This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: wOFal3W/6ln99oSoCoU8mqrPp3tUbF211BBac/0Ngoo= Subject key identifier: BA:7D:72:A0:FE:DA:58:20:22:D2:0C:60:BB:68:20:2D:60:04:5A:CE Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019C010B47E56DFA5E1884FDE5CCEEE10787 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0C0E Signing time: Tue 27 Jan 2026 20:00:42 +0000 Manifest this update: Tue 27 Jan 2026 20:00:42 +0000 Manifest next update: Wed 28 Jan 2026 20:00:42 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: hHVZNOIJ2jvixPYtAk7k7btb2uBu7bHd1oVYgzIOkJw=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 20:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:01:0b:47:e5:6d:fa:5e:18:84:fd:e5:cc:ee:e1:07:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 27 20:00:42 2026 GMT Not After : Jan 28 20:00:42 2026 GMT Subject: CN=ba7d72a0feda582022d20c60bb68202d60045ace Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:6a:95:ad:26:7a:62:e9:b7:97:ba:d0:ca:9f: 05:01:11:80:af:80:43:25:f4:97:c0:f2:02:c5:5b: 04:06:40:71:65:91:cb:b4:73:98:e1:e7:f2:37:b0: 2a:77:4c:ad:94:03:95:2f:d9:df:e2:f0:99:d7:b2: 4f:c5:17:74:b6:51:0b:4f:86:69:9a:5e:4a:87:4d: db:a5:c2:0b:7d:d1:82:33:7c:7b:cb:e5:74:83:aa: 6e:a3:9d:76:a7:20:90:34:e3:e5:8c:85:77:67:f3: af:c4:63:b3:7f:eb:3d:ff:61:e8:9d:ea:b6:ae:f1: bf:54:26:10:36:5f:17:44:f8:a2:3b:42:dd:a2:c0: 51:0c:89:fd:76:eb:cb:c2:12:6a:01:9f:ae:03:c3: 99:3f:7a:95:31:bb:b9:0a:43:00:52:f7:33:e0:c2: 4b:7b:75:b5:a2:5d:31:14:64:ef:13:e8:1b:dc:ab: 72:b1:8e:46:ed:0d:c3:8a:04:ca:dd:60:e4:17:70: e4:80:95:6c:47:a2:4f:b3:30:b4:41:a5:b5:22:d0: 87:9c:88:80:ce:27:b8:33:1d:15:94:65:f2:00:61: 9b:2e:d8:8b:1c:2b:ff:4e:52:f5:0c:53:1c:22:e1: 58:d2:32:11:cd:87:6d:ce:04:d5:17:e6:f1:79:aa: 04:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:7D:72:A0:FE:DA:58:20:22:D2:0C:60:BB:68:20:2D:60:04:5A:CE X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:e9:7b:cd:bb:10:69:c8:2f:ca:88:7e:e9:83:25:1a:12:5c: 12:ac:60:d0:ea:8a:14:1a:f8:bb:eb:cc:17:a5:9f:7e:5c:9f: e0:68:2e:62:9f:aa:95:5e:b7:5c:9b:f4:3a:ad:61:9a:e8:26: 2f:ea:b8:31:13:6c:43:1f:0f:0f:16:bd:eb:98:4c:3d:34:3e: 05:9f:fd:49:eb:af:9d:5f:bc:28:2f:73:a6:90:34:a7:30:1a: 74:60:b5:e7:4c:59:60:c3:a6:c6:dd:43:5b:bd:00:71:40:2f: 42:1b:b8:4c:53:cf:95:62:0e:3d:74:4a:c5:ce:5a:ba:3f:44: fa:d5:7f:62:f9:57:86:12:59:25:4b:fe:97:5b:31:e2:44:72: 5d:b1:a9:4b:1d:ac:0b:22:a3:51:ac:c1:95:88:4f:9d:0b:80: a8:a9:c3:57:70:3b:f8:7f:1c:8b:7a:0d:12:cf:ac:b7:f1:cd: 04:b3:cf:8d:a7:a6:44:d4:b7:7c:00:1a:4f:dd:5a:4b:e9:48: 60:aa:83:2b:96:8e:16:17:f2:04:bf:50:48:f8:f4:80:cb:6c: 0e:b3:86:c2:7c:ca:a7:51:a9:e9:ea:95:c8:9a:0d:cd:f7:22: f3:6d:f6:f6:1c:e2:07:23:86:18:43:37:bc:88:2d:a0:bc:b2: 7b:56:52:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwBC0flbfpeGIT95czu4QeHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTI3MjAwMDQyWhcNMjYwMTI4MjAwMDQyWjAzMTEwLwYDVQQD EyhiYTdkNzJhMGZlZGE1ODIwMjJkMjBjNjBiYjY4MjAyZDYwMDQ1YWNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWqVrSZ6Yum3l7rQyp8FARGAr4BD JfSXwPICxVsEBkBxZZHLtHOY4efyN7Aqd0ytlAOVL9nf4vCZ17JPxRd0tlELT4Zp ml5Kh03bpcILfdGCM3x7y+V0g6puo512pyCQNOPljIV3Z/OvxGOzf+s9/2Honeq2 rvG/VCYQNl8XRPiiO0LdosBRDIn9duvLwhJqAZ+uA8OZP3qVMbu5CkMAUvcz4MJL e3W1ol0xFGTvE+gb3KtysY5G7Q3DigTK3WDkF3DkgJVsR6JPszC0QaW1ItCHnIiA zie4Mx0VlGXyAGGbLtiLHCv/TlL1DFMcIuFY0jIRzYdtzgTVF+bxeaoENQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLp9cqD+2lggItIMYLtoIC1gBFrOMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAOl7zbsQ acgvyoh+6YMlGhJcEqxg0OqKFBr4u+vMF6Wfflyf4GguYp+qlV63XJv0Oq1hmugm L+q4MRNsQx8PDxa965hMPTQ+BZ/9SeuvnV+8KC9zppA0pzAadGC150xZYMOmxt1D W70AcUAvQhu4TFPPlWIOPXRKxc5auj9E+tV/YvlXhhJZJUv+l1sx4kRyXbGpSx2s CyKjUazBlYhPnQuAqKnDV3A7+H8ci3oNEs+st/HNBLPPjaemRNS3fAAaT91aS+lI YKqDK5aOFhfyBL9QSPj0gMtsDrOGwnzKp1Gp6eqVyJoNzfci82329hziByOGGEM3 vIgtoLyye1ZSgQ== -----END CERTIFICATE-----Generated at Wed Jan 28 05:49:52 2026 by rpki-client