This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: CEHXiQdfdBIH4xp9wBpi068a6kpmmBxWxwQrQ/G7czE= Subject key identifier: 75:9E:89:E3:89:E6:74:80:5F:A7:21:2F:4D:2A:FC:E7:3D:02:01:B5 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B698D82D05642ECE4A1C5EE6CC7EC772D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BBF Signing time: Mon 29 Dec 2025 10:00:40 +0000 Manifest this update: Mon 29 Dec 2025 10:00:40 +0000 Manifest next update: Tue 30 Dec 2025 10:00:40 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: p6FyRpH7Nwe20Ir/GXORSpwjL+y268XbU/dWAd05Nho=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 10:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:69:8d:82:d0:56:42:ec:e4:a1:c5:ee:6c:c7:ec:77:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 29 10:00:40 2025 GMT Not After : Dec 30 10:00:40 2025 GMT Subject: CN=759e89e389e674805fa7212f4d2afce73d0201b5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:a7:be:21:39:f5:7d:98:c1:a5:7b:8e:7d:75: c6:6a:a3:46:ed:fa:fe:7f:cd:2a:93:d5:5c:44:77: 53:a8:71:de:20:3f:f2:d0:2b:64:f3:eb:29:db:fa: db:be:e5:08:48:d4:25:d7:72:4b:46:6c:e2:db:8f: a2:b3:7e:f4:92:ac:7b:93:52:24:98:d0:48:63:87: e1:13:ee:d3:0b:f1:61:e3:ed:a5:28:1f:ec:e1:eb: 4e:60:63:06:9c:97:83:74:7f:ed:da:08:b9:24:c1: 5c:50:f3:d8:db:f0:32:2c:cd:ae:1a:32:98:18:de: 94:70:7a:9a:f8:24:05:6d:49:b3:5e:ef:42:bd:e4: 1d:d5:a2:21:92:a6:66:93:74:10:6d:a4:6b:94:75: 1a:15:36:a7:a4:d4:95:99:80:7f:ff:e1:07:10:f8: bc:d1:49:6f:ed:2d:b8:11:34:2a:7c:23:a4:ea:a3: e8:ce:07:18:19:83:f1:e7:ae:e1:b0:ff:fb:72:99: b9:89:4b:91:5d:00:17:4c:40:11:9c:9d:53:e8:44: 02:d5:45:53:e5:e7:d4:c9:51:57:22:3d:9e:9e:1d: 28:90:c1:fd:fe:68:1b:08:59:88:1a:36:1e:2a:bb: 45:e7:60:1e:0c:86:bd:19:c6:0f:fe:29:2d:ca:80: 81:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:9E:89:E3:89:E6:74:80:5F:A7:21:2F:4D:2A:FC:E7:3D:02:01:B5 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:36:92:bc:d7:4c:60:05:b9:68:42:0b:bf:05:36:17:3c:76: b0:be:65:4e:49:40:50:c5:16:18:b9:fa:71:6b:84:cb:be:e5: 9f:06:dc:9a:00:8c:5e:82:2a:99:67:84:15:ec:de:a9:12:1f: 00:4a:76:24:eb:da:14:9f:28:af:b6:01:9c:06:ea:67:a6:ed: 1f:ed:26:68:8f:98:e0:75:e0:74:7c:f8:bf:0e:fb:89:bf:67: 52:41:9d:e2:c7:43:33:d8:d0:63:ad:34:a6:af:d8:5c:63:5f: 49:f3:ad:63:67:0f:b9:f5:ec:d7:f3:d6:3d:93:54:34:1a:4a: be:4a:89:15:88:06:17:94:b9:a6:2d:27:be:d5:da:8e:ae:5a: 6c:41:1e:cc:62:45:d1:78:84:f5:1a:51:7d:ec:87:9d:91:69: b7:9c:89:46:49:85:fb:c1:52:07:7f:d0:3a:46:9a:ea:d4:cd: 68:b5:23:0a:7d:4c:ea:e0:39:a3:02:58:c7:98:bf:b2:65:85: 05:02:a6:f1:3e:aa:87:e3:2c:e2:3a:fa:e5:ec:1c:97:64:2b: c7:1e:72:62:de:9a:2e:a7:a4:b7:d3:03:71:42:7d:d0:cc:85: 68:68:b5:81:5f:23:89:df:ed:b4:4c:62:6e:d5:1f:55:46:9d: 3f:5c:a3:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtpjYLQVkLs5KHF7mzH7HctMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjI5MTAwMDQwWhcNMjUxMjMwMTAwMDQwWjAzMTEwLwYDVQQD Eyg3NTllODllMzg5ZTY3NDgwNWZhNzIxMmY0ZDJhZmNlNzNkMDIwMWI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp6e+ITn1fZjBpXuOfXXGaqNG7fr+ f80qk9VcRHdTqHHeID/y0Ctk8+sp2/rbvuUISNQl13JLRmzi24+is370kqx7k1Ik mNBIY4fhE+7TC/Fh4+2lKB/s4etOYGMGnJeDdH/t2gi5JMFcUPPY2/AyLM2uGjKY GN6UcHqa+CQFbUmzXu9CveQd1aIhkqZmk3QQbaRrlHUaFTanpNSVmYB//+EHEPi8 0Ulv7S24ETQqfCOk6qPozgcYGYPx567hsP/7cpm5iUuRXQAXTEARnJ1T6EQC1UVT 5efUyVFXIj2enh0okMH9/mgbCFmIGjYeKrtF52AeDIa9GcYP/iktyoCBHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHWeieOJ5nSAX6chL00q/Oc9AgG1MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFzaSvNdM YAW5aEILvwU2Fzx2sL5lTklAUMUWGLn6cWuEy77lnwbcmgCMXoIqmWeEFezeqRIf AEp2JOvaFJ8or7YBnAbqZ6btH+0maI+Y4HXgdHz4vw77ib9nUkGd4sdDM9jQY600 pq/YXGNfSfOtY2cPufXs1/PWPZNUNBpKvkqJFYgGF5S5pi0nvtXajq5abEEezGJF 0XiE9RpRfeyHnZFpt5yJRkmF+8FSB3/QOkaa6tTNaLUjCn1M6uA5owJYx5i/smWF BQKm8T6qh+Ms4jr65ewcl2Qrxx5yYt6aLqekt9MDcUJ90MyFaGi1gV8jid/ttExi btUfVUadP1yjYw== -----END CERTIFICATE-----Generated at Mon Dec 29 17:45:24 2025 by rpki-client