This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: +t/DGqPnCDZ1nari65Arv0nzsT8uA7kO8f+tmyrDeos= Subject key identifier: 7B:41:8F:5B:AC:F9:1A:93:2E:D5:34:B0:50:E6:49:1A:A8:7F:1A:83 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019AB0CD5C7AB699C3BA00B5EAB77A120753 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0B5A Signing time: Sun 23 Nov 2025 13:00:39 +0000 Manifest this update: Sun 23 Nov 2025 13:00:39 +0000 Manifest next update: Mon 24 Nov 2025 13:00:39 +0000 Files and hashes: 1: BVbo9uh3-UvDvwSZi6BfXSBGPHU.roa (hash: Z8qyhH6viB+EEzaDtRv3WrjvxrAR7rKFv4csNYovB+g=) 2: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: 2vl2pRuOSBgf3kk41DqvvCjB4kQCsfpY1L4w8TtCRx8=) 3: DN7cb2WxNWOTpycH6YaG66edbbs.roa (hash: xHRCbbCrWIHuruRPkilEuXWa24rKkDGqIeFboryKMwQ=) 4: Fiaoyzt87itbMDPQcRW3KUFZRqE.roa (hash: msw75zbRd9jVXLoPptdxNvS4cyBll5nFN6qdq2TWWOE=) 5: HHx5PgT40c8odAvxk1P-fxWePlA.roa (hash: zPsSrq/ptkyDcwkMCUxFQsAp1K70phIRO2z3d5q6bK8=) 6: OEhLMwhGsj88kZ4FqVMVTfpqz-8.roa (hash: /KQ43a3fdsH0+xJZbYiIUJZNQ9G0ar1u4ierKXmEsMM=) 7: m87-CXNBm5VwmmEvQBAI-p_8l98.roa (hash: vGGq9E7IPOkRddkapcYuXImJsPgw9f+HEWKjnAHtMCI=) 8: nMhyX7boXa--DjLfLdE1CijBszU.roa (hash: s95e1FJb6EuRsUkazwo7HJhOqZW3W1mabgyeLhjUIIo=) 9: o0CQ-6MywHICo_xO6JVYrovLnaI.roa (hash: z9rRzR4IXOVwVGTGGEfUd7SIN6ihlxFiSh4at67AG5g=) 10: wWtKIfnyuy5Pwsg7v1x01k_AkAs.roa (hash: 9+2f6OaYEE6gwGcro5Uy8iHzJQ0Asb4j3ndklknXQsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 24 Nov 2025 13:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:b0:cd:5c:7a:b6:99:c3:ba:00:b5:ea:b7:7a:12:07:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Nov 23 13:00:39 2025 GMT Not After : Nov 24 13:00:39 2025 GMT Subject: CN=7b418f5bacf91a932ed534b050e6491aa87f1a83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:07:be:a4:c0:fd:bd:ce:ac:3d:29:96:39:85: 94:6b:99:ad:7c:7e:c9:5b:eb:b6:18:57:09:8d:4c: 3c:a7:df:79:cd:be:70:d5:f1:04:0f:3b:90:d4:da: 4b:24:44:99:4a:5f:5a:50:f3:1b:dc:d3:7a:ef:b8: 48:86:47:83:59:f6:6e:42:6a:41:be:10:4f:51:6c: 9f:e6:e3:b1:c8:bf:19:33:11:6f:c6:ab:f5:ed:cc: 52:cd:e4:4b:63:ae:1c:82:3e:77:bd:e1:e3:6a:15: 66:a0:87:27:53:df:43:ae:9d:4f:f8:a1:94:bf:2b: 8d:2b:7a:15:8d:97:1f:01:ea:13:b0:03:48:06:97: 7a:09:91:0d:8f:eb:38:cd:93:a1:11:31:2d:06:2c: 35:c5:05:52:98:29:e1:ee:a6:eb:ce:a2:4f:83:7f: c0:36:89:c4:b1:a9:9f:45:dc:a8:52:3c:08:fc:d6: e2:d2:c2:97:e9:fa:ac:4d:fd:f7:f3:70:db:6f:b1: ef:49:d1:0f:05:64:d3:37:1b:b5:69:54:c5:31:5a: 6d:c6:61:43:85:7e:c9:da:e4:05:69:33:74:88:37: 1d:dd:08:9a:3b:e5:57:64:ed:be:20:6b:3d:d9:6e: b1:f0:85:01:8d:3f:fe:60:dc:51:fb:85:bc:f9:14: 39:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:41:8F:5B:AC:F9:1A:93:2E:D5:34:B0:50:E6:49:1A:A8:7F:1A:83 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:05:47:88:1b:a3:db:7c:ef:0a:45:aa:fb:5f:24:1c:d9:49: 8b:27:4d:be:d3:db:db:55:d1:4f:22:40:8a:23:c0:6d:1d:4e: bd:a2:8f:9b:3f:49:16:80:d2:37:de:d2:3f:1e:72:c9:f4:24: 7e:e8:5f:2a:40:ab:06:00:8e:f4:2b:fe:f2:5d:b5:c4:0e:7b: 23:16:8d:0c:6b:6a:99:35:12:25:e4:9e:5a:a7:13:5c:31:a9: 40:84:17:8a:90:ff:32:eb:80:8c:26:e9:12:ea:1e:e3:2c:06: 13:27:97:91:81:17:78:64:63:13:c5:4f:82:8e:fe:0d:8f:9f: e7:0e:57:78:0b:73:ac:67:ce:ed:74:f8:48:a1:2a:06:da:da: 2b:d2:8a:f2:ec:2d:5e:89:06:6b:65:48:94:12:e9:93:9c:32: 4e:03:f2:8d:a7:e9:90:cf:d4:97:2c:d9:54:90:b0:e3:84:a1: 36:a6:52:5a:be:22:cf:21:1d:f1:a1:ea:e4:11:89:93:dd:ae: cb:72:c8:67:d1:22:18:3c:69:fb:2d:8a:ef:7d:ea:6c:08:5e: 46:b9:42:02:e9:ff:87:60:82:94:59:2a:31:87:b0:19:7e:11: 67:d3:b8:73:18:1c:92:ef:de:a4:38:2d:ab:96:c6:f2:08:cb: 6b:e5:31:97 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqwzVx6tpnDugC16rd6EgdTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjUxMTIzMTMwMDM5WhcNMjUxMTI0MTMwMDM5WjAzMTEwLwYDVQQD Eyg3YjQxOGY1YmFjZjkxYTkzMmVkNTM0YjA1MGU2NDkxYWE4N2YxYTgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2we+pMD9vc6sPSmWOYWUa5mtfH7J W+u2GFcJjUw8p995zb5w1fEEDzuQ1NpLJESZSl9aUPMb3NN677hIhkeDWfZuQmpB vhBPUWyf5uOxyL8ZMxFvxqv17cxSzeRLY64cgj53veHjahVmoIcnU99Drp1P+KGU vyuNK3oVjZcfAeoTsANIBpd6CZENj+s4zZOhETEtBiw1xQVSmCnh7qbrzqJPg3/A NonEsamfRdyoUjwI/Nbi0sKX6fqsTf3383Dbb7HvSdEPBWTTNxu1aVTFMVptxmFD hX7J2uQFaTN0iDcd3QiaO+VXZO2+IGs92W6x8IUBjT/+YNxR+4W8+RQ5ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHtBj1us+RqTLtU0sFDmSRqofxqDMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQQVHiBuj 23zvCkWq+18kHNlJiydNvtPb21XRTyJAiiPAbR1OvaKPmz9JFoDSN97SPx5yyfQk fuhfKkCrBgCO9Cv+8l21xA57IxaNDGtqmTUSJeSeWqcTXDGpQIQXipD/MuuAjCbp Euoe4ywGEyeXkYEXeGRjE8VPgo7+DY+f5w5XeAtzrGfO7XT4SKEqBtraK9KK8uwt XokGa2VIlBLpk5wyTgPyjafpkM/UlyzZVJCw44ShNqZSWr4izyEd8aHq5BGJk92u y3LIZ9EiGDxp+y2K733qbAheRrlCAun/h2CClFkqMYewGX4RZ9O4cxgcku/epDgt q5bG8gjLa+Uxlw== -----END CERTIFICATE-----Generated at Sun Nov 23 22:30:53 2025 by rpki-client