This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: Mo5KMWVNQPgsw9yx9Q99pKGcZPvmKBIZggZtV2HnOp0= Subject key identifier: F0:5D:B7:5B:D9:4B:19:92:41:9A:8C:18:BB:43:AE:7A:48:30:E1:96 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BF951FB1A9C07B03E279241D88CFB5162 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0C0A Signing time: Mon 26 Jan 2026 08:00:57 +0000 Manifest this update: Mon 26 Jan 2026 08:00:57 +0000 Manifest next update: Tue 27 Jan 2026 08:00:57 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Gwhqrdcb+7m5FcR6/ADJo1xWLZnLzOozMMSj4F+mqhU=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 08:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:51:fb:1a:9c:07:b0:3e:27:92:41:d8:8c:fb:51:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 26 08:00:57 2026 GMT Not After : Jan 27 08:00:57 2026 GMT Subject: CN=f05db75bd94b1992419a8c18bb43ae7a4830e196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:63:c6:a9:68:0b:6d:c3:7b:66:56:95:cb: 72:23:06:68:b4:20:f4:95:54:13:10:06:fd:ed:e5: ac:93:48:67:c8:c2:25:1a:eb:87:c9:b1:89:10:b8: c2:26:fc:d8:dd:3a:6a:da:ff:ce:52:ed:f0:e5:bc: 3f:1f:0f:6e:4c:16:26:ec:cc:a5:46:91:5e:a8:7d: 02:0f:18:6d:8b:44:c8:63:70:7c:eb:1e:82:8e:d4: 9b:13:34:ea:46:10:32:f1:6d:82:ae:2c:d0:c8:9c: 5f:ff:1b:6c:b8:21:b7:42:83:29:df:38:7b:46:b6: 29:c0:f3:b2:8b:19:1e:03:63:ad:d4:05:d6:47:6d: b0:b5:3d:3f:47:1b:4d:3a:70:25:ce:f3:fb:23:db: d9:c6:83:99:46:a8:4b:dd:01:17:ee:90:a8:b1:2d: 51:9e:90:ce:e7:e8:65:77:f1:5b:2d:92:a1:9d:67: 62:7d:27:7c:8d:cf:e7:20:c1:34:d7:c2:c8:7f:56: a4:86:d8:5b:d0:cb:2c:d2:f2:1b:38:8e:2d:77:37: 93:f8:33:97:2b:f6:a5:84:14:e7:b0:f9:54:ba:18: 72:7e:3f:45:6d:10:4b:96:93:ef:62:bc:8a:14:0a: 1b:34:45:fa:b1:63:16:0f:97:b7:66:98:d2:de:d7: 3d:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:5D:B7:5B:D9:4B:19:92:41:9A:8C:18:BB:43:AE:7A:48:30:E1:96 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:0d:0f:d6:ff:89:68:be:bd:bd:7e:34:53:32:b6:08:9d:12: ae:78:c1:5f:74:4c:13:5b:0f:47:86:a3:e4:ec:49:32:29:55: d7:9e:fd:33:9a:2d:48:49:3c:fb:65:c8:72:58:22:fb:e9:3a: d4:7c:f3:a4:72:b5:a0:77:c5:7a:9f:24:df:2f:9f:89:59:41: 98:c4:c5:1d:32:1d:9a:0d:8a:bb:f3:ce:f7:70:5b:1d:8e:f5: b7:3f:9f:5c:50:c0:38:b3:ac:68:53:08:c4:43:0a:61:30:c8: 39:33:e4:f0:10:f6:27:96:f9:2b:5a:70:6a:a4:0f:c7:fc:a5: c6:a2:96:76:e3:9d:08:19:ce:f0:9d:08:b1:d0:bd:c3:61:30: 92:59:23:18:bd:d1:4e:95:b0:1a:d2:f0:c5:ac:b7:fd:c4:c0: 20:b7:da:7c:70:40:f4:24:88:8a:fc:48:83:1c:79:eb:c4:22: aa:6f:8c:15:28:5e:d6:5d:c6:27:44:60:7a:db:7d:a1:04:41: 38:ff:d3:c3:02:5f:a9:4d:96:73:33:42:54:c9:ff:3c:0f:8d: d4:aa:e4:6f:d7:91:35:3d:2d:46:6d:98:28:78:e8:f1:77:40: d9:2d:48:42:02:ad:5e:e9:31:8e:e5:b4:ef:c3:16:a1:b1:8c: 6c:c9:fd:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5UfsanAewPieSQdiM+1FiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTI2MDgwMDU3WhcNMjYwMTI3MDgwMDU3WjAzMTEwLwYDVQQD EyhmMDVkYjc1YmQ5NGIxOTkyNDE5YThjMThiYjQzYWU3YTQ4MzBlMTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMZjxqloC23De2ZWlctyIwZotCD0 lVQTEAb97eWsk0hnyMIlGuuHybGJELjCJvzY3Tpq2v/OUu3w5bw/Hw9uTBYm7Myl RpFeqH0CDxhti0TIY3B86x6CjtSbEzTqRhAy8W2CrizQyJxf/xtsuCG3QoMp3zh7 RrYpwPOyixkeA2Ot1AXWR22wtT0/RxtNOnAlzvP7I9vZxoOZRqhL3QEX7pCosS1R npDO5+hld/FbLZKhnWdifSd8jc/nIME018LIf1akhthb0Mss0vIbOI4tdzeT+DOX K/alhBTnsPlUuhhyfj9FbRBLlpPvYryKFAobNEX6sWMWD5e3ZpjS3tc9jwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPBdt1vZSxmSQZqMGLtDrnpIMOGWMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhQ0P1v+J aL69vX40UzK2CJ0SrnjBX3RME1sPR4aj5OxJMilV1579M5otSEk8+2XIclgi++k6 1HzzpHK1oHfFep8k3y+fiVlBmMTFHTIdmg2Ku/PO93BbHY71tz+fXFDAOLOsaFMI xEMKYTDIOTPk8BD2J5b5K1pwaqQPx/ylxqKWduOdCBnO8J0IsdC9w2EwklkjGL3R TpWwGtLwxay3/cTAILfafHBA9CSIivxIgxx568Qiqm+MFShe1l3GJ0Rgett9oQRB OP/TwwJfqU2WczNCVMn/PA+N1Krkb9eRNT0tRm2YKHjo8XdA2S1IQgKtXukxjuW0 78MWobGMbMn9+w== -----END CERTIFICATE-----Generated at Mon Jan 26 13:30:34 2026 by rpki-client