This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: mkrp+qiSZ4lmpmyvAKZqytpXBC/c5bUlWslfCdlRJSg= Subject key identifier: 4B:91:F3:F0:32:5F:A6:8C:E0:16:97:47:24:1F:FE:E5:6D:EE:E0:16 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B97E716844ED960110954585862D1BC77 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17BC Signing time: Wed 07 Jan 2026 10:01:02 +0000 Manifest this update: Wed 07 Jan 2026 10:01:02 +0000 Manifest next update: Thu 08 Jan 2026 10:01:02 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: KlOnHCRHggEFKyGAwTu3Aom6c5xb6ARP8mity7FEV1s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 08 Jan 2026 10:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:97:e7:16:84:4e:d9:60:11:09:54:58:58:62:d1:bc:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 7 10:01:02 2026 GMT Not After : Jan 8 10:01:02 2026 GMT Subject: CN=4b91f3f0325fa68ce0169747241ffee56deee016 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:51:4d:e1:c0:75:e8:75:22:d4:68:e5:0d:57: 5d:e7:c3:3a:84:a2:64:4d:39:52:c8:87:fc:87:43: 4c:84:5b:4b:8b:91:75:16:be:2f:93:c8:0c:cb:ed: 11:94:0e:9b:15:c3:f8:00:c6:56:07:eb:65:b2:83: 01:26:77:54:ff:d1:d4:eb:a0:3d:96:57:46:9f:6b: 5b:c6:eb:ab:58:5b:52:9b:f4:fc:39:fc:ab:b1:5e: 3a:8d:0b:8f:55:62:af:6c:fb:da:df:8c:6c:c3:c2: a9:d6:d4:63:3d:6e:64:c6:70:c8:dd:72:38:e7:05: 52:db:94:21:80:83:14:aa:85:50:d5:98:7f:39:53: 58:c6:dd:e6:c5:19:f8:78:d3:9f:a1:7c:b0:d3:5d: f9:53:28:ee:72:42:f5:ba:87:be:c4:d3:bf:96:0b: 87:8e:a9:8e:31:72:12:78:f2:c3:3d:70:1b:26:b7: 83:3f:53:22:bd:28:4d:d4:09:09:0d:1d:f0:f3:64: ca:5f:2f:5d:0a:7b:db:b5:79:5c:22:54:f0:bb:19: 1c:c9:e2:b0:a8:96:a0:1a:1c:85:88:38:1f:f4:72: 24:07:bd:2a:c6:e3:88:67:bc:47:7a:24:fc:63:3d: 39:59:12:b3:19:ed:90:11:a2:89:6d:db:00:b0:60: a7:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:91:F3:F0:32:5F:A6:8C:E0:16:97:47:24:1F:FE:E5:6D:EE:E0:16 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:58:f9:48:da:12:33:6a:b7:2d:1b:6e:c1:f8:79:63:95:39: 6a:41:33:d5:2d:95:f6:1b:27:d5:24:cd:34:bf:1c:59:68:c4: 46:00:73:67:5e:25:b4:3f:d5:fb:9c:fe:b1:20:d2:77:84:94: 2d:1f:4b:2a:d4:34:db:9e:83:d8:99:ee:a4:22:f1:2d:34:eb: dd:a9:36:4c:2e:10:b9:6e:66:50:6e:0c:6d:d4:97:4b:8e:ca: 92:65:0b:d1:db:81:97:6d:22:4c:2c:10:b6:10:24:4c:fb:c3: f7:03:26:7a:76:71:af:21:95:b0:ba:75:29:d9:02:a1:08:d5: f1:3c:55:05:81:63:d8:76:80:2c:f9:83:da:0e:d2:b6:17:7a: 03:98:6d:63:b7:49:ff:f7:ab:70:b2:b4:3d:79:87:f0:08:9e: 06:4e:5a:36:49:63:75:21:35:cf:48:7b:83:17:64:f6:c3:aa: f8:17:89:fc:9b:74:87:47:9e:68:ac:1c:62:32:cf:60:5b:50: 62:09:30:b1:73:44:10:7b:d0:bb:9e:b2:34:33:9d:d4:b6:ec: 29:7a:4c:a8:fd:f0:8b:50:70:01:5a:0f:2f:bd:99:20:f5:6b: 07:ab:96:85:77:c5:fa:16:11:50:39:69:f1:75:8f:96:0c:95: 43:89:b1:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuX5xaETtlgEQlUWFhi0bx3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTA3MTAwMTAyWhcNMjYwMTA4MTAwMTAyWjAzMTEwLwYDVQQD Eyg0YjkxZjNmMDMyNWZhNjhjZTAxNjk3NDcyNDFmZmVlNTZkZWVlMDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwVFN4cB16HUi1GjlDVdd58M6hKJk TTlSyIf8h0NMhFtLi5F1Fr4vk8gMy+0RlA6bFcP4AMZWB+tlsoMBJndU/9HU66A9 lldGn2tbxuurWFtSm/T8OfyrsV46jQuPVWKvbPva34xsw8Kp1tRjPW5kxnDI3XI4 5wVS25QhgIMUqoVQ1Zh/OVNYxt3mxRn4eNOfoXyw0135UyjuckL1uoe+xNO/lguH jqmOMXISePLDPXAbJreDP1MivShN1AkJDR3w82TKXy9dCnvbtXlcIlTwuxkcyeKw qJagGhyFiDgf9HIkB70qxuOIZ7xHeiT8Yz05WRKzGe2QEaKJbdsAsGCnOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEuR8/AyX6aM4BaXRyQf/uVt7uAWMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJVj5SNoS M2q3LRtuwfh5Y5U5akEz1S2V9hsn1STNNL8cWWjERgBzZ14ltD/V+5z+sSDSd4SU LR9LKtQ0256D2JnupCLxLTTr3ak2TC4QuW5mUG4MbdSXS47KkmUL0duBl20iTCwQ thAkTPvD9wMmenZxryGVsLp1KdkCoQjV8TxVBYFj2HaALPmD2g7Sthd6A5htY7dJ //ercLK0PXmH8AieBk5aNkljdSE1z0h7gxdk9sOq+BeJ/Jt0h0eeaKwcYjLPYFtQ YgkwsXNEEHvQu56yNDOd1LbsKXpMqP3wi1BwAVoPL72ZIPVrB6uWhXfF+hYRUDlp 8XWPlgyVQ4mx7A== -----END CERTIFICATE-----Generated at Wed Jan 7 12:46:38 2026 by rpki-client