This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: CMsK/678pzwoks1SzfOMrARmz4NsofnTiyOo1Y66qtQ= Subject key identifier: A5:60:1A:73:B7:A0:D8:E0:3A:D2:09:59:3F:EE:49:B3:15:9B:95:00 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BC451F6050AC53A897C082C75B0941A6A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17D3 Signing time: Fri 16 Jan 2026 01:01:04 +0000 Manifest this update: Fri 16 Jan 2026 01:01:04 +0000 Manifest next update: Sat 17 Jan 2026 01:01:04 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: r61rFIvoV6E5Bsp4IcjJfE40SjZywO9Dci0ZDI/qUZw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 17 Jan 2026 01:01:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:c4:51:f6:05:0a:c5:3a:89:7c:08:2c:75:b0:94:1a:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 16 01:01:04 2026 GMT Not After : Jan 17 01:01:04 2026 GMT Subject: CN=a5601a73b7a0d8e03ad209593fee49b3159b9500 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:56:5a:5e:b9:2e:14:83:7f:94:82:48:b6:ba: f4:d5:c1:62:fc:a7:f3:70:cc:68:ea:f7:dc:1d:3b: af:59:51:ac:b1:c3:36:9c:4c:41:29:95:86:3c:c5: d0:af:b1:2e:bc:c2:cb:71:e7:9f:96:eb:05:81:02: 3d:74:0c:e8:15:68:6f:46:da:c8:7f:82:a2:27:e9: 2b:23:3a:94:d8:5d:da:cb:6d:17:fe:71:d7:53:47: d3:80:39:5c:3e:f4:6d:c9:61:15:34:f7:bf:6e:12: b6:b5:5a:a4:5e:b5:33:6e:9e:f9:ed:ac:2f:00:bc: aa:18:ef:6e:ef:7b:49:22:85:8c:02:47:40:87:e1: cd:ab:1a:c0:9b:6e:68:a3:53:47:57:7d:14:ad:62: 78:69:d3:84:b4:b6:91:c2:e6:a8:72:5a:e1:ad:67: 8d:a7:2c:96:28:57:46:3e:73:c2:0c:a3:af:a0:33: aa:10:e0:08:71:76:69:0c:b7:be:39:dd:42:d5:c7: 28:00:cd:41:b1:5f:8a:52:35:ff:5d:d8:c0:ea:87: a0:22:e9:ae:07:3d:20:39:07:5e:7b:7b:b2:42:6e: 97:af:68:22:67:94:9f:96:6f:82:a1:0c:e1:2c:da: 82:e2:94:81:1b:46:43:d9:73:68:60:9b:a9:7f:a1: 37:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:60:1A:73:B7:A0:D8:E0:3A:D2:09:59:3F:EE:49:B3:15:9B:95:00 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:67:ae:ea:8a:b3:ba:11:02:84:6d:95:18:f7:0f:34:da:e6: 3c:a9:a5:e9:d8:ba:57:3a:e9:af:bc:05:8a:ca:2c:fb:1e:b6: 46:86:35:bc:c7:3d:57:eb:29:87:9b:e8:6f:77:4e:b4:bc:ff: a0:5e:9c:2b:0a:61:a8:31:5c:f6:31:d3:ea:99:b9:25:ae:29: 80:39:64:57:c5:b8:ef:4a:1a:30:c6:f2:96:17:2d:cf:8e:26: bf:f5:3f:0d:49:a2:80:be:33:60:e0:5f:a8:2d:ac:07:1a:7d: 91:aa:e9:96:d4:65:dc:67:84:a0:70:f9:be:4b:35:27:6c:db: 46:8e:c4:be:4b:a3:c6:10:4c:73:1b:f9:2e:83:41:6e:88:b3: e4:13:d2:73:e3:3c:d6:4f:4b:2b:fe:60:87:b1:e9:ef:f8:a3: f2:75:d4:c6:74:35:c0:eb:36:10:a6:39:7b:83:84:40:92:21: dc:c5:2d:e6:37:1d:8d:4f:22:22:ac:77:62:85:10:6c:f8:1b: 12:c6:57:f4:65:d8:be:b4:d6:12:df:e6:cc:67:3e:0a:ab:7d: 5a:1d:8a:18:52:f4:15:a5:ed:e7:f8:28:0c:e2:a0:ba:c6:3b: c6:c2:ef:43:9d:b0:77:1b:a8:a8:fc:73:0d:e6:c5:42:36:cd: 4f:4e:00:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvEUfYFCsU6iXwILHWwlBpqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTE2MDEwMTA0WhcNMjYwMTE3MDEwMTA0WjAzMTEwLwYDVQQD EyhhNTYwMWE3M2I3YTBkOGUwM2FkMjA5NTkzZmVlNDliMzE1OWI5NTAwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAylZaXrkuFIN/lIJItrr01cFi/Kfz cMxo6vfcHTuvWVGsscM2nExBKZWGPMXQr7EuvMLLceeflusFgQI9dAzoFWhvRtrI f4KiJ+krIzqU2F3ay20X/nHXU0fTgDlcPvRtyWEVNPe/bhK2tVqkXrUzbp757awv ALyqGO9u73tJIoWMAkdAh+HNqxrAm25oo1NHV30UrWJ4adOEtLaRwuaoclrhrWeN pyyWKFdGPnPCDKOvoDOqEOAIcXZpDLe+Od1C1ccoAM1BsV+KUjX/XdjA6oegIumu Bz0gOQdee3uyQm6Xr2giZ5Sflm+CoQzhLNqC4pSBG0ZD2XNoYJupf6E3CQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKVgGnO3oNjgOtIJWT/uSbMVm5UAMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR2eu6oqz uhEChG2VGPcPNNrmPKml6di6Vzrpr7wFisos+x62RoY1vMc9V+sph5vob3dOtLz/ oF6cKwphqDFc9jHT6pm5Ja4pgDlkV8W470oaMMbylhctz44mv/U/DUmigL4zYOBf qC2sBxp9karpltRl3GeEoHD5vks1J2zbRo7EvkujxhBMcxv5LoNBboiz5BPSc+M8 1k9LK/5gh7Hp7/ij8nXUxnQ1wOs2EKY5e4OEQJIh3MUt5jcdjU8iIqx3YoUQbPgb EsZX9GXYvrTWEt/mzGc+Cqt9Wh2KGFL0FaXt5/goDOKgusY7xsLvQ52wdxuoqPxz DebFQjbNT04A7A== -----END CERTIFICATE-----Generated at Fri Jan 16 12:15:55 2026 by rpki-client