This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json) Hash identifier: wJSn9dzJQGyHqNAHU0gDhou27qzYY5EN4K9bvnMFKuw= Subject key identifier: 16:29:4D:8D:E1:14:41:7B:54:DF:6B:A6:65:53:77:80:59:81:7B:18 Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26 Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26 Certificate serial: 019C1D5E50188125D7CF94386941DE988C4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft Manifest number: 0966 Signing time: Mon 02 Feb 2026 08:00:45 +0000 Manifest this update: Mon 02 Feb 2026 08:00:45 +0000 Manifest next update: Tue 03 Feb 2026 08:00:45 +0000 Files and hashes: 1: V4zAIgAoy_1XQ7dP32lAlqC0nxM.roa (hash: o+vrELIZ0yNZvQJf/bVnVUZJH4II7t1VE+Z62K1MGg8=) 2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: RZDzHTCKB1OUwxGyuc6TkZmcx6MYv+Ws6Z1xWgpaoWs=) 3: wRsM-J-_RdemGYQhUq06PflenDM.asa (hash: pjI+PT7nOc9seCJaC2jOV5Z3Ysbs3FSmgOLK6vNi+4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1d:5e:50:18:81:25:d7:cf:94:38:69:41:de:98:8c:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26 Validity Not Before: Feb 2 08:00:45 2026 GMT Not After : Feb 3 08:00:45 2026 GMT Subject: CN=16294d8de114417b54df6ba66553778059817b18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:3b:3c:0a:c9:22:6f:ea:15:25:de:c5:5d:55: f0:0b:35:34:91:26:9a:c6:49:d4:52:11:d1:23:5b: 07:a5:44:51:bf:ed:54:82:4f:ff:6b:2a:45:10:f9: 6a:76:d7:d0:ac:86:8a:67:16:5c:2a:0e:8b:3e:17: 3f:d3:e3:4d:d7:b9:cc:2f:68:3e:d4:3d:7c:94:83: 00:bc:d0:b7:f5:67:08:d4:d0:1f:ef:14:7a:15:ea: dd:57:0b:58:2e:c0:8b:f4:5d:ab:5c:1d:23:1f:98: d8:5c:59:a5:97:bd:b3:26:cb:bd:c7:82:6a:b7:b0: 79:c7:34:87:17:61:7c:87:37:d0:9b:86:e4:76:24: c0:60:bf:f4:21:e2:f8:54:dc:41:40:53:bd:0e:79: 74:5a:af:c6:10:95:98:53:7d:2b:96:55:df:ba:e7: c6:ea:a5:cd:84:72:49:4d:5c:1c:3e:99:77:25:70: 93:54:52:a6:3d:88:1c:06:c7:1a:fd:c7:75:b2:f5: 37:03:2a:63:f4:12:08:ad:3b:35:7f:6c:01:b4:f4: 5e:d0:8f:69:ec:a3:ca:3f:1f:40:43:36:ea:ef:0a: fc:ae:eb:81:1e:22:d2:a2:e1:39:ec:66:3c:2b:2d: 8d:7e:e1:55:8f:2a:54:7c:20:b4:bb:4e:f0:b3:19: 36:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:29:4D:8D:E1:14:41:7B:54:DF:6B:A6:65:53:77:80:59:81:7B:18 X509v3 Authority Key Identifier: keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:b0:9d:7b:ae:c4:f9:1c:be:53:1f:b2:5c:82:53:34:7a:b5: b6:c5:c2:01:72:60:2d:6a:fe:ae:3d:c2:0d:31:94:02:01:62: ae:b6:50:79:80:eb:ac:de:e0:9b:d0:af:0b:c0:bf:a8:9f:fa: bf:9d:37:5d:6a:5d:32:59:40:00:4d:b4:78:5e:d9:27:c0:40: 33:e6:90:97:83:03:d4:b1:71:ae:1f:be:8b:40:30:e9:79:45: 80:b6:fc:ca:15:33:ac:89:0b:9d:58:a8:9d:03:91:87:df:93: 33:e7:80:e9:2e:00:7d:b7:25:b5:c5:2a:76:12:e3:0a:a6:e0: b5:11:85:a4:65:0d:be:d3:e6:a1:3c:d5:2a:2f:d5:e3:6d:55: a4:ee:03:cf:84:6f:55:d0:0d:d6:50:bc:2e:e0:00:e8:b0:8d: a1:80:b3:02:c2:7a:43:5e:2d:08:82:16:e4:12:33:97:31:8f: fc:d6:2a:fa:d6:2d:a2:d7:c3:d6:65:0e:0f:3d:88:a1:d7:c6: 75:4f:46:83:ed:20:4d:af:90:22:13:00:68:d8:95:a4:a4:84: 10:fd:3e:3c:f2:97:43:04:35:5b:56:49:e4:e5:60:e9:f3:0c: 27:14:10:f1:d8:6b:9d:d7:71:49:90:37:4b:2b:d7:4f:b2:8f: 24:c5:86:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwdXlAYgSXXz5Q4aUHemIxOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlYzI0ZTJhYzljZDUzMzk5NjUxNTkwY2YzOTFhZDZiYmYx YjNlMjYwHhcNMjYwMjAyMDgwMDQ1WhcNMjYwMjAzMDgwMDQ1WjAzMTEwLwYDVQQD EygxNjI5NGQ4ZGUxMTQ0MTdiNTRkZjZiYTY2NTUzNzc4MDU5ODE3YjE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArzs8Cskib+oVJd7FXVXwCzU0kSaa xknUUhHRI1sHpURRv+1Ugk//aypFEPlqdtfQrIaKZxZcKg6LPhc/0+NN17nML2g+ 1D18lIMAvNC39WcI1NAf7xR6FerdVwtYLsCL9F2rXB0jH5jYXFmll72zJsu9x4Jq t7B5xzSHF2F8hzfQm4bkdiTAYL/0IeL4VNxBQFO9Dnl0Wq/GEJWYU30rllXfuufG 6qXNhHJJTVwcPpl3JXCTVFKmPYgcBsca/cd1svU3Aypj9BIIrTs1f2wBtPRe0I9p 7KPKPx9AQzbq7wr8ruuBHiLSouE57GY8Ky2NfuFVjypUfCC0u07wsxk2PQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBYpTY3hFEF7VN9rpmVTd4BZgXsYMB8GA1UdIwQY MBaAFG7CTirJzVM5llFZDPORrWu/Gz4mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMt N2E3NDczYzU0NWIxLzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMtN2E3NDczYzU0NWIx LzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfrCde67E +Ry+Ux+yXIJTNHq1tsXCAXJgLWr+rj3CDTGUAgFirrZQeYDrrN7gm9CvC8C/qJ/6 v503XWpdMllAAE20eF7ZJ8BAM+aQl4MD1LFxrh++i0Aw6XlFgLb8yhUzrIkLnVio nQORh9+TM+eA6S4AfbcltcUqdhLjCqbgtRGFpGUNvtPmoTzVKi/V421VpO4Dz4Rv VdAN1lC8LuAA6LCNoYCzAsJ6Q14tCIIW5BIzlzGP/NYq+tYtotfD1mUODz2IodfG dU9Gg+0gTa+QIhMAaNiVpKSEEP0+PPKXQwQ1W1ZJ5OVg6fMMJxQQ8dhrnddxSZA3 SyvXT7KPJMWGyw== -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:08 2026 by rpki-client