This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft File: ihzh0TW_LPjowT8z7BHIUjcD3HU.mft (raw, json) Hash identifier: /shLDfiqMD5FNtF0pfzfd8ve/CcxmNezK+tlWZWr2Q4= Subject key identifier: AA:C0:89:53:95:9A:4E:8E:B9:E4:54:DB:17:05:AA:91:D4:CD:BF:E4 Authority key identifier: 8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75 Certificate issuer: /CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75 Certificate serial: 019BF9F66F36C96887EA5DB7DAE87FA56192 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft Manifest number: 16E3 Signing time: Mon 26 Jan 2026 11:00:35 +0000 Manifest this update: Mon 26 Jan 2026 11:00:35 +0000 Manifest next update: Tue 27 Jan 2026 11:00:35 +0000 Files and hashes: 1: WRWq9c3b9kg8gQPomqG34r1Y5v0.asa (hash: ZoJ/LKA1w1XuBHscB30KCICWqihW2yVYKCpjACmrLmk=) 2: ihzh0TW_LPjowT8z7BHIUjcD3HU.crl (hash: I176IW6fYVrsgLSDYz1Bl2U2tp6TOqc7o58uahPYy2Q=) 3: ii1wrV6MH0Od9I-EvZmz4tIZ0YU.roa (hash: QsmP7YoZAPOJBFrEDm/rD4hR/aKn34unfeCi9/KcoPA=) 4: lgTArLUMYrKA2h_soDmzPeEt-bE.roa (hash: QFGAzr+Hh5GDcp3vsyzbp7//YxUomw2TKbl55PVM51U=) 5: pFhubwSNdAYBGmBojn7PXR4qmPw.roa (hash: 3NUl+CvK/jyTI2OJq3B6/7x1aR9RvE8f9qeqZkFG9nE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:f6:6f:36:c9:68:87:ea:5d:b7:da:e8:7f:a5:61:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8a1ce1d135bf2cf8e8c13f33ec11c8523703dc75 Validity Not Before: Jan 26 11:00:35 2026 GMT Not After : Jan 27 11:00:35 2026 GMT Subject: CN=aac08953959a4e8eb9e454db1705aa91d4cdbfe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:8f:7e:99:64:64:fa:44:71:9f:15:b4:71:0e: af:b1:a0:d4:04:53:ec:42:19:04:6a:a1:1e:5a:ea: 4a:08:62:a5:03:2d:0b:5d:16:0d:87:88:bc:a8:ad: 49:cd:72:94:11:ef:65:67:fe:7b:18:1d:0f:d6:99: 35:27:70:58:19:96:0b:d6:42:90:e6:4f:1a:f5:16: 98:19:a0:c2:73:d9:4b:c3:5a:fd:56:66:e7:94:1d: 0c:78:58:46:33:29:3d:cb:05:17:95:58:38:0e:7c: 95:46:e7:15:3b:95:2d:30:78:6c:f0:bf:81:e7:46: 53:69:bf:01:0c:5a:cf:5d:b8:bd:fe:df:d5:8a:93: 01:64:f2:32:4e:8c:82:ab:51:32:bc:6e:4d:41:50: 9c:12:4c:5d:fc:28:2b:5f:d9:91:db:e1:5e:62:a6: cc:5a:ca:40:6c:39:c3:63:32:5e:ad:f4:0c:46:a7: 54:23:c1:a3:48:43:df:48:a1:21:e1:ed:ec:18:9d: b6:da:40:ba:9f:b4:0e:04:7b:61:48:cd:cb:4d:4a: d8:a9:2d:9d:9c:a8:aa:d8:e3:4f:4c:e4:7d:9a:cd: 69:ee:69:77:c2:74:58:ca:6b:a3:cc:3e:ec:2b:de: bd:49:33:89:a9:c6:a8:3c:d1:c6:42:fe:15:e2:ef: 73:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C0:89:53:95:9A:4E:8E:B9:E4:54:DB:17:05:AA:91:D4:CD:BF:E4 X509v3 Authority Key Identifier: keyid:8A:1C:E1:D1:35:BF:2C:F8:E8:C1:3F:33:EC:11:C8:52:37:03:DC:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ihzh0TW_LPjowT8z7BHIUjcD3HU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0c/daf960-d060-49fc-af42-dee292ea87a3/1/ihzh0TW_LPjowT8z7BHIUjcD3HU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:26:68:a5:a9:6a:79:c4:0b:9e:e0:da:04:3d:47:27:69:3b: 27:c4:01:be:0b:03:32:39:f4:bb:22:3c:cf:d2:8f:22:8e:4f: 03:ba:58:6e:24:52:55:9e:28:a4:94:6c:6e:d0:78:23:f8:57: d2:eb:a0:83:90:db:bc:03:0d:74:c8:d4:35:bb:31:af:18:f1: 73:52:9d:0d:61:41:e9:4d:87:8e:24:80:a5:60:25:6c:a8:6f: 0b:a6:92:6f:32:65:37:7f:94:a9:87:58:17:ac:e8:48:8d:9d: 2a:dc:cf:a7:13:2d:72:0f:53:f4:88:84:6f:50:e3:3e:a6:0b: c7:55:3d:85:2a:67:4c:da:9f:9c:45:7f:cd:0c:01:28:f2:23: 4a:a7:bd:1a:09:71:d7:42:14:f7:f9:fb:31:d9:ce:f5:2f:c0: 8d:d6:ba:2a:2d:0f:13:83:87:32:56:83:51:48:8a:f5:41:38: cc:8e:f5:9a:e3:47:cd:77:8e:ad:c1:c5:14:ce:0c:34:5f:b8: e0:d2:ca:f3:44:d7:54:25:5b:1b:bd:18:f3:68:eb:d5:0c:7c: 06:45:b5:4b:c1:02:b5:36:9a:05:51:47:eb:ad:1b:07:20:07: c3:a3:b3:9a:9d:88:68:6a:4a:4a:64:32:df:b7:0c:75:3b:2b: 43:98:5d:e7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv59m82yWiH6l232uh/pWGSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhhMWNlMWQxMzViZjJjZjhlOGMxM2YzM2VjMTFjODUyMzcw M2RjNzUwHhcNMjYwMTI2MTEwMDM1WhcNMjYwMTI3MTEwMDM1WjAzMTEwLwYDVQQD EyhhYWMwODk1Mzk1OWE0ZThlYjllNDU0ZGIxNzA1YWE5MWQ0Y2RiZmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmo9+mWRk+kRxnxW0cQ6vsaDUBFPs QhkEaqEeWupKCGKlAy0LXRYNh4i8qK1JzXKUEe9lZ/57GB0P1pk1J3BYGZYL1kKQ 5k8a9RaYGaDCc9lLw1r9VmbnlB0MeFhGMyk9ywUXlVg4DnyVRucVO5UtMHhs8L+B 50ZTab8BDFrPXbi9/t/VipMBZPIyToyCq1EyvG5NQVCcEkxd/CgrX9mR2+FeYqbM WspAbDnDYzJerfQMRqdUI8GjSEPfSKEh4e3sGJ222kC6n7QOBHthSM3LTUrYqS2d nKiq2ONPTOR9ms1p7ml3wnRYymujzD7sK969STOJqcaoPNHGQv4V4u9z6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKrAiVOVmk6OueRU2xcFqpHUzb/kMB8GA1UdIwQY MBaAFIoc4dE1vyz46ME/M+wRyFI3A9x1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDIt ZGVlMjkyZWE4N2EzLzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wYy9kYWY5NjAtZDA2MC00OWZjLWFmNDItZGVlMjkyZWE4N2Ez LzEvaWh6aDBUV19MUGpvd1Q4ejdCSElVamNEM0hVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAISZopalq ecQLnuDaBD1HJ2k7J8QBvgsDMjn0uyI8z9KPIo5PA7pYbiRSVZ4opJRsbtB4I/hX 0uugg5DbvAMNdMjUNbsxrxjxc1KdDWFB6U2HjiSApWAlbKhvC6aSbzJlN3+UqYdY F6zoSI2dKtzPpxMtcg9T9IiEb1DjPqYLx1U9hSpnTNqfnEV/zQwBKPIjSqe9Gglx 10IU9/n7MdnO9S/Ajda6Ki0PE4OHMlaDUUiK9UE4zI71muNHzXeOrcHFFM4MNF+4 4NLK80TXVCVbG70Y82jr1Qx8BkW1S8ECtTaaBVFH660bByAHw6Ozmp2IaGpKSmQy 37cMdTsrQ5hd5w== -----END CERTIFICATE-----Generated at Mon Jan 26 15:39:56 2026 by rpki-client