This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft File: AF_5zInGaoo6XXNKDWXGH9yFGL4.mft (raw, json) Hash identifier: sSOsemrdDBOKWupRD0/xv4P4YH4EdmFvHaKkl4NrZqs= Subject key identifier: F0:3F:22:27:58:D4:4F:6C:2F:E0:96:20:FD:27:56:5A:92:51:20:83 Authority key identifier: 00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE Certificate issuer: /CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be Certificate serial: 019BFA2DFC1FE015E5F158F9EAA230B5FD07 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft Manifest number: 17EE Signing time: Mon 26 Jan 2026 12:01:16 +0000 Manifest this update: Mon 26 Jan 2026 12:01:16 +0000 Manifest next update: Tue 27 Jan 2026 12:01:16 +0000 Files and hashes: 1: AF_5zInGaoo6XXNKDWXGH9yFGL4.crl (hash: +nmQXa2z3WGliA5SK+Q793wii3SWVfJduyRPPILkYvE=) 2: KbY29WtKZkz8Fbjj7QvLlg811Iw.roa (hash: vGh5FY7zuISKMd7QAir+eppKFgiFx2llO5uFQh7FV0A=) 3: Yczj7zwVDs2cX_wNQ-ssqLpurf0.roa (hash: lpodXqk6t7MJFjfZg1Uow8LLK/4R3ylcdMkmlTgRneo=) 4: hkJYoKxZ5NaqYkSY0GG7dfC0J6M.roa (hash: M6l2Qx3MyNr2ADezdHbYqYOeyWWrHzzKzTBcWubDLyY=) 5: iN3PbeV3-UffGNWyXfh7JHJfK74.roa (hash: JtoeR6EU9pVtvyEClltI2vcG5Q/h7OJRN/rUzf7IfP8=) 6: qydppjeYfUzDVxdV73Ghn9vaAYk.roa (hash: F/o5ke8f18yC9oKEjHkU0hNCPxAS0/yMbN5QTK0st0g=) 7: sH1teYqG2FqEXd7RfMCaBcOnmaw.roa (hash: suxWcXpZV2IMJ73fGzjwM37LJ58quwhaki1YE7N0sRY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 12:01:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:2d:fc:1f:e0:15:e5:f1:58:f9:ea:a2:30:b5:fd:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=005ff9cc89c66a8a3a5d734a0d65c61fdc8518be Validity Not Before: Jan 26 12:01:16 2026 GMT Not After : Jan 27 12:01:16 2026 GMT Subject: CN=f03f222758d44f6c2fe09620fd27565a92512083 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:b7:fc:b4:20:6f:ed:96:50:c9:6e:df:f7:19: 1d:dc:f9:7d:85:3f:d4:e5:54:a9:3b:ea:24:c6:0a: 2d:a7:75:43:21:5f:5a:29:8d:99:8b:fd:4e:23:a3: 2a:7c:26:14:0b:39:e3:43:b7:e7:6e:16:14:3f:99: 06:36:b8:08:5a:e7:90:15:b8:70:94:b2:d0:b2:34: 7f:60:e7:0a:b7:25:c5:e9:21:d6:2d:f9:ee:9f:c2: 7c:9b:67:21:59:88:f0:d6:da:8e:d5:05:13:7d:b8: 48:c5:5b:92:f0:a3:42:b2:01:59:c2:87:71:67:7f: 9a:ff:6c:b7:63:67:44:2a:4f:6e:16:65:f8:2c:8f: ea:44:99:89:94:f2:f9:a7:76:bb:00:75:c1:64:3b: 8b:74:1a:1d:d3:e9:06:4f:f3:db:3a:86:bd:75:2c: b0:4d:95:be:01:76:89:ef:63:49:76:98:a0:e2:3e: 90:96:cc:5d:9b:86:f7:1a:71:5a:cf:82:cc:fa:ae: e9:02:da:53:d7:a5:02:05:4e:16:8c:b1:76:b2:64: 6f:7e:75:c8:5a:66:22:40:45:d4:b9:3f:6a:f1:44: a3:c3:d0:9a:53:9b:4c:32:eb:f1:bd:7d:58:dc:81: 3d:87:e9:ba:9c:40:80:64:47:84:ae:7f:8b:67:ca: 6d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:3F:22:27:58:D4:4F:6C:2F:E0:96:20:FD:27:56:5A:92:51:20:83 X509v3 Authority Key Identifier: keyid:00:5F:F9:CC:89:C6:6A:8A:3A:5D:73:4A:0D:65:C6:1F:DC:85:18:BE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/AF_5zInGaoo6XXNKDWXGH9yFGL4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/d53c78-0d5b-4237-9999-0e2d697b27e3/1/AF_5zInGaoo6XXNKDWXGH9yFGL4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:58:e0:78:50:2c:e5:76:aa:ce:60:09:2e:96:23:1d:82:8f: b3:fd:52:f0:70:8d:ea:e1:7e:e1:5e:d4:3e:e5:b4:58:7b:92: 83:71:7b:c3:0d:b3:3b:17:38:b0:c7:90:64:df:73:88:34:e9: c4:64:5a:a1:27:c7:3d:4f:f3:21:91:c3:a0:b2:7a:b9:a6:e9: f5:31:ae:72:cc:d8:1e:f3:8c:fd:d9:db:89:6f:f5:bc:9b:00: f2:84:74:0d:f3:92:b7:27:5d:96:a7:23:d7:c4:0c:35:a7:5b: 95:53:2f:a1:89:b2:c3:19:2c:1f:2e:f0:fe:93:e6:15:06:88: 84:16:8e:cb:b2:ee:2e:a3:e9:d4:72:3e:7f:47:79:43:fc:57: 55:e7:cc:8f:aa:0d:ba:ac:c7:54:59:e4:16:13:7e:ec:f3:a4: 6f:41:34:9e:13:41:2c:36:45:48:2d:a3:96:1b:7c:37:8c:3f: 47:bd:bc:9e:7a:84:52:79:cd:d7:ee:f0:3f:db:66:10:cf:29: 98:c0:53:d7:3f:a0:fe:c1:7d:00:44:18:e2:ba:0f:51:40:b0: a8:26:6f:30:64:d0:55:e7:8d:25:87:e9:fa:ca:62:6e:ca:65: a1:14:a3:e9:6a:d6:e6:8f:64:ef:dd:00:eb:21:5c:58:28:eb: 8e:ed:67:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6Lfwf4BXl8Vj56qIwtf0HMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDAwNWZmOWNjODljNjZhOGEzYTVkNzM0YTBkNjVjNjFmZGM4 NTE4YmUwHhcNMjYwMTI2MTIwMTE2WhcNMjYwMTI3MTIwMTE2WjAzMTEwLwYDVQQD EyhmMDNmMjIyNzU4ZDQ0ZjZjMmZlMDk2MjBmZDI3NTY1YTkyNTEyMDgzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAurf8tCBv7ZZQyW7f9xkd3Pl9hT/U 5VSpO+okxgotp3VDIV9aKY2Zi/1OI6MqfCYUCznjQ7fnbhYUP5kGNrgIWueQFbhw lLLQsjR/YOcKtyXF6SHWLfnun8J8m2chWYjw1tqO1QUTfbhIxVuS8KNCsgFZwodx Z3+a/2y3Y2dEKk9uFmX4LI/qRJmJlPL5p3a7AHXBZDuLdBod0+kGT/PbOoa9dSyw TZW+AXaJ72NJdpig4j6Qlsxdm4b3GnFaz4LM+q7pAtpT16UCBU4WjLF2smRvfnXI WmYiQEXUuT9q8USjw9CaU5tMMuvxvX1Y3IE9h+m6nECAZEeErn+LZ8ptzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPA/IidY1E9sL+CWIP0nVlqSUSCDMB8GA1UdIwQY MBaAFABf+cyJxmqKOl1zSg1lxh/chRi+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9kNTNjNzgtMGQ1Yi00MjM3LTk5OTkt MGUyZDY5N2IyN2UzLzEvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9kNTNjNzgtMGQ1Yi00MjM3LTk5OTktMGUyZDY5N2IyN2Uz LzEvQUZfNXpJbkdhb282WFhOS0RXWEdIOXlGR0w0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF1jgeFAs 5XaqzmAJLpYjHYKPs/1S8HCN6uF+4V7UPuW0WHuSg3F7ww2zOxc4sMeQZN9ziDTp xGRaoSfHPU/zIZHDoLJ6uabp9TGucszYHvOM/dnbiW/1vJsA8oR0DfOStyddlqcj 18QMNadblVMvoYmywxksHy7w/pPmFQaIhBaOy7LuLqPp1HI+f0d5Q/xXVefMj6oN uqzHVFnkFhN+7POkb0E0nhNBLDZFSC2jlht8N4w/R728nnqEUnnN1+7wP9tmEM8p mMBT1z+g/sF9AEQY4roPUUCwqCZvMGTQVeeNJYfp+spibsploRSj6WrW5o9k790A 6yFcWCjrju1n7A== -----END CERTIFICATE-----Generated at Mon Jan 26 19:37:39 2026 by rpki-client