This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 4DKqjnZ2pY0SdY2ntIhqc1XpBCyR//BaS8gR4Xb3TSQ= Subject key identifier: 47:61:77:2E:21:0E:21:B9:B6:8A:57:13:1A:FE:75:FF:B2:0F:FF:6C Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B7146EF3EE8CB2676D8E2971E9F077647 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BC3 Signing time: Tue 30 Dec 2025 22:00:32 +0000 Manifest this update: Tue 30 Dec 2025 22:00:32 +0000 Manifest next update: Wed 31 Dec 2025 22:00:32 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 6uLkam8j/fZTYVxcCk2P3gRmeU0pzzEc4VZ3A4xhdk8=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 31 Dec 2025 22:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:71:46:ef:3e:e8:cb:26:76:d8:e2:97:1e:9f:07:76:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 30 22:00:32 2025 GMT Not After : Dec 31 22:00:32 2025 GMT Subject: CN=4761772e210e21b9b68a57131afe75ffb20fff6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:f9:e3:65:ca:1f:12:d6:2f:41:82:29:74:b8: 9f:62:e5:48:6d:b3:71:22:87:aa:f6:08:bc:36:c9: 17:eb:53:15:22:74:94:59:e1:34:c0:ad:78:e7:4f: 0a:f5:46:23:51:8d:ac:3e:35:23:3f:fe:17:84:35: d8:d1:26:3e:dd:ad:f7:91:6b:e9:1f:b8:39:62:48: fa:2a:05:f6:4e:63:21:9d:62:54:c4:85:78:90:5a: 22:d6:f9:9a:92:f3:76:fb:29:49:52:73:c6:1a:ba: 94:54:47:40:74:dd:35:09:0b:02:a9:66:36:01:71: 2a:11:ac:62:6c:0e:53:1e:95:4f:65:c7:27:6d:e8: 27:c3:de:46:64:13:9b:a1:f5:19:e5:f5:64:5e:b8: 8a:32:a7:a3:f3:a0:07:8e:28:3f:9a:16:7a:d9:dd: 07:51:17:d4:0e:53:09:4c:4a:4c:d3:f0:68:63:71: 28:bb:ee:66:8d:b9:43:05:c7:e5:5f:b3:6a:d1:6b: 8a:e8:26:21:bd:3c:bc:9f:a9:5f:b1:f8:a8:af:66: 9e:cf:87:39:25:c6:a4:96:e6:c0:5e:9f:65:50:0e: a9:3f:51:0b:ef:4e:3e:ca:67:c6:0e:5c:07:bf:52: 65:61:4c:46:3b:b3:a3:cb:db:ed:fb:dc:98:f1:c7: 52:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:61:77:2E:21:0E:21:B9:B6:8A:57:13:1A:FE:75:FF:B2:0F:FF:6C X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:7f:56:a8:46:64:a5:78:72:5e:6b:0c:62:9a:e0:0d:af:dd: c1:96:ea:f9:66:42:5f:d8:6b:c1:6c:7b:1c:55:6c:9e:f6:1c: 46:71:f5:a7:96:40:f1:94:09:0c:dd:a4:44:72:c1:54:83:22: 02:c6:18:1b:9b:5e:44:ef:52:35:aa:85:2e:b2:40:0f:43:31: c0:04:ea:b1:4a:5d:96:24:e0:7d:10:e6:bc:4e:27:ff:6e:67: 43:64:8a:1b:87:5d:80:ed:34:94:6f:11:45:f7:13:20:66:00: e9:c2:44:a7:5f:21:7a:0b:08:7d:10:e4:e0:0b:1f:16:1e:5b: e3:c7:02:ae:e4:9f:cf:4a:7b:4d:ec:74:f7:b8:ae:8f:60:df: 02:c8:e6:19:88:6e:02:f8:9f:9b:44:0b:f0:0b:f9:fd:1a:c0: c3:39:06:4f:71:08:ab:77:0a:13:c9:c0:6d:de:07:16:87:c8: dc:f5:32:ef:b8:99:af:d7:18:09:42:fa:2b:47:f0:d6:e6:43: af:63:55:45:a4:43:41:67:2d:b7:a3:86:ec:6f:a4:ed:5b:62: a4:c4:38:0a:53:d2:e9:1e:94:67:b1:e2:a2:63:0b:62:32:2d: ec:31:ad:d2:3d:28:9f:45:ef:d6:52:59:84:7d:91:c5:65:dc: c3:56:ef:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtxRu8+6Msmdtjilx6fB3ZHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjMwMjIwMDMyWhcNMjUxMjMxMjIwMDMyWjAzMTEwLwYDVQQD Eyg0NzYxNzcyZTIxMGUyMWI5YjY4YTU3MTMxYWZlNzVmZmIyMGZmZjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9PnjZcofEtYvQYIpdLifYuVIbbNx Ioeq9gi8NskX61MVInSUWeE0wK14508K9UYjUY2sPjUjP/4XhDXY0SY+3a33kWvp H7g5Ykj6KgX2TmMhnWJUxIV4kFoi1vmakvN2+ylJUnPGGrqUVEdAdN01CQsCqWY2 AXEqEaxibA5THpVPZccnbegnw95GZBObofUZ5fVkXriKMqej86AHjig/mhZ62d0H URfUDlMJTEpM0/BoY3Eou+5mjblDBcflX7Nq0WuK6CYhvTy8n6lfsfior2aez4c5 JcaklubAXp9lUA6pP1EL704+ymfGDlwHv1JlYUxGO7Ojy9vt+9yY8cdSywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEdhdy4hDiG5topXExr+df+yD/9sMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALn9WqEZk pXhyXmsMYprgDa/dwZbq+WZCX9hrwWx7HFVsnvYcRnH1p5ZA8ZQJDN2kRHLBVIMi AsYYG5teRO9SNaqFLrJAD0MxwATqsUpdliTgfRDmvE4n/25nQ2SKG4ddgO00lG8R RfcTIGYA6cJEp18hegsIfRDk4AsfFh5b48cCruSfz0p7Tex097iuj2DfAsjmGYhu Avifm0QL8Av5/RrAwzkGT3EIq3cKE8nAbd4HFofI3PUy77iZr9cYCUL6K0fw1uZD r2NVRaRDQWctt6OG7G+k7VtipMQ4ClPS6R6UZ7HiomMLYjIt7DGt0j0on0Xv1lJZ hH2RxWXcw1bvYA== -----END CERTIFICATE-----Generated at Wed Dec 31 03:27:23 2025 by rpki-client