This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: EeW0mas2jlh7y03lzKgVr9MUNdhrHTny6A5N8KmaqcQ= Subject key identifier: CF:E7:56:81:C4:BA:67:F6:C1:3D:5F:97:EB:C2:61:16:B9:DC:05:75 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B6B0DF5371EC97B0358EB8F0A59326398 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17A4 Signing time: Mon 29 Dec 2025 17:00:35 +0000 Manifest this update: Mon 29 Dec 2025 17:00:35 +0000 Manifest next update: Tue 30 Dec 2025 17:00:35 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: VCT62rWFs5w2uFKFxpcnULHkDsk9+Yg69KpuLAl8ha0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 30 Dec 2025 15:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:6b:0d:f5:37:1e:c9:7b:03:58:eb:8f:0a:59:32:63:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Dec 29 17:00:35 2025 GMT Not After : Dec 30 17:00:35 2025 GMT Subject: CN=cfe75681c4ba67f6c13d5f97ebc26116b9dc0575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:43:bc:d9:34:7e:99:5c:2c:c9:69:fd:45:3b: 17:b3:c3:84:5b:c9:b6:a7:50:85:82:a4:a0:0e:78: 13:21:25:3f:e6:cf:d1:34:25:39:87:d7:54:ac:f8: e8:50:d7:99:d9:be:32:80:41:9a:23:f2:5f:cf:df: 50:ee:c8:79:89:11:bb:d3:33:e8:62:da:d3:87:f1: c4:21:03:dd:de:f5:a9:90:36:06:68:d9:d7:d6:63: 1d:da:dc:d5:0d:62:57:21:35:b5:15:60:fb:0e:1b: d7:57:4a:78:23:de:95:61:9c:8f:f0:41:ce:ab:e2: 39:12:a6:42:a3:25:5d:3a:40:18:91:a9:b8:0d:5f: 5d:22:36:b2:6c:ea:12:51:af:bf:07:7c:08:88:3b: 7b:a5:b3:bf:b6:6c:f4:e4:ee:5a:4f:4a:7e:72:71: 33:50:a3:d9:52:a2:ad:f6:0f:05:03:00:2a:b0:5c: df:15:2c:34:f9:21:1f:51:6b:1c:32:6e:6e:4e:10: 69:cd:da:5b:47:2c:b7:ea:80:83:a0:f2:35:35:90: b4:a8:e8:25:54:98:3e:ab:b5:33:97:90:b7:86:eb: 09:51:2d:3b:e0:7b:10:3a:bb:d1:1d:95:c3:c4:44: 9d:9f:b8:58:a1:3e:8d:2a:f3:f4:df:33:30:19:41: 5c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:E7:56:81:C4:BA:67:F6:C1:3D:5F:97:EB:C2:61:16:B9:DC:05:75 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:9c:86:42:1d:70:e9:01:86:7f:c1:3b:9e:67:5b:87:29:73: a3:ab:24:30:64:53:40:80:33:fe:88:fb:b2:e4:e8:a8:a4:86: 0b:6f:ff:4f:16:70:d7:ea:e2:8a:49:a4:39:4e:e8:c3:b4:a4: 2e:7e:50:27:6d:a7:ae:fc:6f:28:c8:a4:ec:f5:33:d9:67:84: 28:f4:bc:a5:70:75:d3:38:df:52:af:f8:c8:4b:02:0d:d7:9c: f4:9b:77:d5:b1:aa:54:d9:c3:cb:8d:11:93:cb:0e:aa:e1:31: 72:de:df:62:5f:3d:98:56:b5:7b:89:6c:74:71:b8:cf:14:ae: 34:ba:c0:ff:a6:56:c4:af:9c:ee:b9:99:7e:b9:9a:b2:b2:0d: fa:5d:e2:c7:dc:29:23:d3:64:b6:1e:17:00:a3:ff:e9:42:a5: cd:eb:02:f6:e4:b2:e6:33:87:0e:bf:b8:76:f3:6f:66:7c:20: 98:73:96:8e:58:20:77:9f:d8:43:02:d7:97:8f:ad:02:3c:53: aa:1a:1c:69:2f:ab:9a:15:e6:ae:55:65:b7:3a:13:a8:67:46: f5:d3:8c:14:af:2d:6f:e9:1a:88:92:79:1d:1f:5a:73:e9:96: 30:04:15:7e:84:4c:bc:f1:70:33:a4:70:e2:d9:8b:b7:23:b4: 28:35:97:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtrDfU3Hsl7A1jrjwpZMmOYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMjI5MTcwMDM1WhcNMjUxMjMwMTcwMDM1WjAzMTEwLwYDVQQD EyhjZmU3NTY4MWM0YmE2N2Y2YzEzZDVmOTdlYmMyNjExNmI5ZGMwNTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwEO82TR+mVwsyWn9RTsXs8OEW8m2 p1CFgqSgDngTISU/5s/RNCU5h9dUrPjoUNeZ2b4ygEGaI/Jfz99Q7sh5iRG70zPo YtrTh/HEIQPd3vWpkDYGaNnX1mMd2tzVDWJXITW1FWD7DhvXV0p4I96VYZyP8EHO q+I5EqZCoyVdOkAYkam4DV9dIjaybOoSUa+/B3wIiDt7pbO/tmz05O5aT0p+cnEz UKPZUqKt9g8FAwAqsFzfFSw0+SEfUWscMm5uThBpzdpbRyy36oCDoPI1NZC0qOgl VJg+q7Uzl5C3husJUS074HsQOrvRHZXDxESdn7hYoT6NKvP03zMwGUFcCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM/nVoHEumf2wT1fl+vCYRa53AV1MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh5yGQh1w 6QGGf8E7nmdbhylzo6skMGRTQIAz/oj7suToqKSGC2//TxZw1+riikmkOU7ow7Sk Ln5QJ22nrvxvKMik7PUz2WeEKPS8pXB10zjfUq/4yEsCDdec9Jt31bGqVNnDy40R k8sOquExct7fYl89mFa1e4lsdHG4zxSuNLrA/6ZWxK+c7rmZfrmasrIN+l3ix9wp I9Nkth4XAKP/6UKlzesC9uSy5jOHDr+4dvNvZnwgmHOWjlggd5/YQwLXl4+tAjxT qhocaS+rmhXmrlVltzoTqGdG9dOMFK8tb+kaiJJ5HR9ac+mWMAQVfoRMvPFwM6Rw 4tmLtyO0KDWX7w== -----END CERTIFICATE-----Generated at Mon Dec 29 19:01:47 2025 by rpki-client