This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: oenvr+LS1i1PcFf7XSfDyN2eWzdV/d4pmgiuyr7rAEA= Subject key identifier: 45:C8:85:41:D6:82:7B:2D:0A:57:DB:6C:D8:03:FD:0A:A9:04:CC:90 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BE1494D28D5EC07361BAF6D3F9CB9512C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17E2 Signing time: Wed 21 Jan 2026 16:00:35 +0000 Manifest this update: Wed 21 Jan 2026 16:00:35 +0000 Manifest next update: Thu 22 Jan 2026 16:00:35 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: p8NHy5cuE1G+S+Qav86Lq9kkemrhAi7R+Jsf60Az2vQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 15:22:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e1:49:4d:28:d5:ec:07:36:1b:af:6d:3f:9c:b9:51:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 21 16:00:35 2026 GMT Not After : Jan 22 16:00:35 2026 GMT Subject: CN=45c88541d6827b2d0a57db6cd803fd0aa904cc90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:99:7a:2a:b0:a9:45:f2:b1:dd:f9:e0:dd:41: 1a:b6:5d:ef:9e:01:1b:a3:b4:92:9f:45:a5:d9:b1: 6d:4c:58:f8:3a:d2:ed:00:44:80:4c:92:32:c4:17: e2:89:9d:e6:85:df:bc:78:16:00:a7:16:1c:d5:02: 7f:87:57:fc:97:1f:09:09:b4:5a:e6:a6:80:e9:e7: c8:eb:9f:2a:90:06:bc:88:fd:0c:98:f6:86:9c:f3: 76:3b:78:95:e4:65:cf:f1:e9:20:d0:68:b9:f1:41: 54:9f:99:4b:2d:a6:2c:e7:2a:a4:76:a0:09:38:f9: 95:59:1a:5a:09:b5:ba:48:d4:a0:4c:e0:cf:03:04: 25:87:1b:98:2b:60:17:9c:6a:45:b8:4c:bb:7d:e6: 89:3e:3d:f2:5e:37:c8:ec:26:55:9c:ac:40:5c:f1: 45:95:71:ab:f8:d8:50:f1:95:fc:eb:30:67:29:dc: 7c:7e:8b:8a:d7:17:71:de:8e:4a:b2:6b:19:21:10: 56:70:4c:61:30:bb:ce:6d:e6:c6:45:99:d1:d0:cb: 7e:14:e1:25:df:90:72:f5:45:40:a2:92:60:f3:f2: d7:e9:73:8b:0e:7f:ec:a2:dc:7c:72:39:57:ca:af: 16:03:43:4f:83:74:a4:c2:69:e9:38:73:28:7b:23: b7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:C8:85:41:D6:82:7B:2D:0A:57:DB:6C:D8:03:FD:0A:A9:04:CC:90 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:f9:49:0f:b1:53:d1:47:cc:d9:c2:ab:f5:17:72:cc:c8:4a: dd:f7:67:43:6b:1f:2b:12:12:95:3d:02:70:10:be:64:11:98: 5c:f7:1d:bc:6f:e0:45:ce:cb:82:64:a9:b4:4f:02:04:d6:0a: b3:14:66:9b:d7:e2:56:35:06:a3:4b:7c:60:da:2d:c9:34:5a: 42:e6:1f:46:21:8d:3e:f9:47:3d:08:0e:ed:c4:64:92:b7:b1: 3d:ea:80:85:fa:97:01:ba:a0:88:9e:b5:b9:83:e6:48:66:4f: 39:66:18:9f:30:19:84:97:5c:ff:51:07:24:36:7c:84:52:64: ca:5f:d2:74:68:6e:c9:73:9e:9b:58:83:ab:7f:f6:b3:6e:62: 53:97:37:2c:d7:a1:15:af:b5:08:13:09:0c:f6:6f:9b:20:00: 0b:de:09:fd:4b:a5:29:63:d7:58:04:3f:11:23:31:bb:61:e6: 08:73:96:7e:8d:6c:69:52:4f:08:35:87:1e:9e:0a:7e:5b:79: 93:3a:4b:84:a5:8a:df:ee:6b:cd:52:f9:bb:f3:24:ef:c1:1c: de:32:1d:f6:ba:cc:49:03:b8:55:00:cb:0c:7f:da:fb:66:7d: 36:08:df:c5:71:01:3e:35:51:d3:1e:cf:86:55:24:7a:bc:de: a1:f4:eb:45 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvhSU0o1ewHNhuvbT+cuVEsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTIxMTYwMDM1WhcNMjYwMTIyMTYwMDM1WjAzMTEwLwYDVQQD Eyg0NWM4ODU0MWQ2ODI3YjJkMGE1N2RiNmNkODAzZmQwYWE5MDRjYzkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpl6KrCpRfKx3fng3UEatl3vngEb o7SSn0Wl2bFtTFj4OtLtAESATJIyxBfiiZ3mhd+8eBYApxYc1QJ/h1f8lx8JCbRa 5qaA6efI658qkAa8iP0MmPaGnPN2O3iV5GXP8ekg0Gi58UFUn5lLLaYs5yqkdqAJ OPmVWRpaCbW6SNSgTODPAwQlhxuYK2AXnGpFuEy7feaJPj3yXjfI7CZVnKxAXPFF lXGr+NhQ8ZX86zBnKdx8fouK1xdx3o5KsmsZIRBWcExhMLvObebGRZnR0Mt+FOEl 35By9UVAopJg8/LX6XOLDn/sotx8cjlXyq8WA0NPg3SkwmnpOHMoeyO3fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEXIhUHWgnstClfbbNgD/QqpBMyQMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASflJD7FT 0UfM2cKr9RdyzMhK3fdnQ2sfKxISlT0CcBC+ZBGYXPcdvG/gRc7LgmSptE8CBNYK sxRmm9fiVjUGo0t8YNotyTRaQuYfRiGNPvlHPQgO7cRkkrexPeqAhfqXAbqgiJ61 uYPmSGZPOWYYnzAZhJdc/1EHJDZ8hFJkyl/SdGhuyXOem1iDq3/2s25iU5c3LNeh Fa+1CBMJDPZvmyAAC94J/UulKWPXWAQ/ESMxu2HmCHOWfo1saVJPCDWHHp4Kflt5 kzpLhKWK3+5rzVL5u/Mk78Ec3jId9rrMSQO4VQDLDH/a+2Z9NgjfxXEBPjVR0x7P hlUkerzeofTrRQ== -----END CERTIFICATE-----Generated at Thu Jan 22 00:11:20 2026 by rpki-client