This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: laC994VToQ6EUIcwPQ5xy+Q3OeahL6eX1T/Vx/NCnjc= Subject key identifier: 8B:AD:0A:0A:B8:6C:14:40:F9:81:6A:46:A2:72:DA:2F:EA:66:96:8E Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BDC5A447E483FD0AC778C1B38B1615E4B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BFB Signing time: Tue 20 Jan 2026 17:01:01 +0000 Manifest this update: Tue 20 Jan 2026 17:01:01 +0000 Manifest next update: Wed 21 Jan 2026 17:01:01 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: enDkqeuQ372GZugxpKGCiHBKkbGy22h+hSiL24Qy8YQ=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 15:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:dc:5a:44:7e:48:3f:d0:ac:77:8c:1b:38:b1:61:5e:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 20 17:01:01 2026 GMT Not After : Jan 21 17:01:01 2026 GMT Subject: CN=8bad0a0ab86c1440f9816a46a272da2fea66968e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:b6:d2:95:3b:8a:b4:f2:64:95:db:68:dc:29: c6:f7:74:ba:7b:84:46:cd:0e:c2:b6:c5:ed:6d:d5: 55:3e:80:75:a9:08:6b:78:55:9a:f6:f1:fa:38:f1: 94:03:ea:45:74:d6:64:82:ef:f2:ae:76:19:91:23: e4:d2:7e:b2:9b:a2:f6:a7:e7:31:79:33:3c:72:24: 2c:34:ae:87:93:b0:e5:38:3a:b4:ad:2b:68:82:cc: d3:cc:b7:39:fe:91:26:ce:32:6f:32:55:be:4c:dd: 39:e5:5a:ca:3a:a2:fe:ff:25:0e:6d:70:f9:01:1a: 20:c3:1b:2a:e8:6a:ae:29:b3:1b:ff:42:fc:eb:01: b2:22:7e:3b:5f:51:72:32:37:5c:fb:bd:69:30:24: 3f:69:57:31:c5:ef:e0:b5:ab:27:97:15:54:58:ee: c2:08:b7:c7:97:f0:39:83:7b:03:5b:86:50:1f:ef: b1:fc:4a:c3:e8:4e:99:52:79:9e:da:ec:5a:9c:1d: 8f:5a:e4:f4:0d:9e:7c:6c:9f:5a:a2:d5:63:ce:e2: 4e:02:d8:5b:9a:8b:c2:34:ba:e4:7e:25:e1:31:61: 08:2f:7c:dc:b9:e5:63:8d:fb:9d:cd:12:e4:cc:6d: b9:83:90:b5:7d:5b:05:82:b4:2c:46:a6:74:3e:63: 52:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:AD:0A:0A:B8:6C:14:40:F9:81:6A:46:A2:72:DA:2F:EA:66:96:8E X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:04:6a:ee:b5:f3:59:4b:4a:14:be:5e:d7:d3:97:1f:5a:f8: 02:ea:8c:44:6e:a9:d1:c4:4f:f0:ec:44:54:5b:cd:d6:86:60: 52:58:e1:f0:3e:47:15:1c:df:cb:f4:ef:1f:17:8e:d7:e8:a6: 04:73:eb:32:5a:d9:f2:5e:b2:71:2a:3d:54:25:1f:9d:77:f5: 1d:ce:86:6d:e6:c6:54:1a:3f:ca:8e:73:d3:6f:72:9a:fb:ef: ce:9e:23:98:84:18:7b:ad:bc:1e:b0:8a:c5:e7:73:fd:7c:00: 35:cd:6e:7e:60:72:08:fb:5b:04:53:4b:56:36:7b:63:c1:31: e4:d2:42:8f:47:77:0f:ca:17:e9:17:58:3d:47:14:d8:8e:29: 05:f3:f3:6f:4a:23:02:7a:3d:e1:17:7c:01:eb:d3:5d:66:17: 0d:ed:b4:54:2a:a5:d4:2c:4a:d7:1f:dd:09:c9:9f:98:91:3b: 3f:c5:c9:c4:ea:90:9f:3b:f7:cf:75:66:67:19:0f:04:e0:0b: 98:b4:47:59:6a:25:51:cc:62:17:66:f4:46:8b:09:00:59:9f: c4:4d:0b:d3:04:e0:c9:80:4d:04:1a:8a:3b:98:0a:a2:e6:23: b2:ce:2f:05:d1:e1:26:2d:52:2f:2c:56:a9:c3:63:5f:aa:f1: 41:59:c4:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvcWkR+SD/QrHeMGzixYV5LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTIwMTcwMTAxWhcNMjYwMTIxMTcwMTAxWjAzMTEwLwYDVQQD Eyg4YmFkMGEwYWI4NmMxNDQwZjk4MTZhNDZhMjcyZGEyZmVhNjY5NjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAprbSlTuKtPJkldto3CnG93S6e4RG zQ7CtsXtbdVVPoB1qQhreFWa9vH6OPGUA+pFdNZkgu/yrnYZkSPk0n6ym6L2p+cx eTM8ciQsNK6Hk7DlODq0rStogszTzLc5/pEmzjJvMlW+TN055VrKOqL+/yUObXD5 ARogwxsq6GquKbMb/0L86wGyIn47X1FyMjdc+71pMCQ/aVcxxe/gtasnlxVUWO7C CLfHl/A5g3sDW4ZQH++x/ErD6E6ZUnme2uxanB2PWuT0DZ58bJ9aotVjzuJOAthb movCNLrkfiXhMWEIL3zcueVjjfudzRLkzG25g5C1fVsFgrQsRqZ0PmNS+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIutCgq4bBRA+YFqRqJy2i/qZpaOMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWQRq7rXz WUtKFL5e19OXH1r4AuqMRG6p0cRP8OxEVFvN1oZgUljh8D5HFRzfy/TvHxeO1+im BHPrMlrZ8l6ycSo9VCUfnXf1Hc6GbebGVBo/yo5z029ymvvvzp4jmIQYe628HrCK xedz/XwANc1ufmByCPtbBFNLVjZ7Y8Ex5NJCj0d3D8oX6RdYPUcU2I4pBfPzb0oj Ano94Rd8AevTXWYXDe20VCql1CxK1x/dCcmfmJE7P8XJxOqQnzv3z3VmZxkPBOAL mLRHWWolUcxiF2b0RosJAFmfxE0L0wTgyYBNBBqKO5gKouYjss4vBdHhJi1SLyxW qcNjX6rxQVnEVw== -----END CERTIFICATE-----Generated at Tue Jan 20 19:03:56 2026 by rpki-client