This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft File: aDCZAOZItlowenhgECv3ixb1XXU.mft (raw, json) Hash identifier: vsi9kmipII0BURRq8seUtC8A0hAiqgO94qwZUJrKwcM= Subject key identifier: E1:F5:00:94:53:9C:F2:DA:97:EB:B6:35:BE:B0:16:BA:71:D2:28:F2 Authority key identifier: 68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 Certificate issuer: /CN=68309900e648b65a307a7860102bf78b16f55d75 Certificate serial: 019BF6BE98899BFF3C97A43F75C7F88A7143 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft Manifest number: 0447 Signing time: Sun 25 Jan 2026 20:00:44 +0000 Manifest this update: Sun 25 Jan 2026 20:00:44 +0000 Manifest next update: Mon 26 Jan 2026 20:00:44 +0000 Files and hashes: 1: HbShzM3qrknCQZp2Tx1NZiWf1jk.roa (hash: YTGorDk65orDuOJJBzhtTtRRAT8YSucZuGLA7eX2VpI=) 2: aDCZAOZItlowenhgECv3ixb1XXU.crl (hash: 5nWF/lA2mSEOPojq+UeE9b5/oaS3z+cS4QNvHClKWAE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:be:98:89:9b:ff:3c:97:a4:3f:75:c7:f8:8a:71:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68309900e648b65a307a7860102bf78b16f55d75 Validity Not Before: Jan 25 20:00:44 2026 GMT Not After : Jan 26 20:00:44 2026 GMT Subject: CN=e1f50094539cf2da97ebb635beb016ba71d228f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:e5:f2:78:78:f8:7e:d6:5a:db:fd:7b:13:01: d3:de:90:87:cc:f3:c5:e3:6b:03:b4:e2:ba:55:c6: 15:0d:ad:a4:a9:91:5b:7d:55:51:6c:a1:40:63:f2: 1c:61:c4:6d:95:16:3c:f4:44:87:d7:c9:d3:ca:d9: 60:5d:47:fb:09:65:3c:1b:c2:e0:95:ce:42:0f:14: 6c:73:61:de:e4:54:27:d2:39:2f:c0:29:30:22:56: 89:a1:af:3a:18:8f:77:d3:b5:45:01:a0:33:54:bd: 79:18:62:d6:dc:e8:8e:1f:af:60:d6:cc:85:d3:be: 66:6a:d3:7d:52:a2:0e:f7:b4:16:34:9f:43:84:06: 21:87:3c:d5:b6:bc:cf:22:7d:d0:64:ba:92:ae:af: a6:21:79:90:23:88:7a:ed:8c:ae:bd:0e:09:fd:d7: 23:63:78:0d:42:de:a5:f7:c1:9e:6d:1d:0a:d5:bc: 8d:fa:d6:8d:17:f1:1d:f0:27:99:f0:19:64:33:0f: a8:fa:29:6a:17:c1:b7:e7:a4:1c:3b:66:6a:51:28: 3c:05:21:a8:b3:5a:db:95:5a:3c:47:70:34:c0:b7: 54:46:c2:b4:98:a8:8c:e1:93:1f:d8:1d:ac:53:01: 26:81:db:f8:06:05:73:bc:50:73:c2:aa:3a:f6:71: 9e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F5:00:94:53:9C:F2:DA:97:EB:B6:35:BE:B0:16:BA:71:D2:28:F2 X509v3 Authority Key Identifier: keyid:68:30:99:00:E6:48:B6:5A:30:7A:78:60:10:2B:F7:8B:16:F5:5D:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aDCZAOZItlowenhgECv3ixb1XXU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/f54c57-deca-4685-8106-9fa78075330b/1/aDCZAOZItlowenhgECv3ixb1XXU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:72:f9:e4:3a:26:f1:aa:04:07:64:8a:7b:0b:96:23:65:bd: 53:e0:5e:55:40:01:50:e5:2e:e7:6c:7f:a8:c7:78:ff:31:31: 08:63:76:3d:10:75:c6:55:d5:50:59:81:cf:60:85:f6:72:0b: ff:13:6d:05:88:6b:4e:a6:56:c8:c9:6b:7b:90:76:9d:1d:fa: e8:d8:a2:52:35:36:59:9e:22:3e:c2:ae:c8:fb:4d:9c:46:58: 0d:81:e0:02:37:a9:b3:5e:46:c9:2d:95:2b:21:b6:88:e3:b6: 90:47:30:f0:d5:e8:e8:5b:5e:35:08:fb:d6:7f:41:52:2a:62: 71:91:73:94:ea:c2:c5:aa:af:cc:15:60:6c:ad:3b:53:67:87: 05:fb:a3:76:97:5d:a2:9c:11:db:17:9d:09:5c:ad:84:50:a3: 94:71:e9:2b:33:65:5b:7a:57:d7:58:ee:1a:b5:9a:47:40:ce: 4e:7e:cb:a5:e5:8b:e5:1a:79:c0:50:d8:e4:48:c5:07:ab:d2: 02:2e:4e:45:ec:6a:fc:00:13:a2:b1:b5:83:58:aa:1c:31:6c: 0e:38:52:89:27:19:0d:dd:7c:37:52:c7:d0:56:49:65:45:9a: b0:3c:54:65:a1:f3:b6:7d:f6:42:c6:96:ab:33:2e:a0:84:2b: c0:bb:b4:fc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2vpiJm/88l6Q/dcf4inFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY4MzA5OTAwZTY0OGI2NWEzMDdhNzg2MDEwMmJmNzhiMTZm NTVkNzUwHhcNMjYwMTI1MjAwMDQ0WhcNMjYwMTI2MjAwMDQ0WjAzMTEwLwYDVQQD EyhlMWY1MDA5NDUzOWNmMmRhOTdlYmI2MzViZWIwMTZiYTcxZDIyOGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjOXyeHj4ftZa2/17EwHT3pCHzPPF 42sDtOK6VcYVDa2kqZFbfVVRbKFAY/IcYcRtlRY89ESH18nTytlgXUf7CWU8G8Lg lc5CDxRsc2He5FQn0jkvwCkwIlaJoa86GI9307VFAaAzVL15GGLW3OiOH69g1syF 075matN9UqIO97QWNJ9DhAYhhzzVtrzPIn3QZLqSrq+mIXmQI4h67YyuvQ4J/dcj Y3gNQt6l98GebR0K1byN+taNF/Ed8CeZ8BlkMw+o+ilqF8G356QcO2ZqUSg8BSGo s1rblVo8R3A0wLdURsK0mKiM4ZMf2B2sUwEmgdv4BgVzvFBzwqo69nGeQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOH1AJRTnPLal+u2Nb6wFrpx0ijyMB8GA1UdIwQY MBaAFGgwmQDmSLZaMHp4YBAr94sW9V11MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYt OWZhNzgwNzUzMzBiLzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZC9mNTRjNTctZGVjYS00Njg1LTgxMDYtOWZhNzgwNzUzMzBi LzEvYURDWkFPWkl0bG93ZW5oZ0VDdjNpeGIxWFhVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnXL55Dom 8aoEB2SKewuWI2W9U+BeVUABUOUu52x/qMd4/zExCGN2PRB1xlXVUFmBz2CF9nIL /xNtBYhrTqZWyMlre5B2nR366NiiUjU2WZ4iPsKuyPtNnEZYDYHgAjeps15GyS2V KyG2iOO2kEcw8NXo6FteNQj71n9BUipicZFzlOrCxaqvzBVgbK07U2eHBfujdpdd opwR2xedCVythFCjlHHpKzNlW3pX11juGrWaR0DOTn7LpeWL5Rp5wFDY5EjFB6vS Ai5ORexq/AATorG1g1iqHDFsDjhSiScZDd18N1LH0FZJZUWasDxUZaHztn32QsaW qzMuoIQrwLu0/A== -----END CERTIFICATE-----Generated at Mon Jan 26 01:48:44 2026 by rpki-client