This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: I+2y8NFahDZeiSD7dxvhQieNWBKWJS84g+6Ey0bEe+Y= Subject key identifier: 8A:1F:82:71:32:34:00:88:D0:7C:DE:C1:A4:85:52:89:E9:F4:CF:C3 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BF2AAB82EA85C7BBB843864CF7A6C9F1E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17EB Signing time: Sun 25 Jan 2026 01:00:32 +0000 Manifest this update: Sun 25 Jan 2026 01:00:32 +0000 Manifest next update: Mon 26 Jan 2026 01:00:32 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: RgFk7MAX323TvpOFw74YQiTr5GAU7CiUgjELDxEODfY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:aa:b8:2e:a8:5c:7b:bb:84:38:64:cf:7a:6c:9f:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 25 01:00:32 2026 GMT Not After : Jan 26 01:00:32 2026 GMT Subject: CN=8a1f827132340088d07cdec1a4855289e9f4cfc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:96:6f:cc:26:9c:e5:04:57:3f:07:cd:6d:dd: 5e:a7:fe:8e:30:c9:7c:f6:5d:d5:2f:3d:89:af:f0: 3e:25:dd:49:01:a3:59:79:04:d7:ef:96:77:18:f4: 84:c2:c5:3e:5d:28:a0:3c:0d:2a:7e:2d:01:f7:b0: 58:92:a2:96:dd:eb:b3:52:eb:c9:78:da:32:66:ca: 59:f3:d4:39:12:13:c3:fb:08:6f:96:73:e5:eb:c7: 55:4e:65:73:9e:ee:9b:da:24:30:c4:f5:c5:a4:7c: 23:80:c7:f0:9b:1b:9d:5c:6f:e5:6e:f4:ab:54:cb: 1e:33:09:4e:da:eb:33:88:6f:f8:53:a8:d0:93:a3: 56:21:8a:4c:f1:36:98:8f:52:0f:ef:aa:4c:3b:1c: dc:c8:ff:6a:b1:2e:8a:9f:10:83:26:3f:23:82:8c: df:65:f6:1c:c4:51:25:04:0c:b5:55:c2:d4:78:e4: 15:a4:97:90:40:59:cd:47:a2:c3:87:47:58:0e:7d: 4f:3d:23:c5:92:a1:e2:55:32:bc:62:36:8d:e1:d7: c3:61:4e:c7:39:ed:c2:ae:a5:3d:9c:19:47:8a:29: 23:d3:75:12:4c:02:b6:07:bd:1e:60:4f:ac:f7:7a: d5:09:5f:40:6f:3e:ef:6f:5c:4f:4b:53:f2:99:c0: 6d:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:1F:82:71:32:34:00:88:D0:7C:DE:C1:A4:85:52:89:E9:F4:CF:C3 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:f3:e0:c1:74:07:56:d6:df:ed:19:89:85:84:00:80:8d:37: 9d:b5:14:01:8d:ae:a7:a9:9a:1b:d2:a8:c1:dd:c0:1d:2d:3d: fc:9a:4d:cb:39:fd:a2:88:1b:69:4a:76:39:66:f2:7f:6c:27: 73:8f:59:d0:d1:53:f9:75:83:40:5e:46:dd:09:a9:31:7b:e4: cb:7f:c9:c5:bd:e8:34:21:eb:56:55:e4:11:8d:c4:ea:75:8d: 1a:09:15:4a:bc:63:0c:47:00:ea:02:0f:34:d0:a2:d1:af:d8: 67:20:8a:fe:93:50:aa:e3:a9:ef:9a:df:50:29:60:9a:77:da: 6b:3c:32:e2:c1:b8:46:69:6a:a6:3b:e7:05:a8:ad:76:8d:ff: e5:13:bd:b0:e8:fc:e2:74:47:64:5c:f5:2d:cf:9f:0b:c3:6f: df:67:0c:21:8f:a3:56:ba:9e:82:ba:5c:9b:65:bf:8c:f2:ce: 20:31:02:9a:b0:8e:76:be:ca:1c:9c:25:6a:b9:59:7d:ad:e6: f0:39:cd:44:d4:ec:76:e0:7c:54:eb:29:b5:82:b8:3a:8e:0f: 03:92:db:aa:31:98:fe:1b:4a:e3:2c:18:f0:19:03:4d:46:3b: 3f:f5:2a:31:fb:72:5f:d3:b5:3f:97:b7:e0:7e:db:47:fc:7e: 3a:47:d8:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvyqrguqFx7u4Q4ZM96bJ8eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTI1MDEwMDMyWhcNMjYwMTI2MDEwMDMyWjAzMTEwLwYDVQQD Eyg4YTFmODI3MTMyMzQwMDg4ZDA3Y2RlYzFhNDg1NTI4OWU5ZjRjZmMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxJZvzCac5QRXPwfNbd1ep/6OMMl8 9l3VLz2Jr/A+Jd1JAaNZeQTX75Z3GPSEwsU+XSigPA0qfi0B97BYkqKW3euzUuvJ eNoyZspZ89Q5EhPD+whvlnPl68dVTmVznu6b2iQwxPXFpHwjgMfwmxudXG/lbvSr VMseMwlO2usziG/4U6jQk6NWIYpM8TaYj1IP76pMOxzcyP9qsS6KnxCDJj8jgozf ZfYcxFElBAy1VcLUeOQVpJeQQFnNR6LDh0dYDn1PPSPFkqHiVTK8YjaN4dfDYU7H Oe3CrqU9nBlHiikj03USTAK2B70eYE+s93rVCV9Abz7vb1xPS1PymcBtSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIofgnEyNACI0HzewaSFUonp9M/DMB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMvPgwXQH Vtbf7RmJhYQAgI03nbUUAY2up6maG9Kowd3AHS09/JpNyzn9oogbaUp2OWbyf2wn c49Z0NFT+XWDQF5G3QmpMXvky3/Jxb3oNCHrVlXkEY3E6nWNGgkVSrxjDEcA6gIP NNCi0a/YZyCK/pNQquOp75rfUClgmnfaazwy4sG4RmlqpjvnBaitdo3/5RO9sOj8 4nRHZFz1Lc+fC8Nv32cMIY+jVrqegrpcm2W/jPLOIDECmrCOdr7KHJwlarlZfa3m 8DnNRNTsduB8VOsptYK4Oo4PA5LbqjGY/htK4ywY8BkDTUY7P/UqMftyX9O1P5e3 4H7bR/x+OkfYEQ== -----END CERTIFICATE-----Generated at Sun Jan 25 03:20:37 2026 by rpki-client