This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: qgcnZfcIPuDdwiZ8eDU+zmE8P9fd9TPUoa1uBXFulpU= Subject key identifier: 40:6B:06:6E:AE:BF:12:27:24:69:1C:E7:04:6E:9E:86:BA:8A:D6:9F Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BFB4039175D107B7F0B1E1795BA24A725 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0C0B Signing time: Mon 26 Jan 2026 17:00:48 +0000 Manifest this update: Mon 26 Jan 2026 17:00:48 +0000 Manifest next update: Tue 27 Jan 2026 17:00:48 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: FJvcIxhafoMfPVNs9jBKi3PoBPBKe2xS8JDGx1Yy2lE=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 17:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:40:39:17:5d:10:7b:7f:0b:1e:17:95:ba:24:a7:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 26 17:00:48 2026 GMT Not After : Jan 27 17:00:48 2026 GMT Subject: CN=406b066eaebf122724691ce7046e9e86ba8ad69f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:44:8e:0b:3b:8b:20:38:5b:4f:c9:aa:8e:7e: 26:06:83:29:d8:df:08:f4:0d:72:0b:31:b0:56:08: 21:ff:33:cc:19:91:c5:30:2c:f5:08:b7:37:76:32: 23:c1:98:6c:61:7d:b1:15:03:a1:1c:1c:9f:ea:4d: 40:8c:e7:69:1a:79:51:3b:f3:3c:5b:9e:e0:b1:f2: a0:56:a9:94:5a:ab:ce:19:10:a2:aa:17:d5:b7:84: f3:d8:cf:c6:7d:a6:ae:ed:8d:20:1e:48:6c:9b:9a: 23:cf:a9:81:c0:1d:b2:53:8b:84:9f:2d:23:5c:25: 5e:cf:55:96:b5:ba:0e:07:c1:5c:04:bc:0d:91:ff: 39:87:47:c8:d2:d1:29:02:0b:0c:46:5b:3a:2a:76: c3:dd:1a:51:48:80:76:b7:a6:e9:66:b8:f1:a2:dd: 07:b9:46:49:76:2b:49:16:45:44:72:5e:8e:6b:da: 0c:7b:d6:42:88:14:65:b6:5a:6a:be:eb:13:fc:2e: 2b:c3:3f:12:3e:7e:56:fe:70:3a:e4:e3:0e:79:e8: 47:a9:86:43:d2:44:ed:41:59:e2:bb:53:8c:c9:7f: 87:fa:8b:41:04:f5:38:b4:f1:01:21:ff:e1:37:ca: 47:af:b5:07:df:43:af:77:94:29:cf:5f:aa:d8:b1: b6:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:6B:06:6E:AE:BF:12:27:24:69:1C:E7:04:6E:9E:86:BA:8A:D6:9F X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:a9:d4:86:5f:df:01:e3:82:33:55:54:98:0e:b0:e4:f6:f3: 47:3a:58:60:2e:04:b8:30:38:22:41:3a:3c:e7:72:8e:cd:b4: 4e:0f:1b:6e:0c:e5:54:9f:3c:a3:28:4a:41:5b:b2:72:cb:fa: 87:b4:a8:6a:33:d6:62:0b:56:2c:14:bf:8c:0d:17:75:f2:57: e9:f1:d5:d2:0b:4c:bb:e1:dc:1c:2e:2f:b2:90:38:75:fe:90: 7c:de:02:26:30:56:96:46:86:47:9a:f8:1a:af:2f:a0:18:12: 36:fb:70:01:35:f4:e4:a4:89:f9:c6:2f:d5:c0:67:75:dd:4e: ca:f2:93:72:f1:1a:e7:e1:48:fa:ab:be:7a:d9:4e:ab:69:70: 4a:08:76:52:bb:39:4d:db:59:a2:f2:a0:8e:02:3e:44:83:57: b7:5f:b3:73:54:6e:11:1a:69:38:8d:39:e9:6a:02:d0:ea:bc: 39:a8:6b:7e:6b:50:35:90:9b:46:00:db:0f:e6:56:50:ac:99: 72:36:20:3a:e2:bf:94:b5:db:f1:15:ed:70:4f:70:f4:6a:a5: e8:ee:a0:89:3a:82:2e:4e:36:97:33:8d:26:fd:8a:d0:fc:5d: 94:b2:ef:f1:22:57:4a:a1:78:0e:ef:1d:47:18:e8:57:66:d8: f9:34:a8:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv7QDkXXRB7fwseF5W6JKclMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTI2MTcwMDQ4WhcNMjYwMTI3MTcwMDQ4WjAzMTEwLwYDVQQD Eyg0MDZiMDY2ZWFlYmYxMjI3MjQ2OTFjZTcwNDZlOWU4NmJhOGFkNjlmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlESOCzuLIDhbT8mqjn4mBoMp2N8I 9A1yCzGwVggh/zPMGZHFMCz1CLc3djIjwZhsYX2xFQOhHByf6k1AjOdpGnlRO/M8 W57gsfKgVqmUWqvOGRCiqhfVt4Tz2M/Gfaau7Y0gHkhsm5ojz6mBwB2yU4uEny0j XCVez1WWtboOB8FcBLwNkf85h0fI0tEpAgsMRls6KnbD3RpRSIB2t6bpZrjxot0H uUZJditJFkVEcl6Oa9oMe9ZCiBRltlpqvusT/C4rwz8SPn5W/nA65OMOeehHqYZD 0kTtQVniu1OMyX+H+otBBPU4tPEBIf/hN8pHr7UH30Ovd5Qpz1+q2LG2wwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEBrBm6uvxInJGkc5wRunoa6itafMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWanUhl/f AeOCM1VUmA6w5PbzRzpYYC4EuDA4IkE6POdyjs20Tg8bbgzlVJ88oyhKQVuycsv6 h7SoajPWYgtWLBS/jA0XdfJX6fHV0gtMu+HcHC4vspA4df6QfN4CJjBWlkaGR5r4 Gq8voBgSNvtwATX05KSJ+cYv1cBndd1OyvKTcvEa5+FI+qu+etlOq2lwSgh2Urs5 TdtZovKgjgI+RINXt1+zc1RuERppOI056WoC0Oq8OahrfmtQNZCbRgDbD+ZWUKyZ cjYgOuK/lLXb8RXtcE9w9Gql6O6giTqCLk42lzONJv2K0PxdlLLv8SJXSqF4Du8d RxjoV2bY+TSohw== -----END CERTIFICATE-----Generated at Tue Jan 27 02:12:18 2026 by rpki-client