This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: c1AsUGRDCkViDIsgMtf62gpT6Y7Qd/2Nfcg4qzcngxI=
Subject key identifier: 63:0F:05:DF:AA:F7:DF:FA:AD:07:EC:8B:7D:D2:E7:09:93:30:C0:0A
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019BD2B1D18D9234ED0B5FDCF388473A6667
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0BF6
Signing time: Sun 18 Jan 2026 20:00:27 +0000
Manifest this update: Sun 18 Jan 2026 20:00:27 +0000
Manifest next update: Mon 19 Jan 2026 20:00:27 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 1dExxyLyWNmCX/vtTzGDrLiEo5iH3N8tkk+KerpySAo=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 19 Jan 2026 19:27:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:d2:b1:d1:8d:92:34:ed:0b:5f:dc:f3:88:47:3a:66:67
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jan 18 20:00:27 2026 GMT
Not After : Jan 19 20:00:27 2026 GMT
Subject: CN=630f05dfaaf7dffaad07ec8b7dd2e7099330c00a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:a6:38:3b:b3:23:bd:63:ae:11:80:80:65:06:
a7:6f:62:71:1c:26:8f:8f:da:a4:ef:6c:37:fc:31:
4a:e9:fe:94:ce:a6:f0:ba:0a:a0:98:08:a7:75:fd:
40:88:2b:5a:09:b8:79:f3:54:d5:a2:a8:51:95:56:
7c:21:81:b3:9c:e0:7f:09:10:5b:ec:eb:0b:d0:aa:
24:d7:30:17:cc:5a:7e:5b:e9:d6:27:29:d6:64:b8:
4c:bf:0a:8f:6f:28:88:00:fe:4e:4d:1f:99:c9:04:
60:cc:13:99:be:21:4c:90:f1:01:2e:94:a0:06:cf:
42:a0:01:f2:d3:75:fb:34:1b:45:2b:13:6b:3c:d9:
16:47:b6:91:c7:c7:ec:5f:91:1d:e2:42:d3:1d:6b:
04:0c:21:fe:28:23:79:38:73:a0:ec:3e:99:fd:47:
34:4f:23:9a:13:e6:fa:d9:e8:11:76:50:aa:e1:70:
c6:14:b2:64:a8:40:44:f0:2d:99:1c:45:80:cf:27:
b3:61:0c:17:ff:cc:a5:74:60:d6:fb:ef:9b:31:fb:
25:9e:a8:41:d6:7a:6c:85:a4:ef:65:36:48:2d:ac:
ed:9d:6f:08:b7:9e:66:71:14:02:a6:93:d6:e5:05:
47:ec:42:f7:fa:85:9e:06:89:e5:a1:ed:24:89:92:
65:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
63:0F:05:DF:AA:F7:DF:FA:AD:07:EC:8B:7D:D2:E7:09:93:30:C0:0A
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
42:7a:ab:56:94:0f:9b:d9:97:5e:39:68:58:a7:25:19:a9:6b:
ff:cf:01:1f:95:a5:9a:2d:9b:b5:2b:3d:2e:b2:4a:ae:ae:9d:
77:4e:5c:9d:03:31:75:b5:77:43:6e:cd:07:08:60:71:57:22:
dc:b5:64:9b:94:fa:47:bc:d4:96:c5:56:ce:85:2d:fb:97:cc:
ff:5f:bd:d7:d0:93:eb:75:1f:31:21:84:f5:f4:aa:44:f9:42:
c2:e6:dd:94:7a:f5:8d:5a:8c:ea:74:6a:82:09:5d:3e:32:b4:
cb:19:11:80:2f:c7:0e:9f:3b:70:ed:c7:61:b3:a5:5f:f8:2a:
13:50:c9:a7:ba:9e:87:fc:06:3a:eb:d0:41:dd:a5:56:40:e6:
69:a0:ba:1e:27:e3:a0:11:f8:91:d9:85:fd:67:db:de:45:a5:
89:cc:d1:95:88:2d:f9:9c:13:80:8e:ff:30:7a:84:52:18:b9:
95:be:e8:a1:c1:40:a9:de:37:36:d5:fe:13:80:29:f1:dc:7f:
37:62:b1:43:43:00:97:6c:26:20:1f:59:fb:24:d8:06:9d:38:
1b:4d:a1:7d:9e:b1:bc:8f:01:13:ec:d2:ca:cf:ce:4e:38:5e:
93:ac:54:e6:72:85:5a:5d:94:92:af:6f:ab:15:ef:dc:2b:9b:
65:5d:ee:77
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 19 05:40:05 2026 by rpki-client