This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: Z7BKL6ehNSh0a9QGEjTEnR+GKPP/cGxPAwDCwN8opRc= Subject key identifier: 54:A4:AA:17:AE:D3:07:27:6E:27:A9:D1:97:9B:E5:19:14:81:58:85 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BFE41214C145891C03F3CF60BE1D379A9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17F1 Signing time: Tue 27 Jan 2026 07:00:39 +0000 Manifest this update: Tue 27 Jan 2026 07:00:39 +0000 Manifest next update: Wed 28 Jan 2026 07:00:39 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: Miu/YWmpgTuQvDDDNPw8jnfYnyMgbsvlFJp+/JXh+F4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 07:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:41:21:4c:14:58:91:c0:3f:3c:f6:0b:e1:d3:79:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 27 07:00:39 2026 GMT Not After : Jan 28 07:00:39 2026 GMT Subject: CN=54a4aa17aed307276e27a9d1979be51914815885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:da:d7:42:68:35:ae:ba:54:c8:eb:1f:4e:a3: e6:8b:13:c6:b4:48:96:9c:7d:4c:5e:28:50:c3:00: 95:d2:01:b9:d3:26:95:22:5d:ad:f2:b7:49:34:07: d3:79:10:fe:ed:66:89:11:1d:94:cf:4b:5b:e9:6e: 27:2b:51:7d:6b:8a:89:af:51:9a:62:73:d3:cc:e6: bd:43:86:99:f4:dd:70:e6:5e:96:9e:a2:09:23:9d: 69:c8:6a:51:b7:60:69:c9:37:5c:81:a3:3d:33:6c: 53:20:87:8d:9f:2f:78:51:1f:81:c6:f1:ac:92:0d: c7:04:ff:18:8a:a0:ca:bb:2b:f2:60:24:42:c9:10: 76:87:5f:4c:3b:54:cc:c0:77:91:0f:cf:2c:c7:ad: b0:77:e2:65:f8:b2:2c:12:d3:02:5d:c6:57:3f:f2: d9:0e:ad:73:48:a8:1a:3d:24:54:5b:3d:52:6a:9a: b8:2b:e6:56:7d:17:0a:fa:ba:41:a2:20:41:9d:ec: 6c:2d:e3:65:8f:d6:fb:8e:3a:f9:02:b1:a2:5d:b7: 5b:9c:81:d5:66:1b:5a:bf:68:ce:72:69:21:99:a5: a6:69:88:ce:3f:b7:7b:9e:18:be:10:67:dc:e2:e2: b2:05:39:08:f2:a4:bb:e3:39:b9:22:a8:07:3b:18: b1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:A4:AA:17:AE:D3:07:27:6E:27:A9:D1:97:9B:E5:19:14:81:58:85 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:2d:4f:ca:b6:ad:2c:33:3f:8b:9a:80:82:9e:e3:8a:64:78: b4:99:80:32:71:84:b5:c8:dc:a2:60:d4:63:b9:2c:c2:7d:c8: 0f:ac:f6:4f:bf:a1:6b:6a:75:74:13:63:17:03:e0:0e:ca:d5: 77:3f:ef:db:68:d9:58:67:f4:26:62:83:96:0c:29:77:24:2a: c4:f3:cb:74:ea:64:f8:1e:8a:0d:87:06:b5:87:39:31:73:dc: 7a:1d:0b:47:08:ad:ce:f8:27:58:bb:d0:bc:27:00:41:26:27: 6b:71:1e:78:1c:d6:31:9e:fa:74:17:70:f2:fd:73:95:bd:dd: 4d:9a:3d:3a:42:cd:c6:92:5c:1c:8c:2b:e7:d0:74:58:e0:12: e6:ba:b0:14:af:7f:23:f2:c7:7f:88:ca:e3:14:e7:df:bd:9e: 38:03:31:bc:55:8c:c5:16:98:12:b5:7a:d5:98:aa:bf:46:03: 2c:1b:83:bb:8c:f7:04:7d:fb:22:cc:d3:9f:be:11:ed:a1:06: 20:f5:d2:6c:a9:01:86:fa:cf:3a:09:b7:c9:93:4b:db:02:9f: c8:3d:c9:8d:b0:63:94:56:e6:dc:2c:51:f8:93:65:50:3e:6e: fe:a5:ad:e8:70:28:5b:46:45:54:18:97:65:b9:0d:b6:5b:ad: b9:2f:31:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+QSFMFFiRwD889gvh03mpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTI3MDcwMDM5WhcNMjYwMTI4MDcwMDM5WjAzMTEwLwYDVQQD Eyg1NGE0YWExN2FlZDMwNzI3NmUyN2E5ZDE5NzliZTUxOTE0ODE1ODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8NrXQmg1rrpUyOsfTqPmixPGtEiW nH1MXihQwwCV0gG50yaVIl2t8rdJNAfTeRD+7WaJER2Uz0tb6W4nK1F9a4qJr1Ga YnPTzOa9Q4aZ9N1w5l6WnqIJI51pyGpRt2BpyTdcgaM9M2xTIIeNny94UR+BxvGs kg3HBP8YiqDKuyvyYCRCyRB2h19MO1TMwHeRD88sx62wd+Jl+LIsEtMCXcZXP/LZ Dq1zSKgaPSRUWz1Sapq4K+ZWfRcK+rpBoiBBnexsLeNlj9b7jjr5ArGiXbdbnIHV Zhtav2jOcmkhmaWmaYjOP7d7nhi+EGfc4uKyBTkI8qS74zm5IqgHOxixfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFSkqheu0wcnbiep0Zeb5RkUgViFMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGS1Pyrat LDM/i5qAgp7jimR4tJmAMnGEtcjcomDUY7kswn3ID6z2T7+ha2p1dBNjFwPgDsrV dz/v22jZWGf0JmKDlgwpdyQqxPPLdOpk+B6KDYcGtYc5MXPceh0LRwitzvgnWLvQ vCcAQSYna3EeeBzWMZ76dBdw8v1zlb3dTZo9OkLNxpJcHIwr59B0WOAS5rqwFK9/ I/LHf4jK4xTn372eOAMxvFWMxRaYErV61Ziqv0YDLBuDu4z3BH37IszTn74R7aEG IPXSbKkBhvrPOgm3yZNL2wKfyD3JjbBjlFbm3CxR+JNlUD5u/qWt6HAoW0ZFVBiX ZbkNtlutuS8xyw== -----END CERTIFICATE-----Generated at Tue Jan 27 15:50:10 2026 by rpki-client