This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: +vjg8ITZ31YzHWUYYs9owZY3xo5FDf7q+CXrDK28cZM= Subject key identifier: 18:4D:FF:2E:BD:46:A6:00:BF:0D:EA:0C:F8:1F:F7:04:18:A7:A9:CC Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BAD25310161E1B3C877F78374DACED18D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17C7 Signing time: Sun 11 Jan 2026 13:00:54 +0000 Manifest this update: Sun 11 Jan 2026 13:00:54 +0000 Manifest next update: Mon 12 Jan 2026 13:00:54 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: MKw8qIuyq45ZuihMIasIdfND1cUHIHbgF3Xt0Cp+5Qs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ad:25:31:01:61:e1:b3:c8:77:f7:83:74:da:ce:d1:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 11 13:00:54 2026 GMT Not After : Jan 12 13:00:54 2026 GMT Subject: CN=184dff2ebd46a600bf0dea0cf81ff70418a7a9cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:09:5e:25:24:7c:ed:64:57:cd:49:8d:e4:89: fc:fa:0a:53:7f:e3:f6:07:ce:10:6b:4e:09:1b:31: 3d:18:bf:65:fa:71:3e:73:15:2e:24:40:30:da:6a: 01:df:7a:69:5c:c5:80:88:d3:54:22:ce:05:55:42: 68:19:30:91:00:66:64:eb:cf:21:dd:fe:a6:d4:15: d2:39:7b:57:66:99:64:78:28:e5:8a:fc:5f:28:64: b7:89:40:d8:db:75:d1:0d:c3:7e:50:12:38:26:e8: da:8b:18:dc:6b:b0:68:54:a5:ad:3f:ff:9b:4a:f5: 72:0b:5b:2c:44:51:7b:a5:6d:27:46:4d:d5:f9:64: d9:61:90:f1:10:c2:7c:18:a8:a6:b6:ce:4b:7d:e6: fd:5f:43:c0:89:36:91:e5:c9:b9:d8:92:67:75:3a: 50:b9:6f:d3:c2:8a:07:91:61:b5:6d:90:e6:d7:66: c0:eb:88:05:75:d3:7a:88:2f:e8:3b:cb:34:72:d6: f4:04:9c:f0:89:5f:94:dd:13:2d:35:b8:c3:e6:ef: 9e:c8:19:0c:c1:37:61:11:f5:63:cc:a6:de:bd:09: cd:33:e9:df:00:ac:06:cf:71:4a:34:0a:d9:e5:0d: 1d:f1:75:2f:bc:32:49:b9:11:fb:5b:36:93:93:fd: e8:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4D:FF:2E:BD:46:A6:00:BF:0D:EA:0C:F8:1F:F7:04:18:A7:A9:CC X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:f3:a6:fc:3f:4e:e1:1e:f7:4a:76:98:4e:13:9a:bb:ab:18: e6:38:2c:3c:ff:a2:50:88:ec:3f:a2:0e:b8:4a:94:db:41:53: df:76:13:d3:d8:ff:6e:04:72:05:6f:66:7d:90:bc:13:47:65: ef:6c:40:d5:93:a7:6d:40:b0:bd:05:fd:1f:be:93:51:db:a5: 15:3d:14:c6:0c:42:b3:c2:05:cb:3a:ff:d9:35:a6:e4:30:0e: 77:e0:1a:14:bf:4a:ca:1e:e9:f1:1d:83:c1:fb:ac:82:0b:96: d2:02:41:85:f9:c6:fe:7f:8a:6d:fd:35:48:ef:79:dd:de:e6: b4:68:77:45:7b:13:87:e1:32:57:b1:b5:5f:cf:04:d0:b8:9a: da:b8:9a:36:d7:c9:9c:16:19:b1:61:9a:10:62:3f:7b:8b:52: b9:0d:d2:6c:74:af:0d:d2:91:16:02:13:2f:0b:04:85:61:a7: f6:97:05:52:ac:38:7d:ca:ee:0e:41:d1:db:67:ed:b2:0d:34: d8:c5:82:96:1f:9e:49:f5:55:18:73:39:2b:82:a8:3a:97:f7: c9:ff:9c:80:71:de:34:7f:7b:95:ef:35:7b:90:46:47:03:b8: fe:66:75:d8:bb:e2:34:81:30:bd:8d:41:75:db:27:51:f4:bc: a8:5c:f3:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZutJTEBYeGzyHf3g3TaztGNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTExMTMwMDU0WhcNMjYwMTEyMTMwMDU0WjAzMTEwLwYDVQQD EygxODRkZmYyZWJkNDZhNjAwYmYwZGVhMGNmODFmZjcwNDE4YTdhOWNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkwleJSR87WRXzUmN5In8+gpTf+P2 B84Qa04JGzE9GL9l+nE+cxUuJEAw2moB33ppXMWAiNNUIs4FVUJoGTCRAGZk688h 3f6m1BXSOXtXZplkeCjlivxfKGS3iUDY23XRDcN+UBI4Jujaixjca7BoVKWtP/+b SvVyC1ssRFF7pW0nRk3V+WTZYZDxEMJ8GKimts5Lfeb9X0PAiTaR5cm52JJndTpQ uW/TwooHkWG1bZDm12bA64gFddN6iC/oO8s0ctb0BJzwiV+U3RMtNbjD5u+eyBkM wTdhEfVjzKbevQnNM+nfAKwGz3FKNArZ5Q0d8XUvvDJJuRH7WzaTk/3oswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhN/y69RqYAvw3qDPgf9wQYp6nMMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX/Om/D9O 4R73SnaYThOau6sY5jgsPP+iUIjsP6IOuEqU20FT33YT09j/bgRyBW9mfZC8E0dl 72xA1ZOnbUCwvQX9H76TUdulFT0UxgxCs8IFyzr/2TWm5DAOd+AaFL9Kyh7p8R2D wfusgguW0gJBhfnG/n+Kbf01SO953d7mtGh3RXsTh+EyV7G1X88E0Lia2riaNtfJ nBYZsWGaEGI/e4tSuQ3SbHSvDdKRFgITLwsEhWGn9pcFUqw4fcruDkHR22ftsg00 2MWClh+eSfVVGHM5K4KoOpf3yf+cgHHeNH97le81e5BGRwO4/mZ12LviNIEwvY1B ddsnUfS8qFzzGA== -----END CERTIFICATE-----Generated at Sun Jan 11 15:29:47 2026 by rpki-client