This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: sYSBd5w9AfuUtyqGXlMXtxWTmPxLIluUa2lfIJjXCIM= Subject key identifier: 3F:C7:E8:42:EB:0B:6C:DC:62:75:93:74:5C:F7:3E:26:D9:BC:DD:5D Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BDB7EF30277624F0889EE338612511CE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17DF Signing time: Tue 20 Jan 2026 13:01:28 +0000 Manifest this update: Tue 20 Jan 2026 13:01:28 +0000 Manifest next update: Wed 21 Jan 2026 13:01:28 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: SPhdUJL37/AitT3qjGNb53vNAmi6ExsBdwQF7WZbdsY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 13:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:db:7e:f3:02:77:62:4f:08:89:ee:33:86:12:51:1c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 20 13:01:28 2026 GMT Not After : Jan 21 13:01:28 2026 GMT Subject: CN=3fc7e842eb0b6cdc627593745cf73e26d9bcdd5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:08:77:d5:3c:02:24:76:88:c5:24:3f:73:81: 65:0c:8a:f2:b3:e2:83:f4:69:87:f1:4f:b9:b6:dd: 33:68:83:ae:d6:e0:ea:f7:1f:4e:cc:27:ac:d8:f6: 1d:14:de:6e:ae:37:80:5c:3c:5b:33:0d:ae:dd:09: 54:30:d9:27:92:5d:25:49:bf:1f:0f:c6:36:75:56: 7c:99:de:e5:ba:66:ef:b0:7f:65:56:5c:33:6b:47: 35:3f:53:0f:93:1f:3b:85:f7:b2:75:c7:b7:1f:d6: 73:a5:cf:e8:17:69:a9:42:fb:8c:8c:40:89:de:6e: a3:66:57:f5:79:c5:74:22:a8:f1:22:95:3b:65:62: 88:99:2d:3f:17:90:7b:5e:c9:58:10:0c:06:43:50: 42:da:69:43:68:31:f6:40:f3:6f:8c:9b:95:e0:50: 36:af:f0:83:94:fc:23:29:29:0f:eb:1f:eb:67:2e: 4d:c6:ba:dd:57:b8:fe:9c:56:d6:a5:a6:c0:75:b5: 93:e1:90:f9:80:59:7a:14:eb:20:09:1c:5b:8c:ce: c7:1d:8f:af:e4:de:0b:98:c0:3b:8d:2f:a7:db:6b: 09:6e:01:9a:58:ee:d3:fd:c8:79:db:1b:6b:4d:97: b4:ae:1e:2e:64:18:a7:e0:19:ee:f1:0c:40:f1:3f: dc:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:C7:E8:42:EB:0B:6C:DC:62:75:93:74:5C:F7:3E:26:D9:BC:DD:5D X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:7b:f7:b0:d6:91:f1:11:81:50:37:25:d4:68:0b:7a:eb:85: 34:88:8a:05:c7:07:b3:9d:f6:fe:f1:b8:31:06:72:a3:da:aa: a4:ec:71:c1:4b:2c:35:9a:48:dd:cc:7c:5d:60:2f:fa:80:8c: fc:41:dd:bc:8d:c8:46:08:20:41:14:79:e6:b4:80:b3:4f:6c: af:f9:63:71:e3:19:ce:70:4d:05:35:96:a9:e0:cd:b3:eb:22: 1d:e0:4d:e1:00:42:d7:bf:ac:7d:3a:f0:ce:7c:86:08:c0:86: 18:fc:df:eb:b6:49:df:4e:6a:7b:0e:1e:f9:3e:21:df:5f:0d: aa:38:3e:44:53:a7:f3:4b:22:d3:30:e5:cc:9f:ad:87:5d:bf: c3:56:a8:12:48:9f:fa:e5:95:30:c3:9b:ee:42:e7:ff:e8:95: 84:eb:31:31:5e:e1:bb:e5:23:79:f0:76:7b:b5:ed:f5:a3:0d: c3:63:3b:c0:86:39:ca:05:85:5e:aa:35:fa:bd:f3:1e:93:cf: 5f:7a:a8:f0:47:e9:9b:4e:d6:b6:e3:6e:8c:2b:b0:a1:88:7d: 45:16:de:4c:e4:b6:98:e7:5c:10:db:a3:2b:e6:2c:39:03:e7: 83:65:a0:3f:53:76:ed:c8:ad:da:70:8f:45:44:ca:37:9d:81: ad:9a:31:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvbfvMCd2JPCInuM4YSURzoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTIwMTMwMTI4WhcNMjYwMTIxMTMwMTI4WjAzMTEwLwYDVQQD EygzZmM3ZTg0MmViMGI2Y2RjNjI3NTkzNzQ1Y2Y3M2UyNmQ5YmNkZDVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgh31TwCJHaIxSQ/c4FlDIrys+KD 9GmH8U+5tt0zaIOu1uDq9x9OzCes2PYdFN5urjeAXDxbMw2u3QlUMNknkl0lSb8f D8Y2dVZ8md7lumbvsH9lVlwza0c1P1MPkx87hfeydce3H9Zzpc/oF2mpQvuMjECJ 3m6jZlf1ecV0IqjxIpU7ZWKImS0/F5B7XslYEAwGQ1BC2mlDaDH2QPNvjJuV4FA2 r/CDlPwjKSkP6x/rZy5NxrrdV7j+nFbWpabAdbWT4ZD5gFl6FOsgCRxbjM7HHY+v 5N4LmMA7jS+n22sJbgGaWO7T/ch52xtrTZe0rh4uZBin4Bnu8QxA8T/chwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD/H6ELrC2zcYnWTdFz3PibZvN1dMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGXv3sNaR 8RGBUDcl1GgLeuuFNIiKBccHs532/vG4MQZyo9qqpOxxwUssNZpI3cx8XWAv+oCM /EHdvI3IRgggQRR55rSAs09sr/ljceMZznBNBTWWqeDNs+siHeBN4QBC17+sfTrw znyGCMCGGPzf67ZJ305qew4e+T4h318Nqjg+RFOn80si0zDlzJ+th12/w1aoEkif +uWVMMOb7kLn/+iVhOsxMV7hu+UjefB2e7Xt9aMNw2M7wIY5ygWFXqo1+r3zHpPP X3qo8Efpm07WtuNujCuwoYh9RRbeTOS2mOdcENujK+YsOQPng2WgP1N27cit2nCP RUTKN52BrZoxxA== -----END CERTIFICATE-----Generated at Tue Jan 20 22:34:03 2026 by rpki-client