This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: ZPXhAHjLcaEvakbCNAT9hANykE4gRibr9+YAuNpypbY= Subject key identifier: F2:09:46:36:9E:3D:06:27:42:2B:96:C7:74:49:B7:CA:D0:79:A3:9F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019AD95C0247C65B7E4C8BD883EFC4A18F35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B6F Signing time: Mon 01 Dec 2025 10:01:16 +0000 Manifest this update: Mon 01 Dec 2025 10:01:16 +0000 Manifest next update: Tue 02 Dec 2025 10:01:16 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: Eaw/g4hflTBpl4ahe4mcHRGrm0wqhC0XSNRGMH4tqyI=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 02 Dec 2025 10:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:d9:5c:02:47:c6:5b:7e:4c:8b:d8:83:ef:c4:a1:8f:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 1 10:01:16 2025 GMT Not After : Dec 2 10:01:16 2025 GMT Subject: CN=f20946369e3d0627422b96c77449b7cad079a39f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:64:4a:5c:b9:b7:7d:8d:4a:48:41:44:9c:58: a5:d7:63:da:93:d9:57:e4:7f:08:93:45:78:f6:6a: b4:e4:82:b3:83:ad:e1:36:e0:ca:36:8d:b7:78:bd: 9d:2f:5b:9f:57:93:b2:21:9d:5d:d1:31:ff:a0:ec: 58:32:0d:55:5e:dc:b4:7b:e0:ec:b5:97:7e:e2:b4: 2a:4a:e8:fc:5f:33:6b:c4:5b:03:1a:6a:e3:dd:6b: 35:c9:be:f3:d6:dc:59:91:58:3c:9e:6f:bd:1f:ce: 32:0a:2f:38:8b:1b:3b:33:5c:ff:f9:e1:53:43:76: a1:02:d0:f2:40:3b:ac:c2:7a:a0:75:d2:f0:82:5d: 0b:b9:1c:d3:4e:91:42:dc:d1:4a:4b:14:23:ea:23: 6e:c6:98:51:90:79:ec:90:af:3c:33:8a:87:b8:b8: e4:13:3c:0a:4d:88:33:eb:b7:67:ba:3a:ba:86:65: 17:eb:a7:ad:cb:f5:cd:37:c5:55:a6:69:4c:25:ab: cf:82:90:f4:5b:b9:21:03:77:d1:88:eb:44:99:0f: 45:7a:5e:81:39:fa:35:cf:d9:cf:e0:bf:0f:b6:25: 00:bd:00:cc:46:81:09:f3:80:d9:04:82:58:46:d7: e8:67:1e:f9:9d:49:36:0c:6f:45:97:40:92:f9:d0: 92:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:09:46:36:9E:3D:06:27:42:2B:96:C7:74:49:B7:CA:D0:79:A3:9F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:2b:20:3b:8f:24:b8:ee:b8:6d:69:c8:cd:41:c1:de:32:83: 01:46:c5:b7:89:ce:f1:63:10:bb:e3:f3:7e:13:77:3d:05:52: 57:98:f8:e8:4b:43:df:49:cc:7f:e1:11:39:b2:3f:4d:0b:a0: 49:9b:8b:b7:f1:28:c3:70:7e:d5:a1:d6:30:17:ee:81:af:e1: 01:5d:c7:af:d7:ad:55:17:b8:6e:76:d0:cf:50:05:cd:b0:5d: c4:68:01:85:74:54:86:67:95:86:3a:c9:2e:9b:d9:27:7a:7a: 83:eb:ae:08:6f:44:82:ae:ff:94:e5:48:8a:a9:ee:9b:a9:8e: 2e:e2:79:28:3e:f1:69:81:b9:22:8b:47:31:0e:99:f6:54:cd: e8:7a:90:b2:ed:77:64:d6:48:24:c6:26:20:bb:6d:0f:0b:ac: e5:18:4a:40:5d:47:ab:22:7d:22:f0:e2:19:7e:62:4f:c5:4e: 60:fb:15:05:5d:57:da:cd:da:51:4e:2f:c5:f2:d8:74:50:e2: b5:2e:ac:fc:7c:fb:d7:35:da:1e:9e:a8:e2:60:e6:09:2d:21: 71:30:6a:36:81:82:f1:f5:49:13:c6:1d:95:75:1b:9d:6e:7b: 2e:52:26:9a:35:cc:37:48:00:ba:08:25:c1:e7:27:3d:7f:79: 84:af:e6:79 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrZXAJHxlt+TIvYg+/EoY81MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjAxMTAwMTE2WhcNMjUxMjAyMTAwMTE2WjAzMTEwLwYDVQQD EyhmMjA5NDYzNjllM2QwNjI3NDIyYjk2Yzc3NDQ5YjdjYWQwNzlhMzlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsGRKXLm3fY1KSEFEnFil12Pak9lX 5H8Ik0V49mq05IKzg63hNuDKNo23eL2dL1ufV5OyIZ1d0TH/oOxYMg1VXty0e+Ds tZd+4rQqSuj8XzNrxFsDGmrj3Ws1yb7z1txZkVg8nm+9H84yCi84ixs7M1z/+eFT Q3ahAtDyQDuswnqgddLwgl0LuRzTTpFC3NFKSxQj6iNuxphRkHnskK88M4qHuLjk EzwKTYgz67dnujq6hmUX66ety/XNN8VVpmlMJavPgpD0W7khA3fRiOtEmQ9Fel6B Ofo1z9nP4L8PtiUAvQDMRoEJ84DZBIJYRtfoZx75nUk2DG9Fl0CS+dCSeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPIJRjaePQYnQiuWx3RJt8rQeaOfMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVysgO48k uO64bWnIzUHB3jKDAUbFt4nO8WMQu+PzfhN3PQVSV5j46EtD30nMf+ERObI/TQug SZuLt/Eow3B+1aHWMBfuga/hAV3Hr9etVRe4bnbQz1AFzbBdxGgBhXRUhmeVhjrJ LpvZJ3p6g+uuCG9Egq7/lOVIiqnum6mOLuJ5KD7xaYG5IotHMQ6Z9lTN6HqQsu13 ZNZIJMYmILttDwus5RhKQF1HqyJ9IvDiGX5iT8VOYPsVBV1X2s3aUU4vxfLYdFDi tS6s/Hz71zXaHp6o4mDmCS0hcTBqNoGC8fVJE8YdlXUbnW57LlImmjXMN0gAuggl wecnPX95hK/meQ== -----END CERTIFICATE-----Generated at Mon Dec 1 15:55:08 2025 by rpki-client