This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: XATXf1sC+6ZC1NNgOGauC3Jy1XeFyRcMJGVZSdcm3t8= Subject key identifier: AC:A1:2B:B4:29:7B:CA:7A:F3:22:A5:D8:A6:DD:7C:6F:AE:E7:21:30 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019A9D7DCA73EB8CA9FF7412C62AE2C34E4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B50 Signing time: Wed 19 Nov 2025 19:00:57 +0000 Manifest this update: Wed 19 Nov 2025 19:00:57 +0000 Manifest next update: Thu 20 Nov 2025 19:00:57 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: AWvdxrwtMaeByaaqfWesXKgBp411O443dh3+EGJ8SaQ=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 20 Nov 2025 15:12:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:9d:7d:ca:73:eb:8c:a9:ff:74:12:c6:2a:e2:c3:4e:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 19 19:00:57 2025 GMT Not After : Nov 20 19:00:57 2025 GMT Subject: CN=aca12bb4297bca7af322a5d8a6dd7c6faee72130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:d9:a6:58:23:17:2d:f5:6b:52:d7:7d:e1:22: ba:de:b0:64:68:97:e2:8b:e1:0b:19:4e:cf:00:b1: bd:aa:fc:63:4b:ba:65:e5:b4:37:8c:1c:2e:fb:61: 66:50:04:f2:db:ab:8f:a3:26:a5:4f:84:ce:ef:0e: 67:59:4a:41:fe:1b:8f:9a:94:ad:b2:69:36:47:5d: f0:bd:6b:2b:08:9a:20:26:a5:c9:7b:ab:39:41:8c: 92:ed:75:72:ef:94:5a:11:54:ee:d2:38:77:e6:37: fe:e6:c2:e8:2e:cf:53:5d:83:15:f3:7e:63:4e:82: 01:d5:6f:ef:75:51:6b:3a:99:4b:50:8b:b4:a7:44: 30:87:c3:71:da:51:9d:c5:38:f3:67:c1:62:e7:af: 88:95:66:b2:20:02:13:21:2e:88:07:30:8a:99:f8: 9b:f4:d3:ba:87:29:5d:f5:cb:a9:72:c3:47:ad:12: 04:1c:f3:95:b8:12:85:8d:10:80:6f:c3:57:f7:78: 10:3e:e9:65:2f:b3:26:2e:54:47:d2:6d:b0:e3:70: 58:cc:7c:e6:df:a5:72:8d:11:4c:d8:97:b5:da:ca: 36:a2:22:32:b5:91:47:6e:16:3d:48:8b:e1:95:41: ba:ba:67:b3:d0:55:00:99:82:c4:21:4e:ed:c5:cc: ec:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:A1:2B:B4:29:7B:CA:7A:F3:22:A5:D8:A6:DD:7C:6F:AE:E7:21:30 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:10:28:94:86:9c:f8:c9:93:d4:2d:ac:fb:53:7a:22:e5:a0: 27:da:4d:11:8d:99:2c:00:b8:30:50:5f:61:0c:24:4c:a4:1c: d1:6e:53:c5:0f:6a:ca:28:be:d9:31:ef:78:05:9c:ab:64:a8: b2:17:07:74:e5:d8:7c:f6:82:4d:8a:2a:4c:54:53:f3:b1:c2: 91:05:c3:35:5c:3f:32:21:dc:b6:6c:6d:3b:9f:8d:f7:6b:65: 90:89:92:f8:20:07:9a:37:e8:f0:26:c9:f2:d0:33:d9:66:b5: a1:75:17:be:02:b7:5e:22:39:ee:95:ae:9e:99:63:b9:d7:88: b7:65:ed:7f:45:ee:f3:c9:9b:af:3e:e4:8a:ad:4b:83:26:e6: 7e:7f:bc:af:51:2b:28:99:01:df:0e:81:2b:25:25:19:f2:e5: 73:be:e0:fc:fd:c9:bb:c8:03:f3:1d:2c:73:cd:0b:2a:05:b4: 60:d9:5d:fb:fc:40:51:ae:d7:38:39:03:68:ff:b6:29:9a:77: 55:d6:f3:89:93:53:d6:ff:6b:37:5e:97:41:3a:af:94:45:1d: 3d:93:c1:5a:56:0f:07:64:c3:64:df:85:62:58:e8:d5:9a:ed: df:52:26:0e:4c:38:14:dd:13:48:26:df:6f:7d:e4:5e:71:a3: c6:ae:d7:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqdfcpz64yp/3QSxiriw05KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTE5MTkwMDU3WhcNMjUxMTIwMTkwMDU3WjAzMTEwLwYDVQQD EyhhY2ExMmJiNDI5N2JjYTdhZjMyMmE1ZDhhNmRkN2M2ZmFlZTcyMTMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzNmmWCMXLfVrUtd94SK63rBkaJfi i+ELGU7PALG9qvxjS7pl5bQ3jBwu+2FmUATy26uPoyalT4TO7w5nWUpB/huPmpSt smk2R13wvWsrCJogJqXJe6s5QYyS7XVy75RaEVTu0jh35jf+5sLoLs9TXYMV835j ToIB1W/vdVFrOplLUIu0p0Qwh8Nx2lGdxTjzZ8Fi56+IlWayIAITIS6IBzCKmfib 9NO6hyld9cupcsNHrRIEHPOVuBKFjRCAb8NX93gQPullL7MmLlRH0m2w43BYzHzm 36VyjRFM2Je12so2oiIytZFHbhY9SIvhlUG6umez0FUAmYLEIU7txczsLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKyhK7Qpe8p68yKl2KbdfG+u5yEwMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADhAolIac +MmT1C2s+1N6IuWgJ9pNEY2ZLAC4MFBfYQwkTKQc0W5TxQ9qyii+2THveAWcq2So shcHdOXYfPaCTYoqTFRT87HCkQXDNVw/MiHctmxtO5+N92tlkImS+CAHmjfo8CbJ 8tAz2Wa1oXUXvgK3XiI57pWunpljudeIt2Xtf0Xu88mbrz7kiq1Lgybmfn+8r1Er KJkB3w6BKyUlGfLlc77g/P3Ju8gD8x0sc80LKgW0YNld+/xAUa7XODkDaP+2KZp3 VdbziZNT1v9rN16XQTqvlEUdPZPBWlYPB2TDZN+FYljo1Zrt31ImDkw4FN0TSCbf b33kXnGjxq7Xuw== -----END CERTIFICATE-----Generated at Wed Nov 19 21:10:54 2025 by rpki-client