This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: Jc+YkiZKdtA1V7Dn7AcHzOqaC+63C9BQWTMQHyZT8Js= Subject key identifier: 77:06:4A:B3:E6:41:32:0B:EC:58:C6:A1:A0:87:A0:B5:D1:61:6C:7E Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B0E5C167E7EB2E74D1F86AAD3E45C5B89 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B8B Signing time: Thu 11 Dec 2025 17:01:14 +0000 Manifest this update: Thu 11 Dec 2025 17:01:14 +0000 Manifest next update: Fri 12 Dec 2025 17:01:14 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: ybb5hpXP4S5lidC0xhXiA/DBB4VQZTZOP3Bok0Yd6PU=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: EVMsfS_gj7nu6QBPzwHM9-nv1dk.roa (hash: JkA/lHi+qKLwWerCwFGo9R5oWx1tdygUbUd8zkkpqNk=) 5: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 12 Dec 2025 14:45:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:0e:5c:16:7e:7e:b2:e7:4d:1f:86:aa:d3:e4:5c:5b:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 11 17:01:14 2025 GMT Not After : Dec 12 17:01:14 2025 GMT Subject: CN=77064ab3e641320bec58c6a1a087a0b5d1616c7e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:1b:04:67:da:cd:3b:19:b7:d2:7f:e4:99:8d: 6d:f3:f4:f8:de:94:b4:79:4c:d4:37:72:6c:55:68: c4:e6:b3:0e:b2:32:80:65:07:28:cc:cb:f6:eb:f8: f1:f2:3a:0f:a8:ae:94:45:09:ee:fd:19:d5:48:45: 6f:7f:4b:c7:74:9a:52:da:fb:34:aa:51:c5:fa:6a: f9:40:5f:64:a6:ae:43:50:c3:cc:aa:cb:75:95:a5: b9:67:06:a0:25:c5:34:01:7b:35:b5:bd:04:7d:19: 90:5a:82:48:f7:d2:d2:1c:08:e8:ef:b5:4b:5e:54: 29:db:38:e0:04:45:77:57:7d:4b:43:36:45:54:14: f5:62:26:a3:ec:7d:86:2d:03:f9:27:a8:17:e3:19: 49:61:24:99:1d:67:94:e2:a8:38:c4:15:81:09:bf: 97:5f:8f:8e:13:93:76:7b:5d:d1:cc:af:37:98:9f: fc:71:e5:95:0a:b2:b3:c2:70:4c:db:be:52:7f:ed: 04:2b:9b:5e:59:e1:43:d3:db:a6:21:01:9c:ed:93: 36:2d:73:b3:78:d3:72:87:a9:0f:58:ab:81:25:8b: 8a:a6:3a:a8:57:91:8a:0e:b0:a2:2a:fe:3b:bd:fe: 81:42:a8:fc:e4:0f:51:bb:91:90:9c:4f:a7:aa:30: 2d:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:06:4A:B3:E6:41:32:0B:EC:58:C6:A1:A0:87:A0:B5:D1:61:6C:7E X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:c8:8c:14:40:84:ed:3b:76:00:01:0c:a1:d4:4f:f0:fa:d0: f4:ab:92:8b:58:9b:a4:df:28:4e:49:49:04:f6:f4:b0:04:00: 3c:b4:0c:b7:22:1c:f4:35:96:ee:f8:4a:e2:6f:d6:f9:38:42: 51:06:82:98:0f:13:5f:88:e7:db:7c:22:29:59:c4:91:9a:82: c7:5c:17:67:de:4c:44:d9:3d:06:53:2e:68:60:3c:ba:54:a4: a1:b5:12:13:b4:00:7a:3c:9f:2a:6c:dc:43:18:2f:6d:5a:1b: d8:24:70:46:4b:da:04:d9:d2:cc:a7:46:2c:70:fe:22:8a:ab: ce:59:8e:b5:0f:86:1b:35:cf:06:43:11:d7:48:7b:31:94:01: 04:1a:b5:26:7c:ad:c5:cb:96:09:16:5b:0a:a4:c0:80:c8:2d: 9c:f4:58:90:a8:f9:84:8b:b7:34:ef:81:dc:de:dc:cf:12:c6: 85:84:6c:b0:7b:d8:a9:92:65:59:8e:e4:3d:11:36:d1:58:d2: 71:95:65:6b:14:75:1b:f1:d5:6b:dd:7c:58:6c:0b:2d:b8:1c: bb:f9:6c:9f:d3:1f:b7:14:19:28:35:21:f5:91:e8:8a:6f:28: e1:08:09:27:da:6c:f8:cb:86:2a:c2:4e:84:60:be:ad:b7:77: dc:ee:1d:41 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsOXBZ+frLnTR+GqtPkXFuJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjExMTcwMTE0WhcNMjUxMjEyMTcwMTE0WjAzMTEwLwYDVQQD Eyg3NzA2NGFiM2U2NDEzMjBiZWM1OGM2YTFhMDg3YTBiNWQxNjE2YzdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7hsEZ9rNOxm30n/kmY1t8/T43pS0 eUzUN3JsVWjE5rMOsjKAZQcozMv26/jx8joPqK6URQnu/RnVSEVvf0vHdJpS2vs0 qlHF+mr5QF9kpq5DUMPMqst1laW5ZwagJcU0AXs1tb0EfRmQWoJI99LSHAjo77VL XlQp2zjgBEV3V31LQzZFVBT1Yiaj7H2GLQP5J6gX4xlJYSSZHWeU4qg4xBWBCb+X X4+OE5N2e13RzK83mJ/8ceWVCrKzwnBM275Sf+0EK5teWeFD09umIQGc7ZM2LXOz eNNyh6kPWKuBJYuKpjqoV5GKDrCiKv47vf6BQqj85A9Ru5GQnE+nqjAtKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHcGSrPmQTIL7FjGoaCHoLXRYWx+MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgciMFECE 7Tt2AAEModRP8PrQ9KuSi1ibpN8oTklJBPb0sAQAPLQMtyIc9DWW7vhK4m/W+ThC UQaCmA8TX4jn23wiKVnEkZqCx1wXZ95MRNk9BlMuaGA8ulSkobUSE7QAejyfKmzc QxgvbVob2CRwRkvaBNnSzKdGLHD+IoqrzlmOtQ+GGzXPBkMR10h7MZQBBBq1Jnyt xcuWCRZbCqTAgMgtnPRYkKj5hIu3NO+B3N7czxLGhYRssHvYqZJlWY7kPRE20VjS cZVlaxR1G/HVa918WGwLLbgcu/lsn9MftxQZKDUh9ZHoim8o4QgJJ9ps+MuGKsJO hGC+rbd33O4dQQ== -----END CERTIFICATE-----Generated at Thu Dec 11 20:01:34 2025 by rpki-client