This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: URdUYbwMXzqJVwi7SInAhyhbe2h9yUaAtLvv6ZYMOss= Subject key identifier: 1E:5E:28:71:71:D5:A9:81:4A:97:83:8C:FC:D0:20:ED:7F:D3:2F:88 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BF386D91865163AB48BD035864247A798 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0C07 Signing time: Sun 25 Jan 2026 05:00:59 +0000 Manifest this update: Sun 25 Jan 2026 05:00:59 +0000 Manifest next update: Mon 26 Jan 2026 05:00:59 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: vkQRKhEO0/av4hZ1LSbgQxC2rFjyZiwQ+HBGz7Iokxk=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 05:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:86:d9:18:65:16:3a:b4:8b:d0:35:86:42:47:a7:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 25 05:00:59 2026 GMT Not After : Jan 26 05:00:59 2026 GMT Subject: CN=1e5e287171d5a9814a97838cfcd020ed7fd32f88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:4f:f2:37:75:aa:b5:16:40:6d:31:c9:25:41: 08:28:41:e5:82:b3:85:2c:d8:39:5c:cb:8d:c9:76: bc:3f:c6:9e:f9:0f:80:25:15:42:6b:c9:9c:a7:29: 39:2d:3d:55:66:0f:11:ae:ef:52:e5:14:c2:9c:c0: 3b:98:31:ad:be:22:47:fa:ae:2e:b6:b1:dd:78:ba: d7:a9:d2:05:fc:46:9c:b9:3f:cd:d0:e5:66:50:59: 84:5b:4b:6b:a1:e1:8a:58:83:64:46:62:e7:3c:4c: 41:51:e9:21:2b:09:22:30:a1:13:d1:f5:6b:23:43: ff:cf:0d:6c:74:a3:ed:e1:1d:a6:78:e4:65:09:55: a0:79:18:4b:50:5f:5a:d2:db:c5:a0:8a:1e:a2:f4: 93:f2:db:17:78:f6:fb:4b:d8:22:9d:55:7b:44:25: 5e:36:18:55:fd:38:13:08:e8:ae:fa:0d:52:61:44: 52:ee:3d:d1:1e:24:3c:26:7e:ff:47:f1:f3:c7:47: c5:f6:ff:49:22:e1:b7:49:c5:f1:d4:05:3c:f9:cb: 58:2a:87:c0:ed:e3:fe:ee:bd:91:fe:d7:88:12:9f: 5d:40:b5:1c:2c:55:fe:8e:5c:b5:96:d9:e0:f0:4d: 4e:32:ed:2c:9d:e6:a7:1d:35:a3:47:dd:bd:9e:11: 50:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:5E:28:71:71:D5:A9:81:4A:97:83:8C:FC:D0:20:ED:7F:D3:2F:88 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:10:c2:0b:11:77:bc:02:6c:03:81:50:a6:31:59:7d:34:52: cd:0b:fa:84:84:58:e6:1a:96:07:b2:00:3f:f7:02:f5:fc:ec: 02:a8:64:99:90:43:d6:f0:9c:8a:d6:04:c3:cc:77:0b:23:a6: e2:47:e6:ef:6b:2a:fa:3b:65:91:6e:ab:ba:96:1e:1c:91:78: c1:c1:38:2d:b6:75:8e:ad:f2:7a:fa:cb:c3:37:f5:33:b5:41: 00:a0:8c:16:31:05:58:e0:0d:55:1e:9d:80:7f:1f:76:63:40: 50:d3:7b:cd:ba:dd:23:8e:56:cb:27:4f:7b:82:5e:4d:75:9a: 7d:a1:2a:4b:4b:80:ba:ed:63:e9:89:42:72:03:df:57:d0:6c: 69:b6:4b:1f:91:46:3b:cd:e4:93:d6:8e:d3:45:d4:fb:25:91: 46:43:f9:35:10:fc:9e:15:a5:8a:f8:60:94:82:5b:b7:4d:1b: d0:12:42:a8:91:66:6e:48:1a:6d:d4:a7:e3:f5:0a:c5:8c:56: 4f:ef:7d:a8:65:97:40:bf:73:ed:18:1b:19:58:44:ce:d0:8b: d3:7e:4c:75:49:a9:1b:76:b6:04:81:63:b9:50:6b:e2:fd:dd: bd:9d:59:96:18:55:c2:3d:83:fb:13:9e:33:15:c5:26:9f:aa: 6e:d6:d3:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvzhtkYZRY6tIvQNYZCR6eYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTI1MDUwMDU5WhcNMjYwMTI2MDUwMDU5WjAzMTEwLwYDVQQD EygxZTVlMjg3MTcxZDVhOTgxNGE5NzgzOGNmY2QwMjBlZDdmZDMyZjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0/yN3WqtRZAbTHJJUEIKEHlgrOF LNg5XMuNyXa8P8ae+Q+AJRVCa8mcpyk5LT1VZg8Rru9S5RTCnMA7mDGtviJH+q4u trHdeLrXqdIF/EacuT/N0OVmUFmEW0troeGKWINkRmLnPExBUekhKwkiMKET0fVr I0P/zw1sdKPt4R2meORlCVWgeRhLUF9a0tvFoIoeovST8tsXePb7S9ginVV7RCVe NhhV/TgTCOiu+g1SYURS7j3RHiQ8Jn7/R/Hzx0fF9v9JIuG3ScXx1AU8+ctYKofA 7eP+7r2R/teIEp9dQLUcLFX+jly1ltng8E1OMu0sneanHTWjR929nhFQTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5eKHFx1amBSpeDjPzQIO1/0y+IMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHBDCCxF3 vAJsA4FQpjFZfTRSzQv6hIRY5hqWB7IAP/cC9fzsAqhkmZBD1vCcitYEw8x3CyOm 4kfm72sq+jtlkW6rupYeHJF4wcE4LbZ1jq3yevrLwzf1M7VBAKCMFjEFWOANVR6d gH8fdmNAUNN7zbrdI45WyydPe4JeTXWafaEqS0uAuu1j6YlCcgPfV9BsabZLH5FG O83kk9aO00XU+yWRRkP5NRD8nhWlivhglIJbt00b0BJCqJFmbkgabdSn4/UKxYxW T+99qGWXQL9z7RgbGVhEztCL035MdUmpG3a2BIFjuVBr4v3dvZ1ZlhhVwj2D+xOe MxXFJp+qbtbTLg== -----END CERTIFICATE-----Generated at Sun Jan 25 14:21:21 2026 by rpki-client