This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: /GRchvmejtSMIM2/Y6iU/4NawBFtOsnbSmOG7rqZBWY= Subject key identifier: 17:F6:01:BB:66:85:FE:9D:7A:C1:75:80:D6:1F:A1:05:38:59:99:CB Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BA4C789B0F13677C09D14BFC6B5130E7B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BDE Signing time: Fri 09 Jan 2026 22:01:38 +0000 Manifest this update: Fri 09 Jan 2026 22:01:38 +0000 Manifest next update: Sat 10 Jan 2026 22:01:38 +0000 Files and hashes: 1: 76LeK86AqDsw2hffaY83VrGgD0k.roa (hash: Cn1T0+QUKezjiIEXV7hXPpBfITvOtpQGGUudGUMuCmQ=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: gv0quDE4mWu0pTgvyeScI3BfCr9R4BvDzTxKNd0PE94=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 5: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 21:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a4:c7:89:b0:f1:36:77:c0:9d:14:bf:c6:b5:13:0e:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 9 22:01:38 2026 GMT Not After : Jan 10 22:01:38 2026 GMT Subject: CN=17f601bb6685fe9d7ac17580d61fa105385999cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:b9:cd:c6:a7:43:d1:ee:87:49:55:46:3c:df: d1:75:d7:d7:6b:58:2e:82:a3:a1:7b:6e:1e:36:e6: 49:62:27:1d:35:31:60:52:3d:5f:f6:00:ba:12:a6: 6b:cc:84:26:27:76:69:d6:02:2c:07:6b:7b:62:39: 25:c7:62:6f:13:1e:ca:d2:c2:68:98:2c:ac:62:3e: 2e:74:39:de:4e:d5:f0:27:1d:86:94:17:d8:8c:41: c0:38:15:a9:02:4e:dd:91:f8:f3:94:e1:42:21:bb: 71:4b:8d:f0:59:59:4e:97:c0:fb:9e:bb:1c:eb:a2: 95:a1:02:4f:63:97:ef:65:84:ba:92:b8:4e:39:75: e8:17:cd:93:f3:1a:6f:5f:e0:87:32:03:79:13:01: 2d:6c:0b:1d:dc:82:ba:d0:ce:7f:b2:46:e5:92:75: 4e:2d:e6:df:6c:fd:dc:bf:cb:f1:35:23:43:02:3e: 7a:2a:ef:1f:74:e5:b0:1f:13:8c:b3:92:e3:e0:78: ec:0d:e6:56:94:d0:61:18:44:42:94:17:a3:9c:2d: 18:26:90:26:cd:07:1a:26:d6:af:39:e7:62:dd:70: dd:42:05:be:58:e2:be:28:a1:98:6c:88:99:db:e0: 7c:62:9c:6f:e9:32:09:b1:41:e7:af:0e:b0:d1:5a: fc:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:F6:01:BB:66:85:FE:9D:7A:C1:75:80:D6:1F:A1:05:38:59:99:CB X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:39:38:64:87:d3:c7:d3:d3:60:f8:3a:19:91:44:60:d6:13: 82:ef:4f:c0:17:2c:11:0b:40:de:b4:73:c0:8c:0a:ee:7a:c5: 79:42:40:8f:95:26:50:b3:57:b5:9e:72:f4:9f:d6:80:77:56: a5:fa:8e:a2:cf:bd:89:98:21:31:b5:4c:da:75:8d:73:fa:1a: da:73:05:0a:4b:9d:d2:37:87:9c:95:d7:5a:b4:5d:48:f1:02: 51:cc:a0:ec:d6:1a:db:3d:08:78:98:d7:18:55:c4:29:b1:b7: be:8f:87:f8:5c:23:f8:2e:f2:a0:91:52:6f:b9:c1:a0:f8:f9: 73:fe:3d:3d:7f:4e:eb:60:15:26:9c:e5:1b:fc:02:45:3c:81: 28:d1:dc:f5:6e:9d:67:4b:63:28:f3:e0:96:bb:20:78:e7:0d: 41:15:8c:73:5a:85:87:14:bc:c3:28:b7:1a:8f:ad:50:93:14: 0d:39:b0:5f:c0:8f:2e:24:c2:c3:df:31:a4:39:b9:a7:09:8e: 21:37:62:d2:90:68:da:eb:75:90:0b:03:82:e4:f6:83:db:b9: 3c:88:92:5b:c5:7b:40:24:2d:8e:c9:71:35:38:83:10:8d:8b: aa:8e:96:2a:da:8c:cf:b3:49:d3:57:09:5f:81:85:90:9a:df: 9f:53:95:47 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZukx4mw8TZ3wJ0Uv8a1Ew57MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTA5MjIwMTM4WhcNMjYwMTEwMjIwMTM4WjAzMTEwLwYDVQQD EygxN2Y2MDFiYjY2ODVmZTlkN2FjMTc1ODBkNjFmYTEwNTM4NTk5OWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuLnNxqdD0e6HSVVGPN/RddfXa1gu gqOhe24eNuZJYicdNTFgUj1f9gC6EqZrzIQmJ3Zp1gIsB2t7Yjklx2JvEx7K0sJo mCysYj4udDneTtXwJx2GlBfYjEHAOBWpAk7dkfjzlOFCIbtxS43wWVlOl8D7nrsc 66KVoQJPY5fvZYS6krhOOXXoF82T8xpvX+CHMgN5EwEtbAsd3IK60M5/skblknVO LebfbP3cv8vxNSNDAj56Ku8fdOWwHxOMs5Lj4HjsDeZWlNBhGERClBejnC0YJpAm zQcaJtavOedi3XDdQgW+WOK+KKGYbIiZ2+B8Ypxv6TIJsUHnrw6w0Vr8ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBf2Abtmhf6desF1gNYfoQU4WZnLMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAODk4ZIfT x9PTYPg6GZFEYNYTgu9PwBcsEQtA3rRzwIwK7nrFeUJAj5UmULNXtZ5y9J/WgHdW pfqOos+9iZghMbVM2nWNc/oa2nMFCkud0jeHnJXXWrRdSPECUcyg7NYa2z0IeJjX GFXEKbG3vo+H+Fwj+C7yoJFSb7nBoPj5c/49PX9O62AVJpzlG/wCRTyBKNHc9W6d Z0tjKPPglrsgeOcNQRWMc1qFhxS8wyi3Go+tUJMUDTmwX8CPLiTCw98xpDm5pwmO ITdi0pBo2ut1kAsDguT2g9u5PIiSW8V7QCQtjslxNTiDEI2Lqo6WKtqMz7NJ01cJ X4GFkJrfn1OVRw== -----END CERTIFICATE-----Generated at Sat Jan 10 05:26:49 2026 by rpki-client