This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json) Hash identifier: H+FO3M7SZk/uclZJPHZIAEm9DX/lvxBKc3oh+8QUZ3g= Subject key identifier: A6:4C:15:06:C8:21:4A:B7:7B:77:BC:DE:CA:78:AC:0D:C6:B9:87:D9 Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75 Certificate serial: 019BF4D116BDF6DFB1CE46DB39ED75F4EACA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft Manifest number: 0446 Signing time: Sun 25 Jan 2026 11:01:42 +0000 Manifest this update: Sun 25 Jan 2026 11:01:42 +0000 Manifest next update: Mon 26 Jan 2026 11:01:42 +0000 Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=) 2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: ulqNUOB5x73xKq29TP2JJP4/CzCXhaSefJsgPDgYDOc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 11:01:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f4:d1:16:bd:f6:df:b1:ce:46:db:39:ed:75:f4:ea:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75 Validity Not Before: Jan 25 11:01:42 2026 GMT Not After : Jan 26 11:01:42 2026 GMT Subject: CN=a64c1506c8214ab77b77bcdeca78ac0dc6b987d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:32:ca:5e:2e:fd:29:66:ab:d0:f3:24:63:77: 62:5e:fb:d2:c1:c2:a8:43:5c:9f:78:a7:ce:87:88: 1c:57:bb:72:e7:6f:10:14:4b:16:15:f5:80:cb:ff: 9c:be:d6:2f:88:d8:5a:e6:e5:fd:b9:b0:d4:64:e9: 61:5b:ba:ad:75:7c:c4:6e:b3:15:7f:c3:7b:8c:8b: 73:05:e0:e7:60:4e:64:b9:0e:40:ac:17:24:4d:04: 23:f3:66:32:9b:cf:f3:33:1b:be:c3:17:a3:1c:25: ae:7f:b3:69:7b:c0:00:e1:14:d5:ac:62:67:9f:7f: 90:1a:ce:52:4c:a5:7a:7a:1b:45:2c:e8:18:d8:b5: 85:f7:90:98:7c:be:fc:7c:13:db:77:ce:f6:df:6c: 5a:6c:1a:32:73:cb:51:50:c1:3c:ba:cd:31:25:60: 2e:7e:b7:f7:1a:57:4a:33:1b:f1:eb:80:79:25:dc: 80:65:30:30:1c:64:8a:20:d6:98:68:91:79:76:5d: f0:9e:8b:d8:42:4d:fa:30:3b:9b:0f:8c:8b:b2:1c: b8:82:de:38:13:8e:a9:d8:71:73:24:67:1e:89:1f: f0:12:66:ec:5a:85:63:d2:12:73:81:ac:75:65:c2: 7e:5f:98:31:da:01:83:cf:c9:04:b4:d3:06:5d:35: a1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:4C:15:06:C8:21:4A:B7:7B:77:BC:DE:CA:78:AC:0D:C6:B9:87:D9 X509v3 Authority Key Identifier: keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:37:f7:fb:56:6e:c3:d6:90:51:bc:21:66:d5:f7:7b:b8:2d: f0:12:9d:8a:54:c7:0c:77:82:53:06:30:eb:01:99:e3:d1:ec: 25:33:c4:ee:8b:b7:ae:39:d5:62:d3:8c:1f:62:0d:63:f9:4e: 43:3b:1a:f1:cd:aa:61:d0:1b:7c:44:31:7e:88:a2:82:9b:0a: 6c:4e:f5:87:59:35:ea:1b:37:5b:02:c3:c0:26:06:07:6b:9a: c7:d5:f8:1f:04:86:6b:49:67:ed:f5:17:e7:4f:eb:f0:5b:45: a5:86:fb:2f:b4:ec:69:c2:a0:36:10:d0:c9:2b:14:c6:7e:c5: 4e:db:5c:64:91:8b:ff:ed:d9:9f:dd:1f:dc:83:bf:5b:c1:19: cb:63:78:bf:85:6a:8f:0e:81:c3:fb:05:44:5c:d2:c7:12:51: 94:23:4b:39:a6:d2:8e:a0:89:e5:a8:17:a7:1a:53:d0:eb:36: c2:c0:50:1b:2a:63:6b:d2:08:56:84:7b:0c:20:a8:94:19:54: 68:aa:1e:52:8d:09:ee:02:29:2c:45:87:3e:e1:37:94:ca:f9: d8:44:ae:91:3e:0b:1e:31:7e:12:f8:d7:2c:39:4f:eb:eb:38: 48:9e:da:77:6d:72:26:bd:81:04:22:44:2d:16:cb:8c:37:a3: 44:de:3f:b1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv00Ra99t+xzkbbOe119OrKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm NTVkNzUwHhcNMjYwMTI1MTEwMTQyWhcNMjYwMTI2MTEwMTQyWjAzMTEwLwYDVQQD EyhhNjRjMTUwNmM4MjE0YWI3N2I3N2JjZGVjYTc4YWMwZGM2Yjk4N2Q5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzjLKXi79KWar0PMkY3diXvvSwcKo Q1yfeKfOh4gcV7ty528QFEsWFfWAy/+cvtYviNha5uX9ubDUZOlhW7qtdXzEbrMV f8N7jItzBeDnYE5kuQ5ArBckTQQj82Yym8/zMxu+wxejHCWuf7Npe8AA4RTVrGJn n3+QGs5STKV6ehtFLOgY2LWF95CYfL78fBPbd87232xabBoyc8tRUME8us0xJWAu frf3GldKMxvx64B5JdyAZTAwHGSKINaYaJF5dl3wnovYQk36MDubD4yLshy4gt44 E46p2HFzJGceiR/wEmbsWoVj0hJzgax1ZcJ+X5gx2gGDz8kEtNMGXTWh7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKZMFQbIIUq3e3e83sp4rA3GuYfZMB8GA1UdIwQY MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiTf3+1Zu w9aQUbwhZtX3e7gt8BKdilTHDHeCUwYw6wGZ49HsJTPE7ou3rjnVYtOMH2INY/lO Qzsa8c2qYdAbfEQxfoiigpsKbE71h1k16hs3WwLDwCYGB2uax9X4HwSGa0ln7fUX 50/r8FtFpYb7L7TsacKgNhDQySsUxn7FTttcZJGL/+3Zn90f3IO/W8EZy2N4v4Vq jw6Bw/sFRFzSxxJRlCNLOabSjqCJ5agXpxpT0Os2wsBQGypja9IIVoR7DCColBlU aKoeUo0J7gIpLEWHPuE3lMr52ESukT4LHjF+EvjXLDlP6+s4SJ7ad21yJr2BBCJE LRbLjDejRN4/sQ== -----END CERTIFICATE-----Generated at Sun Jan 25 21:19:31 2026 by rpki-client