This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft File: t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft (raw, json) Hash identifier: vTbT101+RNA+76E1iTb14jwF8ErnN1IdtQqk3xDBkgw= Subject key identifier: 3A:AD:F2:92:C6:55:E3:31:42:65:DC:BF:59:14:AE:F4:DC:8E:D7:B6 Authority key identifier: B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 Certificate issuer: /CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Certificate serial: 019C0FA3219FAB0B82554B77B2301E66CF42 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft Manifest number: 17FA Signing time: Fri 30 Jan 2026 16:01:14 +0000 Manifest this update: Fri 30 Jan 2026 16:01:14 +0000 Manifest next update: Sat 31 Jan 2026 16:01:14 +0000 Files and hashes: 1: 2MSpCLbIJT_dNS85cUQH7P6hQQQ.roa (hash: LqxKJfwKg1vJNoy6niHI6Ay0t/ibwSsUhqanJ+kZvVg=) 2: TZEmLmroEs6IRm7BIRkKTFCJTnA.roa (hash: QhC3msm1fXEe5FbZInDyO6caWrevlSV8+0GhYVm+mSE=) 3: XKyWf4Y6NjYLpXjJG8NNu1YgV8I.roa (hash: Wg/rYioLK0eT7zXUczkOHExRo3EIegYLBIdXxr8Hp88=) 4: t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl (hash: 0DagjLnC9XMTHy+O1LFhq0xcHyrXCZN4HoiX/h2+h6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 31 Jan 2026 15:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:0f:a3:21:9f:ab:0b:82:55:4b:77:b2:30:1e:66:cf:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b75a0566d0b63a1f862d83458e4f2ea6fd8f7d21 Validity Not Before: Jan 30 16:01:14 2026 GMT Not After : Jan 31 16:01:14 2026 GMT Subject: CN=3aadf292c655e3314265dcbf5914aef4dc8ed7b6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:87:d6:c2:aa:ee:f6:18:6e:ec:eb:40:e1:af: aa:fa:55:fc:da:90:73:12:4a:f0:b5:3c:e8:7a:9d: 6e:32:a1:4a:55:08:01:e1:8d:d4:6e:70:30:fb:c7: 04:1d:8d:db:54:66:d7:9c:ab:23:9a:5f:ec:e8:d5: af:ae:65:88:3d:2d:a8:e9:2d:85:42:7c:8c:54:37: 73:40:26:db:55:0f:16:33:5d:69:65:5f:0a:30:94: 2f:7b:23:63:6f:d7:e1:5f:de:5a:4b:05:ea:7e:88: 1f:23:02:e3:d2:0a:47:69:ac:9f:2d:c2:51:8a:18: 78:56:81:8f:4b:fe:08:9b:d4:be:c9:2b:0f:59:91: ab:f8:5a:74:7d:86:71:6f:45:fc:69:52:1c:9c:82: d5:f5:58:ad:76:a4:58:78:f4:ac:65:a3:1c:0e:aa: 20:7b:4b:58:11:81:68:bb:75:87:62:e9:8e:7c:2d: 45:92:16:9e:ea:10:4e:2e:72:9a:27:d7:46:48:51: fc:f9:fd:e8:2c:a0:4b:d6:d2:86:b8:7a:b6:a9:e8: de:3b:13:c7:ac:8c:0f:6b:65:d4:34:66:55:36:7d: bd:9e:1d:64:24:46:5c:da:a7:c1:da:09:2f:6e:56: 4d:9e:2f:4e:1b:cc:ae:82:8c:88:32:ad:5e:bc:0b: 49:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:AD:F2:92:C6:55:E3:31:42:65:DC:BF:59:14:AE:F4:DC:8E:D7:B6 X509v3 Authority Key Identifier: keyid:B7:5A:05:66:D0:B6:3A:1F:86:2D:83:45:8E:4F:2E:A6:FD:8F:7D:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/t1oFZtC2Oh-GLYNFjk8upv2PfSE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/103570-1cf6-42ac-81d4-83f601c3fb59/1/t1oFZtC2Oh-GLYNFjk8upv2PfSE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:cd:ce:e3:76:b7:24:01:61:f5:a8:3f:71:77:f0:69:1b:39: 82:5e:a0:9b:05:5a:df:8d:2f:a2:bd:c8:e7:f7:a9:2b:42:a2: 2e:23:d3:b1:eb:2b:f5:f6:0f:00:bb:7a:3a:b6:f3:74:65:4d: a6:1d:c5:be:ac:65:f4:2e:8b:04:2b:f3:92:32:6d:75:d2:4e: 21:23:16:51:56:a2:b2:cd:c6:e4:cb:4d:f0:74:fc:36:0b:bd: 19:20:b0:f6:ac:9e:8c:7d:d5:ed:b6:ef:2c:f3:d5:e9:5a:87: ba:35:ce:6c:81:c3:8c:6b:fa:53:28:a7:b7:06:35:67:08:47: 18:4c:17:aa:86:28:ad:cc:3b:1f:b0:19:2e:55:b6:2e:37:6e: 31:d7:c7:1f:b8:2a:b7:5f:bb:dc:33:98:5d:a9:4d:3b:28:0d: f5:af:50:5d:aa:3e:1b:3a:d3:e7:ca:fd:cf:6d:b4:a1:54:9b: b6:91:47:7a:11:d3:4c:91:0d:1d:65:81:42:1b:2b:0b:9b:39: 10:dd:44:11:e5:ed:33:03:0d:e0:1b:e0:92:d5:42:ff:b7:7a: 1c:df:1b:39:f2:b9:76:6b:b4:1b:b8:51:e6:99:60:d5:e1:2e: e6:11:0d:d9:5f:fd:64:fe:c9:09:50:45:a4:de:e4:52:c1:39: 7c:37:ce:c9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwPoyGfqwuCVUt3sjAeZs9CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI3NWEwNTY2ZDBiNjNhMWY4NjJkODM0NThlNGYyZWE2ZmQ4 ZjdkMjEwHhcNMjYwMTMwMTYwMTE0WhcNMjYwMTMxMTYwMTE0WjAzMTEwLwYDVQQD EygzYWFkZjI5MmM2NTVlMzMxNDI2NWRjYmY1OTE0YWVmNGRjOGVkN2I2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyIfWwqru9hhu7OtA4a+q+lX82pBz EkrwtTzoep1uMqFKVQgB4Y3UbnAw+8cEHY3bVGbXnKsjml/s6NWvrmWIPS2o6S2F QnyMVDdzQCbbVQ8WM11pZV8KMJQveyNjb9fhX95aSwXqfogfIwLj0gpHaayfLcJR ihh4VoGPS/4Im9S+ySsPWZGr+Fp0fYZxb0X8aVIcnILV9VitdqRYePSsZaMcDqog e0tYEYFou3WHYumOfC1Fkhae6hBOLnKaJ9dGSFH8+f3oLKBL1tKGuHq2qejeOxPH rIwPa2XUNGZVNn29nh1kJEZc2qfB2gkvblZNni9OG8yugoyIMq1evAtJ2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDqt8pLGVeMxQmXcv1kUrvTcjte2MB8GA1UdIwQY MBaAFLdaBWbQtjofhi2DRY5PLqb9j30hMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQt ODNmNjAxYzNmYjU5LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi8xMDM1NzAtMWNmNi00MmFjLTgxZDQtODNmNjAxYzNmYjU5 LzEvdDFvRlp0QzJPaC1HTFlORmprOHVwdjJQZlNFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM83O43a3 JAFh9ag/cXfwaRs5gl6gmwVa340vor3I5/epK0KiLiPTsesr9fYPALt6OrbzdGVN ph3Fvqxl9C6LBCvzkjJtddJOISMWUVaiss3G5MtN8HT8Ngu9GSCw9qyejH3V7bbv LPPV6VqHujXObIHDjGv6UyintwY1ZwhHGEwXqoYorcw7H7AZLlW2LjduMdfHH7gq t1+73DOYXalNOygN9a9QXao+GzrT58r9z220oVSbtpFHehHTTJENHWWBQhsrC5s5 EN1EEeXtMwMN4BvgktVC/7d6HN8bOfK5dmu0G7hR5plg1eEu5hEN2V/9ZP7JCVBF pN7kUsE5fDfOyQ== -----END CERTIFICATE-----Generated at Fri Jan 30 18:03:52 2026 by rpki-client