This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 7N3vGAqVLeCINn9Rcj9iyngKUeAQwRY12wAobRFi5R4= Subject key identifier: 7A:0B:2F:67:D4:E0:8D:A8:9F:41:8A:37:78:50:8F:05:A1:E1:6F:00 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019AA15A41A26601C32CD9018C7C389B012A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B52 Signing time: Thu 20 Nov 2025 13:00:37 +0000 Manifest this update: Thu 20 Nov 2025 13:00:37 +0000 Manifest next update: Fri 21 Nov 2025 13:00:37 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Ms3EO+r5HKDBbJW6vTlrl2EUyp+0XZM2TpLWOsZFS3M=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 21 Nov 2025 13:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a1:5a:41:a2:66:01:c3:2c:d9:01:8c:7c:38:9b:01:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 20 13:00:37 2025 GMT Not After : Nov 21 13:00:37 2025 GMT Subject: CN=7a0b2f67d4e08da89f418a3778508f05a1e16f00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:06:46:6d:82:ce:ee:c2:13:a1:35:55:8e:d5: f4:3b:0a:01:d9:80:a6:33:9a:ea:a0:94:52:21:ec: b5:3a:88:ff:13:07:cc:81:09:aa:3d:42:af:70:53: 50:9c:5c:63:8d:e9:f6:54:66:d3:e8:5b:a7:ce:34: 76:3d:de:3e:e7:b9:dc:ed:ea:f5:2c:37:73:4a:46: 9b:1b:7b:4b:c8:88:79:d7:3e:ed:bd:ab:04:ab:02: 20:8e:1d:77:55:df:dd:0a:cb:46:2d:25:95:6d:92: 42:92:7b:43:8d:40:5c:20:0c:95:4f:5d:4e:66:a0: a6:42:3e:c5:32:1b:a2:92:e3:99:09:19:05:e7:3f: cd:fa:1f:33:bd:77:4d:03:d2:85:65:40:52:64:f1: 52:22:c8:60:66:f0:5a:b7:7f:e1:ef:2c:dd:41:a9: d3:f4:1f:7f:ba:f1:59:62:3b:f6:15:d7:d7:74:36: 8f:31:ba:da:b0:39:10:6b:88:47:0a:75:11:de:0a: ef:e1:6a:38:dc:14:b5:fb:42:a5:5c:ae:47:61:6f: 92:38:b1:7c:b9:cf:c9:5e:59:59:7b:81:cb:6c:59: cc:dc:2b:16:f9:5f:43:bc:9e:32:43:df:5e:f1:dc: 80:1c:8c:9c:d6:e3:45:25:d9:6c:1f:7e:f0:32:8f: e2:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:0B:2F:67:D4:E0:8D:A8:9F:41:8A:37:78:50:8F:05:A1:E1:6F:00 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:93:10:1c:89:df:d6:89:bb:75:18:1e:96:24:18:10:d9:4e: 40:44:a3:85:f6:40:89:1a:bf:73:fe:9c:7a:c1:96:64:90:91: 55:4c:ee:33:59:05:d8:a4:7b:72:dd:99:c0:ae:f2:c1:ea:99: ba:7c:6c:94:15:3e:11:26:b9:1e:0b:6c:de:fe:63:d8:b0:d2: c3:1f:d2:64:1e:45:ea:a8:10:62:a5:f5:82:42:af:c1:20:52: fc:55:de:8e:61:23:97:6d:3c:3a:fb:66:6c:46:ef:7c:23:89: 35:ba:a6:be:c1:39:03:eb:5f:5e:c6:07:b7:0b:40:46:d9:d7: 7f:05:45:8e:65:75:ad:d2:01:50:8e:0c:b3:91:23:ad:21:ae: 5e:a9:d6:0e:86:83:c6:d8:75:52:8d:97:4b:6b:a9:a5:2c:bc: 2f:5d:4a:27:bd:4a:ba:17:20:a0:8d:54:c9:9a:37:4d:ce:91: 95:f7:bf:e3:8d:d2:9d:8f:d6:02:ba:78:07:a4:56:50:3e:2d: 2e:54:42:bc:ad:5d:6b:41:a9:12:af:c1:ab:19:4d:c0:7b:58: 1f:7d:40:90:8f:68:b2:4d:3c:81:4a:7b:3b:e8:2f:d9:94:a0: 0b:a3:88:cb:ff:f7:04:95:3b:09:16:46:a3:a4:9c:8d:e0:2c: 2e:d2:8f:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqhWkGiZgHDLNkBjHw4mwEqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTIwMTMwMDM3WhcNMjUxMTIxMTMwMDM3WjAzMTEwLwYDVQQD Eyg3YTBiMmY2N2Q0ZTA4ZGE4OWY0MThhMzc3ODUwOGYwNWExZTE2ZjAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwZGbYLO7sIToTVVjtX0OwoB2YCm M5rqoJRSIey1Ooj/EwfMgQmqPUKvcFNQnFxjjen2VGbT6FunzjR2Pd4+57nc7er1 LDdzSkabG3tLyIh51z7tvasEqwIgjh13Vd/dCstGLSWVbZJCkntDjUBcIAyVT11O ZqCmQj7FMhuikuOZCRkF5z/N+h8zvXdNA9KFZUBSZPFSIshgZvBat3/h7yzdQanT 9B9/uvFZYjv2FdfXdDaPMbrasDkQa4hHCnUR3grv4Wo43BS1+0KlXK5HYW+SOLF8 uc/JXllZe4HLbFnM3CsW+V9DvJ4yQ99e8dyAHIyc1uNFJdlsH37wMo/i9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHoLL2fU4I2on0GKN3hQjwWh4W8AMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMJMQHInf 1om7dRgeliQYENlOQESjhfZAiRq/c/6cesGWZJCRVUzuM1kF2KR7ct2ZwK7yweqZ unxslBU+ESa5Hgts3v5j2LDSwx/SZB5F6qgQYqX1gkKvwSBS/FXejmEjl208Ovtm bEbvfCOJNbqmvsE5A+tfXsYHtwtARtnXfwVFjmV1rdIBUI4Ms5EjrSGuXqnWDoaD xth1Uo2XS2uppSy8L11KJ71KuhcgoI1UyZo3Tc6Rlfe/443SnY/WArp4B6RWUD4t LlRCvK1da0GpEq/BqxlNwHtYH31AkI9osk08gUp7O+gv2ZSgC6OIy//3BJU7CRZG o6ScjeAsLtKPiw== -----END CERTIFICATE-----Generated at Thu Nov 20 21:10:20 2025 by rpki-client