This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: SqHMuV/fhuWgEVyu6xDyuUKEsQvZJG1Peh5FEgtu/VY= Subject key identifier: CA:71:75:B5:16:5B:60:FB:36:71:34:FB:D9:5B:1E:0E:BF:39:D7:6B Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BDE490376D90E04931D7D58552B97C724 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BFC Signing time: Wed 21 Jan 2026 02:01:25 +0000 Manifest this update: Wed 21 Jan 2026 02:01:25 +0000 Manifest next update: Thu 22 Jan 2026 02:01:25 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: T5ucVsXMNSe+od45C7UgPwxD/xmhKUGoBKnqTyXuGzA=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 00:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:de:49:03:76:d9:0e:04:93:1d:7d:58:55:2b:97:c7:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 21 02:01:25 2026 GMT Not After : Jan 22 02:01:25 2026 GMT Subject: CN=ca7175b5165b60fb367134fbd95b1e0ebf39d76b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:02:3e:86:18:20:33:4d:a8:d4:fc:a9:56:06: 29:96:35:e8:88:87:e6:b6:bc:3a:16:be:07:2b:4e: 25:d5:7a:55:5a:d3:31:00:4e:dc:e5:92:26:f6:e9: 2a:93:02:77:eb:7c:14:b4:3b:83:cb:cf:42:23:02: 16:cc:bf:30:58:08:79:33:bb:a2:2a:73:6d:c4:ca: d8:4e:28:14:87:a8:2a:34:5f:96:b2:6c:dc:18:18: 01:c8:58:b6:1a:8c:26:ec:32:f1:48:7e:85:1d:c7: 8e:ab:e3:df:ed:74:3c:b3:cb:90:5e:29:95:49:e5: 2f:41:6d:a0:1a:e6:b7:41:fd:a6:59:ec:19:8b:0b: ff:84:d6:0e:00:a9:da:dd:26:b5:4a:ce:90:dd:2c: 44:6d:e6:dc:4c:93:73:41:80:81:fd:39:34:37:d1: a7:18:78:7c:7d:fb:67:6d:0c:74:09:22:e1:8a:bf: 00:93:48:51:c4:79:55:58:d5:71:9e:61:00:bc:1f: ba:90:2c:a6:37:81:ca:89:d6:ea:9d:9c:3c:7b:2c: bb:a4:a2:1b:3d:51:a3:06:bf:ae:15:c2:4f:ad:c3: b3:d4:56:e2:40:b8:97:3a:6c:74:04:7c:33:12:10: 05:73:a0:e8:c2:04:d6:53:28:6e:11:c6:3b:9b:b2: 7c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:71:75:B5:16:5B:60:FB:36:71:34:FB:D9:5B:1E:0E:BF:39:D7:6B X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:83:29:b0:1a:6e:4a:5f:73:15:35:38:f9:f3:02:df:fc:9b: 7b:c8:0f:99:f6:f4:0a:ae:59:f8:fb:c6:dd:11:7b:08:b3:57: de:01:e6:c3:72:27:b4:d6:19:e7:14:44:ab:fd:75:9b:40:90: ea:41:66:22:98:26:5e:3b:f9:8a:47:4f:7e:15:fb:0d:36:df: 7a:2d:e8:eb:73:5d:c8:ae:1e:85:12:d7:b3:1e:cb:78:0e:7d: ca:8e:10:72:c7:90:b7:9b:bb:90:8a:b9:62:09:18:18:26:c8: 26:e2:ad:42:44:8c:47:38:2a:c4:31:3b:ef:d3:7b:b2:fc:af: 2d:15:24:bb:db:85:dc:f2:93:4f:86:81:61:52:d0:ec:45:00: 54:0a:7e:3c:7d:b3:a8:5f:f1:2c:46:ed:1c:62:d6:6b:86:3a: e0:3a:b6:60:8c:b9:ca:b9:ab:d3:1a:29:31:fc:44:1c:7c:83: 06:8c:bc:76:57:ef:60:78:01:f8:ab:25:28:d0:65:d4:86:3b: c0:c0:15:1d:ee:91:4e:ce:d5:a6:75:99:96:07:37:0b:17:ba: 60:83:ae:cd:e9:ea:92:0d:d2:83:bd:9e:16:4d:12:54:bb:08: 00:74:b3:df:89:85:5e:0d:71:73:05:98:ed:1c:7c:c2:09:2e: 6b:6f:d7:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZveSQN22Q4Ekx19WFUrl8ckMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTIxMDIwMTI1WhcNMjYwMTIyMDIwMTI1WjAzMTEwLwYDVQQD EyhjYTcxNzViNTE2NWI2MGZiMzY3MTM0ZmJkOTViMWUwZWJmMzlkNzZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQI+hhggM02o1PypVgYpljXoiIfm trw6Fr4HK04l1XpVWtMxAE7c5ZIm9ukqkwJ363wUtDuDy89CIwIWzL8wWAh5M7ui KnNtxMrYTigUh6gqNF+WsmzcGBgByFi2Gowm7DLxSH6FHceOq+Pf7XQ8s8uQXimV SeUvQW2gGua3Qf2mWewZiwv/hNYOAKna3Sa1Ss6Q3SxEbebcTJNzQYCB/Tk0N9Gn GHh8fftnbQx0CSLhir8Ak0hRxHlVWNVxnmEAvB+6kCymN4HKidbqnZw8eyy7pKIb PVGjBr+uFcJPrcOz1FbiQLiXOmx0BHwzEhAFc6DowgTWUyhuEcY7m7J8CwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMpxdbUWW2D7NnE0+9lbHg6/OddrMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHYMpsBpu Sl9zFTU4+fMC3/ybe8gPmfb0Cq5Z+PvG3RF7CLNX3gHmw3IntNYZ5xREq/11m0CQ 6kFmIpgmXjv5ikdPfhX7DTbfei3o63NdyK4ehRLXsx7LeA59yo4QcseQt5u7kIq5 YgkYGCbIJuKtQkSMRzgqxDE779N7svyvLRUku9uF3PKTT4aBYVLQ7EUAVAp+PH2z qF/xLEbtHGLWa4Y64Dq2YIy5yrmr0xopMfxEHHyDBoy8dlfvYHgB+KslKNBl1IY7 wMAVHe6RTs7VpnWZlgc3Cxe6YIOuzenqkg3Sg72eFk0SVLsIAHSz34mFXg1xcwWY 7Rx8wgkua2/X1Q== -----END CERTIFICATE-----Generated at Wed Jan 21 09:25:37 2026 by rpki-client