This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft File: bJSdK9ZO4X711H-WPj1depgrEq8.mft (raw, json) Hash identifier: HZB1S93kqSCbG/AELSd/cPgUkhLStcvBCspomNM3Q5s= Subject key identifier: BB:5A:CF:AE:13:6E:F6:97:65:48:65:89:1E:54:6E:4C:09:9B:B0:C5 Authority key identifier: 6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF Certificate issuer: /CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af Certificate serial: 019C42B469961B66906FE4B66D5D60C38DAD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft Manifest number: 0C7C Signing time: Mon 09 Feb 2026 14:00:45 +0000 Manifest this update: Mon 09 Feb 2026 14:00:45 +0000 Manifest next update: Tue 10 Feb 2026 14:00:45 +0000 Files and hashes: 1: bJSdK9ZO4X711H-WPj1depgrEq8.crl (hash: ACNsUf1+egMmATXcPuYPq8xR2JtN/vnJoC7APRP4lHw=) 2: vnH2NBbn3Q3LtUPrFoU9by3eF_0.roa (hash: UPdVY5abeB5lX+0Aslp3HBLsCZjZtVMWKp5zyq6x038=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:69:96:1b:66:90:6f:e4:b6:6d:5d:60:c3:8d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c949d2bd64ee17ef5d47f963e3d5d7a982b12af Validity Not Before: Feb 9 14:00:45 2026 GMT Not After : Feb 10 14:00:45 2026 GMT Subject: CN=bb5acfae136ef697654865891e546e4c099bb0c5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0c:11:f8:90:44:35:23:82:2c:e2:dd:f4:bc: fb:ec:1e:cf:46:4e:b8:05:0d:0c:98:07:11:0f:bc: 4c:a7:19:58:4f:c8:17:c4:ee:c5:75:95:78:ce:ba: 73:29:4a:52:ec:ee:6c:09:f5:40:c4:30:4e:68:90: 2c:4e:34:4e:a9:1e:0f:21:06:e6:80:8f:b3:01:d4: c0:a5:13:b5:0a:ce:75:6a:34:ed:c2:5a:7b:8b:9f: e6:41:4c:6a:36:92:1f:de:51:05:52:f9:35:39:f6: ad:40:b7:26:5c:1a:a1:3d:7d:9a:15:be:71:25:bb: 10:96:e0:fe:fc:45:60:58:88:06:1c:85:f0:89:bf: 2f:86:73:b4:9c:d0:14:2d:c9:76:a6:55:a1:50:54: ce:d4:16:43:3d:ac:88:e0:ea:8a:c3:2d:e8:b5:35: bb:73:2f:70:04:07:cf:cc:26:9e:23:98:75:b7:5b: 5d:af:14:8b:a9:8a:11:d5:b8:4e:3e:39:ed:d3:7b: 5f:03:b7:d7:dc:d7:a9:99:35:bc:69:05:89:f3:9e: 8f:d1:1a:65:a4:ed:01:d5:60:42:a7:bc:d0:f9:4c: 54:aa:a0:5c:20:98:32:b6:35:4d:30:dd:3e:73:f4: 98:5c:78:2f:3b:f3:73:6e:b9:09:ab:b7:00:eb:09: f8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:5A:CF:AE:13:6E:F6:97:65:48:65:89:1E:54:6E:4C:09:9B:B0:C5 X509v3 Authority Key Identifier: keyid:6C:94:9D:2B:D6:4E:E1:7E:F5:D4:7F:96:3E:3D:5D:7A:98:2B:12:AF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJSdK9ZO4X711H-WPj1depgrEq8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/f8651b-c12b-42d4-afda-232f4703491f/1/bJSdK9ZO4X711H-WPj1depgrEq8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:68:d4:26:be:50:c9:85:2d:34:78:c2:ae:a3:d8:99:18:52: 58:fc:42:f3:17:cd:72:38:ca:1a:b4:4f:1e:e8:70:04:52:ec: 22:04:dd:c8:f3:3e:53:b8:92:ba:9e:af:c3:33:03:19:4b:0d: b4:9e:0b:d4:1a:c1:b1:f2:22:48:e1:cd:a9:2f:49:84:0b:96: 99:3d:99:6f:8c:96:2e:14:0e:e7:7b:e1:48:aa:85:90:f6:60: 63:56:dd:06:df:22:27:dc:a2:dd:a0:98:6b:95:0e:6a:35:47: d0:d0:da:1b:b9:ca:9d:a9:4a:9f:d9:8f:d0:cd:36:07:5b:2d: 47:27:65:40:5c:3b:72:92:dd:94:16:10:16:8a:2a:de:1d:06: eb:2e:ff:3f:34:6b:d9:7a:02:22:4e:26:3c:6e:4a:ec:bb:87: 26:fc:c2:48:61:d8:50:b1:96:0f:e6:eb:97:af:ca:04:12:91: f6:0e:e7:ae:6c:6e:6a:ef:d0:89:86:03:3a:c4:7f:7e:ab:be: f4:01:ca:52:0a:14:c6:3d:e9:14:27:b5:70:c9:c4:4f:f4:9a: a0:bf:e3:bf:ce:4a:a4:31:d4:b1:d6:24:e7:98:7c:70:0f:f2: 32:1c:d4:6c:39:de:83:2e:42:a0:00:0a:1b:7c:1c:38:d6:9d: 0f:bb:46:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtGmWG2aQb+S2bV1gw42tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOTQ5ZDJiZDY0ZWUxN2VmNWQ0N2Y5NjNlM2Q1ZDdhOTgy YjEyYWYwHhcNMjYwMjA5MTQwMDQ1WhcNMjYwMjEwMTQwMDQ1WjAzMTEwLwYDVQQD EyhiYjVhY2ZhZTEzNmVmNjk3NjU0ODY1ODkxZTU0NmU0YzA5OWJiMGM1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAywwR+JBENSOCLOLd9Lz77B7PRk64 BQ0MmAcRD7xMpxlYT8gXxO7FdZV4zrpzKUpS7O5sCfVAxDBOaJAsTjROqR4PIQbm gI+zAdTApRO1Cs51ajTtwlp7i5/mQUxqNpIf3lEFUvk1OfatQLcmXBqhPX2aFb5x JbsQluD+/EVgWIgGHIXwib8vhnO0nNAULcl2plWhUFTO1BZDPayI4OqKwy3otTW7 cy9wBAfPzCaeI5h1t1tdrxSLqYoR1bhOPjnt03tfA7fX3NepmTW8aQWJ856P0Rpl pO0B1WBCp7zQ+UxUqqBcIJgytjVNMN0+c/SYXHgvO/NzbrkJq7cA6wn4dwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLtaz64TbvaXZUhliR5UbkwJm7DFMB8GA1UdIwQY MBaAFGyUnSvWTuF+9dR/lj49XXqYKxKvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEt MjMyZjQ3MDM0OTFmLzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC9mODY1MWItYzEyYi00MmQ0LWFmZGEtMjMyZjQ3MDM0OTFm LzEvYkpTZEs5Wk80WDcxMUgtV1BqMWRlcGdyRXE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPWjUJr5Q yYUtNHjCrqPYmRhSWPxC8xfNcjjKGrRPHuhwBFLsIgTdyPM+U7iSup6vwzMDGUsN tJ4L1BrBsfIiSOHNqS9JhAuWmT2Zb4yWLhQO53vhSKqFkPZgY1bdBt8iJ9yi3aCY a5UOajVH0NDaG7nKnalKn9mP0M02B1stRydlQFw7cpLdlBYQFooq3h0G6y7/PzRr 2XoCIk4mPG5K7LuHJvzCSGHYULGWD+brl6/KBBKR9g7nrmxuau/QiYYDOsR/fqu+ 9AHKUgoUxj3pFCe1cMnET/SaoL/jv85KpDHUsdYk55h8cA/yMhzUbDnegy5CoAAK G3wcONadD7tGYw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:26 2026 by rpki-client