This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json)
Hash identifier: LV2qaSjMjPRBhtDvgaxWASGCCtSL7dthByCgqVJSZx8=
Subject key identifier: 9E:09:75:00:96:80:47:D1:25:B2:03:88:C3:34:D3:22:C9:74:3D:EB
Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Certificate serial: 019BC33EE53070159BBB769429554DD4C575
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
Manifest number: 0BEE
Signing time: Thu 15 Jan 2026 20:00:37 +0000
Manifest this update: Thu 15 Jan 2026 20:00:37 +0000
Manifest next update: Fri 16 Jan 2026 20:00:37 +0000
Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 0tgiSiWMbL1CtR79IYSDRGd2WPY39sCSgzCPf8x3b4U=)
2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=)
3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=)
4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=)
5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=)
6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=)
7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=)
8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=)
9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 16 Jan 2026 20:00:37 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:c3:3e:e5:30:70:15:9b:bb:76:94:29:55:4d:d4:c5:75
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd
Validity
Not Before: Jan 15 20:00:37 2026 GMT
Not After : Jan 16 20:00:37 2026 GMT
Subject: CN=9e097500968047d125b20388c334d322c9743deb
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:7c:ed:2b:47:5e:a8:d8:49:2a:ad:7f:4a:c4:
3f:ad:2a:b5:9f:27:4b:61:27:4e:09:58:93:cf:3c:
0b:ca:a1:26:e1:35:a2:b6:f7:95:94:de:56:44:24:
7e:8b:30:74:51:06:d3:72:1e:28:bd:aa:e5:44:e2:
f6:f3:bb:0d:04:9d:4c:07:9c:09:42:e7:d2:2f:50:
4d:2e:89:cd:c2:ad:fc:2d:a4:2d:c2:3b:3b:94:c4:
fc:67:fb:ba:53:9a:ef:cb:34:c8:5a:01:23:4e:fa:
65:0a:cb:23:fa:3d:9a:04:e1:05:39:e2:29:22:57:
3c:93:0f:bd:0a:01:84:66:ee:68:33:3f:af:bc:bf:
bf:fb:8c:fd:fa:f7:f8:a6:f8:f3:6d:f0:82:f6:83:
bb:a5:0c:3c:fd:ab:32:8d:74:dd:6c:e9:d9:8e:7d:
ab:6b:ca:58:c7:b9:63:ab:19:60:df:6a:b3:10:e4:
c1:5e:14:77:10:93:9a:68:88:c0:3e:2e:c8:4b:dc:
b1:8b:32:df:7b:f1:2a:c2:a5:6d:39:7d:eb:aa:aa:
95:ee:09:ad:d8:0b:f3:5a:ef:df:5c:51:8a:8f:48:
fd:7e:9b:11:fb:fd:35:04:49:92:5b:ed:ea:77:4d:
43:d7:d1:1e:ea:83:5b:b6:09:49:56:48:ca:88:28:
13:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9E:09:75:00:96:80:47:D1:25:B2:03:88:C3:34:D3:22:C9:74:3D:EB
X509v3 Authority Key Identifier:
keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
0f:c3:8c:87:e6:ca:d9:a9:32:c6:c4:e3:31:3e:fe:8c:53:c2:
dc:7b:4b:a4:ff:83:36:1a:99:75:22:33:b7:32:a2:d0:22:d5:
4a:54:78:d0:99:42:63:e1:91:f9:d0:f6:b6:cf:1a:61:9d:f3:
3e:c5:bb:b0:83:87:ee:20:89:35:83:c7:eb:92:fa:04:c4:68:
82:5a:fe:7d:8e:c8:36:56:41:2f:5d:29:f3:41:ed:88:c9:ce:
68:64:e0:7a:a9:6b:22:11:f7:29:38:c7:38:b3:12:70:0f:45:
6f:f9:e9:5e:c9:32:c2:61:f4:2e:5f:fa:2e:de:48:db:56:b0:
fc:64:ea:35:38:1f:68:f8:bf:47:4b:8f:c1:fc:26:98:61:82:
4e:2e:02:aa:fa:da:56:ce:28:1e:6c:4f:da:a2:c8:9b:f9:d0:
35:c2:7c:01:69:77:73:c3:45:e9:27:0c:68:48:50:ae:40:5d:
45:ae:83:e1:91:00:8b:d3:6f:9f:ed:73:95:91:a6:60:f3:1d:
ee:54:81:c7:98:24:58:bb:7b:c9:a0:1a:57:43:cf:69:9a:b5:
92:25:0c:08:d4:5e:cd:9d:99:8c:9c:70:4b:4e:9e:0c:9a:0f:
18:79:06:85:b7:42:3b:54:9e:8d:78:3b:91:72:60:ed:a4:5d:
58:4f:fc:b4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 16 02:19:07 2026 by rpki-client