This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: DIh0dvKqPFOzOURSG2NkKeH2Hhut43/caI+fsQz2MsQ= Subject key identifier: 7D:54:70:8A:0C:AF:FD:D9:9E:13:0F:65:2B:CD:77:34:56:E3:BA:BB Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019BA18FA9429773E38101CAEBD4515CC525 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17C1 Signing time: Fri 09 Jan 2026 07:01:45 +0000 Manifest this update: Fri 09 Jan 2026 07:01:45 +0000 Manifest next update: Sat 10 Jan 2026 07:01:45 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 6ca+BhlN3K4Hcv/3sW6gKRXLs98d1UCdP7Py/zaIjZ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 10 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:a1:8f:a9:42:97:73:e3:81:01:ca:eb:d4:51:5c:c5:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 9 07:01:45 2026 GMT Not After : Jan 10 07:01:45 2026 GMT Subject: CN=7d54708a0caffdd99e130f652bcd773456e3babb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:2c:15:18:1e:c3:8c:c6:59:19:e1:27:30:a2: 0c:0b:a2:d9:5e:45:33:da:62:cd:96:f0:a1:e1:ce: 04:d6:a3:1d:29:b2:5b:0c:54:8d:90:9b:49:94:5b: 49:d4:cf:8a:ed:55:b1:28:c6:8a:7f:f6:33:d1:31: 1b:6f:2d:0d:13:dc:22:58:d0:a1:e3:62:bc:f8:bb: e5:88:87:46:98:35:e7:86:fa:21:af:33:11:12:84: 77:47:72:a8:e0:48:c6:7f:51:85:c4:81:5f:d4:63: ca:28:2a:17:13:55:fb:dd:d4:74:bb:97:ad:ec:08: d0:31:a4:33:6e:58:7a:e6:fd:77:e3:82:94:28:cd: 78:d0:99:cc:2d:cc:b2:83:d5:84:65:c1:a1:3a:10: 4c:09:27:ae:b0:1f:8d:89:d4:9c:d9:77:e4:d7:44: e0:69:3c:7f:62:89:85:f9:4e:3e:8b:77:83:71:c8: e7:3a:d0:e9:a0:54:c1:8e:98:67:74:57:ab:04:8a: 44:6d:c4:3a:ef:c3:17:50:93:6a:f0:47:ba:25:90: db:ee:fe:98:15:f2:45:b4:1f:84:f1:7d:66:39:b2: 47:89:b3:15:74:55:db:3e:12:79:26:fb:29:0b:e4: ef:ae:94:22:e4:3c:d1:d7:47:d8:75:c8:bd:bd:03: 35:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:54:70:8A:0C:AF:FD:D9:9E:13:0F:65:2B:CD:77:34:56:E3:BA:BB X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:c4:c2:b7:40:7a:80:7d:d8:05:74:26:dc:53:80:98:6d:9b: 79:15:68:fa:c6:3a:f6:55:28:47:0f:dc:b5:84:9d:86:a1:2f: 4a:10:6e:6b:e8:7d:e9:5a:9a:17:94:ad:d6:e9:aa:1e:8b:fd: fa:3e:51:4c:49:80:67:05:ad:9c:1e:3b:e3:f4:36:b8:0b:e3: 28:c8:df:23:62:34:4b:63:e3:6e:21:90:9a:31:d7:f1:06:36: db:37:57:8f:4a:03:c4:88:94:06:c3:6f:92:bc:c9:a1:a5:d7: 1e:41:65:d7:0a:c8:4e:6d:52:85:42:e3:f7:0c:8f:9e:a0:d0: 9b:c0:9f:7e:50:ae:42:02:29:06:79:4b:4b:31:a5:b8:bd:be: 96:6b:4a:03:8e:1c:6a:0a:ad:c3:fb:c0:3c:8e:a6:d1:53:83: 1c:66:c5:ca:3b:f7:8a:ee:6a:87:c7:0e:a0:06:e4:9c:ff:94: 9a:d6:04:d5:f6:1a:1f:66:3f:62:f1:df:4f:65:7a:ac:6a:94: 33:20:e0:f6:e4:36:13:80:e4:b9:83:71:85:a1:b1:d9:40:12: 55:2b:c0:5a:b8:64:88:10:76:00:c3:3b:13:17:d0:55:9d:75: 49:59:d4:ac:18:b0:56:6e:0f:14:00:44:06:17:5b:13:9f:da: e6:eb:e0:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuhj6lCl3PjgQHK69RRXMUlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTA5MDcwMTQ1WhcNMjYwMTEwMDcwMTQ1WjAzMTEwLwYDVQQD Eyg3ZDU0NzA4YTBjYWZmZGQ5OWUxMzBmNjUyYmNkNzczNDU2ZTNiYWJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnCwVGB7DjMZZGeEnMKIMC6LZXkUz 2mLNlvCh4c4E1qMdKbJbDFSNkJtJlFtJ1M+K7VWxKMaKf/Yz0TEbby0NE9wiWNCh 42K8+LvliIdGmDXnhvohrzMREoR3R3Ko4EjGf1GFxIFf1GPKKCoXE1X73dR0u5et 7AjQMaQzblh65v1344KUKM140JnMLcyyg9WEZcGhOhBMCSeusB+NidSc2Xfk10Tg aTx/YomF+U4+i3eDccjnOtDpoFTBjphndFerBIpEbcQ678MXUJNq8Ee6JZDb7v6Y FfJFtB+E8X1mObJHibMVdFXbPhJ5JvspC+TvrpQi5DzR10fYdci9vQM1sQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH1UcIoMr/3ZnhMPZSvNdzRW47q7MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfsTCt0B6 gH3YBXQm3FOAmG2beRVo+sY69lUoRw/ctYSdhqEvShBua+h96VqaF5St1umqHov9 +j5RTEmAZwWtnB474/Q2uAvjKMjfI2I0S2PjbiGQmjHX8QY22zdXj0oDxIiUBsNv krzJoaXXHkFl1wrITm1ShULj9wyPnqDQm8CfflCuQgIpBnlLSzGluL2+lmtKA44c agqtw/vAPI6m0VODHGbFyjv3iu5qh8cOoAbknP+UmtYE1fYaH2Y/YvHfT2V6rGqU MyDg9uQ2E4DkuYNxhaGx2UASVSvAWrhkiBB2AMM7ExfQVZ11SVnUrBiwVm4PFABE BhdbE5/a5uvggg== -----END CERTIFICATE-----Generated at Fri Jan 9 09:36:24 2026 by rpki-client