This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: d/Y8YmVjx+hGIzvT5Ji4VPC530BVk29Eu4CoaFfLuRY=
Subject key identifier: D7:28:42:02:E1:4D:48:8A:9E:73:77:7B:B6:6E:A9:93:16:4C:4A:E3
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019AD1A25FB0D7A3CD11B4B941C8940A4B93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0B6B
Signing time: Sat 29 Nov 2025 22:01:10 +0000
Manifest this update: Sat 29 Nov 2025 22:01:10 +0000
Manifest next update: Sun 30 Nov 2025 22:01:10 +0000
Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=)
2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: rqGsPE5PT7uK8O1NBlx/s4GZiqNOFhrqoaiNg1x5Kzw=)
3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=)
4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=)
5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=)
6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=)
7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=)
8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=)
9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=)
10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 30 Nov 2025 16:18:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:d1:a2:5f:b0:d7:a3:cd:11:b4:b9:41:c8:94:0a:4b:93
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Nov 29 22:01:10 2025 GMT
Not After : Nov 30 22:01:10 2025 GMT
Subject: CN=d7284202e14d488a9e73777bb66ea993164c4ae3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ab:a0:04:77:dd:1a:8b:83:15:f7:c5:f4:e2:f5:
e3:2c:81:fd:e8:72:28:b8:1c:3e:d9:78:79:60:21:
a3:b2:0a:6a:2c:cd:12:e5:e6:41:5d:eb:8a:67:d1:
de:c0:e8:d4:22:6b:96:e6:b6:02:d0:91:63:e7:22:
a1:0a:d2:de:c4:2d:9b:43:a4:1a:6a:c4:4f:81:46:
79:d3:82:3b:53:61:06:f8:09:fe:c1:1c:98:ee:b7:
5d:dd:ec:33:bc:ce:36:e6:c0:f4:44:11:f4:3e:3b:
5f:a6:5f:3d:f1:a2:70:8d:ba:a1:9c:2a:d9:ed:1b:
3b:24:35:27:ea:5c:f8:9e:32:58:c2:c4:bf:f8:7d:
d2:37:3d:cb:8d:45:c1:05:30:69:8c:8b:26:86:ce:
55:81:b7:b8:9a:8c:7e:40:08:17:01:ce:00:06:35:
97:2b:65:ad:c0:2f:b7:7d:40:31:3a:37:a0:45:26:
c7:af:0b:a5:c7:db:91:8f:16:38:63:1f:35:8f:04:
a1:ec:27:54:a6:c6:cd:a5:f7:48:c1:57:33:e2:8c:
fc:d1:ce:f7:0b:b8:17:47:08:61:76:dc:8f:90:5a:
87:46:3c:67:ec:20:1d:ae:d9:99:f5:9a:4f:a1:cf:
6b:1e:d5:27:25:de:c0:68:41:a3:e8:8b:c2:c6:07:
e6:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D7:28:42:02:E1:4D:48:8A:9E:73:77:7B:B6:6E:A9:93:16:4C:4A:E3
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
72:a0:93:11:c3:51:f3:a6:f8:84:29:c4:34:ea:8d:da:10:21:
75:de:79:cf:46:59:62:fd:d7:b0:fb:ad:75:5d:4e:e4:8c:ad:
a2:67:3b:df:f2:04:a0:f9:fa:33:97:94:4f:9c:e8:99:33:c0:
de:9f:86:f2:57:27:a6:3d:f0:02:9d:15:e1:9c:e4:50:be:bb:
86:0d:16:b8:39:fa:d7:55:98:1d:58:91:6a:94:ff:8f:d6:47:
c3:51:6a:45:aa:3e:84:fe:7e:cb:48:c5:7c:a5:83:c3:45:e7:
71:e9:4d:48:9d:f7:cf:d7:06:0f:dc:50:f8:49:a1:34:0b:af:
fd:ef:97:91:06:33:32:f8:7a:3d:75:1a:5e:57:cc:e3:9b:e6:
30:bf:47:38:74:ce:03:70:16:27:d9:1c:02:69:44:5b:55:25:
d8:fa:c9:ea:4a:77:ce:1c:5b:e4:9b:97:c1:5e:3d:09:78:49:
c9:b1:6f:4b:57:c0:06:64:54:d7:2c:da:af:94:26:65:52:ad:
c8:bd:d1:33:4a:8c:d6:04:31:9b:30:e9:34:20:a6:0d:58:da:
6a:4e:fb:a4:37:98:6d:33:c2:71:8d:2d:cd:58:09:55:13:6a:
42:54:17:f8:65:d9:2d:b5:04:0e:dd:0a:76:00:6e:25:a8:a3:
88:bd:21:74
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 30 01:32:16 2025 by rpki-client