This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: 1A66abFh7CtRKrzXq5Jw4YJ2ay4x63dZmrPMQLtG8kI= Subject key identifier: 5E:93:85:BF:E8:F5:30:60:6D:46:22:37:33:C8:4E:F3:38:83:0E:D4 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BFA643EF2DFEB3947CFDC2F57F3A1C40F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17EF Signing time: Mon 26 Jan 2026 13:00:32 +0000 Manifest this update: Mon 26 Jan 2026 13:00:32 +0000 Manifest next update: Tue 27 Jan 2026 13:00:32 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: X67c2E5iBY/nuJoMr6+X3mrhP8Hu3suc3d94/eNM9sc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:64:3e:f2:df:eb:39:47:cf:dc:2f:57:f3:a1:c4:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 26 13:00:32 2026 GMT Not After : Jan 27 13:00:32 2026 GMT Subject: CN=5e9385bfe8f530606d46223733c84ef338830ed4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:b1:d9:82:bc:04:8d:6a:e9:09:66:fa:a7:6d: 0f:c2:34:94:af:22:ea:82:2d:38:b6:36:7a:fc:5f: 8c:f3:63:8a:ab:35:22:cd:9a:71:6d:7c:e8:f1:e4: 6a:9d:e3:ed:bb:16:57:d6:39:c2:06:40:dd:7e:ab: b2:b1:06:04:04:66:f0:68:66:a0:88:ed:e0:0c:ff: 9c:29:99:54:2b:47:49:29:50:e5:92:b1:51:23:ac: de:74:62:ef:ae:25:3b:89:2f:e1:ca:70:11:49:bf: c1:cb:5d:dd:35:93:5d:c4:6b:01:39:23:10:c8:67: 3c:25:ae:d7:ea:23:f3:e4:8c:c5:05:ac:cf:8d:b7: 92:03:5c:56:2d:e8:71:4c:99:ff:8b:1e:0c:c4:f2: f8:b2:a6:ef:3b:45:5d:51:85:34:14:b7:b4:ff:50: 89:b5:39:ca:35:df:2e:ad:b8:8d:c4:6e:e7:41:d5: 85:09:de:79:10:8f:ac:5d:48:26:96:78:e3:c1:e1: e8:e3:59:a8:4e:40:89:66:08:d3:9e:a7:c0:f1:8f: 39:f2:01:cf:a4:a7:ba:c6:01:7b:01:85:7a:7b:38: 69:a5:f7:f4:78:b4:51:08:95:0c:07:2c:d5:b3:4c: 7f:7c:39:39:bb:44:50:7c:12:69:e5:12:72:35:6b: 1d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:93:85:BF:E8:F5:30:60:6D:46:22:37:33:C8:4E:F3:38:83:0E:D4 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:ac:f1:8f:5c:a9:54:c3:e4:83:0d:04:d2:96:34:8d:d7:ed: 4b:90:d9:3b:6b:ed:0b:6a:8a:d9:c2:e2:6c:7b:12:dd:db:ed: d3:2a:35:65:47:3b:2c:ab:bf:af:eb:c8:37:99:44:95:b5:ee: f9:84:94:6a:08:e1:ab:1c:b3:1e:ab:17:38:76:30:79:15:5b: 7b:73:55:52:ad:5a:03:ea:c6:12:cb:9d:75:b6:4e:d9:13:5f: 08:f4:dc:87:f6:3d:19:95:54:8c:d9:3b:cc:f2:55:7a:55:a0: 07:54:76:b7:21:fa:57:c9:9c:03:2d:b1:85:db:52:1d:b8:69: 88:64:b0:ec:7a:51:37:cb:7e:41:18:78:a7:2e:2e:ff:87:e3: 75:cc:32:f6:9a:18:d6:ed:21:84:93:48:05:6a:c2:de:e5:7f: 63:72:e0:58:08:11:bd:3e:17:fd:cb:f9:c0:58:b3:79:30:38: a0:36:52:1b:0c:ef:4c:17:69:6f:94:b4:ab:ea:85:60:ae:7f: 35:12:93:21:49:ca:d8:fe:2b:f4:ad:eb:f1:f9:6e:48:a4:a2: 23:19:89:8e:00:8e:d1:bb:f8:36:17:68:e7:81:49:22:9c:69: f4:d4:f5:48:c3:1c:05:7d:b4:53:2a:4f:78:ce:14:84:5f:7a: c2:6a:e4:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv6ZD7y3+s5R8/cL1fzocQPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTI2MTMwMDMyWhcNMjYwMTI3MTMwMDMyWjAzMTEwLwYDVQQD Eyg1ZTkzODViZmU4ZjUzMDYwNmQ0NjIyMzczM2M4NGVmMzM4ODMwZWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLHZgrwEjWrpCWb6p20PwjSUryLq gi04tjZ6/F+M82OKqzUizZpxbXzo8eRqnePtuxZX1jnCBkDdfquysQYEBGbwaGag iO3gDP+cKZlUK0dJKVDlkrFRI6zedGLvriU7iS/hynARSb/By13dNZNdxGsBOSMQ yGc8Ja7X6iPz5IzFBazPjbeSA1xWLehxTJn/ix4MxPL4sqbvO0VdUYU0FLe0/1CJ tTnKNd8urbiNxG7nQdWFCd55EI+sXUgmlnjjweHo41moTkCJZgjTnqfA8Y858gHP pKe6xgF7AYV6ezhppff0eLRRCJUMByzVs0x/fDk5u0RQfBJp5RJyNWsdrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF6Thb/o9TBgbUYiNzPITvM4gw7UMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc6zxj1yp VMPkgw0E0pY0jdftS5DZO2vtC2qK2cLibHsS3dvt0yo1ZUc7LKu/r+vIN5lElbXu +YSUagjhqxyzHqsXOHYweRVbe3NVUq1aA+rGEsuddbZO2RNfCPTch/Y9GZVUjNk7 zPJVelWgB1R2tyH6V8mcAy2xhdtSHbhpiGSw7HpRN8t+QRh4py4u/4fjdcwy9poY 1u0hhJNIBWrC3uV/Y3LgWAgRvT4X/cv5wFizeTA4oDZSGwzvTBdpb5S0q+qFYK5/ NRKTIUnK2P4r9K3r8fluSKSiIxmJjgCO0bv4Nhdo54FJIpxp9NT1SMMcBX20UypP eM4UhF96wmrkhw== -----END CERTIFICATE-----Generated at Mon Jan 26 15:39:55 2026 by rpki-client