This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: r0VRsImxZRH1okODrYXXNpOWQb++ZzwF2ogLx4Np0XM= Subject key identifier: 94:B4:AC:CF:C8:2F:80:40:BA:A1:D8:51:45:F7:BA:D4:43:B1:4C:26 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B563E2C1BF3E19BFB3331B090C54E5CB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BB5 Signing time: Thu 25 Dec 2025 16:01:13 +0000 Manifest this update: Thu 25 Dec 2025 16:01:13 +0000 Manifest next update: Fri 26 Dec 2025 16:01:13 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: bf+8QgeLwiLkjU/+I8du5L4fcJVRaImluDnbSTFK6SY=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 12:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:56:3e:2c:1b:f3:e1:9b:fb:33:31:b0:90:c5:4e:5c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 25 16:01:13 2025 GMT Not After : Dec 26 16:01:13 2025 GMT Subject: CN=94b4accfc82f8040baa1d85145f7bad443b14c26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:78:91:57:51:f6:09:94:6d:d3:1f:6e:fe:be: 98:ce:5b:70:48:08:d0:d4:91:55:77:13:ab:38:fe: ea:37:0d:e8:7b:19:ad:10:6b:69:b5:cb:44:f1:d7: 31:aa:95:1b:bc:60:5b:d6:c5:7a:dd:65:60:d2:4e: c2:6b:c9:d3:2d:14:3b:1b:7c:86:aa:db:71:a8:79: 51:01:c4:10:32:22:d1:69:75:f0:22:80:d6:9a:11: 7b:3d:90:2e:b4:20:e2:5b:87:58:7b:21:7d:8c:2a: 2f:8c:5f:be:f7:2d:91:f5:76:35:aa:50:6f:d6:fa: d2:34:ed:3c:1f:ec:b4:5c:48:35:b7:8b:71:0e:2c: be:75:a5:d6:1f:ab:8c:72:27:c0:31:e9:df:34:1e: 07:3e:4d:48:f4:09:7b:bb:3a:1f:86:40:c3:77:14: 3e:62:89:a6:46:41:4f:b2:d7:80:cc:46:c1:54:d5: c1:34:1c:e7:03:d3:2e:41:78:70:20:18:3f:31:65: 9e:99:1c:36:7b:1c:58:23:82:02:6b:01:66:1c:9d: e7:b2:90:3e:23:7d:34:a9:b7:1f:0c:21:34:f8:02: 59:5b:69:34:19:d0:8c:e7:d2:94:f6:69:b6:e6:48: f0:c2:a7:19:22:59:a8:f0:89:7e:16:e8:14:aa:f7: 6b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:B4:AC:CF:C8:2F:80:40:BA:A1:D8:51:45:F7:BA:D4:43:B1:4C:26 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:58:96:28:97:b9:c8:1e:17:5b:8e:27:f7:e0:9e:77:00:2f: bb:24:e4:60:1a:0b:7d:00:09:b8:be:78:4a:df:43:d9:1a:8d: 70:c4:87:20:8e:18:c5:23:3b:12:a5:ea:8b:ea:93:4e:da:d1: 1e:5c:d0:7f:5d:dd:84:2b:86:aa:6a:e2:e0:f1:fd:2b:ba:6a: f9:2a:e0:62:8e:2e:ec:1a:bb:e1:f6:1b:33:64:c6:38:12:d3: aa:af:f3:b7:c5:73:9b:92:fc:73:24:a5:d3:62:3f:1f:be:c5: fb:7e:b0:0f:2a:58:c8:12:c2:bb:29:d9:1f:1b:e6:23:e3:4b: a9:fd:06:af:bf:7f:08:15:5e:89:07:11:b4:25:74:db:a8:5d: 9d:88:41:16:8a:ad:88:5d:9a:47:ad:31:8d:93:a1:78:d2:71: 47:80:4b:c7:cc:26:21:cc:c2:31:f2:93:13:ff:85:6a:5a:b9: ad:cd:3a:58:8a:56:70:f2:98:6e:f7:bb:dd:bc:34:8e:64:f1: bd:88:c7:f2:e1:cf:6e:4b:0d:d3:e3:1f:8b:21:da:d4:14:e1: 48:d8:57:fc:6a:07:14:d4:c6:1d:86:bf:ea:f5:39:1d:95:d2: b6:c8:15:95:68:38:bb:50:b6:f8:61:05:43:00:cc:7a:3c:11: b8:76:3d:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtWPiwb8+Gb+zMxsJDFTly0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjI1MTYwMTEzWhcNMjUxMjI2MTYwMTEzWjAzMTEwLwYDVQQD Eyg5NGI0YWNjZmM4MmY4MDQwYmFhMWQ4NTE0NWY3YmFkNDQzYjE0YzI2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr3iRV1H2CZRt0x9u/r6YzltwSAjQ 1JFVdxOrOP7qNw3oexmtEGtptctE8dcxqpUbvGBb1sV63WVg0k7Ca8nTLRQ7G3yG qttxqHlRAcQQMiLRaXXwIoDWmhF7PZAutCDiW4dYeyF9jCovjF++9y2R9XY1qlBv 1vrSNO08H+y0XEg1t4txDiy+daXWH6uMcifAMenfNB4HPk1I9Al7uzofhkDDdxQ+ YommRkFPsteAzEbBVNXBNBznA9MuQXhwIBg/MWWemRw2exxYI4ICawFmHJ3nspA+ I300qbcfDCE0+AJZW2k0GdCM59KU9mm25kjwwqcZIlmo8Il+FugUqvdriwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJS0rM/IL4BAuqHYUUX3utRDsUwmMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGFiWKJe5 yB4XW44n9+CedwAvuyTkYBoLfQAJuL54St9D2RqNcMSHII4YxSM7EqXqi+qTTtrR HlzQf13dhCuGqmri4PH9K7pq+SrgYo4u7Bq74fYbM2TGOBLTqq/zt8Vzm5L8cySl 02I/H77F+36wDypYyBLCuynZHxvmI+NLqf0Gr79/CBVeiQcRtCV026hdnYhBFoqt iF2aR60xjZOheNJxR4BLx8wmIczCMfKTE/+Falq5rc06WIpWcPKYbve73bw0jmTx vYjH8uHPbksN0+MfiyHa1BThSNhX/GoHFNTGHYa/6vU5HZXStsgVlWg4u1C2+GEF QwDMejwRuHY9mw== -----END CERTIFICATE-----Generated at Thu Dec 25 22:00:08 2025 by rpki-client