This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: h1CMpgD/2yrhYXIMhFOs43cebPyn06BIxpTtry7LbQg= Subject key identifier: 9E:6C:0D:39:17:D4:6B:F8:72:FA:6E:E8:38:D5:3C:C4:2E:46:57:1F Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B7ECBEB4647406666606FBA58FECFD1F4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17AF Signing time: Fri 02 Jan 2026 13:00:51 +0000 Manifest this update: Fri 02 Jan 2026 13:00:51 +0000 Manifest next update: Sat 03 Jan 2026 13:00:51 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 95KvsxNYWiBodMEYkfgowzDmIYqNJSt8n70O/cNxeCI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:cb:eb:46:47:40:66:66:60:6f:ba:58:fe:cf:d1:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 2 13:00:51 2026 GMT Not After : Jan 3 13:00:51 2026 GMT Subject: CN=9e6c0d3917d46bf872fa6ee838d53cc42e46571f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:94:b2:c9:fb:57:9e:65:9d:42:19:a0:53:e1: 25:31:3c:9d:9d:37:f0:4b:39:ac:76:63:55:7a:ec: 6c:e8:04:5b:e4:73:40:bf:32:98:4d:60:9d:4c:0f: 82:d2:2e:1e:a1:bc:27:fa:9c:a0:56:ea:ba:78:58: b7:fd:66:78:a4:1a:b9:1a:cd:75:ef:f2:6f:c2:a7: 8e:fe:85:d9:17:08:a7:67:36:76:5f:52:76:27:f3: 50:73:6d:1c:16:50:87:f8:5e:16:06:f3:7a:6f:e5: 6e:9e:48:a1:7e:55:5c:7f:30:2d:8d:bc:bc:09:11: e0:20:77:c7:36:39:c5:80:21:83:fb:78:f8:68:07: e5:2a:24:9f:54:c6:aa:80:76:b5:5b:be:ff:e3:71: ea:ec:a0:1a:3c:65:28:7c:c3:b5:f7:8a:e3:63:a4: 99:99:d2:7f:21:90:11:84:da:3c:6a:59:c4:31:99: f0:8b:7a:ba:fa:ea:c1:bd:29:6b:79:8d:14:72:92: 1b:4b:0b:95:81:83:68:2d:25:27:ab:10:7d:27:52: e4:4e:38:52:38:5b:c5:12:16:b5:fd:07:d1:4e:07: ca:37:fe:84:f5:2a:e5:58:86:a7:dd:3c:1d:43:fe: bc:62:f8:e7:8c:3e:4c:c7:cf:ff:e0:ff:14:c4:56: e8:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:6C:0D:39:17:D4:6B:F8:72:FA:6E:E8:38:D5:3C:C4:2E:46:57:1F X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:65:6c:42:28:c9:3b:ed:2e:c3:08:a1:5b:c4:2c:bc:df:7c: 99:77:a5:54:20:bb:2b:8d:23:40:a9:4c:00:26:43:bd:08:7d: c1:11:1e:1f:16:6d:c2:38:0d:e1:ac:2e:d1:e1:be:b8:56:2f: a9:58:82:01:2a:a0:e0:dd:c7:8e:44:68:30:a3:65:6b:49:57: 3b:02:51:4e:4e:2b:57:c8:88:52:e4:37:9e:c0:7e:11:a2:59: 13:79:d1:2c:7f:01:6a:57:9c:1d:32:2b:a4:ba:15:aa:17:02: ff:70:83:85:b9:82:a5:0c:1b:a9:f9:73:a4:89:1f:fb:c3:e4: f7:b8:e7:64:76:52:23:ad:ff:0e:30:1b:6a:e5:35:1a:6a:c3: 60:18:d9:3e:cd:8d:09:83:a6:81:ca:f2:e3:71:f1:e2:6a:62: 82:03:b0:bb:a0:9e:c4:45:b3:a7:d5:b6:45:df:29:21:17:22: 46:be:3f:61:51:19:7d:74:ac:14:8c:87:4f:e7:ce:d5:e6:a9: 69:3d:b0:bb:d8:e1:91:ee:80:03:17:4d:64:6c:28:a7:b2:fe: 24:e4:e6:12:13:04:6d:77:6b:4b:4a:f3:b8:0e:84:c2:3c:82: 0f:7d:d5:94:e1:b4:b0:9e:cc:bb:e2:3c:2f:ff:7d:38:16:b8: a2:d3:fe:ac -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt+y+tGR0BmZmBvulj+z9H0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTAyMTMwMDUxWhcNMjYwMTAzMTMwMDUxWjAzMTEwLwYDVQQD Eyg5ZTZjMGQzOTE3ZDQ2YmY4NzJmYTZlZTgzOGQ1M2NjNDJlNDY1NzFmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj5SyyftXnmWdQhmgU+ElMTydnTfw SzmsdmNVeuxs6ARb5HNAvzKYTWCdTA+C0i4eobwn+pygVuq6eFi3/WZ4pBq5Gs11 7/JvwqeO/oXZFwinZzZ2X1J2J/NQc20cFlCH+F4WBvN6b+VunkihflVcfzAtjby8 CRHgIHfHNjnFgCGD+3j4aAflKiSfVMaqgHa1W77/43Hq7KAaPGUofMO194rjY6SZ mdJ/IZARhNo8alnEMZnwi3q6+urBvSlreY0UcpIbSwuVgYNoLSUnqxB9J1LkTjhS OFvFEha1/QfRTgfKN/6E9SrlWIan3TwdQ/68YvjnjD5Mx8//4P8UxFboLwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ5sDTkX1Gv4cvpu6DjVPMQuRlcfMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYWVsQijJ O+0uwwihW8QsvN98mXelVCC7K40jQKlMACZDvQh9wREeHxZtwjgN4awu0eG+uFYv qViCASqg4N3HjkRoMKNla0lXOwJRTk4rV8iIUuQ3nsB+EaJZE3nRLH8BalecHTIr pLoVqhcC/3CDhbmCpQwbqflzpIkf+8Pk97jnZHZSI63/DjAbauU1GmrDYBjZPs2N CYOmgcry43Hx4mpiggOwu6CexEWzp9W2Rd8pIRciRr4/YVEZfXSsFIyHT+fO1eap aT2wu9jhke6AAxdNZGwop7L+JOTmEhMEbXdrS0rzuA6EwjyCD33VlOG0sJ7Mu+I8 L/99OBa4otP+rA== -----END CERTIFICATE-----Generated at Fri Jan 2 22:00:39 2026 by rpki-client