This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 920ebiVmhEuRNpUavHlWhMYY8dAVzemmQWMr6s72we8= Subject key identifier: D7:4B:33:89:D4:BC:A6:64:AE:9D:B6:51:4B:09:88:47:6B:DE:DC:3A Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BAC817FFC9B2D3D05FEE844F59C69B2C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BE2 Signing time: Sun 11 Jan 2026 10:02:06 +0000 Manifest this update: Sun 11 Jan 2026 10:02:06 +0000 Manifest next update: Mon 12 Jan 2026 10:02:06 +0000 Files and hashes: 1: 76LeK86AqDsw2hffaY83VrGgD0k.roa (hash: Cn1T0+QUKezjiIEXV7hXPpBfITvOtpQGGUudGUMuCmQ=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 4FLmb3AGnjvRdtcPaI3ZXhrDLlZEUQ9rR7YhoQG8jPk=) 3: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 4: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 5: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 6: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 7: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 8: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ac:81:7f:fc:9b:2d:3d:05:fe:e8:44:f5:9c:69:b2:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 11 10:02:06 2026 GMT Not After : Jan 12 10:02:06 2026 GMT Subject: CN=d74b3389d4bca664ae9db6514b0988476bdedc3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:46:c0:92:56:82:6e:e2:8d:12:64:3a:7c:73: e5:45:39:c3:3c:78:c9:0f:22:28:f7:9b:dd:eb:d3: 03:9e:96:b5:f1:f1:cb:84:05:4a:d8:d3:22:59:79: 8e:c1:7d:9f:ba:f0:01:40:cd:25:65:6c:56:58:05: 5c:3c:43:92:92:73:ed:d3:cb:b4:d5:95:a8:8d:bc: 51:8e:d0:0d:ba:0b:a5:25:9e:99:e9:f3:72:ee:12: 23:62:37:96:93:2f:0a:8b:30:a8:27:9f:6a:48:79: f0:1a:fb:7e:c5:35:56:98:9b:7a:f0:19:dc:86:43: 1b:14:6b:87:8f:12:49:6e:60:2b:d3:03:6e:10:74: f0:4e:18:41:f7:e9:09:60:6f:25:86:88:81:5a:78: 6e:13:04:57:88:34:e0:77:5f:b6:12:d9:ff:35:b5: fa:a8:c3:32:6d:b3:60:46:78:3e:5d:41:74:ec:5d: bf:d9:d4:e3:fe:96:20:71:d5:6d:07:78:7c:0a:27: 51:29:40:4c:c5:b6:f0:3f:ec:15:04:f7:a6:5b:8f: 7b:df:0d:83:79:0d:ed:18:a1:ad:50:18:a5:3c:ca: 88:a8:cc:eb:4f:66:a5:23:43:e4:d3:07:40:06:ed: 44:d0:4e:10:6a:e4:de:09:8e:f5:ac:01:19:c4:66: 23:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4B:33:89:D4:BC:A6:64:AE:9D:B6:51:4B:09:88:47:6B:DE:DC:3A X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:43:f0:57:1d:d4:b1:62:ac:b7:30:a6:b7:15:32:42:ea:ad: 61:3d:39:01:79:69:86:42:db:4b:09:e8:07:4e:03:0c:be:05: 66:4b:44:be:e0:f9:ce:e7:a1:94:1a:c3:95:df:ed:90:3a:69: 72:1b:ce:5b:a9:c6:c1:72:83:f1:5a:ef:46:62:a3:0e:9c:74: 2d:42:b8:a4:cf:3d:61:bf:4a:69:0f:26:ba:39:24:be:82:18: b0:24:5f:10:69:53:3d:7e:d2:4e:d0:d1:ae:78:7e:6f:62:7b: 12:06:5d:e9:90:1a:c6:8c:dd:2b:20:5e:6b:79:04:8f:2e:48: 44:2d:36:95:be:18:b1:9b:d6:e6:dd:e5:be:c9:71:18:91:c4: 3d:40:75:8b:17:c8:12:0e:58:c1:82:7e:49:94:27:0c:06:07: bd:57:2f:00:58:7c:d1:74:50:2c:da:ca:60:fb:b6:92:20:d9: 6c:23:38:ee:67:d2:5c:1a:4a:5a:b1:de:99:4c:74:de:7d:ae: 22:d2:e4:76:6f:c9:eb:e7:ba:ff:0c:c7:a6:89:87:a8:62:36: c6:35:d8:d1:5e:af:34:47:fa:f6:eb:61:f9:01:06:c3:84:0d: bd:64:61:64:98:ce:39:34:3e:ed:d4:c6:e7:ea:c0:c3:81:7b: a0:f5:0a:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZusgX/8my09Bf7oRPWcabLIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTExMTAwMjA2WhcNMjYwMTEyMTAwMjA2WjAzMTEwLwYDVQQD EyhkNzRiMzM4OWQ0YmNhNjY0YWU5ZGI2NTE0YjA5ODg0NzZiZGVkYzNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtUbAklaCbuKNEmQ6fHPlRTnDPHjJ DyIo95vd69MDnpa18fHLhAVK2NMiWXmOwX2fuvABQM0lZWxWWAVcPEOSknPt08u0 1ZWojbxRjtANugulJZ6Z6fNy7hIjYjeWky8KizCoJ59qSHnwGvt+xTVWmJt68Bnc hkMbFGuHjxJJbmAr0wNuEHTwThhB9+kJYG8lhoiBWnhuEwRXiDTgd1+2Etn/NbX6 qMMybbNgRng+XUF07F2/2dTj/pYgcdVtB3h8CidRKUBMxbbwP+wVBPemW4973w2D eQ3tGKGtUBilPMqIqMzrT2alI0Pk0wdABu1E0E4QauTeCY71rAEZxGYj0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNdLM4nUvKZkrp22UUsJiEdr3tw6MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbkPwVx3U sWKstzCmtxUyQuqtYT05AXlphkLbSwnoB04DDL4FZktEvuD5zuehlBrDld/tkDpp chvOW6nGwXKD8VrvRmKjDpx0LUK4pM89Yb9KaQ8mujkkvoIYsCRfEGlTPX7STtDR rnh+b2J7EgZd6ZAaxozdKyBea3kEjy5IRC02lb4YsZvW5t3lvslxGJHEPUB1ixfI Eg5YwYJ+SZQnDAYHvVcvAFh80XRQLNrKYPu2kiDZbCM47mfSXBpKWrHemUx03n2u ItLkdm/J6+e6/wzHpomHqGI2xjXY0V6vNEf69uth+QEGw4QNvWRhZJjOOTQ+7dTG 5+rAw4F7oPUKdA== -----END CERTIFICATE-----Generated at Sun Jan 11 13:21:04 2026 by rpki-client