4:e6:51: 72:51:95:60:90:f6:8e:2e:f3:47:b1:60:92:c9:8d: ec:5d:d1:c5:2d:fd:ae:cb:6c:6c:18:c1:e1:cf:a7: 5d:ef:c4:b0:41:b0:ed:24:94:bf:ae:0a:c7:19:b3: 23:0a:f7:e9:10:28:7e:2b:c6:91:32:da:2b:ce:1a: 9c:1c:4b:7f:b6:f1:8d:32:58:1f:92:2a:f3:35:f6: e8:69:3a:e7:76:23:60:b2:fa:4d:c8:ff:c7:e1:bf: 29:b9:c9:81:21:a3:d1:9a:8b:e2:69:05:1f:b7:11: 3d:91:ee:0f:a8:ca:0e:c1:5e:58:9c:b5:c4:d8:c5: d3:e1:c3:e9:92:73:91:50:d0:49:8d:0b:d6:0f:e0: e1:67:93:d3:76:4e:55:f0:6e:b2:0f:5a:2d:44:63: fd:3d:e0:39:02:26:da:73:49:5e:e5:cb:67:80:fb: 11:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:63:21:BA:91:1F:0D:54:A7:49:89:C0:79:79:E0:1A:5F:30:DD:68 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:f2:7a:5e:f4:f4:08:09:74:72:b6:6c:ed:49:29:ed:9c:43: 94:75:bd:e1:f4:aa:f4:8a:e4:52:3d:ab:dd:8a:8b:e3:5e:9f: af:a1:d5:8b:d6:2e:be:0c:de:3f:52:c9:40:0b:71:fc:09:87: 24:a6:df:94:29:16:b4:47:29:72:66:bf:31:5b:a0:d4:96:70: 05:4e:25:db:b0:7f:73:c3:8a:e8:af:53:14:ac:c3:c9:a4:6e: d9:66:44:c1:02:0e:2c:d6:16:4c:96:5a:36:4b:73:6b:72:20: 0b:18:d0:76:89:42:77:ca:77:30:6d:3a:1f:44:45:4f:da:f6: ff:55:2e:ad:aa:d9:2e:c7:0f:88:24:0d:eb:63:a9:3b:8f:83: 76:df:94:06:a3:e9:7c:d8:65:8a:18:89:ae:e1:0a:cb:b1:1b: 21:d5:71:d0:51:ca:95:53:ef:98:54:50:cb:8e:2f:ac:8e:d6: 37:76:65:40:bc:7b:91:0d:c1:18:f9:e1:7c:91:65:77:f6:5a: 9a:1b:b8:f9:39:23:83:94:7a:0a:22:e4:f6:35:d7:87:6d:7b: 08:98:22:94:b3:cf:8a:f5:37:f8:39:ba:94:3b:26:60:c6:4b: 68:6f:63:70:ca:a0:22:3b:fe:2d:6b:13:b0:70:ff:a9:17:c1: e7:2f:d9:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuub5vxEhLfT5R1YNUHPQPoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTExMTkwMTQ4WhcNMjYwMTEyMTkwMTQ4WjAzMTEwLwYDVQQD Eyg4NDYzMjFiYTkxMWYwZDU0YTc0OTg5YzA3OTc5ZTAxYTVmMzBkZDY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4cg73k3XhCqVX3stvkvrXQE10ZnB 0LNSiHrl/S1sR6oOvTlU8ttnvbhvgpBRlxCc8Dep5l64QCqz2MSH3DRBDvXOhsv0 kzJJLTGxMEhk9rZODexcCpe05lFyUZVgkPaOLvNHsWCSyY3sXdHFLf2uy2xsGMHh z6dd78SwQbDtJJS/rgrHGbMjCvfpECh+K8aRMtorzhqcHEt/tvGNMlgfkirzNfbo aTrndiNgsvpNyP/H4b8pucmBIaPRmoviaQUftxE9ke4PqMoOwV5YnLXE2MXT4cPp knORUNBJjQvWD+DhZ5PTdk5V8G6yD1otRGP9PeA5Aibac0le5ctngPsRkwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIRjIbqRHw1Up0mJwHl54BpfMN1oMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbPJ6XvT0 CAl0crZs7Ukp7ZxDlHW94fSq9IrkUj2r3YqL416fr6HVi9YuvgzeP1LJQAtx/AmH JKbflCkWtEcpcma/MVug1JZwBU4l27B/c8OK6K9TFKzDyaRu2WZEwQIOLNYWTJZa Nktza3IgCxjQdolCd8p3MG06H0RFT9r2/1UurarZLscPiCQN62OpO4+Ddt+UBqPp fNhlihiJruEKy7EbIdVx0FHKlVPvmFRQy44vrI7WN3ZlQLx7kQ3BGPnhfJFld/Za mhu4+Tkjg5R6CiLk9jXXh217CJgilLPPivU3+Dm6lDsmYMZLaG9jcMqgIjv+LWsT sHD/qRfB5y/ZmA== -----END CERTIFICATE-----Generated at Mon Jan 12 01:59:35 2026 by rpki-client