This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: cUqyogPUaMg0SWhvqViotvczyzhSbvNTvejGmf52l9I= Subject key identifier: FC:01:22:D1:AB:B5:25:B6:88:34:38:C9:2A:71:98:A1:22:F5:48:FE Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B0C6DBCBCE85E3A990A63C4668EFB24FF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B8A Signing time: Thu 11 Dec 2025 08:01:16 +0000 Manifest this update: Thu 11 Dec 2025 08:01:16 +0000 Manifest next update: Fri 12 Dec 2025 08:01:16 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: MT/omwzW5uIzalJww0lyEBJ91hwmPxGxY20ExFL+RRM=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: EVMsfS_gj7nu6QBPzwHM9-nv1dk.roa (hash: JkA/lHi+qKLwWerCwFGo9R5oWx1tdygUbUd8zkkpqNk=) 5: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 04:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0c:6d:bc:bc:e8:5e:3a:99:0a:63:c4:66:8e:fb:24:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 11 08:01:16 2025 GMT Not After : Dec 12 08:01:16 2025 GMT Subject: CN=fc0122d1abb525b6883438c92a7198a122f548fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3f:68:b4:dc:88:b6:7a:59:59:7d:89:07:a6: ec:27:2c:4f:89:c5:cd:62:c5:27:24:1c:49:fd:99: e1:ad:84:4a:48:2e:10:c5:7a:4d:eb:b5:ab:72:bc: 1f:2a:98:67:0f:e9:56:52:40:31:44:66:a4:30:b0: f9:ee:45:5b:63:97:29:72:ef:3d:62:22:80:d1:0b: 01:88:d1:fb:ee:63:c8:e1:7a:57:2d:01:c1:b7:82: 61:90:89:c0:ad:e5:1a:b3:09:9d:ca:b4:0d:d2:72: 0e:61:7e:60:08:b2:23:9a:95:e6:2c:5c:a6:c9:3b: d6:59:5c:be:25:ec:60:38:35:48:f9:7d:7c:b9:26: 9d:3a:77:00:9e:8b:eb:3a:54:51:af:09:e7:19:10: 65:5b:d2:9d:f3:84:5a:5e:36:ed:b9:26:58:81:cb: 52:43:37:ce:81:40:1a:6f:46:6b:81:4a:ff:41:e3: 87:53:f5:db:c5:38:c7:d2:f8:c1:b6:28:af:58:f6: f7:dd:75:bf:18:0a:98:67:54:ea:8d:6f:e7:d4:3d: ac:23:72:f4:b4:f9:49:60:ee:b1:44:e8:f6:c1:87: 63:d3:48:e7:87:fe:0d:ee:73:97:de:31:04:1b:1a: e5:ce:af:2e:2e:ab:b7:56:44:51:85:99:78:f8:f8: c5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:01:22:D1:AB:B5:25:B6:88:34:38:C9:2A:71:98:A1:22:F5:48:FE X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:6f:d5:68:43:68:7d:00:24:65:e2:2c:e0:e4:f6:72:d2:e9: 15:0b:3d:32:db:a1:e8:8e:29:10:10:58:ba:dc:17:4f:1d:7c: c0:9e:89:84:b2:78:03:81:86:27:4a:21:5d:a2:70:8a:14:ff: 68:35:cf:57:fd:7f:83:a4:7d:a4:6b:6b:9a:f5:e1:56:06:18: 4a:5d:82:01:4e:e9:a5:6c:67:23:a8:92:ea:95:11:d7:d5:16: b8:b0:cd:49:d2:52:d2:dc:39:20:f0:63:8e:d9:fa:90:e8:27: 17:46:29:56:ae:4a:da:4e:cd:4e:7e:24:db:33:9e:bd:d0:1c: b3:0b:11:0c:6d:a3:74:56:fb:1b:92:05:97:20:ec:50:db:c1: 68:53:01:8f:53:9d:b9:06:2f:18:0f:16:1d:45:1f:02:dd:b0: fb:7c:b1:4e:2d:5e:55:4f:c5:87:96:5b:03:80:25:1a:6d:83: a7:ab:32:9c:c3:16:fc:8e:65:01:bf:2f:ae:d6:54:ee:9f:cb: 81:b8:56:64:6f:16:02:fe:29:ff:ed:6e:d2:69:c7:e7:be:b0: 44:03:c0:78:28:f0:78:0f:23:f2:72:f1:fb:21:db:32:62:31: 53:f5:cc:03:bd:a8:cc:ca:f2:79:3b:a8:13:71:21:fa:34:99: 89:f9:2c:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsMbby86F46mQpjxGaO+yT/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjExMDgwMTE2WhcNMjUxMjEyMDgwMTE2WjAzMTEwLwYDVQQD EyhmYzAxMjJkMWFiYjUyNWI2ODgzNDM4YzkyYTcxOThhMTIyZjU0OGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzz9otNyItnpZWX2JB6bsJyxPicXN YsUnJBxJ/ZnhrYRKSC4QxXpN67WrcrwfKphnD+lWUkAxRGakMLD57kVbY5cpcu89 YiKA0QsBiNH77mPI4XpXLQHBt4JhkInAreUaswmdyrQN0nIOYX5gCLIjmpXmLFym yTvWWVy+JexgODVI+X18uSadOncAnovrOlRRrwnnGRBlW9Kd84RaXjbtuSZYgctS QzfOgUAab0ZrgUr/QeOHU/XbxTjH0vjBtiivWPb33XW/GAqYZ1TqjW/n1D2sI3L0 tPlJYO6xROj2wYdj00jnh/4N7nOX3jEEGxrlzq8uLqu3VkRRhZl4+PjFZQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPwBItGrtSW2iDQ4ySpxmKEi9Uj+MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASG/VaENo fQAkZeIs4OT2ctLpFQs9Mtuh6I4pEBBYutwXTx18wJ6JhLJ4A4GGJ0ohXaJwihT/ aDXPV/1/g6R9pGtrmvXhVgYYSl2CAU7ppWxnI6iS6pUR19UWuLDNSdJS0tw5IPBj jtn6kOgnF0YpVq5K2k7NTn4k2zOevdAcswsRDG2jdFb7G5IFlyDsUNvBaFMBj1Od uQYvGA8WHUUfAt2w+3yxTi1eVU/Fh5ZbA4AlGm2Dp6synMMW/I5lAb8vrtZU7p/L gbhWZG8WAv4p/+1u0mnH576wRAPAeCjweA8j8nLx+yHbMmIxU/XMA72ozMryeTuo E3Eh+jSZifksUA== -----END CERTIFICATE-----Generated at Thu Dec 11 09:53:56 2025 by rpki-client