This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: MnlojxU4CU4rLPG7TQ7WppvGOUsDN2TJz8wJI5o2Ki4= Subject key identifier: 22:8A:90:80:06:72:F2:83:C4:63:B5:5D:62:DB:02:4F:D6:23:FF:50 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019B7A812540FAD11267885747F9F5F1B54B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17AC Signing time: Thu 01 Jan 2026 17:00:42 +0000 Manifest this update: Thu 01 Jan 2026 17:00:42 +0000 Manifest next update: Fri 02 Jan 2026 17:00:42 +0000 Files and hashes: 1: 0qa8r-MxNMLt6tCXa-K5V6QBkro.roa (hash: oU+YFw1zeHKoa31/el8AmGzlkf3ldrnYHs0Qc542gzw=) 2: 2s9R-8NKLGYziws7CzdBBuI05qY.roa (hash: 8cPZV8bL1izy9SNqvDNd1+gha6xq2vYnb61KexJW8KE=) 3: 8trwTS6zWWIc2CXU2a9uB3EK1CE.roa (hash: cB6Sm/NTvhdg/vAHTGU6288+fVcpUIfblu8fCuXy72c=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 6/tiZ1TjH7+FQtSXwSqJ42ANruLWW7b1PqoAdNH7wdE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 02 Jan 2026 17:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:81:25:40:fa:d1:12:67:88:57:47:f9:f5:f1:b5:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 1 17:00:42 2026 GMT Not After : Jan 2 17:00:42 2026 GMT Subject: CN=228a90800672f283c463b55d62db024fd623ff50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:4b:52:07:0d:3f:0e:60:bd:43:85:48:6d:f1: 66:7a:a4:51:99:32:8d:14:8f:a5:e5:43:82:de:8c: 69:1b:26:22:86:58:ba:51:60:56:46:e5:3c:18:6f: ff:18:4b:13:c9:29:63:90:df:3d:81:2d:66:3b:d1: 5e:6d:1e:ac:23:e6:14:9c:02:a0:48:c3:ab:ea:4a: f6:a4:89:e2:60:50:12:d2:cd:04:32:7d:ab:77:b2: ca:68:0c:ab:cd:e9:ba:9e:da:2b:df:de:5d:fc:0f: 2f:0d:23:03:73:7a:e9:7e:63:fe:8c:01:b7:e5:75: dc:5c:fd:10:6b:1e:19:a5:f2:ed:12:be:92:1b:ea: 75:95:03:d5:06:c5:93:b6:f0:87:af:8d:5b:bc:5e: bb:4f:a1:e6:8a:90:18:31:6e:60:0c:d0:a9:2a:bd: cc:13:0e:64:bf:42:90:bc:a3:8f:1e:8a:fc:37:2b: 9e:24:06:c9:5b:51:e5:4c:f1:43:d7:43:bd:54:6e: 02:29:55:2a:33:9f:19:8e:f3:af:fd:50:19:04:e5: c7:96:cc:57:9e:5a:bd:46:46:80:64:5c:61:92:ba: 97:29:9a:71:5e:11:fa:c7:37:b8:eb:d8:dc:e4:2a: 42:ac:63:f2:f0:5f:ea:aa:bb:4f:65:57:7b:ba:be: 2b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:8A:90:80:06:72:F2:83:C4:63:B5:5D:62:DB:02:4F:D6:23:FF:50 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:e2:9a:cc:a2:9b:bd:17:47:e1:61:cf:e2:d1:04:2a:e5:15: 89:3d:dd:cb:4b:30:11:20:d4:b4:ae:42:1a:c3:3a:2f:b5:27: d1:37:62:bd:50:bd:f8:1b:dd:44:3a:fd:24:47:ed:5e:8d:24: aa:92:5b:61:11:12:7c:2c:55:32:60:b2:28:2f:62:d6:2f:49: 91:a3:61:cd:c3:15:92:42:3c:cf:43:20:22:e1:d7:0a:d8:04: df:6d:7b:cd:d1:0b:46:55:70:2c:36:37:af:bf:1f:98:1b:48: f4:88:c5:70:4c:bc:21:81:d9:5b:e9:9d:0e:10:8c:67:19:bb: 56:64:51:f4:c7:eb:7b:28:5c:3f:86:8b:84:2b:e3:fa:af:02: f7:5a:f4:bf:c7:a0:f6:59:fa:8e:62:63:29:11:38:8d:83:c1: 7e:30:97:8a:2c:d9:10:5b:3f:08:cd:c1:8c:b3:ae:fa:48:0f: 92:e1:bd:4d:0d:52:c2:da:fa:75:53:0b:5f:4c:7b:80:f4:7e: 40:7d:1a:9c:a5:78:dd:04:cd:09:a5:76:46:b2:44:14:d6:f0: 45:32:ec:41:34:5f:73:fb:8d:89:3b:c4:1a:3f:6e:7b:b3:c1: 5a:08:07:d4:03:ff:aa:36:cd:83:7e:fb:a3:ef:2f:24:68:1c: 6b:0a:43:30 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZt6gSVA+tESZ4hXR/n18bVLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTAxMTcwMDQyWhcNMjYwMTAyMTcwMDQyWjAzMTEwLwYDVQQD EygyMjhhOTA4MDA2NzJmMjgzYzQ2M2I1NWQ2MmRiMDI0ZmQ2MjNmZjUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ktSBw0/DmC9Q4VIbfFmeqRRmTKN FI+l5UOC3oxpGyYihli6UWBWRuU8GG//GEsTySljkN89gS1mO9FebR6sI+YUnAKg SMOr6kr2pIniYFAS0s0EMn2rd7LKaAyrzem6ntor395d/A8vDSMDc3rpfmP+jAG3 5XXcXP0Qax4ZpfLtEr6SG+p1lQPVBsWTtvCHr41bvF67T6HmipAYMW5gDNCpKr3M Ew5kv0KQvKOPHor8NyueJAbJW1HlTPFD10O9VG4CKVUqM58ZjvOv/VAZBOXHlsxX nlq9RkaAZFxhkrqXKZpxXhH6xze469jc5CpCrGPy8F/qqrtPZVd7ur4rpwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCKKkIAGcvKDxGO1XWLbAk/WI/9QMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACuKazKKb vRdH4WHP4tEEKuUViT3dy0swESDUtK5CGsM6L7Un0TdivVC9+BvdRDr9JEftXo0k qpJbYRESfCxVMmCyKC9i1i9JkaNhzcMVkkI8z0MgIuHXCtgE3217zdELRlVwLDY3 r78fmBtI9IjFcEy8IYHZW+mdDhCMZxm7VmRR9MfreyhcP4aLhCvj+q8C91r0v8eg 9ln6jmJjKRE4jYPBfjCXiizZEFs/CM3BjLOu+kgPkuG9TQ1Swtr6dVMLX0x7gPR+ QH0anKV43QTNCaV2RrJEFNbwRTLsQTRfc/uNiTvEGj9ue7PBWggH1AP/qjbNg377 o+8vJGgcawpDMA== -----END CERTIFICATE-----Generated at Thu Jan 1 21:40:24 2026 by rpki-client