This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft File: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft (raw, json) Hash identifier: hM0zUqtDVymKgcZv9ZkmdWeXcH3ty5vvXGSJOPSshGE= Subject key identifier: F4:9C:78:BE:AF:DB:74:C0:23:68:D3:46:1B:D5:EC:3F:45:EF:DD:BB Authority key identifier: 05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F Certificate issuer: /CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f Certificate serial: 019C039EE19B04D1AB78293362A6D5E62F65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft Manifest number: 0A69 Signing time: Wed 28 Jan 2026 08:01:09 +0000 Manifest this update: Wed 28 Jan 2026 08:01:09 +0000 Manifest next update: Thu 29 Jan 2026 08:01:09 +0000 Files and hashes: 1: BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl (hash: Ym2fVn4an6JtVouL/tuht9rUj5GrxDacATEp4ZofEbI=) 2: wPZBSgFASeM9SaWJvAkRGk-7twQ.roa (hash: R3wosEg+LuaaoBj4e/mPNIMyKN6NLJP5v9wAW4ICOrI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 08:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:03:9e:e1:9b:04:d1:ab:78:29:33:62:a6:d5:e6:2f:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=052b10e547e89ff6c7b39b6ca97fb16b3fdfbe4f Validity Not Before: Jan 28 08:01:09 2026 GMT Not After : Jan 29 08:01:09 2026 GMT Subject: CN=f49c78beafdb74c02368d3461bd5ec3f45efddbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b8:c5:b1:a6:5d:bf:e4:27:77:c6:eb:e2:86: 35:b7:0f:29:47:67:9f:31:e0:f0:9f:4f:77:e3:aa: 1b:85:ad:0b:24:93:8b:d2:63:d1:16:36:57:5e:fb: ad:f8:0d:29:d7:52:93:26:6b:09:88:4c:45:ea:3e: e4:28:f0:16:8a:07:36:b2:9a:f8:76:1c:72:47:88: d5:80:20:61:1e:8b:9b:6b:82:b1:aa:b5:22:ce:bc: 99:56:ef:5a:f6:ec:11:7c:28:76:da:ca:73:4c:83: d0:55:40:a6:bf:fe:6d:0e:f3:4b:7d:f9:5b:05:9e: 4a:f9:fd:5c:23:bc:3d:7c:e6:cb:46:58:b3:d7:e7: a5:42:c6:72:bb:4a:29:30:3c:fa:49:83:b8:42:84: c3:3f:54:dd:b5:5b:30:19:13:0f:50:e6:e6:fa:7c: 15:b1:e3:91:12:4f:bf:3f:2e:0b:14:48:77:2c:dd: eb:3b:82:df:01:ab:9c:fe:f6:98:bf:48:4f:1e:04: 4e:34:18:1e:60:47:23:6c:70:f5:9b:80:70:3b:85: fb:cd:a9:3f:5c:d5:2d:6a:9b:58:18:0e:74:44:80: 30:32:6c:1c:66:3e:ed:02:c5:3b:b3:e8:4f:ef:66: cb:ae:fc:36:7b:b0:a9:64:62:69:fb:03:ca:e5:da: aa:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:9C:78:BE:AF:DB:74:C0:23:68:D3:46:1B:D5:EC:3F:45:EF:DD:BB X509v3 Authority Key Identifier: keyid:05:2B:10:E5:47:E8:9F:F6:C7:B3:9B:6C:A9:7F:B1:6B:3F:DF:BE:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/2aa218-7e1e-4994-8cb0-1f76e9dcff92/1/BSsQ5Ufon_bHs5tsqX-xaz_fvk8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:1f:8d:5c:3f:dc:9c:a4:b7:8d:3c:37:65:f5:8d:67:28:8d: 20:82:3a:57:b0:17:93:a5:ad:2b:83:45:e5:99:19:8e:1f:11: 60:7d:75:67:06:9d:ae:5a:cb:57:87:9d:ee:2a:46:ca:45:74: 90:a2:8d:f2:11:b8:22:f2:0d:3b:97:fd:80:b5:1d:e5:48:e6: b9:01:0e:9c:1e:58:56:5c:d0:9c:55:4f:e9:42:e9:3a:e4:bb: bc:ea:67:d0:b1:0b:e1:45:67:b2:42:58:b1:07:ef:78:e9:40: 61:71:f1:d2:2d:38:16:c7:6a:3b:8e:8a:74:ac:30:dd:39:27: d5:db:92:d5:cf:dd:5a:76:37:41:25:10:28:4b:a2:60:35:5b: d7:ff:ed:97:1f:17:a1:08:db:cf:bd:65:bb:d3:a1:ee:78:52: df:24:a9:81:58:29:cf:98:a9:7f:a0:b2:c8:aa:2d:79:05:e1: 9f:ec:b7:fa:08:3f:a0:9f:3c:d0:c4:07:f1:e2:92:02:68:cb: 67:4a:9e:57:25:ce:1a:93:f2:1e:d0:b0:72:eb:bb:14:ba:c5: 82:67:75:4c:cd:a3:0c:0c:81:fa:31:8e:b9:ba:be:14:24:aa: e3:ef:c9:23:f4:32:5b:a6:6b:53:e4:77:2b:79:b5:14:8e:61: 15:e5:ad:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwDnuGbBNGreCkzYqbV5i9lMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MmIxMGU1NDdlODlmZjZjN2IzOWI2Y2E5N2ZiMTZiM2Zk ZmJlNGYwHhcNMjYwMTI4MDgwMTA5WhcNMjYwMTI5MDgwMTA5WjAzMTEwLwYDVQQD EyhmNDljNzhiZWFmZGI3NGMwMjM2OGQzNDYxYmQ1ZWMzZjQ1ZWZkZGJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0rjFsaZdv+Qnd8br4oY1tw8pR2ef MeDwn09346obha0LJJOL0mPRFjZXXvut+A0p11KTJmsJiExF6j7kKPAWigc2spr4 dhxyR4jVgCBhHouba4KxqrUizryZVu9a9uwRfCh22spzTIPQVUCmv/5tDvNLfflb BZ5K+f1cI7w9fObLRliz1+elQsZyu0opMDz6SYO4QoTDP1TdtVswGRMPUObm+nwV seOREk+/Py4LFEh3LN3rO4LfAauc/vaYv0hPHgRONBgeYEcjbHD1m4BwO4X7zak/ XNUtaptYGA50RIAwMmwcZj7tAsU7s+hP72bLrvw2e7CpZGJp+wPK5dqq+wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPSceL6v23TAI2jTRhvV7D9F7927MB8GA1UdIwQY MBaAFAUrEOVH6J/2x7ObbKl/sWs/375PMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlNzUTVVZm9uX2JIczV0c3FYLXhhel9mdms4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi8yYWEyMTgtN2UxZS00OTk0LThjYjAt MWY3NmU5ZGNmZjkyLzEvQlNzUTVVZm9uX2JIczV0c3FYLXhhel9mdms4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi8yYWEyMTgtN2UxZS00OTk0LThjYjAtMWY3NmU5ZGNmZjky LzEvQlNzUTVVZm9uX2JIczV0c3FYLXhhel9mdms4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPR+NXD/c nKS3jTw3ZfWNZyiNIII6V7AXk6WtK4NF5ZkZjh8RYH11ZwadrlrLV4ed7ipGykV0 kKKN8hG4IvINO5f9gLUd5UjmuQEOnB5YVlzQnFVP6ULpOuS7vOpn0LEL4UVnskJY sQfveOlAYXHx0i04FsdqO46KdKww3Tkn1duS1c/dWnY3QSUQKEuiYDVb1//tlx8X oQjbz71lu9Oh7nhS3ySpgVgpz5ipf6CyyKoteQXhn+y3+gg/oJ880MQH8eKSAmjL Z0qeVyXOGpPyHtCwcuu7FLrFgmd1TM2jDAyB+jGOubq+FCSq4+/JI/QyW6ZrU+R3 K3m1FI5hFeWtUA== -----END CERTIFICATE-----Generated at Wed Jan 28 17:54:43 2026 by rpki-client