This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: 5St7wZPMfFDBaQk0t8czquIJ098JBhxPy8UgAD4qAMg= Subject key identifier: 2D:31:DA:28:1C:04:7E:34:5F:05:28:A4:5F:75:9B:4E:3B:98:AD:BC Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BCA1CC45464C83B4A76BDD88C0577830E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17D6 Signing time: Sat 17 Jan 2026 04:00:41 +0000 Manifest this update: Sat 17 Jan 2026 04:00:41 +0000 Manifest next update: Sun 18 Jan 2026 04:00:41 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 7I+b3PaxJntn3WjfYGMfyRHvFjzJbyWnnfA3RdfD3Tw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 18 Jan 2026 03:00:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ca:1c:c4:54:64:c8:3b:4a:76:bd:d8:8c:05:77:83:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 17 04:00:41 2026 GMT Not After : Jan 18 04:00:41 2026 GMT Subject: CN=2d31da281c047e345f0528a45f759b4e3b98adbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2b:59:58:65:42:ec:02:4a:67:4f:18:90:48: f6:62:28:a7:76:aa:42:23:19:9b:53:c1:f3:a9:c2: 7a:c4:52:13:1f:bc:f4:91:ed:ff:8b:71:60:d5:dc: 70:d3:c7:3f:9e:79:bf:7c:7b:9b:8f:78:f9:15:75: e0:a8:fd:ae:aa:75:aa:a0:e3:10:70:b5:6b:0f:ad: f5:b6:4d:cd:8c:a9:9b:88:fd:ea:00:d1:ad:a9:92: 08:24:cf:99:d3:e2:d1:a8:09:32:92:a1:fc:b0:1f: 31:9f:08:b6:ca:73:84:f4:e3:60:d7:05:9b:26:ff: 51:75:c5:90:bb:4e:9c:a4:9c:91:62:c1:87:2a:7e: 79:24:a0:de:33:75:b6:28:e6:41:4f:4d:a3:2c:ff: 42:fc:ce:de:d4:8f:fc:0a:28:a7:82:8d:51:71:d9: 90:ec:15:45:84:75:17:89:92:15:f6:8c:2b:1d:31: a5:3d:52:1e:b8:c1:15:10:21:cf:d6:9c:89:8c:bf: 84:c9:f9:29:25:30:73:ea:c4:05:26:61:37:89:b9: 5a:34:4d:28:ca:1a:21:5f:d5:8f:1a:c3:27:d1:ca: 65:b2:32:63:a5:90:6c:44:4e:0d:65:b7:5a:66:1f: 15:3e:17:0d:fa:75:0d:1d:d2:05:1f:e5:a3:64:71: 34:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:31:DA:28:1C:04:7E:34:5F:05:28:A4:5F:75:9B:4E:3B:98:AD:BC X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:b6:c7:d4:73:6b:38:1e:8c:46:ca:a4:b5:57:e7:ba:e2:a7: 67:d9:03:c0:d0:f5:dc:c8:9f:d6:1b:6a:6a:74:9a:3e:01:e5: 93:a3:6d:30:e0:f8:da:a3:3e:0b:8d:35:5d:31:2d:7b:3f:ac: ae:f2:8d:70:a9:9f:bd:5a:5c:35:08:52:e5:2f:7a:74:7e:93: 8e:83:e5:2d:0b:20:42:b4:df:45:e3:23:75:1b:78:b5:ae:32: bd:8d:43:dc:78:39:17:da:f7:12:be:55:f3:67:ec:4b:9b:5c: 7f:47:f5:2d:15:8e:22:bf:b8:3b:af:4c:ca:5a:c7:32:df:f8: 08:43:51:7c:fe:8b:b6:52:0d:65:24:84:05:48:36:09:5c:5e: 09:99:35:fe:f3:ec:bf:5b:61:ad:65:f8:20:18:73:c5:d7:0f: ea:8c:6a:0d:c5:13:73:d8:a5:af:c6:d2:1f:88:6c:5f:38:08: 4c:68:99:48:74:3f:ac:41:57:41:a2:28:19:97:44:75:63:00: 1d:80:e8:3e:c9:87:42:27:11:04:57:ca:8f:d8:91:01:1e:4b: 53:03:0d:40:65:a6:6f:41:9b:07:a5:37:7c:1f:46:16:62:a3: 86:ba:9e:13:fe:94:79:9e:83:56:7f:99:80:66:ab:b6:94:5d: 48:92:71:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvKHMRUZMg7Sna92IwFd4MOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTE3MDQwMDQxWhcNMjYwMTE4MDQwMDQxWjAzMTEwLwYDVQQD EygyZDMxZGEyODFjMDQ3ZTM0NWYwNTI4YTQ1Zjc1OWI0ZTNiOThhZGJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCtZWGVC7AJKZ08YkEj2YiindqpC IxmbU8HzqcJ6xFITH7z0ke3/i3Fg1dxw08c/nnm/fHubj3j5FXXgqP2uqnWqoOMQ cLVrD631tk3NjKmbiP3qANGtqZIIJM+Z0+LRqAkykqH8sB8xnwi2ynOE9ONg1wWb Jv9RdcWQu06cpJyRYsGHKn55JKDeM3W2KOZBT02jLP9C/M7e1I/8Ciingo1RcdmQ 7BVFhHUXiZIV9owrHTGlPVIeuMEVECHP1pyJjL+EyfkpJTBz6sQFJmE3iblaNE0o yhohX9WPGsMn0cplsjJjpZBsRE4NZbdaZh8VPhcN+nUNHdIFH+WjZHE0EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC0x2igcBH40XwUopF91m047mK28MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATbbH1HNr OB6MRsqktVfnuuKnZ9kDwND13Mif1htqanSaPgHlk6NtMOD42qM+C401XTEtez+s rvKNcKmfvVpcNQhS5S96dH6TjoPlLQsgQrTfReMjdRt4ta4yvY1D3Hg5F9r3Er5V 82fsS5tcf0f1LRWOIr+4O69MylrHMt/4CENRfP6LtlINZSSEBUg2CVxeCZk1/vPs v1thrWX4IBhzxdcP6oxqDcUTc9ilr8bSH4hsXzgITGiZSHQ/rEFXQaIoGZdEdWMA HYDoPsmHQicRBFfKj9iRAR5LUwMNQGWmb0GbB6U3fB9GFmKjhrqeE/6UeZ6DVn+Z gGartpRdSJJxpg== -----END CERTIFICATE-----Generated at Sat Jan 17 12:25:49 2026 by rpki-client