This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: h+g9cIEiyJLxOvWnjJaWZhtn4I7qnz+KKHrnyi7C9Nc= Subject key identifier: 10:62:81:A1:31:09:00:98:95:D7:58:F0:F2:FC:36:F9:08:F6:AC:C7 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B25F6A92F7D2A1ACDE513E3CEB0029BA9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B9C Signing time: Tue 16 Dec 2025 07:01:20 +0000 Manifest this update: Tue 16 Dec 2025 07:01:20 +0000 Manifest next update: Wed 17 Dec 2025 07:01:20 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 8FKHeQKUqsOppFPpU73B8CldX3VB8AxeV6YUw+HV4/U=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 07:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:f6:a9:2f:7d:2a:1a:cd:e5:13:e3:ce:b0:02:9b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 16 07:01:20 2025 GMT Not After : Dec 17 07:01:20 2025 GMT Subject: CN=106281a13109009895d758f0f2fc36f908f6acc7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:76:10:19:f3:32:d9:20:47:0c:ed:03:06:a7: f7:e3:38:db:98:f3:df:d0:82:3a:35:a3:2e:ea:b1: 96:ac:23:9d:20:f5:37:b4:af:80:37:e7:92:a4:96: 99:52:20:05:fb:dd:c8:c2:1f:e3:f4:f2:b7:c6:59: 4d:49:04:02:e3:6b:bb:f6:67:96:af:d0:20:20:d9: 65:f4:78:6b:54:a9:c8:6c:ac:77:41:f1:fd:82:15: b5:26:e3:74:8a:71:4b:18:5a:39:32:46:6a:4b:76: 72:91:66:ce:d4:86:15:27:50:db:48:f0:cb:58:47: b3:d2:cc:ae:d2:a3:8d:33:ab:2a:2f:25:0e:4b:ae: 40:33:fd:67:06:58:f4:86:6c:49:63:18:e1:59:bd: 5d:09:5b:fc:c8:41:88:81:4f:2c:5f:93:fd:d6:3a: 93:41:a0:4d:df:8e:4d:5d:99:f5:ad:8a:cf:67:ff: 8e:d0:ab:35:f1:27:9d:8e:c0:04:3a:0c:31:b5:23: bb:b6:e4:ab:51:91:53:0a:bd:c9:33:e9:57:a1:fe: 3c:f4:9b:c7:1d:ee:3e:47:ac:57:23:17:64:5c:0e: fd:44:d3:28:9f:95:ec:e0:eb:02:cd:b9:52:46:19: d5:be:05:0e:f0:bb:e5:3d:12:23:0f:d3:3f:4a:2d: 36:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:62:81:A1:31:09:00:98:95:D7:58:F0:F2:FC:36:F9:08:F6:AC:C7 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:ec:16:20:c9:9f:e2:10:44:4f:ef:cd:03:ac:bb:a8:ad:85: 08:54:32:fa:d7:5b:7d:6a:11:12:c8:c1:54:9c:46:63:f3:f8: 43:d1:03:ad:0e:1e:91:89:d4:ee:27:8a:05:6b:33:fe:7d:10: 9f:20:04:24:6f:c6:e4:ba:c5:61:bd:50:eb:75:43:2d:ae:36: 6c:3e:13:82:23:c2:04:10:50:a3:9c:9e:83:79:5e:4a:6d:09: 95:10:ed:99:39:62:94:03:bc:6d:af:f0:5d:15:a6:16:90:83: cf:d9:b1:61:7b:e5:69:b0:b3:89:01:e1:ea:b7:5e:f4:8d:0d: 7a:d8:21:e9:ec:25:e5:9b:0a:3c:ee:4a:ff:d6:25:b0:9a:9f: ca:44:69:1e:49:01:53:e9:86:28:4a:78:87:a2:37:a4:42:c1: e7:83:f7:ab:7b:b0:4d:36:12:57:e4:50:36:2e:61:dc:80:58: ba:e5:95:4f:6e:2f:45:ac:cc:bb:df:c6:b7:0c:1a:6a:5b:f1: 92:07:25:e2:32:28:2a:54:c3:3e:46:ca:77:83:29:aa:ee:bf: 09:b4:51:a9:ce:4a:85:a3:7e:cf:92:16:4a:30:7b:81:5e:92: cb:61:77:51:bd:3a:17:7b:21:17:9c:ce:18:21:72:47:a0:ea: 02:8f:63:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsl9qkvfSoazeUT486wApupMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjE2MDcwMTIwWhcNMjUxMjE3MDcwMTIwWjAzMTEwLwYDVQQD EygxMDYyODFhMTMxMDkwMDk4OTVkNzU4ZjBmMmZjMzZmOTA4ZjZhY2M3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtXYQGfMy2SBHDO0DBqf34zjbmPPf 0II6NaMu6rGWrCOdIPU3tK+AN+eSpJaZUiAF+93Iwh/j9PK3xllNSQQC42u79meW r9AgINll9HhrVKnIbKx3QfH9ghW1JuN0inFLGFo5MkZqS3ZykWbO1IYVJ1DbSPDL WEez0syu0qONM6sqLyUOS65AM/1nBlj0hmxJYxjhWb1dCVv8yEGIgU8sX5P91jqT QaBN345NXZn1rYrPZ/+O0Ks18SedjsAEOgwxtSO7tuSrUZFTCr3JM+lXof489JvH He4+R6xXIxdkXA79RNMon5Xs4OsCzblSRhnVvgUO8LvlPRIjD9M/Si02swIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBBigaExCQCYlddY8PL8NvkI9qzHMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQOwWIMmf 4hBET+/NA6y7qK2FCFQy+tdbfWoREsjBVJxGY/P4Q9EDrQ4ekYnU7ieKBWsz/n0Q nyAEJG/G5LrFYb1Q63VDLa42bD4TgiPCBBBQo5yeg3leSm0JlRDtmTlilAO8ba/w XRWmFpCDz9mxYXvlabCziQHh6rde9I0Netgh6ewl5ZsKPO5K/9YlsJqfykRpHkkB U+mGKEp4h6I3pELB54P3q3uwTTYSV+RQNi5h3IBYuuWVT24vRazMu9/Gtwwaalvx kgcl4jIoKlTDPkbKd4Mpqu6/CbRRqc5KhaN+z5IWSjB7gV6Sy2F3Ub06F3shF5zO GCFyR6DqAo9j2g== -----END CERTIFICATE-----Generated at Tue Dec 16 12:50:04 2025 by rpki-client