This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: F/DQyexXT3vCnBrsW/+nD1jHypKDr5vnHyyLcGKkv9s= Subject key identifier: 82:EF:CF:BE:45:1B:68:8A:74:4B:61:07:7B:A7:FE:93:FA:B7:E7:8D Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019B4C95D8D781D3B0309318CA7AE69630A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BB0 Signing time: Tue 23 Dec 2025 19:00:47 +0000 Manifest this update: Tue 23 Dec 2025 19:00:47 +0000 Manifest next update: Wed 24 Dec 2025 19:00:47 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: eWKhrAEKeSclDj6iVmu/aqKvWn8/U3EOlIxAn9Y9Oyo=) 3: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 4: KVQkFeUwolH0HmllWNVJLFREzvY.roa (hash: FUk/SpsOFKtFJQWm18UEZH4SZGt6o3hi/sxLs3zEIeU=) 5: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 6: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 7: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 8: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 24 Dec 2025 15:46:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:4c:95:d8:d7:81:d3:b0:30:93:18:ca:7a:e6:96:30:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Dec 23 19:00:47 2025 GMT Not After : Dec 24 19:00:47 2025 GMT Subject: CN=82efcfbe451b688a744b61077ba7fe93fab7e78d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c3:8e:43:30:5a:2d:c3:3c:1a:42:74:df:32: c5:29:2b:ec:d9:e1:0f:7c:02:f0:0a:78:0a:d7:3a: f8:77:ce:cc:ff:92:8b:8e:a6:c0:62:99:5b:75:d6: eb:24:76:46:d2:52:4a:dd:48:9b:5f:f1:f9:aa:14: 69:a1:bd:de:69:f8:5b:34:50:25:17:15:33:c8:44: 6a:cd:20:bf:8c:36:a1:aa:25:ef:38:4c:85:0b:bc: ba:c0:b7:4d:6e:c5:ea:f0:26:6c:12:73:47:c5:9d: 7e:de:6c:69:66:8c:af:6c:30:10:fd:cd:b8:aa:95: 0a:25:8c:2e:2c:0e:66:e1:66:02:e8:88:f7:64:7e: 51:ef:c6:b4:7c:24:7d:1d:00:ac:8a:94:b5:07:a5: 11:f3:00:b9:d9:63:e0:5a:79:11:34:b9:8c:6a:8f: fc:1e:67:9f:ae:0d:e5:7d:0f:60:0f:74:60:04:89: f6:4b:0d:a4:93:99:01:52:a9:e7:49:1b:54:2d:7b: ab:55:91:ab:aa:ca:93:2f:b5:07:55:1e:72:54:3d: e0:39:76:0d:21:4d:5b:28:40:7b:06:77:cc:89:07: 36:9d:a6:65:7b:f6:93:25:3f:f1:47:bc:c4:49:fb: 09:b8:2e:9c:6b:9b:04:06:f7:04:44:48:d7:5d:a2: 7b:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:EF:CF:BE:45:1B:68:8A:74:4B:61:07:7B:A7:FE:93:FA:B7:E7:8D X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:fa:4c:98:82:21:f5:d4:79:71:41:93:b1:5f:c4:00:47:d1: 4f:d3:5c:2d:3b:5a:a7:54:8e:f9:3a:f3:65:f9:9d:81:d3:e6: 61:d1:a0:1c:ab:0b:fc:97:30:62:e1:6d:7a:c5:8c:c6:4a:21: 31:0b:08:a6:eb:c3:c2:d6:01:bd:c0:92:9c:53:76:bf:e8:a2: ea:d4:90:6c:63:30:af:ee:8a:4a:fe:10:06:5b:93:7b:b3:3c: 88:16:22:41:37:67:51:93:40:6a:f6:60:e0:ee:7a:fa:8a:b2: ee:18:ee:fa:44:b0:7d:1d:c0:0b:96:6b:3f:e7:3d:13:b0:71: 86:37:74:af:bb:59:b1:aa:82:18:60:21:eb:18:98:fd:3c:ca: 91:25:40:e6:63:da:a3:e9:a6:eb:57:92:ca:7e:21:52:dd:ff: 26:0c:97:9d:cb:44:a9:0f:1b:ed:6c:cb:99:42:37:e8:67:98: eb:28:16:64:a0:54:09:fc:7d:90:41:e6:05:27:5d:f7:b6:e2: f9:f0:c7:1c:a6:0a:06:a6:6c:8a:7d:d5:fd:9a:99:52:56:a1: 5a:05:ed:b8:e0:7c:19:6c:b9:ea:8a:7e:c2:f5:fc:fb:b4:05: 6d:31:ee:13:03:5b:3d:97:2f:fd:ab:2c:3d:f4:79:66:9a:b4: 5d:8a:6a:20 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtMldjXgdOwMJMYynrmljCgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMjIzMTkwMDQ3WhcNMjUxMjI0MTkwMDQ3WjAzMTEwLwYDVQQD Eyg4MmVmY2ZiZTQ1MWI2ODhhNzQ0YjYxMDc3YmE3ZmU5M2ZhYjdlNzhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMOOQzBaLcM8GkJ03zLFKSvs2eEP fALwCngK1zr4d87M/5KLjqbAYplbddbrJHZG0lJK3UibX/H5qhRpob3eafhbNFAl FxUzyERqzSC/jDahqiXvOEyFC7y6wLdNbsXq8CZsEnNHxZ1+3mxpZoyvbDAQ/c24 qpUKJYwuLA5m4WYC6Ij3ZH5R78a0fCR9HQCsipS1B6UR8wC52WPgWnkRNLmMao/8 Hmefrg3lfQ9gD3RgBIn2Sw2kk5kBUqnnSRtULXurVZGrqsqTL7UHVR5yVD3gOXYN IU1bKEB7BnfMiQc2naZle/aTJT/xR7zESfsJuC6ca5sEBvcEREjXXaJ7kwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFILvz75FG2iKdEthB3un/pP6t+eNMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgPpMmIIh 9dR5cUGTsV/EAEfRT9NcLTtap1SO+TrzZfmdgdPmYdGgHKsL/JcwYuFtesWMxkoh MQsIpuvDwtYBvcCSnFN2v+ii6tSQbGMwr+6KSv4QBluTe7M8iBYiQTdnUZNAavZg 4O56+oqy7hju+kSwfR3AC5ZrP+c9E7Bxhjd0r7tZsaqCGGAh6xiY/TzKkSVA5mPa o+mm61eSyn4hUt3/JgyXnctEqQ8b7WzLmUI36GeY6ygWZKBUCfx9kEHmBSdd97bi +fDHHKYKBqZsin3V/ZqZUlahWgXtuOB8GWy56op+wvX8+7QFbTHuEwNbPZcv/ass PfR5Zpq0XYpqIA== -----END CERTIFICATE-----Generated at Tue Dec 23 22:53:31 2025 by rpki-client