This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: hGWN9zHI9InreFt8n9u1InLbj0O8N/G5BSAFmwC7EDA= Subject key identifier: 7B:04:A0:7A:EE:59:19:9E:16:6C:3E:72:14:01:41:71:BE:C7:95:B2 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B5DF745A4C3515FA63D4DD87CD0FB9133 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BB9 Signing time: Sat 27 Dec 2025 04:00:44 +0000 Manifest this update: Sat 27 Dec 2025 04:00:44 +0000 Manifest next update: Sun 28 Dec 2025 04:00:44 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: E6ruz+AyW759NkPYBL4bEDVkeoR1PmFQd0wh6V6GQTo=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 28 Dec 2025 04:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5d:f7:45:a4:c3:51:5f:a6:3d:4d:d8:7c:d0:fb:91:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 27 04:00:44 2025 GMT Not After : Dec 28 04:00:44 2025 GMT Subject: CN=7b04a07aee59199e166c3e7214014171bec795b2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:97:37:d0:24:f3:8f:bb:ef:20:bc:0c:3e:7b: 41:12:05:c0:98:7a:d5:ba:28:11:7d:2e:ed:9a:b8: 43:c1:c5:a9:50:27:8e:19:63:1f:e9:76:cc:52:f4: 1c:a9:6b:ed:b3:c1:f8:86:46:c2:e8:eb:14:7b:a9: ba:f5:68:58:e1:3c:32:4c:9e:ee:bd:1d:d8:b1:9a: ea:9f:86:f7:9b:96:e6:bd:4f:4c:1e:62:92:01:ee: 8c:f0:d0:7c:ab:58:98:20:3d:ab:32:4b:88:99:d0: 6c:89:4d:ee:5a:60:01:f4:69:17:62:29:14:11:34: 5d:88:a5:31:3a:d8:1a:e2:81:bd:cc:d6:a2:4a:37: dd:9b:0d:73:10:3c:0b:a2:9e:b4:45:f2:86:e0:90: 40:60:8a:77:ee:5c:cb:4a:ce:60:aa:84:0c:1f:5d: bd:58:ca:8e:13:e0:6b:f8:e7:3d:c1:8a:61:13:74: 15:ab:85:20:bb:18:8c:c2:83:67:2a:91:0c:1c:80: b9:a2:74:ac:5e:ec:04:39:c2:f1:79:d8:5b:07:20: 52:b5:ad:91:da:2b:ee:90:9e:a0:62:02:76:c8:d0: 5d:fa:01:a8:41:e9:f0:ff:c0:1d:50:d6:16:19:09: cb:0b:ea:fd:0e:13:ac:05:35:a4:59:d5:4d:af:d8: 85:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:04:A0:7A:EE:59:19:9E:16:6C:3E:72:14:01:41:71:BE:C7:95:B2 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:fa:35:75:93:7c:54:8d:24:00:26:51:e2:25:f4:f5:11:aa: 38:60:ae:04:c4:32:f2:80:97:09:c5:9c:41:dc:b4:d6:e5:54: 8c:b3:a0:c1:e8:4d:56:0b:52:73:10:4e:66:24:53:e4:60:84: e8:6c:0e:d8:0a:34:fd:4a:dd:1f:57:62:77:a6:bc:67:de:f7: a3:a4:94:a1:38:3d:13:c5:a4:7e:a1:4b:37:d3:e1:d9:f7:ce: 8d:5d:77:42:48:c9:d4:b8:cb:92:65:9d:e9:da:6e:b7:b0:69: 6a:53:5d:a4:74:76:3b:99:cb:84:f2:1c:ad:c0:ed:a1:8e:7f: a3:93:31:2e:b9:df:3e:f8:36:8e:c9:c4:c0:25:c2:d7:63:5b: 42:07:ee:d3:e4:de:00:f2:f9:7e:22:d7:1c:af:cb:5f:d0:d0: 6d:79:c2:27:42:41:1b:5a:11:01:b7:95:3b:11:09:c6:2d:15: 91:0a:08:2f:67:99:37:b5:fb:e8:a8:10:44:0c:21:65:26:75: 7d:0b:ef:d6:fd:76:09:52:cc:e6:4a:de:c4:ef:4f:3b:66:77: 02:a9:25:13:5e:1e:d4:87:c5:c6:0d:a1:b9:61:d2:cc:5a:b2: 48:ef:47:57:10:11:d6:57:24:43:27:b4:dd:a4:16:3a:11:86: 46:19:46:3e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtd90Wkw1Ffpj1N2HzQ+5EzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjI3MDQwMDQ0WhcNMjUxMjI4MDQwMDQ0WjAzMTEwLwYDVQQD Eyg3YjA0YTA3YWVlNTkxOTllMTY2YzNlNzIxNDAxNDE3MWJlYzc5NWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsZc30CTzj7vvILwMPntBEgXAmHrV uigRfS7tmrhDwcWpUCeOGWMf6XbMUvQcqWvts8H4hkbC6OsUe6m69WhY4TwyTJ7u vR3YsZrqn4b3m5bmvU9MHmKSAe6M8NB8q1iYID2rMkuImdBsiU3uWmAB9GkXYikU ETRdiKUxOtga4oG9zNaiSjfdmw1zEDwLop60RfKG4JBAYIp37lzLSs5gqoQMH129 WMqOE+Br+Oc9wYphE3QVq4UguxiMwoNnKpEMHIC5onSsXuwEOcLxedhbByBSta2R 2ivukJ6gYgJ2yNBd+gGoQenw/8AdUNYWGQnLC+r9DhOsBTWkWdVNr9iFZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHsEoHruWRmeFmw+chQBQXG+x5WyMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXPo1dZN8 VI0kACZR4iX09RGqOGCuBMQy8oCXCcWcQdy01uVUjLOgwehNVgtScxBOZiRT5GCE 6GwO2Ao0/UrdH1did6a8Z973o6SUoTg9E8WkfqFLN9Ph2ffOjV13QkjJ1LjLkmWd 6dput7BpalNdpHR2O5nLhPIcrcDtoY5/o5MxLrnfPvg2jsnEwCXC12NbQgfu0+Te APL5fiLXHK/LX9DQbXnCJ0JBG1oRAbeVOxEJxi0VkQoIL2eZN7X76KgQRAwhZSZ1 fQvv1v12CVLM5krexO9PO2Z3AqklE14e1IfFxg2huWHSzFqySO9HVxAR1lckQye0 3aQWOhGGRhlGPg== -----END CERTIFICATE-----Generated at Sat Dec 27 10:14:30 2025 by rpki-client