This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: lGx69MrSze4fs6cJBkQV+J9ujuWM/GMIR6uH1KYJCaM= Subject key identifier: 9E:23:0E:1D:D5:0F:4E:18:1A:92:1D:AE:CE:FD:32:EF:60:09:24:36 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BE413D532584132E69DE99A585C848007 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BFF Signing time: Thu 22 Jan 2026 05:01:03 +0000 Manifest this update: Thu 22 Jan 2026 05:01:03 +0000 Manifest next update: Fri 23 Jan 2026 05:01:03 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: vZHViBKCcfFq32vjV0NNysp5Ks5Me/K/leXXVN+a3wg=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 23 Jan 2026 05:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e4:13:d5:32:58:41:32:e6:9d:e9:9a:58:5c:84:80:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 22 05:01:03 2026 GMT Not After : Jan 23 05:01:03 2026 GMT Subject: CN=9e230e1dd50f4e181a921daecefd32ef60092436 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:07:14:16:8c:2e:a0:6b:46:1a:9c:af:f0:ab: 9c:f4:50:d7:65:d6:da:e9:ed:59:e0:b6:b8:26:7a: 9c:4b:b7:e1:2c:94:cf:19:6d:83:53:93:38:cc:77: 0e:9c:8e:a3:fe:87:d3:9a:2d:3d:d4:3a:a9:ad:fd: b3:4a:8c:87:a1:03:68:dd:70:9e:28:e4:ad:4e:e5: e2:61:17:1f:df:93:69:33:89:c1:0e:84:fc:d6:9b: 72:ca:19:00:44:2a:3b:83:0b:94:f2:f9:1c:d1:c5: 54:f6:1a:d9:b5:bd:19:69:b2:e2:83:13:36:44:b9: 3f:3d:a6:31:77:b3:40:c7:b8:61:9c:42:a5:eb:79: 42:92:bd:fa:28:2b:63:2f:eb:a2:61:b2:e8:37:ab: 1b:1b:80:18:4e:13:8a:51:9f:2d:6c:57:94:10:79: be:e7:9a:ca:2c:69:90:a2:0c:85:53:5b:fb:f3:96: f9:28:e9:af:67:65:be:07:81:da:e2:c7:2d:bc:de: 06:fb:fe:bf:c7:64:43:2e:3b:47:7d:ee:d9:0f:e1: 6c:cf:7e:2e:0e:71:d5:9f:e7:c3:e8:19:63:c7:93: cd:f0:0f:6c:bc:8f:14:06:67:a0:77:f5:07:64:ca: 04:bc:a3:8a:02:bf:4a:c2:21:81:46:f7:26:49:c2: 64:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:23:0E:1D:D5:0F:4E:18:1A:92:1D:AE:CE:FD:32:EF:60:09:24:36 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:ba:3c:9e:b4:2c:9c:e9:c3:e7:35:3a:89:90:98:73:1a:4f: 03:52:a9:b3:b0:8a:74:64:1a:e1:52:aa:73:05:d2:39:d1:af: db:a7:08:87:fa:ff:f7:b7:00:7f:5a:7f:8b:a9:9a:6d:93:29: 55:76:f4:ba:e4:59:2f:02:a6:88:fc:05:65:a5:10:ad:c6:bc: c8:7d:78:24:c8:cf:cd:7b:71:fd:6f:59:64:4e:f8:7e:b1:6b: 23:80:06:c1:e2:d4:58:57:e8:79:51:a7:a1:83:bd:1f:f1:dc: f0:84:e0:00:7a:61:c6:6c:f0:c2:62:9b:f4:30:0a:70:2b:53: 73:5e:70:06:d3:74:3a:d9:5f:4a:fc:e2:54:38:f4:ff:58:de: 7a:75:16:82:19:ae:c2:7d:63:b0:de:e7:bc:81:00:ee:98:4d: 1e:67:da:dc:19:9d:2e:5b:2c:a1:ef:41:db:df:8b:90:22:d9: 32:61:2b:8f:3e:7e:18:87:50:82:51:4a:be:d7:0d:fa:5e:96: f8:be:d4:72:0a:69:86:66:f1:1e:b6:c5:91:ed:bb:19:ad:d8: 90:8f:47:6f:16:d5:cf:96:56:c4:bf:2d:8b:d7:59:61:3f:8e: 9a:a7:16:c0:d6:de:71:d8:61:c5:f2:d4:3a:41:63:71:de:ca: e5:39:37:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvkE9UyWEEy5p3pmlhchIAHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTIyMDUwMTAzWhcNMjYwMTIzMDUwMTAzWjAzMTEwLwYDVQQD Eyg5ZTIzMGUxZGQ1MGY0ZTE4MWE5MjFkYWVjZWZkMzJlZjYwMDkyNDM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjwcUFowuoGtGGpyv8Kuc9FDXZdba 6e1Z4La4JnqcS7fhLJTPGW2DU5M4zHcOnI6j/ofTmi091Dqprf2zSoyHoQNo3XCe KOStTuXiYRcf35NpM4nBDoT81ptyyhkARCo7gwuU8vkc0cVU9hrZtb0ZabLigxM2 RLk/PaYxd7NAx7hhnEKl63lCkr36KCtjL+uiYbLoN6sbG4AYThOKUZ8tbFeUEHm+ 55rKLGmQogyFU1v785b5KOmvZ2W+B4Ha4sctvN4G+/6/x2RDLjtHfe7ZD+Fsz34u DnHVn+fD6Bljx5PN8A9svI8UBmegd/UHZMoEvKOKAr9KwiGBRvcmScJk9QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ4jDh3VD04YGpIdrs79Mu9gCSQ2MB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQbo8nrQs nOnD5zU6iZCYcxpPA1Kps7CKdGQa4VKqcwXSOdGv26cIh/r/97cAf1p/i6mabZMp VXb0uuRZLwKmiPwFZaUQrca8yH14JMjPzXtx/W9ZZE74frFrI4AGweLUWFfoeVGn oYO9H/Hc8ITgAHphxmzwwmKb9DAKcCtTc15wBtN0OtlfSvziVDj0/1jeenUWghmu wn1jsN7nvIEA7phNHmfa3BmdLlssoe9B29+LkCLZMmErjz5+GIdQglFKvtcN+l6W +L7UcgpphmbxHrbFke27Ga3YkI9HbxbVz5ZWxL8ti9dZYT+OmqcWwNbecdhhxfLU OkFjcd7K5Tk3tg== -----END CERTIFICATE-----Generated at Thu Jan 22 12:13:07 2026 by rpki-client