This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft File: CY97o0vGVnvTYW1XT3KF3XVW2_0.mft (raw, json) Hash identifier: it5m5cq31z58P6tGUa9YFTWMK1W5Q9grDrOew+2YUFE= Subject key identifier: 94:95:62:D5:5C:3A:87:C7:6C:C8:0C:12:BA:9D:B2:96:90:17:7B:A8 Authority key identifier: 09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD Certificate issuer: /CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Certificate serial: 019BCCE6A495C4F5B3C5C4F6C8904DD8642A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft Manifest number: 0BF3 Signing time: Sat 17 Jan 2026 17:00:25 +0000 Manifest this update: Sat 17 Jan 2026 17:00:25 +0000 Manifest next update: Sun 18 Jan 2026 17:00:25 +0000 Files and hashes: 1: CY97o0vGVnvTYW1XT3KF3XVW2_0.crl (hash: wucCKvF3wisM9kRYexsmVmyeyEZ6BWiZ+Kb2+8pdaow=) 2: IP0aVLnaY0te3-WRrsi7DFaXO_4.roa (hash: Xxny1qG2mRhaeS5oj19RU/vhLPgA+jSoozjn6tTTwWo=) 3: IcfiGiHhm-UnVbVbGBC_RtFqnfM.roa (hash: FGxn4dZpz1k+FXowXOdQoq7CmlfSlmu0geRbED6pnGQ=) 4: MWiV7graQLeuw4AYgJ4ZHIBAuZE.roa (hash: 5UScMx33ea6UI1n+yqJ+oTPgZkvCg216H08oUJCNoCY=) 5: d_rxJJRdc6lxglOZm6MPcxsRKVk.roa (hash: 09cxzd1TQUa9YcSDbUPMORsaaMIR6hUWI/wpDIjuvuY=) 6: earkCFjIv2or5fVmfCpyFBzbJ_0.roa (hash: dftgCu9tVXj4WgdmgDTiT0Fq8ps61PTLkvPOyslNpyo=) 7: h5YHyc0MmzGvq4YgXx8Mpbt82CY.roa (hash: hT18pU7cTeKJ68OyFrQNbEbvLKO/d8ePLsbG9hT8IJE=) 8: vv0I_9PClUpsKdM3Ws5mpj_Dbv0.roa (hash: Adx+Z7kMAGiZBllXqmWexxHoAMFVLGtlGl9lUzeKx9M=) 9: z5VJJncILn8SiX_0PBUpwSIBZR4.roa (hash: Ob/d4htJ7+Y8sve6AbDZ63e9bI8Fjky35VjD4Z3kSis=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 17:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:cc:e6:a4:95:c4:f5:b3:c5:c4:f6:c8:90:4d:d8:64:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098f7ba34bc6567bd3616d574f7285dd7556dbfd Validity Not Before: Jan 17 17:00:25 2026 GMT Not After : Jan 18 17:00:25 2026 GMT Subject: CN=949562d55c3a87c76cc80c12ba9db29690177ba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:29:c0:0d:c7:9d:4d:2f:8e:5b:26:27:51:5a: a6:ec:95:63:b4:fe:e7:54:eb:f5:74:66:33:2b:57: 26:77:65:66:be:c6:4c:d8:cc:5a:5a:ae:b0:97:67: 6f:e9:a9:fc:3f:1e:bb:2c:96:f6:dc:ac:38:00:02: 2e:8b:da:a0:3a:42:9d:a0:cf:de:26:90:be:12:ef: ae:e3:5a:36:25:21:5f:00:0b:a0:3d:92:a0:58:9d: 59:0f:0e:81:c4:cd:01:ce:01:a9:73:09:bc:59:a1: 92:e5:30:10:0f:61:98:47:92:ec:83:b6:45:0e:6a: e9:1d:e3:4c:72:91:66:4c:1e:01:26:56:67:de:12: 41:dd:bb:7b:a8:ae:15:d0:64:fa:eb:78:7b:60:a7: a0:d8:8a:09:f1:e5:86:68:8f:0d:91:fc:c3:26:6f: e8:8c:d4:23:af:14:cd:b1:1e:a3:40:6d:89:4e:a4: 0f:b8:dd:e1:8f:ae:f9:a2:4a:5b:fd:d4:7d:ee:db: 45:16:a6:e7:c2:08:f4:8f:9b:35:04:cb:be:e1:4d: 3b:b6:58:26:34:ae:6e:37:85:f6:3f:d9:d2:01:93: 81:34:4f:42:f8:3f:8b:da:49:47:d4:83:6e:a1:8a: c5:03:83:df:9a:30:3b:ef:5a:f1:df:61:38:11:b0: d0:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:95:62:D5:5C:3A:87:C7:6C:C8:0C:12:BA:9D:B2:96:90:17:7B:A8 X509v3 Authority Key Identifier: keyid:09:8F:7B:A3:4B:C6:56:7B:D3:61:6D:57:4F:72:85:DD:75:56:DB:FD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CY97o0vGVnvTYW1XT3KF3XVW2_0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/38c5ac-b7e7-40dd-98d3-e2166ad74e3f/1/CY97o0vGVnvTYW1XT3KF3XVW2_0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:78:39:a5:2e:39:fc:e8:36:99:34:a8:cd:e8:7b:6a:77:70: cf:ef:78:91:c1:b5:65:8c:c6:b2:67:3d:df:30:bf:4e:ed:60: b6:14:24:b5:4d:69:25:dc:c6:d1:eb:c4:ed:af:13:f2:7b:1e: e0:24:ac:75:b7:25:d6:60:0a:67:e0:9b:3a:35:5b:c4:f3:93: ce:2e:79:ea:85:b7:c7:7b:6b:c8:05:a9:d4:2b:aa:f0:82:fa: 7a:ac:e0:c0:4d:1f:1b:e4:5e:0c:5a:53:80:57:dd:a0:ec:e5: 45:11:08:c8:6f:17:0f:c9:64:04:80:ad:f6:c5:58:1d:2b:20: 98:a8:bb:08:b8:0a:54:fa:32:62:98:fc:5e:9b:c8:70:45:86: b9:dd:ec:f1:d1:61:aa:61:06:47:69:4f:f2:9e:bd:7c:81:28: df:20:e4:99:a0:a4:a6:11:76:ae:7f:2c:fd:af:af:6d:e4:ec: 85:8c:ca:77:1b:61:c4:32:04:40:d5:81:5a:60:8a:15:98:77: cd:55:be:65:d2:f6:19:98:7b:b5:03:a9:eb:22:3b:e0:9b:fa: fc:1e:a1:95:25:5d:0e:d0:8c:56:a6:f1:1b:08:b3:24:b6:61: 81:65:5a:2b:0b:02:4a:58:45:72:cd:75:7b:21:ed:39:ab:bf: b2:7a:ab:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvM5qSVxPWzxcT2yJBN2GQqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OGY3YmEzNGJjNjU2N2JkMzYxNmQ1NzRmNzI4NWRkNzU1 NmRiZmQwHhcNMjYwMTE3MTcwMDI1WhcNMjYwMTE4MTcwMDI1WjAzMTEwLwYDVQQD Eyg5NDk1NjJkNTVjM2E4N2M3NmNjODBjMTJiYTlkYjI5NjkwMTc3YmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ynADcedTS+OWyYnUVqm7JVjtP7n VOv1dGYzK1cmd2VmvsZM2MxaWq6wl2dv6an8Px67LJb23Kw4AAIui9qgOkKdoM/e JpC+Eu+u41o2JSFfAAugPZKgWJ1ZDw6BxM0BzgGpcwm8WaGS5TAQD2GYR5Lsg7ZF DmrpHeNMcpFmTB4BJlZn3hJB3bt7qK4V0GT663h7YKeg2IoJ8eWGaI8NkfzDJm/o jNQjrxTNsR6jQG2JTqQPuN3hj675okpb/dR97ttFFqbnwgj0j5s1BMu+4U07tlgm NK5uN4X2P9nSAZOBNE9C+D+L2klH1INuoYrFA4PfmjA771rx32E4EbDQ0QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJSVYtVcOofHbMgMErqdspaQF3uoMB8GA1UdIwQY MBaAFAmPe6NLxlZ702FtV09yhd11Vtv9MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMt ZTIxNjZhZDc0ZTNmLzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOC8zOGM1YWMtYjdlNy00MGRkLTk4ZDMtZTIxNjZhZDc0ZTNm LzEvQ1k5N28wdkdWbnZUWVcxWFQzS0YzWFZXMl8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHXg5pS45 /Og2mTSozeh7andwz+94kcG1ZYzGsmc93zC/Tu1gthQktU1pJdzG0evE7a8T8nse 4CSsdbcl1mAKZ+CbOjVbxPOTzi556oW3x3tryAWp1Cuq8IL6eqzgwE0fG+ReDFpT gFfdoOzlRREIyG8XD8lkBICt9sVYHSsgmKi7CLgKVPoyYpj8XpvIcEWGud3s8dFh qmEGR2lP8p69fIEo3yDkmaCkphF2rn8s/a+vbeTshYzKdxthxDIEQNWBWmCKFZh3 zVW+ZdL2GZh7tQOp6yI74Jv6/B6hlSVdDtCMVqbxGwizJLZhgWVaKwsCSlhFcs11 eyHtOau/snqrog== -----END CERTIFICATE-----Generated at Sun Jan 18 03:56:38 2026 by rpki-client