This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: oaTKJTv5lbYO0wVWJTsYmIInRWW51Kbth3ohLnlKT68= Subject key identifier: 1C:97:5B:A6:87:1E:96:15:58:4F:D1:72:54:31:60:AA:CD:75:39:25 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019A969FF0E3B2A09259450AB14AD17CADA9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 1736 Signing time: Tue 18 Nov 2025 11:00:55 +0000 Manifest this update: Tue 18 Nov 2025 11:00:55 +0000 Manifest next update: Wed 19 Nov 2025 11:00:55 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: RK7Tflwaf5CiBYRzOiE9IOv1hN5jlqI4/8ZMzTzIjuY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 19 Nov 2025 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:96:9f:f0:e3:b2:a0:92:59:45:0a:b1:4a:d1:7c:ad:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Nov 18 11:00:55 2025 GMT Not After : Nov 19 11:00:55 2025 GMT Subject: CN=1c975ba6871e9615584fd172543160aacd753925 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:9a:85:40:c9:55:fd:00:34:d1:5b:c3:86:09: cc:88:f8:81:f2:56:4a:c5:a3:d3:da:ab:aa:6d:0a: 49:ba:25:f7:ee:27:7a:b0:08:a5:c3:45:88:8c:ed: 63:3b:4f:39:d2:ae:e0:0f:0f:bb:01:fe:e3:a2:d8: c2:ae:25:63:34:ed:39:b9:e9:75:68:42:19:e3:0b: 3d:45:b8:01:0d:0d:ac:86:fd:d7:76:99:ce:72:fb: 89:7a:43:9e:94:c1:60:37:75:a6:6b:7b:7a:db:1e: 20:5f:8e:e2:8c:e8:52:df:b0:c1:66:d8:59:b0:73: 15:4f:80:e9:08:cf:fe:2e:fa:3c:e8:4b:61:74:fb: f2:bb:25:2d:33:d1:c2:8e:03:ad:59:bd:d3:b0:e2: f2:fb:c2:8a:73:40:52:2b:59:32:70:9b:92:8c:4f: a3:45:d6:eb:ba:0d:25:ad:7f:a0:94:13:0c:f9:48: 88:06:fb:00:ce:53:14:17:5d:83:cc:7b:c9:eb:f3: 08:fb:5f:83:51:44:3e:60:d2:a6:1b:f2:6f:1e:f5: 03:5e:fd:16:f9:a7:60:64:12:ad:95:ad:88:3f:3d: 82:69:c9:fb:ac:2d:1f:8b:07:e9:b1:3a:55:32:45: 77:74:7a:3f:0a:ef:b8:99:25:14:88:e9:63:14:2f: 3e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:97:5B:A6:87:1E:96:15:58:4F:D1:72:54:31:60:AA:CD:75:39:25 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:a1:90:43:3d:05:3f:88:6a:a2:54:6f:c9:15:bb:7a:51:fa: 71:44:ad:5e:96:cd:e9:19:e4:f2:64:ee:c3:11:2f:52:77:2f: 76:ec:62:0b:56:67:75:6f:4d:e0:63:2c:63:57:8f:28:3c:69: ab:24:ae:19:98:52:de:23:24:46:f7:41:71:a1:f7:02:ca:2f: 88:e1:c1:bb:48:5f:82:65:77:a2:72:7e:71:57:d6:1b:5f:82: b8:1a:3e:ea:26:8d:a3:0e:03:42:5d:f2:9a:14:aa:2b:ac:ac: f9:6f:2d:a6:62:66:6b:4c:55:73:1a:66:71:fa:f0:e8:f3:96: 7e:e2:49:fc:34:ff:df:7d:0e:a4:ce:0d:1b:e0:6e:27:93:38: 6b:f4:f8:6d:ff:36:a5:ed:12:d6:6c:1f:d7:ed:56:a3:73:f0: 49:df:d3:52:41:cb:f4:e3:a6:e6:40:a4:54:8e:7b:67:92:a9: 66:ff:46:4b:ca:26:26:30:02:cd:91:82:36:5b:48:e0:d6:ad: 54:1a:fc:2e:5a:0d:e1:83:5b:3e:f0:67:d0:0e:cb:81:33:76: 0f:89:3f:6f:64:27:8c:db:3f:ee:ce:2c:ed:e4:90:42:31:3f: 7d:dd:66:3d:08:68:33:48:d7:8f:90:cf:7e:0b:93:b1:ca:f9: 75:47:e9:84 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqWn/DjsqCSWUUKsUrRfK2pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjUxMTE4MTEwMDU1WhcNMjUxMTE5MTEwMDU1WjAzMTEwLwYDVQQD EygxYzk3NWJhNjg3MWU5NjE1NTg0ZmQxNzI1NDMxNjBhYWNkNzUzOTI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv5qFQMlV/QA00VvDhgnMiPiB8lZK xaPT2quqbQpJuiX37id6sAilw0WIjO1jO0850q7gDw+7Af7jotjCriVjNO05uel1 aEIZ4ws9RbgBDQ2shv3XdpnOcvuJekOelMFgN3Wma3t62x4gX47ijOhS37DBZthZ sHMVT4DpCM/+Lvo86EthdPvyuyUtM9HCjgOtWb3TsOLy+8KKc0BSK1kycJuSjE+j Rdbrug0lrX+glBMM+UiIBvsAzlMUF12DzHvJ6/MI+1+DUUQ+YNKmG/JvHvUDXv0W +adgZBKtla2IPz2Cacn7rC0fiwfpsTpVMkV3dHo/Cu+4mSUUiOljFC8+wQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFByXW6aHHpYVWE/RclQxYKrNdTklMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUqGQQz0F P4hqolRvyRW7elH6cUStXpbN6Rnk8mTuwxEvUncvduxiC1ZndW9N4GMsY1ePKDxp qySuGZhS3iMkRvdBcaH3AsoviOHBu0hfgmV3onJ+cVfWG1+CuBo+6iaNow4DQl3y mhSqK6ys+W8tpmJma0xVcxpmcfrw6POWfuJJ/DT/330OpM4NG+BuJ5M4a/T4bf82 pe0S1mwf1+1Wo3PwSd/TUkHL9OOm5kCkVI57Z5KpZv9GS8omJjACzZGCNltI4Nat VBr8LloN4YNbPvBn0A7LgTN2D4k/b2QnjNs/7s4s7eSQQjE/fd1mPQhoM0jXj5DP fguTscr5dUfphA== -----END CERTIFICATE-----Generated at Tue Nov 18 18:58:08 2025 by rpki-client