This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: 0Khn5olsRsLsUEsMRcTo9LQXYTgm3gP6SLszobb/aP8= Subject key identifier: 61:D5:4B:1F:E1:38:AB:ED:47:B2:87:98:85:65:2B:F2:E7:D1:20:39 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BBC98339A32A0FA244339F34C8F2C73E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17CF Signing time: Wed 14 Jan 2026 13:00:49 +0000 Manifest this update: Wed 14 Jan 2026 13:00:49 +0000 Manifest next update: Thu 15 Jan 2026 13:00:49 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: uQoK5/JYP9jq25nfEdehjYcMO8DwTvSkvZi5f1btZq0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 15 Jan 2026 13:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:bc:98:33:9a:32:a0:fa:24:43:39:f3:4c:8f:2c:73:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 14 13:00:49 2026 GMT Not After : Jan 15 13:00:49 2026 GMT Subject: CN=61d54b1fe138abed47b2879885652bf2e7d12039 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:9c:7a:71:32:f3:88:00:80:51:84:fd:66:f8: e3:8d:85:a6:ca:1f:b1:27:88:c3:c0:88:37:a5:e0: 87:21:a6:b0:14:52:19:b1:ac:7c:79:a2:a9:e5:5b: 4b:f7:1b:b6:b3:eb:2c:1f:08:42:2f:f2:f3:9c:56: 3a:f5:c1:81:11:aa:05:cf:42:bb:88:b1:c1:ae:21: 52:f1:1c:ed:5d:f7:44:ef:37:b7:d2:32:a2:77:f6: b7:c7:6f:08:d2:d0:c5:80:c0:c5:a7:91:03:2d:9d: 83:81:6d:53:1f:68:e6:03:4f:d3:75:ee:88:7d:af: 23:02:95:76:fd:b8:81:47:af:ea:66:21:b4:0f:bd: 0b:42:d1:2f:ab:6d:cb:63:f6:8e:3e:7b:18:5f:91: 69:c9:95:f5:2f:df:00:60:4b:58:2c:69:3b:da:84: a8:2d:4c:55:4b:58:e4:8d:1a:dd:f8:eb:74:1b:e8: 22:e2:83:5e:25:e2:d1:5d:46:22:83:5d:26:f9:bd: 39:93:12:cc:2c:71:ad:29:66:75:85:40:c5:44:6e: 69:5b:26:3c:8a:c4:c8:36:a1:8b:ac:93:0e:e3:68: 9b:5f:73:cf:20:5b:3b:74:7c:7d:9c:bf:bb:9a:cf: 53:1b:61:a2:ad:f0:7d:33:96:59:d9:0f:b0:68:72: 55:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D5:4B:1F:E1:38:AB:ED:47:B2:87:98:85:65:2B:F2:E7:D1:20:39 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 54:10:26:59:17:4b:1a:31:a9:0e:78:c2:21:1e:86:cb:4f:fd: ee:01:8d:5f:68:d0:4e:18:a2:b0:00:bf:de:3e:95:85:6f:d9: 4b:e9:0f:41:e7:85:e0:69:16:c6:ed:06:d3:75:a1:94:02:6c: 81:ef:99:10:2e:a6:b5:fd:c2:8e:10:fe:83:a7:5d:61:eb:81: 12:42:c4:c9:7b:e0:33:a1:da:37:5c:f5:6e:b8:4e:28:ec:58: e0:8f:c1:a6:02:fb:bb:cb:8f:fc:ac:a6:43:eb:d1:db:5d:af: 28:bb:80:75:6f:fe:a4:a2:ce:e0:61:93:7c:e4:e0:5e:1c:e7: 53:27:02:ad:db:90:dd:24:95:30:83:97:c5:e2:ce:b9:32:2b: 5b:d2:ab:22:4e:58:3f:dc:fd:aa:6c:17:11:30:a5:3b:4f:75: 6c:89:95:7a:60:a0:e1:10:58:0e:59:8a:22:b8:f6:10:b3:19: 49:2f:b7:9b:55:68:14:c0:c8:3c:2e:a1:ee:d9:14:46:9f:57: 2c:b5:76:1f:a3:72:7b:93:25:d3:50:06:99:0b:84:32:cd:3f: 8e:59:93:a7:ad:7a:1f:3c:c5:27:0f:4e:47:25:cc:2f:3c:1f: 91:1e:7f:d1:8b:84:c0:0c:07:d3:43:81:39:f6:79:29:d0:95: 11:51:c8:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZu8mDOaMqD6JEM580yPLHPoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTE0MTMwMDQ5WhcNMjYwMTE1MTMwMDQ5WjAzMTEwLwYDVQQD Eyg2MWQ1NGIxZmUxMzhhYmVkNDdiMjg3OTg4NTY1MmJmMmU3ZDEyMDM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Jx6cTLziACAUYT9ZvjjjYWmyh+x J4jDwIg3peCHIaawFFIZsax8eaKp5VtL9xu2s+ssHwhCL/LznFY69cGBEaoFz0K7 iLHBriFS8RztXfdE7ze30jKid/a3x28I0tDFgMDFp5EDLZ2DgW1TH2jmA0/Tde6I fa8jApV2/biBR6/qZiG0D70LQtEvq23LY/aOPnsYX5FpyZX1L98AYEtYLGk72oSo LUxVS1jkjRrd+Ot0G+gi4oNeJeLRXUYig10m+b05kxLMLHGtKWZ1hUDFRG5pWyY8 isTINqGLrJMO42ibX3PPIFs7dHx9nL+7ms9TG2GirfB9M5ZZ2Q+waHJVtwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGHVSx/hOKvtR7KHmIVlK/Ln0SA5MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVBAmWRdL GjGpDnjCIR6Gy0/97gGNX2jQThiisAC/3j6VhW/ZS+kPQeeF4GkWxu0G03WhlAJs ge+ZEC6mtf3CjhD+g6ddYeuBEkLEyXvgM6HaN1z1brhOKOxY4I/BpgL7u8uP/Kym Q+vR212vKLuAdW/+pKLO4GGTfOTgXhznUycCrduQ3SSVMIOXxeLOuTIrW9KrIk5Y P9z9qmwXETClO091bImVemCg4RBYDlmKIrj2ELMZSS+3m1VoFMDIPC6h7tkURp9X LLV2H6Nye5Ml01AGmQuEMs0/jlmTp616HzzFJw9ORyXMLzwfkR5/0YuEwAwH00OB OfZ5KdCVEVHIWw== -----END CERTIFICATE-----Generated at Wed Jan 14 16:21:40 2026 by rpki-client