This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: EtCW50IPhwWUGSmTFqpeTA0mpgynx+9xdBuJ4rIvcjo= Subject key identifier: AB:7E:6F:DA:9A:E8:48:FA:73:F1:A3:B4:0C:8D:86:0F:FD:C1:CD:D9 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B410026DF3DAA177000230C9FF490FBF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BAA Signing time: Sun 21 Dec 2025 13:01:27 +0000 Manifest this update: Sun 21 Dec 2025 13:01:27 +0000 Manifest next update: Mon 22 Dec 2025 13:01:27 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Q5NagR4qTcG08QSWlaxciYOpnUiaE9uWLquxR3XYYS0=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 13:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:41:00:26:df:3d:aa:17:70:00:23:0c:9f:f4:90:fb:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 21 13:01:27 2025 GMT Not After : Dec 22 13:01:27 2025 GMT Subject: CN=ab7e6fda9ae848fa73f1a3b40c8d860ffdc1cdd9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d0:22:74:f8:3c:46:d8:1a:85:85:30:56:b3: fa:50:18:c1:a4:d1:36:84:e3:c2:e4:b0:41:0a:45: 32:42:31:9b:b6:ab:90:6c:02:f3:42:68:62:6c:97: 73:8b:3d:ee:74:29:d0:cd:78:43:21:c0:f0:15:c8: f2:21:91:c6:6a:f7:90:30:96:55:41:fb:f5:74:89: 7e:ac:78:d4:76:22:85:e3:f4:f1:b4:52:e3:93:98: ef:39:ce:43:5b:fe:5b:ec:b5:21:f8:5d:ac:06:80: ff:a2:19:ec:7d:39:48:bf:11:52:4f:10:e8:81:87: 96:b8:be:ee:f0:7a:09:1b:48:c9:ac:44:b6:2e:b7: 1d:8c:5a:ec:71:a9:f0:ab:ff:9c:9a:29:f3:da:c2: 91:ad:30:ed:a9:b7:6a:80:08:1b:8e:66:06:ba:1f: e4:cb:b5:0b:1c:b6:9f:6c:45:05:d2:90:d8:4a:33: b9:e6:a6:a0:7e:a2:b4:42:01:9b:ba:bf:58:5c:fb: e8:3a:1b:cf:82:17:51:4f:12:60:41:c1:65:9d:ec: b9:5b:f1:02:3b:d2:cf:ce:0e:79:2b:ea:ff:bd:9f: dc:a8:bc:21:db:06:fe:f5:d6:96:fa:43:66:58:26: 13:3f:a6:87:30:d8:9a:60:3e:1e:43:07:2b:e3:48: 75:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:7E:6F:DA:9A:E8:48:FA:73:F1:A3:B4:0C:8D:86:0F:FD:C1:CD:D9 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:77:67:2d:78:9c:96:b4:65:38:90:a5:3f:4e:d0:48:49:40: 85:92:dc:7c:b2:bc:22:60:f8:d5:3d:9a:01:43:52:66:b2:31: 9d:d1:e1:93:a3:5e:ff:27:0b:b5:bf:a5:35:46:46:25:f1:52: 0e:61:60:f9:38:27:c4:e8:80:a6:14:ae:d0:25:6a:a3:95:e2: c0:e6:a4:40:35:46:b4:00:58:6e:03:d6:53:20:be:3e:a5:68: 61:d3:72:62:de:19:b1:9f:50:b9:73:69:92:f2:15:be:42:54: 50:44:35:58:88:ae:ae:55:8f:4f:02:34:60:90:c6:e2:88:0c: 4f:d1:c1:ad:4e:9d:bf:30:70:2a:4b:aa:a9:b6:34:76:9e:66: 78:e9:e4:69:26:a9:fc:c2:8d:d9:d4:75:ff:6c:93:46:b7:d8: 15:f5:7b:b3:37:2d:74:53:03:f0:c7:22:9f:29:af:34:65:00: a3:ad:64:29:10:f9:f0:85:21:6f:a0:93:6a:83:4e:a8:4c:93: b9:02:eb:24:d5:05:aa:7e:6f:dd:a0:62:4c:a4:7f:88:51:ff: 80:08:bd:6a:01:3b:5a:f6:0e:56:18:17:36:cd:91:31:56:4b: 1c:53:13:07:2e:fd:75:00:33:19:cc:95:84:a3:e8:5a:03:f9: 21:60:e0:53 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtBACbfPaoXcAAjDJ/0kPvyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjIxMTMwMTI3WhcNMjUxMjIyMTMwMTI3WjAzMTEwLwYDVQQD EyhhYjdlNmZkYTlhZTg0OGZhNzNmMWEzYjQwYzhkODYwZmZkYzFjZGQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9AidPg8RtgahYUwVrP6UBjBpNE2 hOPC5LBBCkUyQjGbtquQbALzQmhibJdziz3udCnQzXhDIcDwFcjyIZHGaveQMJZV Qfv1dIl+rHjUdiKF4/TxtFLjk5jvOc5DW/5b7LUh+F2sBoD/ohnsfTlIvxFSTxDo gYeWuL7u8HoJG0jJrES2LrcdjFrscanwq/+cminz2sKRrTDtqbdqgAgbjmYGuh/k y7ULHLafbEUF0pDYSjO55qagfqK0QgGbur9YXPvoOhvPghdRTxJgQcFlney5W/EC O9LPzg55K+r/vZ/cqLwh2wb+9daW+kNmWCYTP6aHMNiaYD4eQwcr40h1HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKt+b9qa6Ej6c/GjtAyNhg/9wc3ZMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWHdnLXic lrRlOJClP07QSElAhZLcfLK8ImD41T2aAUNSZrIxndHhk6Ne/ycLtb+lNUZGJfFS DmFg+TgnxOiAphSu0CVqo5XiwOakQDVGtABYbgPWUyC+PqVoYdNyYt4ZsZ9QuXNp kvIVvkJUUEQ1WIiurlWPTwI0YJDG4ogMT9HBrU6dvzBwKkuqqbY0dp5meOnkaSap /MKN2dR1/2yTRrfYFfV7szctdFMD8McinymvNGUAo61kKRD58IUhb6CTaoNOqEyT uQLrJNUFqn5v3aBiTKR/iFH/gAi9agE7WvYOVhgXNs2RMVZLHFMTBy79dQAzGcyV hKPoWgP5IWDgUw== -----END CERTIFICATE-----Generated at Sun Dec 21 17:14:29 2025 by rpki-client