This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: p8fSFwrHsZD6XliZGf2JbckvmpCGJN6UU19QgnFcNFg= Subject key identifier: 71:DA:8E:93:02:F3:1C:B6:4F:0B:FB:B2:67:FB:31:53:2C:BA:10:FD Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BA56BCD9A3E1F6913775D0A5C4BF0FF86 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17C3 Signing time: Sat 10 Jan 2026 01:01:04 +0000 Manifest this update: Sat 10 Jan 2026 01:01:04 +0000 Manifest next update: Sun 11 Jan 2026 01:01:04 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: av4mwzM9AdipsJsLPZEcQ6e6loNn582ORd7B+oYfJAU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 23:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a5:6b:cd:9a:3e:1f:69:13:77:5d:0a:5c:4b:f0:ff:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 10 01:01:04 2026 GMT Not After : Jan 11 01:01:04 2026 GMT Subject: CN=71da8e9302f31cb64f0bfbb267fb31532cba10fd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:39:db:61:8c:fa:57:67:8a:27:a4:8f:06:bd: 66:f6:a8:a4:21:9b:3b:32:6a:14:7c:c4:5d:f4:a3: 22:76:7e:fa:2c:e6:26:ff:c3:cd:96:03:df:6f:3e: bc:5b:8c:2a:da:36:74:8e:54:bc:9b:c6:18:2b:87: 93:02:8a:63:4f:52:42:da:5d:3f:b7:2c:63:ba:05: 6b:d5:0d:13:eb:07:55:c9:7a:9b:e4:c0:e0:dc:96: 4a:9a:08:5f:35:ef:67:d8:f8:4e:7f:1d:00:87:dd: e8:ef:b7:88:dc:b3:57:d2:8c:2a:f8:b2:71:40:d1: 1f:2c:0f:35:0a:5e:9f:2a:36:1a:89:54:9c:a2:a1: 96:70:1f:08:4b:f1:8b:9d:d7:57:00:b7:65:c6:bf: 70:31:cb:04:90:01:6b:59:4f:d9:5c:4a:05:fc:6c: 1f:f8:f1:59:fb:e0:04:d4:70:11:92:bb:48:fb:d7: 2c:47:33:6a:55:2b:dd:b4:8b:c6:40:80:e2:70:48: 87:c3:4a:81:e6:91:64:de:77:84:c8:f7:f7:28:6c: f0:b3:68:fb:14:16:87:66:ef:34:af:e4:4e:bb:e6: 3b:6f:d1:2e:27:fe:f1:a5:38:d8:7e:51:0a:91:a9: ea:0f:ef:d0:7d:6d:84:3c:32:66:8a:e3:c2:cc:41: bb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:DA:8E:93:02:F3:1C:B6:4F:0B:FB:B2:67:FB:31:53:2C:BA:10:FD X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:20:03:95:15:35:78:22:80:4c:b7:ed:66:b1:87:93:dd:80: e9:5e:30:2a:a3:76:87:42:5a:14:9d:c2:31:bf:83:bb:85:54: 84:c8:5a:6d:3e:70:cb:20:71:41:56:98:e4:0a:54:3f:8d:29: e8:34:97:eb:f2:f6:ab:6d:cb:2e:64:4a:90:e8:d9:85:ca:e1: 13:a3:64:49:df:72:7c:fc:81:62:c0:6e:0d:d8:3d:6e:b6:d2: d4:78:09:25:be:cf:0b:6e:9d:18:07:7d:dc:09:ca:d8:05:8d: 42:32:91:7d:39:5b:22:2b:28:4f:4d:64:4c:13:e7:95:66:61: 9d:4f:4e:aa:f7:8f:c0:36:14:01:40:4a:30:f7:fd:fb:ed:38: b7:cd:45:97:1d:43:d4:b7:26:a2:e6:41:26:cf:79:59:2f:3f: 2f:ed:3b:87:97:55:bd:d4:ff:de:32:d6:cf:0b:6a:7c:ee:54: aa:a0:10:3f:f2:68:8d:8c:ac:ae:8d:11:e7:59:6e:3c:01:41: c0:64:49:09:3f:ad:8e:64:d5:03:76:76:06:d6:99:39:25:c6: 48:7c:0b:89:2a:46:44:18:5e:1b:df:50:d8:58:2d:71:11:6e: a6:ab:ce:02:5d:fb:fc:06:11:76:c0:65:b7:86:87:fc:b2:6d: a3:d7:c7:aa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZula82aPh9pE3ddClxL8P+GMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTEwMDEwMTA0WhcNMjYwMTExMDEwMTA0WjAzMTEwLwYDVQQD Eyg3MWRhOGU5MzAyZjMxY2I2NGYwYmZiYjI2N2ZiMzE1MzJjYmExMGZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6jnbYYz6V2eKJ6SPBr1m9qikIZs7 MmoUfMRd9KMidn76LOYm/8PNlgPfbz68W4wq2jZ0jlS8m8YYK4eTAopjT1JC2l0/ tyxjugVr1Q0T6wdVyXqb5MDg3JZKmghfNe9n2PhOfx0Ah93o77eI3LNX0owq+LJx QNEfLA81Cl6fKjYaiVScoqGWcB8IS/GLnddXALdlxr9wMcsEkAFrWU/ZXEoF/Gwf +PFZ++AE1HARkrtI+9csRzNqVSvdtIvGQIDicEiHw0qB5pFk3neEyPf3KGzws2j7 FBaHZu80r+ROu+Y7b9EuJ/7xpTjYflEKkanqD+/QfW2EPDJmiuPCzEG7JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHHajpMC8xy2Twv7smf7MVMsuhD9MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhyADlRU1 eCKATLftZrGHk92A6V4wKqN2h0JaFJ3CMb+Du4VUhMhabT5wyyBxQVaY5ApUP40p 6DSX6/L2q23LLmRKkOjZhcrhE6NkSd9yfPyBYsBuDdg9brbS1HgJJb7PC26dGAd9 3AnK2AWNQjKRfTlbIisoT01kTBPnlWZhnU9OqvePwDYUAUBKMPf9++04t81Flx1D 1LcmouZBJs95WS8/L+07h5dVvdT/3jLWzwtqfO5UqqAQP/JojYysro0R51luPAFB wGRJCT+tjmTVA3Z2BtaZOSXGSHwLiSpGRBheG99Q2FgtcRFupqvOAl37/AYRdsBl t4aH/LJto9fHqg== -----END CERTIFICATE-----Generated at Sat Jan 10 08:56:24 2026 by rpki-client