This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: yw1cn+NxJLxgLK1BlO7umY9ap+MxErqhynhZ4PHD+Fw= Subject key identifier: 04:E5:AE:F1:C8:B7:9B:1B:D2:C2:DF:A6:FB:8A:3A:2A:FD:B5:44:BE Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BCAF83D102BEF02269B4BEF692D37C3D5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BF2 Signing time: Sat 17 Jan 2026 08:00:24 +0000 Manifest this update: Sat 17 Jan 2026 08:00:24 +0000 Manifest next update: Sun 18 Jan 2026 08:00:24 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: N9gcMXEsudjVeJ5fZU2xEDIDOyneo4AGqlOkySbkQ40=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 08:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ca:f8:3d:10:2b:ef:02:26:9b:4b:ef:69:2d:37:c3:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 17 08:00:24 2026 GMT Not After : Jan 18 08:00:24 2026 GMT Subject: CN=04e5aef1c8b79b1bd2c2dfa6fb8a3a2afdb544be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:74:fa:40:ed:54:74:20:a0:c4:28:48:60: dd:35:f1:67:47:e1:27:21:f2:c9:bb:a9:03:15:a1: 66:67:43:2b:40:b1:fa:7c:db:7b:54:41:af:42:06: 02:37:79:fa:e5:5c:c3:b5:7f:c4:48:bf:c5:43:1a: 68:2d:0a:bf:68:06:0d:3f:93:32:74:89:d2:8f:87: d3:ef:6c:e6:14:7d:67:32:51:5e:6f:11:8c:57:72: a9:44:5f:0c:3b:ea:a3:da:89:ee:9c:8b:b0:f2:b1: d0:0b:c6:a4:25:a7:bb:18:90:ca:8a:9e:05:6f:8e: e9:59:14:34:ee:ba:b4:ec:d2:c0:c3:bd:9b:a1:33: 69:b5:dd:b3:ae:f1:61:81:f1:54:5d:68:28:cb:45: c9:06:b0:f5:8e:2f:e9:36:98:ff:84:45:a3:70:75: d2:3e:a2:31:02:db:c1:64:e4:67:d9:f2:c6:ac:f8: b1:5b:c5:bc:9f:9f:0d:57:97:6c:e5:64:24:3a:e6: c6:b6:13:00:c0:34:d8:34:2a:11:9f:88:5a:e9:ef: fb:12:20:09:2c:10:21:4e:e3:5f:0f:00:64:2e:ce: bb:a7:56:5a:b6:62:79:cb:a8:15:35:99:4d:42:dc: dd:6c:74:11:89:c3:46:08:e4:a7:9b:ac:6f:91:72: b2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:E5:AE:F1:C8:B7:9B:1B:D2:C2:DF:A6:FB:8A:3A:2A:FD:B5:44:BE X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:07:87:88:17:28:1e:47:ab:4c:b7:70:55:c0:17:2f:b6:f1: 7c:cf:c6:f4:2f:26:82:7e:92:f0:9d:dc:8e:67:7d:18:61:92: e8:5f:47:8f:40:74:2c:15:b1:ce:96:1f:54:6b:08:ba:71:ef: c7:a1:ff:66:22:2e:94:64:c8:c1:50:43:f0:c4:f7:c8:20:fb: a3:26:ae:db:af:4f:25:a0:f3:d7:ad:53:bd:79:ed:42:d4:d7: f1:f1:9e:e7:fa:26:d0:fd:76:b4:bd:71:c2:8c:7b:fa:2e:43: 0b:0c:cc:ce:3e:5a:8c:f3:8a:c1:a8:1e:d9:be:75:20:9e:82: 2b:cb:05:9d:a0:fa:a3:03:4f:d2:41:96:d7:f1:da:b0:48:c6: 88:69:80:ae:ac:c5:e9:61:b1:81:fc:f6:23:6f:3d:2b:f7:94: 1b:29:e2:9d:ef:3c:09:04:5f:3d:6a:1a:f0:79:e4:e4:aa:c4: 07:44:68:b6:4a:80:12:48:04:e8:bd:b1:d5:24:f5:25:89:7a: 37:0e:e7:a1:af:45:a5:67:79:c0:9f:a8:13:e2:09:63:87:ae: 99:03:0a:c2:1c:b4:85:df:53:e7:48:9c:a3:b8:b3:7f:fe:1f: 07:0b:ee:a1:3f:87:0a:59:07:c9:fd:a7:63:0b:a3:d1:6c:cb: 06:1e:4d:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvK+D0QK+8CJptL72ktN8PVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTE3MDgwMDI0WhcNMjYwMTE4MDgwMDI0WjAzMTEwLwYDVQQD EygwNGU1YWVmMWM4Yjc5YjFiZDJjMmRmYTZmYjhhM2EyYWZkYjU0NGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsbF0+kDtVHQgoMQoSGDdNfFnR+En IfLJu6kDFaFmZ0MrQLH6fNt7VEGvQgYCN3n65VzDtX/ESL/FQxpoLQq/aAYNP5My dInSj4fT72zmFH1nMlFebxGMV3KpRF8MO+qj2onunIuw8rHQC8akJae7GJDKip4F b47pWRQ07rq07NLAw72boTNptd2zrvFhgfFUXWgoy0XJBrD1ji/pNpj/hEWjcHXS PqIxAtvBZORn2fLGrPixW8W8n58NV5ds5WQkOubGthMAwDTYNCoRn4ha6e/7EiAJ LBAhTuNfDwBkLs67p1ZatmJ5y6gVNZlNQtzdbHQRicNGCOSnm6xvkXKyQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFATlrvHIt5sb0sLfpvuKOir9tUS+MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVweHiBco HkerTLdwVcAXL7bxfM/G9C8mgn6S8J3cjmd9GGGS6F9Hj0B0LBWxzpYfVGsIunHv x6H/ZiIulGTIwVBD8MT3yCD7oyau269PJaDz161TvXntQtTX8fGe5/om0P12tL1x wox7+i5DCwzMzj5ajPOKwage2b51IJ6CK8sFnaD6owNP0kGW1/HasEjGiGmArqzF 6WGxgfz2I289K/eUGynine88CQRfPWoa8Hnk5KrEB0RotkqAEkgE6L2x1ST1JYl6 Nw7noa9FpWd5wJ+oE+IJY4eumQMKwhy0hd9T50ico7izf/4fBwvuoT+HClkHyf2n Ywuj0WzLBh5Nqg== -----END CERTIFICATE-----Generated at Sat Jan 17 15:36:13 2026 by rpki-client