This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft File: CYZDIBoqokoLh3o638p6iSBH2_w.mft (raw, json) Hash identifier: F8oh3+IhzzWIBTRtyKtnk0JUKrxCE5Hvt9bnd9WBFZg= Subject key identifier: 05:77:88:40:19:A9:DD:A8:3A:77:58:7C:1C:CB:46:08:B1:31:A8:5F Authority key identifier: 09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC Certificate issuer: /CN=098643201a2aa24a0b877a3adfca7a892047dbfc Certificate serial: 019AF209730C5588625B8005D66B670C793D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft Manifest number: 137B Signing time: Sat 06 Dec 2025 05:01:36 +0000 Manifest this update: Sat 06 Dec 2025 05:01:36 +0000 Manifest next update: Sun 07 Dec 2025 05:01:36 +0000 Files and hashes: 1: 9f0Q6rSiXJjkh_lJREdgBWV3nxk.roa (hash: TCvx1Dq9UNFJ/C/RNxBohy4u4C9d1rsY7iM9ireTjM8=) 2: CYZDIBoqokoLh3o638p6iSBH2_w.crl (hash: SIaOuPEhqYOatcntV9nOxAICIeaTVXOQVGDbag1HVug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:09:73:0c:55:88:62:5b:80:05:d6:6b:67:0c:79:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=098643201a2aa24a0b877a3adfca7a892047dbfc Validity Not Before: Dec 6 05:01:36 2025 GMT Not After : Dec 7 05:01:36 2025 GMT Subject: CN=0577884019a9dda83a77587c1ccb4608b131a85f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:68:fe:d7:d0:9c:79:79:20:0d:66:56:75:1c: 05:0a:b8:b6:fc:6c:27:f1:6e:57:5a:ee:4d:aa:7a: 43:bb:76:ee:85:29:1f:d9:13:ac:85:e0:ac:2b:d2: 0a:52:d4:53:59:3c:a6:f3:6e:6c:33:50:46:be:09: 56:6c:e4:56:df:d5:8a:74:54:a6:24:b2:35:14:1a: 3a:f2:4b:e9:85:18:da:19:94:4c:96:60:b9:55:71: 73:37:08:3a:6a:63:39:30:a1:35:4a:20:77:fa:2d: e7:bb:fa:4a:0c:84:95:19:b4:6b:b1:19:4f:fa:76: 4d:5a:9b:19:49:da:b7:11:6c:69:a5:d6:04:61:f8: 2c:50:bd:6f:01:74:a0:af:93:57:29:15:c6:54:0a: dd:27:57:c8:d2:57:9f:f8:6d:15:73:18:77:19:be: c1:11:00:f6:fd:ec:8c:72:02:5c:b7:81:99:5f:5b: 2d:3c:0a:32:6f:28:ad:8c:46:25:ec:66:99:ef:26: 96:42:cf:9f:6f:ce:7f:40:cd:9a:c4:9f:61:77:f5: 2e:f4:f9:ea:18:1c:74:25:17:43:8b:4d:28:f3:9d: 65:f3:0e:3f:62:b2:a9:09:6d:73:12:a0:e8:d3:eb: 1d:93:19:a5:0e:71:04:00:4f:ba:b5:ad:2f:35:4a: a9:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:77:88:40:19:A9:DD:A8:3A:77:58:7C:1C:CB:46:08:B1:31:A8:5F X509v3 Authority Key Identifier: keyid:09:86:43:20:1A:2A:A2:4A:0B:87:7A:3A:DF:CA:7A:89:20:47:DB:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CYZDIBoqokoLh3o638p6iSBH2_w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/2d7f4c-c3d5-4557-93c4-78bfd24cf107/1/CYZDIBoqokoLh3o638p6iSBH2_w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:b7:01:51:39:12:75:b9:b6:ae:37:01:c7:4c:d4:96:00:76: 98:cb:5c:65:88:5c:69:c2:58:51:e9:a4:7f:3f:b8:9c:f8:e0: 6c:4f:87:d1:4d:9c:e9:19:02:4e:84:fd:a1:5f:af:a6:07:82: bd:54:9c:cf:b8:68:ab:c8:4a:b4:6c:91:0a:e8:fe:27:a2:46: 6a:c1:c0:37:35:5e:70:0e:10:29:60:64:76:82:31:a3:4a:cc: 2b:d6:d5:ca:64:7c:e7:0f:8f:bf:70:d6:5e:ad:85:60:40:fd: d3:cb:9b:1d:d5:e3:fe:e6:f2:ef:14:a0:72:dd:37:08:04:ec: ce:91:46:f3:fa:7d:32:8b:6b:d7:e1:98:4b:c5:2e:31:e2:11: 83:37:63:d9:f5:76:22:23:f4:5f:d5:fb:f3:00:11:75:26:0b: 7d:30:85:f8:d6:d3:11:0f:8c:d3:c8:ae:04:08:3a:d9:f4:ea: e4:5a:04:bb:02:36:cb:de:a5:71:4c:7d:38:24:2e:87:7b:ed: 25:74:e6:d8:23:04:36:f8:1e:de:f9:e9:d9:92:06:78:1e:55: 3e:9e:7b:8d:a5:df:43:e8:ae:36:0e:6f:ca:a5:89:ce:26:b5: 07:4d:aa:70:cc:1d:cd:4e:3d:8d:c9:46:b8:d4:61:93:c1:ef: aa:54:d3:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryCXMMVYhiW4AF1mtnDHk9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5ODY0MzIwMWEyYWEyNGEwYjg3N2EzYWRmY2E3YTg5MjA0 N2RiZmMwHhcNMjUxMjA2MDUwMTM2WhcNMjUxMjA3MDUwMTM2WjAzMTEwLwYDVQQD EygwNTc3ODg0MDE5YTlkZGE4M2E3NzU4N2MxY2NiNDYwOGIxMzFhODVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5Wj+19CceXkgDWZWdRwFCri2/Gwn 8W5XWu5NqnpDu3buhSkf2ROsheCsK9IKUtRTWTym825sM1BGvglWbORW39WKdFSm JLI1FBo68kvphRjaGZRMlmC5VXFzNwg6amM5MKE1SiB3+i3nu/pKDISVGbRrsRlP +nZNWpsZSdq3EWxppdYEYfgsUL1vAXSgr5NXKRXGVArdJ1fI0lef+G0Vcxh3Gb7B EQD2/eyMcgJct4GZX1stPAoybyitjEYl7GaZ7yaWQs+fb85/QM2axJ9hd/Uu9Pnq GBx0JRdDi00o851l8w4/YrKpCW1zEqDo0+sdkxmlDnEEAE+6ta0vNUqpPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAV3iEAZqd2oOndYfBzLRgixMahfMB8GA1UdIwQY MBaAFAmGQyAaKqJKC4d6Ot/KeokgR9v8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8yZDdmNGMtYzNkNS00NTU3LTkzYzQt NzhiZmQyNGNmMTA3LzEvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8yZDdmNGMtYzNkNS00NTU3LTkzYzQtNzhiZmQyNGNmMTA3 LzEvQ1laRElCb3Fva29MaDNvNjM4cDZpU0JIMl93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsrcBUTkS dbm2rjcBx0zUlgB2mMtcZYhcacJYUemkfz+4nPjgbE+H0U2c6RkCToT9oV+vpgeC vVScz7hoq8hKtGyRCuj+J6JGasHANzVecA4QKWBkdoIxo0rMK9bVymR85w+Pv3DW Xq2FYED908ubHdXj/uby7xSgct03CATszpFG8/p9Motr1+GYS8UuMeIRgzdj2fV2 IiP0X9X78wARdSYLfTCF+NbTEQ+M08iuBAg62fTq5FoEuwI2y96lcUx9OCQuh3vt JXTm2CMENvge3vnp2ZIGeB5VPp57jaXfQ+iuNg5vyqWJzia1B02qcMwdzU49jclG uNRhk8HvqlTT4Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:10:50 2025 by rpki-client