This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: d++o4It3wnA6z0BveOw7Hh0cMxyDfHswRBLDsnSZC+I= Subject key identifier: C9:66:1D:C1:8A:0F:52:5C:07:65:F2:55:34:A0:7A:DC:6C:33:EA:87 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BF6881436343CE9F293EF839CBDDF6E29 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17ED Signing time: Sun 25 Jan 2026 19:01:11 +0000 Manifest this update: Sun 25 Jan 2026 19:01:11 +0000 Manifest next update: Mon 26 Jan 2026 19:01:11 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: be3YL6rRAd4RKToVDhwRlA8fVco6q5jPkYOrDbmU8uk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 19:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:88:14:36:34:3c:e9:f2:93:ef:83:9c:bd:df:6e:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 25 19:01:11 2026 GMT Not After : Jan 26 19:01:11 2026 GMT Subject: CN=c9661dc18a0f525c0765f25534a07adc6c33ea87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:16:59:1e:25:bb:35:0b:7a:7e:c0:e4:2d:f0: c0:b5:73:41:5c:74:ce:ef:90:de:f0:c4:d4:e2:a3: 34:9a:bc:a8:eb:2a:5c:f1:d1:b7:ba:6b:cd:06:5a: 05:e1:cc:1b:7d:ea:be:1f:72:64:fe:d1:db:a7:2b: 20:65:bf:f0:b3:ff:9f:93:a2:6e:67:cb:3f:ad:7b: fc:de:d1:3d:ed:6e:79:a4:1b:0c:4b:7c:fe:0c:ef: 4a:11:3f:e1:d9:cc:44:27:77:0c:8b:0e:8b:63:39: 2a:35:fb:3d:49:0c:4a:b8:07:4e:41:f8:61:b3:dd: 73:b1:12:71:ee:b4:e8:eb:bf:d0:73:ba:0b:1e:e8: 76:33:e1:a8:57:bc:de:dd:83:ab:b4:a4:4f:28:96: 68:39:a6:c1:33:bd:82:ca:55:27:14:f7:0a:5e:0a: 08:31:de:97:58:0b:88:9d:51:bc:a3:6e:e3:30:32: 64:90:d2:ad:38:a3:6e:60:52:bb:00:9f:32:8a:91: 0e:69:42:31:a1:82:79:1c:de:3e:59:c2:73:0d:a0: e9:14:9f:75:8d:1e:e0:d1:7f:e9:6f:85:5e:2c:d7: 17:ef:55:40:6a:13:46:40:64:06:6b:57:66:66:97: 9f:99:42:d6:fc:93:98:00:13:25:f9:f9:02:26:b6: 00:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:66:1D:C1:8A:0F:52:5C:07:65:F2:55:34:A0:7A:DC:6C:33:EA:87 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:95:82:e8:38:90:78:8a:ec:2e:fe:0f:0a:e1:31:c8:96:4d: dd:0c:57:73:1f:f9:23:e5:68:97:8e:3c:0e:fb:0b:88:b8:12: cb:03:28:26:28:5f:13:73:06:ee:14:b0:e9:1a:d6:e9:4c:fb: 8b:9d:2c:86:cf:90:b7:72:f9:ef:25:45:93:ca:87:8d:ed:28: 3e:69:36:62:65:c2:eb:4c:df:a7:ca:aa:80:38:79:84:28:6b: ee:b5:f3:92:2a:fb:cd:19:2b:09:6c:8a:70:7b:6c:01:29:a3: ad:50:ce:8e:1f:c6:e3:6d:0e:fb:4f:d2:f1:41:ee:55:52:14: 88:3a:1d:fe:3e:1d:e1:35:eb:54:bc:a9:d8:f4:7e:d5:59:99: e7:25:67:40:c0:48:5c:18:5c:5d:d2:1b:b2:b5:90:a5:35:43: bc:96:0d:a5:4a:1e:89:56:8a:9f:52:66:16:af:7b:ca:24:93: 16:60:e8:b6:11:b1:f3:e3:ef:5c:d6:ec:e0:64:b8:d6:50:ff: 91:d3:32:e5:0b:e6:8e:18:2b:59:d4:13:69:e7:a3:9c:9c:34: e3:8a:0a:36:2c:36:f1:80:68:28:68:4f:2d:2e:76:bc:bc:a7: d7:3f:72:0c:6f:01:a6:ab:bb:0f:fe:aa:7d:d5:ed:59:6d:56: 94:7c:43:b0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv2iBQ2NDzp8pPvg5y9324pMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTI1MTkwMTExWhcNMjYwMTI2MTkwMTExWjAzMTEwLwYDVQQD EyhjOTY2MWRjMThhMGY1MjVjMDc2NWYyNTUzNGEwN2FkYzZjMzNlYTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBZZHiW7NQt6fsDkLfDAtXNBXHTO 75De8MTU4qM0mryo6ypc8dG3umvNBloF4cwbfeq+H3Jk/tHbpysgZb/ws/+fk6Ju Z8s/rXv83tE97W55pBsMS3z+DO9KET/h2cxEJ3cMiw6LYzkqNfs9SQxKuAdOQfhh s91zsRJx7rTo67/Qc7oLHuh2M+GoV7ze3YOrtKRPKJZoOabBM72CylUnFPcKXgoI Md6XWAuInVG8o27jMDJkkNKtOKNuYFK7AJ8yipEOaUIxoYJ5HN4+WcJzDaDpFJ91 jR7g0X/pb4VeLNcX71VAahNGQGQGa1dmZpefmULW/JOYABMl+fkCJrYAowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMlmHcGKD1JcB2XyVTSgetxsM+qHMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe5WC6DiQ eIrsLv4PCuExyJZN3QxXcx/5I+Vol448DvsLiLgSywMoJihfE3MG7hSw6RrW6Uz7 i50shs+Qt3L57yVFk8qHje0oPmk2YmXC60zfp8qqgDh5hChr7rXzkir7zRkrCWyK cHtsASmjrVDOjh/G420O+0/S8UHuVVIUiDod/j4d4TXrVLyp2PR+1VmZ5yVnQMBI XBhcXdIbsrWQpTVDvJYNpUoeiVaKn1JmFq97yiSTFmDothGx8+PvXNbs4GS41lD/ kdMy5QvmjhgrWdQTaeejnJw044oKNiw28YBoKGhPLS52vLyn1z9yDG8Bpqu7D/6q fdXtWW1WlHxDsA== -----END CERTIFICATE-----Generated at Mon Jan 26 03:32:27 2026 by rpki-client