This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft File: bsJOKsnNUzmWUVkM85Gta78bPiY.mft (raw, json) Hash identifier: bOw6xxvL3eiK4usIpjN/3sN/Jlv/MkFcHA6GYzbaVW4= Subject key identifier: BA:FE:38:97:5F:AC:DA:92:25:0F:40:51:F4:8E:69:B2:05:4F:8A:9B Authority key identifier: 6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26 Certificate issuer: /CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26 Certificate serial: 019C1B6FEE79382A157CD1D3077007C8BFEB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft Manifest number: 0965 Signing time: Sun 01 Feb 2026 23:00:46 +0000 Manifest this update: Sun 01 Feb 2026 23:00:46 +0000 Manifest next update: Mon 02 Feb 2026 23:00:46 +0000 Files and hashes: 1: V4zAIgAoy_1XQ7dP32lAlqC0nxM.roa (hash: o+vrELIZ0yNZvQJf/bVnVUZJH4II7t1VE+Z62K1MGg8=) 2: bsJOKsnNUzmWUVkM85Gta78bPiY.crl (hash: G51izYC7uW8dwAN6E54YxOFvITCKuS0F7HkcmN80WNk=) 3: wRsM-J-_RdemGYQhUq06PflenDM.asa (hash: pjI+PT7nOc9seCJaC2jOV5Z3Ysbs3FSmgOLK6vNi+4g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:6f:ee:79:38:2a:15:7c:d1:d3:07:70:07:c8:bf:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ec24e2ac9cd53399651590cf391ad6bbf1b3e26 Validity Not Before: Feb 1 23:00:46 2026 GMT Not After : Feb 2 23:00:46 2026 GMT Subject: CN=bafe38975facda92250f4051f48e69b2054f8a9b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:76:c1:02:c2:ba:a8:51:78:e4:59:d6:8f:fb: 46:27:e9:2a:74:86:48:98:00:71:a1:41:bc:40:a7: 00:dc:88:00:f9:fc:af:b3:36:22:96:29:60:2a:e7: 24:33:76:c5:64:e9:69:b1:e7:ba:33:3c:65:bb:bf: 72:d6:60:b5:26:f7:f3:cb:6f:09:00:2b:43:d8:50: 72:56:a2:a2:58:ac:9c:c2:87:0e:43:c0:af:fa:91: 07:44:83:14:98:b0:2f:2b:01:35:47:61:d2:0b:ec: 77:f0:37:c7:6a:15:0a:7c:38:60:40:b9:2b:c1:58: 8b:f2:64:f3:46:5d:f0:dc:9a:3f:04:4d:ea:1f:02: c8:06:b0:5f:94:23:3a:e1:9c:d9:fe:29:f8:c1:ba: cf:ad:d9:ec:79:6b:bc:b5:6f:6a:4e:4e:21:18:bd: f7:25:d5:0c:6b:c7:5a:9c:96:bb:1b:7c:2e:7b:8c: da:e4:1b:0b:b5:4e:3b:e9:17:e6:7d:45:9b:74:90: 4e:8f:5c:84:b5:79:2a:8a:13:7b:83:bc:44:07:37: 5c:12:66:b6:8d:17:1d:69:78:27:0a:ed:a0:3b:55: 82:ae:99:ad:e9:1d:c7:cc:4a:d4:b6:6d:ee:90:84: 1d:50:fe:8c:de:eb:2a:aa:ca:ff:ed:ac:af:22:a4: 4b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:FE:38:97:5F:AC:DA:92:25:0F:40:51:F4:8E:69:B2:05:4F:8A:9B X509v3 Authority Key Identifier: keyid:6E:C2:4E:2A:C9:CD:53:39:96:51:59:0C:F3:91:AD:6B:BF:1B:3E:26 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bsJOKsnNUzmWUVkM85Gta78bPiY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/11/c1f962-88d6-4642-a2d3-7a7473c545b1/1/bsJOKsnNUzmWUVkM85Gta78bPiY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:b0:44:ad:e8:ca:7c:ab:2c:af:f5:f1:5d:ab:3f:12:f2:a0: 80:ec:70:d6:8a:39:f0:7e:14:80:0d:b0:7c:3a:63:34:00:0d: 87:d7:fa:73:2b:fd:cf:f0:c8:9f:3d:e3:5a:b0:a2:79:10:35: 4f:6e:a4:a8:d5:e5:70:9f:d9:36:a5:22:28:da:b4:58:2d:04: 54:72:af:8b:3e:28:9a:cf:64:4d:8c:68:f6:01:36:e1:b8:1a: b7:16:ce:fe:21:43:95:f5:b3:2f:05:e3:af:c6:ee:d0:75:8b: e2:b1:6c:4f:0a:4d:8a:d5:15:1e:a1:57:d7:dd:63:57:38:71: c8:64:2a:c8:a9:ea:a4:4a:9b:01:45:e0:84:e7:c6:bc:5d:82: 23:f3:76:8c:cd:f3:91:16:27:89:c1:75:19:82:ae:61:e1:2c: dd:f7:85:6b:24:ab:7f:26:42:4f:34:8d:41:b1:6f:49:09:4d: c9:4f:ee:23:14:ea:8f:d8:c0:ff:e0:9d:c9:c5:c7:ad:0d:91: 3e:6a:08:e6:8f:56:24:e0:b1:ca:5f:13:ba:c3:c0:69:d5:ac: e9:ea:92:95:4a:c1:cc:36:e2:54:31:62:0f:25:82:2b:46:e3: 01:84:b4:af:1c:6f:01:38:2e:d1:0a:41:c6:23:d7:bd:67:88: 0e:cc:db:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwbb+55OCoVfNHTB3AHyL/rMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlYzI0ZTJhYzljZDUzMzk5NjUxNTkwY2YzOTFhZDZiYmYx YjNlMjYwHhcNMjYwMjAxMjMwMDQ2WhcNMjYwMjAyMjMwMDQ2WjAzMTEwLwYDVQQD EyhiYWZlMzg5NzVmYWNkYTkyMjUwZjQwNTFmNDhlNjliMjA1NGY4YTliMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXbBAsK6qFF45FnWj/tGJ+kqdIZI mABxoUG8QKcA3IgA+fyvszYililgKuckM3bFZOlpsee6Mzxlu79y1mC1Jvfzy28J ACtD2FByVqKiWKycwocOQ8Cv+pEHRIMUmLAvKwE1R2HSC+x38DfHahUKfDhgQLkr wViL8mTzRl3w3Jo/BE3qHwLIBrBflCM64ZzZ/in4wbrPrdnseWu8tW9qTk4hGL33 JdUMa8danJa7G3wue4za5BsLtU476RfmfUWbdJBOj1yEtXkqihN7g7xEBzdcEma2 jRcdaXgnCu2gO1WCrpmt6R3HzErUtm3ukIQdUP6M3usqqsr/7ayvIqRLtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLr+OJdfrNqSJQ9AUfSOabIFT4qbMB8GA1UdIwQY MBaAFG7CTirJzVM5llFZDPORrWu/Gz4mMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMt N2E3NDczYzU0NWIxLzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMS9jMWY5NjItODhkNi00NjQyLWEyZDMtN2E3NDczYzU0NWIx LzEvYnNKT0tzbk5Vem1XVVZrTTg1R3RhNzhiUGlZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJLBErejK fKssr/XxXas/EvKggOxw1oo58H4UgA2wfDpjNAANh9f6cyv9z/DInz3jWrCieRA1 T26kqNXlcJ/ZNqUiKNq0WC0EVHKviz4oms9kTYxo9gE24bgatxbO/iFDlfWzLwXj r8bu0HWL4rFsTwpNitUVHqFX191jVzhxyGQqyKnqpEqbAUXghOfGvF2CI/N2jM3z kRYnicF1GYKuYeEs3feFaySrfyZCTzSNQbFvSQlNyU/uIxTqj9jA/+CdycXHrQ2R PmoI5o9WJOCxyl8TusPAadWs6eqSlUrBzDbiVDFiDyWCK0bjAYS0rxxvATgu0QpB xiPXvWeIDszbmw== -----END CERTIFICATE-----Generated at Mon Feb 2 08:16:09 2026 by rpki-client