This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft File: BD0sjag_XDyUrpQKDv0qdxT_kOI.mft (raw, json) Hash identifier: TeV/URdlFRARKGZNbF+gwv1R85i0aPJVRNeLXip++BQ= Subject key identifier: 48:E7:2A:C4:8C:18:CD:3E:FC:A1:79:85:BF:11:E4:99:19:D2:2B:0C Authority key identifier: 04:3D:2C:8D:A8:3F:5C:3C:94:AE:94:0A:0E:FD:2A:77:14:FF:90:E2 Certificate issuer: /CN=043d2c8da83f5c3c94ae940a0efd2a7714ff90e2 Certificate serial: 019C4246B2062184DFA4CBD919B37A5C3956 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft Manifest number: 01D0 Signing time: Mon 09 Feb 2026 12:00:55 +0000 Manifest this update: Mon 09 Feb 2026 12:00:55 +0000 Manifest next update: Tue 10 Feb 2026 12:00:55 +0000 Files and hashes: 1: BD0sjag_XDyUrpQKDv0qdxT_kOI.crl (hash: ahGo3cXEIA0YiJOE3ePwWL5672ZKEZVwbrPUFOCobE4=) 2: Q_Zn7NI6lsZly6zYVx5ISjrPChQ.roa (hash: gWG2uNDqwP4RF3btrRpyjXejBso2oQJiOb7vaAvc7tA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.crl rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:b2:06:21:84:df:a4:cb:d9:19:b3:7a:5c:39:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=043d2c8da83f5c3c94ae940a0efd2a7714ff90e2 Validity Not Before: Feb 9 12:00:55 2026 GMT Not After : Feb 10 12:00:55 2026 GMT Subject: CN=48e72ac48c18cd3efca17985bf11e49919d22b0c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9c:be:42:1d:a4:83:f3:19:3e:8b:ab:9d:b1: aa:76:2c:6e:3e:ad:04:e9:11:d6:36:94:d9:cc:11: 0c:32:c2:32:64:15:56:ee:5b:51:19:32:08:91:ba: d8:f8:cb:4e:a7:51:92:78:97:24:29:a5:81:d9:71: 54:6d:b5:8f:2f:3f:2d:35:46:4c:60:b1:2a:5e:74: c0:55:a5:e2:2e:c2:95:bf:3c:3c:08:ab:92:09:6c: 2d:d9:fa:f8:df:a2:b1:dd:87:5f:5e:07:d6:58:ca: 6c:67:dd:68:7a:25:d4:20:96:2f:11:fe:e2:4a:da: 25:30:33:6b:3c:15:5a:1d:98:25:d0:5c:4c:97:43: 5a:4f:56:a6:6f:a1:3c:81:d9:9d:32:06:45:23:0c: b7:ba:9a:4b:67:1e:ca:05:49:94:e0:c6:98:72:0d: 14:7b:0a:e5:cc:c6:35:49:c1:4c:8e:8e:bc:80:a8: 05:d4:f2:a6:ae:34:5e:69:f1:7f:c8:3e:71:4e:8d: 42:8d:af:83:39:33:cb:c5:cd:3d:24:1f:cb:ac:81: f1:fd:6d:6b:8a:b4:71:af:e7:7a:ec:41:c4:43:81: 8a:5c:13:36:6e:b2:7a:68:7e:f0:5b:a9:02:a4:17: 6e:45:7e:d3:95:9f:2f:23:83:7c:34:f1:a9:73:0a: 3c:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:E7:2A:C4:8C:18:CD:3E:FC:A1:79:85:BF:11:E4:99:19:D2:2B:0C X509v3 Authority Key Identifier: keyid:04:3D:2C:8D:A8:3F:5C:3C:94:AE:94:0A:0E:FD:2A:77:14:FF:90:E2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BD0sjag_XDyUrpQKDv0qdxT_kOI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/ec4c25-e552-4d0c-95ee-3bbc661b4cc5/1/BD0sjag_XDyUrpQKDv0qdxT_kOI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 98:3f:22:81:7e:76:5d:fa:de:51:20:89:b4:ab:24:f6:d5:2a: 0a:5f:b6:de:12:51:8d:87:81:78:68:0e:61:e4:77:0f:3f:ec: 02:22:9c:a5:ba:be:ab:20:d8:bb:eb:60:a1:d3:55:9a:0f:1a: d2:d9:48:4a:01:5c:42:d6:29:5f:e1:9c:1e:fc:b7:c4:4f:53: e9:29:0d:ee:68:6c:fb:ee:3f:88:a3:b6:00:47:eb:5f:61:12: bf:49:31:42:f8:a5:3a:27:f0:fd:41:c1:a2:bf:ce:05:8f:e9: e6:f4:4c:eb:4a:04:04:e5:a1:7e:71:ad:f4:e1:87:c1:ee:e3: 8a:19:ca:80:7b:63:5d:6e:9f:70:1a:f5:2f:44:79:6f:5e:4e: d2:23:7a:bc:ba:65:b4:10:f7:34:f1:7d:35:bc:52:36:81:c2: 97:37:49:b5:fd:ca:6e:6e:28:db:d0:f6:49:95:a6:ed:80:2c: a9:d0:e9:39:45:18:7a:b7:e7:f4:d1:79:1c:72:d9:48:b6:fd: 48:bf:7e:3f:93:73:e9:1e:cc:da:04:27:9a:55:63:97:ff:7c: 93:fc:73:4e:8d:2c:19:2e:33:e6:ce:95:9e:5b:89:c5:63:ad: 68:ad:1f:ad:39:15:71:3e:0e:77:06:c0:e5:06:74:8f:df:ab: d6:73:b9:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRrIGIYTfpMvZGbN6XDlWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0M2QyYzhkYTgzZjVjM2M5NGFlOTQwYTBlZmQyYTc3MTRm ZjkwZTIwHhcNMjYwMjA5MTIwMDU1WhcNMjYwMjEwMTIwMDU1WjAzMTEwLwYDVQQD Eyg0OGU3MmFjNDhjMThjZDNlZmNhMTc5ODViZjExZTQ5OTE5ZDIyYjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApZy+Qh2kg/MZPournbGqdixuPq0E 6RHWNpTZzBEMMsIyZBVW7ltRGTIIkbrY+MtOp1GSeJckKaWB2XFUbbWPLz8tNUZM YLEqXnTAVaXiLsKVvzw8CKuSCWwt2fr436Kx3YdfXgfWWMpsZ91oeiXUIJYvEf7i StolMDNrPBVaHZgl0FxMl0NaT1amb6E8gdmdMgZFIwy3uppLZx7KBUmU4MaYcg0U ewrlzMY1ScFMjo68gKgF1PKmrjReafF/yD5xTo1Cja+DOTPLxc09JB/LrIHx/W1r irRxr+d67EHEQ4GKXBM2brJ6aH7wW6kCpBduRX7TlZ8vI4N8NPGpcwo80wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEjnKsSMGM0+/KF5hb8R5JkZ0isMMB8GA1UdIwQY MBaAFAQ9LI2oP1w8lK6UCg79KncU/5DiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkQwc2phZ19YRHlVcnBRS0R2MHFkeFRfa09JLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZi9lYzRjMjUtZTU1Mi00ZDBjLTk1ZWUt M2JiYzY2MWI0Y2M1LzEvQkQwc2phZ19YRHlVcnBRS0R2MHFkeFRfa09JLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZi9lYzRjMjUtZTU1Mi00ZDBjLTk1ZWUtM2JiYzY2MWI0Y2M1 LzEvQkQwc2phZ19YRHlVcnBRS0R2MHFkeFRfa09JLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmD8igX52 XfreUSCJtKsk9tUqCl+23hJRjYeBeGgOYeR3Dz/sAiKcpbq+qyDYu+tgodNVmg8a 0tlISgFcQtYpX+GcHvy3xE9T6SkN7mhs++4/iKO2AEfrX2ESv0kxQvilOifw/UHB or/OBY/p5vRM60oEBOWhfnGt9OGHwe7jihnKgHtjXW6fcBr1L0R5b15O0iN6vLpl tBD3NPF9NbxSNoHClzdJtf3Kbm4o29D2SZWm7YAsqdDpOUUYerfn9NF5HHLZSLb9 SL9+P5Nz6R7M2gQnmlVjl/98k/xzTo0sGS4z5s6VnluJxWOtaK0frTkVcT4OdwbA 5QZ0j9+r1nO5Cw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:40:39 2026 by rpki-client