This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: Yd0q9g/zC2ULEw4UR0nhwGC1BZ08q1Xuvqco+XNIZl0= Subject key identifier: FD:EF:E7:F7:5E:0E:1F:46:E0:B3:7C:62:95:D4:FB:15:FF:07:05:15 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019ACFB3FEC2F0D0ABBA59A82D23AC2177D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B6A Signing time: Sat 29 Nov 2025 13:01:10 +0000 Manifest this update: Sat 29 Nov 2025 13:01:10 +0000 Manifest next update: Sun 30 Nov 2025 13:01:10 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 3r3y2uC52S6wZYLpgnLERjlT3ceoC/1O2rvWqRQWDJA=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 30 Nov 2025 08:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:cf:b3:fe:c2:f0:d0:ab:ba:59:a8:2d:23:ac:21:77:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 29 13:01:10 2025 GMT Not After : Nov 30 13:01:10 2025 GMT Subject: CN=fdefe7f75e0e1f46e0b37c6295d4fb15ff070515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:0c:20:90:2d:a7:c7:d0:64:23:76:2b:43:6e: 8d:fb:a5:48:93:46:0c:2f:0e:99:5e:2a:60:32:80: 66:78:1a:00:73:c2:42:f1:88:6b:02:d2:15:00:84: b8:5a:97:3a:b7:b9:0b:cb:b2:a7:32:18:ff:ef:01: ab:a4:cd:cf:ba:4f:21:07:49:57:8d:b6:13:ec:1f: 25:2b:6a:1c:8e:4f:bc:cc:db:9f:a3:a9:80:d7:84: fc:c1:00:b3:21:58:62:16:5e:fd:63:f0:16:a9:57: 32:a0:b0:c0:49:68:d3:74:19:86:cb:14:55:5b:41: 38:14:c8:a6:65:d4:ee:62:f0:4d:52:3c:f0:3b:26: 5e:b8:db:d4:84:21:ab:cb:ff:34:8e:89:ad:65:ca: df:71:7a:3b:d7:dc:72:1f:c4:18:1e:21:d6:13:80: 79:37:b9:d4:33:2c:d2:f2:1d:35:a4:91:ae:65:c4: cc:f5:54:6d:62:e4:33:5b:d5:26:89:36:91:29:c2: e2:10:fe:7e:b2:5c:1b:46:34:b7:5c:f3:3e:02:8e: 1d:09:d1:63:53:f4:1c:28:4d:56:27:b1:67:1d:e2: bc:71:84:a4:c7:af:23:e6:f1:ea:ad:56:64:7c:68: 24:a4:7b:34:eb:ce:e1:0c:7d:c8:d0:25:e2:07:e9: 9e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:EF:E7:F7:5E:0E:1F:46:E0:B3:7C:62:95:D4:FB:15:FF:07:05:15 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:ff:43:12:ab:10:bf:7e:a8:02:1f:0b:76:d9:b0:ef:39:e2: d9:3b:b3:31:ad:fb:19:cb:83:ad:72:d9:26:ab:62:69:86:c0: 14:90:e6:fc:14:17:60:a0:22:b0:fd:df:cb:cc:95:3a:44:22: 73:03:3c:a5:5c:a7:81:81:5d:87:bd:ee:4d:d7:ec:2d:b7:d1: c3:44:25:18:e6:8e:03:2c:bf:74:0e:a1:df:0b:16:44:9a:31: 3d:8d:b9:32:3d:6b:38:96:bf:1f:d9:e1:1d:07:99:a8:b5:bf: 69:07:4e:b6:da:53:8b:c7:17:a4:95:68:c4:97:eb:41:14:18: 3f:a0:35:71:38:63:27:9f:22:e1:12:5d:bf:4c:55:c0:92:be: 2b:f1:04:d2:17:7c:f1:df:54:55:f7:eb:24:19:1e:a5:52:de: 25:68:50:af:91:eb:c8:bd:f5:15:05:57:16:a6:5e:9c:64:ac: ad:c7:e1:71:38:09:c5:fe:d6:e9:26:b9:34:65:4c:8e:a3:a2: 12:35:e1:07:cd:bf:2b:00:49:79:8d:69:ee:2b:b0:d8:99:da: 31:63:6e:ed:e0:a3:2e:98:23:53:bb:ce:a7:8e:d7:cf:da:56: 6e:21:81:b2:bc:6a:c2:ed:d7:92:f8:0f:68:6d:1b:b3:34:10: 01:3a:7f:b2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrPs/7C8NCrulmoLSOsIXfVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTI5MTMwMTEwWhcNMjUxMTMwMTMwMTEwWjAzMTEwLwYDVQQD EyhmZGVmZTdmNzVlMGUxZjQ2ZTBiMzdjNjI5NWQ0ZmIxNWZmMDcwNTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzAwgkC2nx9BkI3YrQ26N+6VIk0YM Lw6ZXipgMoBmeBoAc8JC8YhrAtIVAIS4Wpc6t7kLy7KnMhj/7wGrpM3Puk8hB0lX jbYT7B8lK2ocjk+8zNufo6mA14T8wQCzIVhiFl79Y/AWqVcyoLDASWjTdBmGyxRV W0E4FMimZdTuYvBNUjzwOyZeuNvUhCGry/80jomtZcrfcXo719xyH8QYHiHWE4B5 N7nUMyzS8h01pJGuZcTM9VRtYuQzW9UmiTaRKcLiEP5+slwbRjS3XPM+Ao4dCdFj U/QcKE1WJ7FnHeK8cYSkx68j5vHqrVZkfGgkpHs0687hDH3I0CXiB+me0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP3v5/deDh9G4LN8YpXU+xX/BwUVMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFP9DEqsQ v36oAh8Ldtmw7zni2TuzMa37GcuDrXLZJqtiaYbAFJDm/BQXYKAisP3fy8yVOkQi cwM8pVyngYFdh73uTdfsLbfRw0QlGOaOAyy/dA6h3wsWRJoxPY25Mj1rOJa/H9nh HQeZqLW/aQdOttpTi8cXpJVoxJfrQRQYP6A1cThjJ58i4RJdv0xVwJK+K/EE0hd8 8d9UVffrJBkepVLeJWhQr5HryL31FQVXFqZenGSsrcfhcTgJxf7W6Sa5NGVMjqOi EjXhB82/KwBJeY1p7iuw2JnaMWNu7eCjLpgjU7vOp47Xz9pWbiGBsrxqwu3XkvgP aG0bszQQATp/sg== -----END CERTIFICATE-----Generated at Sat Nov 29 16:41:49 2025 by rpki-client