This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json)
Hash identifier: d++o4It3wnA6z0BveOw7Hh0cMxyDfHswRBLDsnSZC+I=
Subject key identifier: C9:66:1D:C1:8A:0F:52:5C:07:65:F2:55:34:A0:7A:DC:6C:33:EA:87
Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Certificate serial: 019BF6881436343CE9F293EF839CBDDF6E29
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
Manifest number: 17ED
Signing time: Sun 25 Jan 2026 19:01:11 +0000
Manifest this update: Sun 25 Jan 2026 19:01:11 +0000
Manifest next update: Mon 26 Jan 2026 19:01:11 +0000
Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=)
2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=)
3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=)
4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: be3YL6rRAd4RKToVDhwRlA8fVco6q5jPkYOrDbmU8uk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 26 Jan 2026 19:01:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9b:f6:88:14:36:34:3c:e9:f2:93:ef:83:9c:bd:df:6e:29
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21
Validity
Not Before: Jan 25 19:01:11 2026 GMT
Not After : Jan 26 19:01:11 2026 GMT
Subject: CN=c9661dc18a0f525c0765f25534a07adc6c33ea87
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:16:59:1e:25:bb:35:0b:7a:7e:c0:e4:2d:f0:
c0:b5:73:41:5c:74:ce:ef:90:de:f0:c4:d4:e2:a3:
34:9a:bc:a8:eb:2a:5c:f1:d1:b7:ba:6b:cd:06:5a:
05:e1:cc:1b:7d:ea:be:1f:72:64:fe:d1:db:a7:2b:
20:65:bf:f0:b3:ff:9f:93:a2:6e:67:cb:3f:ad:7b:
fc:de:d1:3d:ed:6e:79:a4:1b:0c:4b:7c:fe:0c:ef:
4a:11:3f:e1:d9:cc:44:27:77:0c:8b:0e:8b:63:39:
2a:35:fb:3d:49:0c:4a:b8:07:4e:41:f8:61:b3:dd:
73:b1:12:71:ee:b4:e8:eb:bf:d0:73:ba:0b:1e:e8:
76:33:e1:a8:57:bc:de:dd:83:ab:b4:a4:4f:28:96:
68:39:a6:c1:33:bd:82:ca:55:27:14:f7:0a:5e:0a:
08:31:de:97:58:0b:88:9d:51:bc:a3:6e:e3:30:32:
64:90:d2:ad:38:a3:6e:60:52:bb:00:9f:32:8a:91:
0e:69:42:31:a1:82:79:1c:de:3e:59:c2:73:0d:a0:
e9:14:9f:75:8d:1e:e0:d1:7f:e9:6f:85:5e:2c:d7:
17:ef:55:40:6a:13:46:40:64:06:6b:57:66:66:97:
9f:99:42:d6:fc:93:98:00:13:25:f9:f9:02:26:b6:
00:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C9:66:1D:C1:8A:0F:52:5C:07:65:F2:55:34:A0:7A:DC:6C:33:EA:87
X509v3 Authority Key Identifier:
keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
7b:95:82:e8:38:90:78:8a:ec:2e:fe:0f:0a:e1:31:c8:96:4d:
dd:0c:57:73:1f:f9:23:e5:68:97:8e:3c:0e:fb:0b:88:b8:12:
cb:03:28:26:28:5f:13:73:06:ee:14:b0:e9:1a:d6:e9:4c:fb:
8b:9d:2c:86:cf:90:b7:72:f9:ef:25:45:93:ca:87:8d:ed:28:
3e:69:36:62:65:c2:eb:4c:df:a7:ca:aa:80:38:79:84:28:6b:
ee:b5:f3:92:2a:fb:cd:19:2b:09:6c:8a:70:7b:6c:01:29:a3:
ad:50:ce:8e:1f:c6:e3:6d:0e:fb:4f:d2:f1:41:ee:55:52:14:
88:3a:1d:fe:3e:1d:e1:35:eb:54:bc:a9:d8:f4:7e:d5:59:99:
e7:25:67:40:c0:48:5c:18:5c:5d:d2:1b:b2:b5:90:a5:35:43:
bc:96:0d:a5:4a:1e:89:56:8a:9f:52:66:16:af:7b:ca:24:93:
16:60:e8:b6:11:b1:f3:e3:ef:5c:d6:ec:e0:64:b8:d6:50:ff:
91:d3:32:e5:0b:e6:8e:18:2b:59:d4:13:69:e7:a3:9c:9c:34:
e3:8a:0a:36:2c:36:f1:80:68:28:68:4f:2d:2e:76:bc:bc:a7:
d7:3f:72:0c:6f:01:a6:ab:bb:0f:fe:aa:7d:d5:ed:59:6d:56:
94:7c:43:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 26 03:32:27 2026 by rpki-client