This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: 4dxBZOX3pzHFZrNQjz3WrOIss0b98NO906AtZvWDzQA= Subject key identifier: 7A:E0:5D:56:E7:6E:B2:44:74:75:20:20:83:18:C3:53:A6:35:8A:8D Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B526151A2C03C6F9DE02D8158911B6613 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BB3 Signing time: Wed 24 Dec 2025 22:01:08 +0000 Manifest this update: Wed 24 Dec 2025 22:01:08 +0000 Manifest next update: Thu 25 Dec 2025 22:01:08 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 6JFvKIuBtbmwarISGtS9q/gjIFphEhNZ629TVmrcqn0=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 25 Dec 2025 18:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:52:61:51:a2:c0:3c:6f:9d:e0:2d:81:58:91:1b:66:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 24 22:01:08 2025 GMT Not After : Dec 25 22:01:08 2025 GMT Subject: CN=7ae05d56e76eb244747520208318c353a6358a8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:ee:ac:6d:9f:8e:03:97:8b:1a:fb:90:6c:04: 88:ee:4d:95:95:cd:e8:48:d9:0e:63:d2:8e:09:b2: 6c:d9:31:a8:b8:1f:45:84:fd:ad:ac:6f:82:1e:39: 36:70:a9:cc:bc:8d:3e:85:8f:70:a9:46:75:36:ad: 3a:b1:70:2b:eb:8c:33:24:c2:a2:b5:69:34:50:cb: d9:66:e2:8e:cd:8f:cd:01:92:22:05:8e:11:b5:21: f5:c8:ef:9b:6f:42:13:1d:29:eb:3c:34:4f:3d:71: 9d:78:e7:9d:26:40:fc:be:8b:c5:f3:fd:74:ea:30: 8b:b8:1f:ce:de:b8:8a:f8:55:c0:4e:08:9e:89:90: aa:20:41:fc:09:3f:3b:b7:23:2e:ae:68:8f:cd:47: 15:37:01:e2:7d:ee:e3:b5:61:4e:15:a0:9f:92:aa: 7e:19:09:2f:d0:c4:cb:a1:70:f2:4d:e8:9d:f5:6a: 1b:73:84:08:dd:b7:ac:71:9a:60:f7:53:d8:be:b3: 33:44:c5:09:de:fb:50:c5:3d:b7:07:8a:e3:07:81: 47:b6:b1:d3:b0:95:fa:3d:f6:c8:18:02:c5:46:85: df:9d:a5:eb:96:85:c9:cf:26:c5:9a:d6:62:73:d6: 7c:3a:f7:ea:ee:0c:14:20:6b:81:c1:51:de:14:dd: bd:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:E0:5D:56:E7:6E:B2:44:74:75:20:20:83:18:C3:53:A6:35:8A:8D X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:fe:fe:66:ef:52:69:50:73:9a:c8:e1:ff:a1:ea:e3:fb:99: 2d:34:c4:ea:78:4a:00:92:83:5f:35:66:73:d9:7b:49:23:09: 81:f2:3b:3c:a4:da:25:76:d0:9b:73:9e:7e:d9:38:dc:cc:47: 82:d7:53:f8:91:63:db:d2:82:d2:22:94:aa:32:d5:e0:13:e9: 99:b1:7b:2d:14:da:6e:ce:3c:e3:4a:fb:b3:e9:e6:58:cb:cf: 02:77:87:8d:be:86:1d:b6:24:65:6b:04:22:ba:89:4e:3a:df: 0e:ce:81:3b:71:ff:d6:ee:81:e8:5c:f5:30:eb:74:07:c5:4c: 0e:cf:96:2b:9e:a1:e6:d1:15:af:48:c0:0d:43:eb:7c:77:c9: 04:b9:ad:98:b3:71:7f:6c:95:aa:fb:95:1c:f4:b5:d0:d2:5c: 1a:74:ab:4a:93:a9:2a:44:58:0f:26:df:b6:7a:d8:35:57:35: 2a:c6:0a:1f:ae:a7:53:d1:ae:ad:73:3e:0d:a3:7a:5d:4c:0d: 82:cf:4b:2e:7f:84:66:ef:ea:d2:ff:93:95:84:c8:ed:cd:fa: 20:46:62:52:02:b3:ca:99:36:13:e3:32:ff:18:a7:a7:29:3e: 2b:16:e9:55:81:9e:69:af:7b:dd:d9:c2:85:cf:55:a9:d2:2e: c1:97:ea:68 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtSYVGiwDxvneAtgViRG2YTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjI0MjIwMTA4WhcNMjUxMjI1MjIwMTA4WjAzMTEwLwYDVQQD Eyg3YWUwNWQ1NmU3NmViMjQ0NzQ3NTIwMjA4MzE4YzM1M2E2MzU4YThkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmO6sbZ+OA5eLGvuQbASI7k2Vlc3o SNkOY9KOCbJs2TGouB9FhP2trG+CHjk2cKnMvI0+hY9wqUZ1Nq06sXAr64wzJMKi tWk0UMvZZuKOzY/NAZIiBY4RtSH1yO+bb0ITHSnrPDRPPXGdeOedJkD8vovF8/10 6jCLuB/O3riK+FXATgieiZCqIEH8CT87tyMurmiPzUcVNwHife7jtWFOFaCfkqp+ GQkv0MTLoXDyTeid9Wobc4QI3bescZpg91PYvrMzRMUJ3vtQxT23B4rjB4FHtrHT sJX6PfbIGALFRoXfnaXrloXJzybFmtZic9Z8Ovfq7gwUIGuBwVHeFN29rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHrgXVbnbrJEdHUgIIMYw1OmNYqNMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ/7+Zu9S aVBzmsjh/6Hq4/uZLTTE6nhKAJKDXzVmc9l7SSMJgfI7PKTaJXbQm3Oeftk43MxH gtdT+JFj29KC0iKUqjLV4BPpmbF7LRTabs4840r7s+nmWMvPAneHjb6GHbYkZWsE IrqJTjrfDs6BO3H/1u6B6Fz1MOt0B8VMDs+WK56h5tEVr0jADUPrfHfJBLmtmLNx f2yVqvuVHPS10NJcGnSrSpOpKkRYDybftnrYNVc1KsYKH66nU9GurXM+DaN6XUwN gs9LLn+EZu/q0v+TlYTI7c36IEZiUgKzypk2E+My/xinpyk+KxbpVYGeaa973dnC hc9VqdIuwZfqaA== -----END CERTIFICATE-----Generated at Thu Dec 25 02:39:24 2025 by rpki-client