This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft File: vB0gk2YmtVdDxllFEt5C75-OkF8.mft (raw, json) Hash identifier: G+XkZoPxVCuzSC+bjK2FG+WlrCEvWM+kq/GoaE38TnA= Subject key identifier: 93:A5:B1:64:3E:15:0F:55:01:60:13:06:31:3C:29:47:18:E5:70:AB Authority key identifier: BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F Certificate issuer: /CN=bc1d20936626b55743c6594512de42ef9f8e905f Certificate serial: 019C420F5DF9BBC822134EF5296DB17DB5AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 11:00:29 +0000 Manifest this update: Mon 09 Feb 2026 11:00:29 +0000 Manifest next update: Tue 10 Feb 2026 11:00:29 +0000 Files and hashes: 1: UQtxD39HgTwCJsw7WuZPliVb6kM.roa (hash: IcgnZ/5C7YQ9lKupVnJEvIWHWfxL8KqAvTe7EONdw78=) 2: vB0gk2YmtVdDxllFEt5C75-OkF8.crl (hash: tCkEHJ98W5Wcy+SXPQpm3yLaTYgBm5e1dKZcrwe2F0M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:5d:f9:bb:c8:22:13:4e:f5:29:6d:b1:7d:b5:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bc1d20936626b55743c6594512de42ef9f8e905f Validity Not Before: Feb 9 11:00:29 2026 GMT Not After : Feb 10 11:00:29 2026 GMT Subject: CN=93a5b1643e150f5501601306313c294718e570ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b7:59:39:87:b4:74:99:bb:0f:a7:86:02:70: df:73:9f:fd:fd:eb:10:b2:de:77:25:25:21:79:78: a6:2d:72:42:55:80:f2:5a:1e:73:0e:7c:ef:9f:a8: 43:25:3f:b8:3b:42:7a:60:cd:05:d8:55:30:23:e8: 03:2a:cb:ed:18:2e:26:3a:09:d4:69:7f:08:2a:c2: 29:01:63:10:b6:08:c7:e3:99:88:f6:51:a3:25:72: bd:2c:f2:cc:a7:ac:d2:25:3c:b2:d5:e7:88:e6:14: 77:ac:56:0d:61:85:45:8e:af:8e:bb:d8:73:d2:c5: 7c:3c:f4:59:da:a0:e7:43:71:ff:69:db:7a:bb:4a: 3e:be:b7:c3:ba:77:30:0a:08:cf:96:c0:fe:88:97: a0:cb:1a:90:3e:be:04:4a:60:09:05:4c:38:7f:a4: 1f:0f:e2:d2:64:e6:74:9d:e4:69:32:a3:61:74:30: 40:94:60:44:35:bd:df:be:d0:02:29:c5:b5:67:98: 52:97:21:b5:90:a8:db:74:2a:1c:fb:08:33:03:fa: 61:73:1f:97:d2:2c:18:42:55:92:7c:c2:06:4a:32: 64:78:f8:9d:69:87:ca:69:fa:6d:f9:15:49:0a:0c: a5:cb:5c:88:0e:9a:35:86:a7:03:21:1d:0b:85:cd: 6d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A5:B1:64:3E:15:0F:55:01:60:13:06:31:3C:29:47:18:E5:70:AB X509v3 Authority Key Identifier: keyid:BC:1D:20:93:66:26:B5:57:43:C6:59:45:12:DE:42:EF:9F:8E:90:5F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vB0gk2YmtVdDxllFEt5C75-OkF8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/22/bfda12-76b3-43b2-88e8-1f1dc52bbb98/1/vB0gk2YmtVdDxllFEt5C75-OkF8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:0d:4b:29:1c:94:de:f9:0b:f9:64:43:75:80:ca:df:14:05: ff:07:9d:38:3c:cd:1f:3b:de:d8:6e:a4:62:b8:2c:38:83:41: 8d:07:d2:d4:7a:1b:9d:bd:ae:a7:91:57:44:42:07:bd:6a:f4: b2:c1:d2:f7:50:ef:d5:ba:f6:b4:68:a9:80:f1:1e:fc:b1:56: 4a:e4:4b:76:47:31:30:26:c1:fe:af:00:26:d2:81:f9:47:1f: 78:82:7a:00:c9:44:c8:79:18:cf:4c:fd:e9:a7:a2:12:b5:98: 9c:8a:7f:cc:76:a5:a5:71:3c:c5:ef:ec:3c:21:d5:c7:cf:ba: 3c:d6:48:7e:0c:0e:4d:50:73:0b:14:08:0b:a5:73:83:34:f1: 33:40:a7:52:94:a2:90:b8:d3:b7:ee:a0:56:1c:06:51:37:11: 3c:4c:14:0c:2a:4a:79:36:74:5c:6b:4a:2c:89:11:0c:f8:bd: 29:25:cc:19:f9:98:c2:ae:48:1a:40:39:7b:11:55:52:db:ab: 15:bd:c2:9e:7e:03:92:93:ec:1b:80:82:40:4b:b2:d4:57:ae: 78:5d:3f:1e:0d:98:69:c1:d6:72:71:9c:01:ab:26:21:31:d5: 36:f5:fb:5e:de:91:62:ac:b4:f3:7d:fa:14:0d:59:95:26:bd: 66:ad:ce:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD135u8giE071KW2xfbWuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjMWQyMDkzNjYyNmI1NTc0M2M2NTk0NTEyZGU0MmVmOWY4 ZTkwNWYwHhcNMjYwMjA5MTEwMDI5WhcNMjYwMjEwMTEwMDI5WjAzMTEwLwYDVQQD Eyg5M2E1YjE2NDNlMTUwZjU1MDE2MDEzMDYzMTNjMjk0NzE4ZTU3MGFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt7dZOYe0dJm7D6eGAnDfc5/9/esQ st53JSUheXimLXJCVYDyWh5zDnzvn6hDJT+4O0J6YM0F2FUwI+gDKsvtGC4mOgnU aX8IKsIpAWMQtgjH45mI9lGjJXK9LPLMp6zSJTyy1eeI5hR3rFYNYYVFjq+Ou9hz 0sV8PPRZ2qDnQ3H/adt6u0o+vrfDuncwCgjPlsD+iJegyxqQPr4ESmAJBUw4f6Qf D+LSZOZ0neRpMqNhdDBAlGBENb3fvtACKcW1Z5hSlyG1kKjbdCoc+wgzA/phcx+X 0iwYQlWSfMIGSjJkePidaYfKafpt+RVJCgyly1yIDpo1hqcDIR0Lhc1tdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJOlsWQ+FQ9VAWATBjE8KUcY5XCrMB8GA1UdIwQY MBaAFLwdIJNmJrVXQ8ZZRRLeQu+fjpBfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdkIwZ2syWW10VmREeGxsRkV0NUM3NS1Pa0Y4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMi9iZmRhMTItNzZiMy00M2IyLTg4ZTgt MWYxZGM1MmJiYjk4LzEvdkIwZ2syWW10VmREeGxsRkV0NUM3NS1Pa0Y4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMi9iZmRhMTItNzZiMy00M2IyLTg4ZTgtMWYxZGM1MmJiYjk4 LzEvdkIwZ2syWW10VmREeGxsRkV0NUM3NS1Pa0Y4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJg1LKRyU 3vkL+WRDdYDK3xQF/wedODzNHzve2G6kYrgsOINBjQfS1Hobnb2up5FXREIHvWr0 ssHS91Dv1br2tGipgPEe/LFWSuRLdkcxMCbB/q8AJtKB+UcfeIJ6AMlEyHkYz0z9 6aeiErWYnIp/zHalpXE8xe/sPCHVx8+6PNZIfgwOTVBzCxQIC6VzgzTxM0CnUpSi kLjTt+6gVhwGUTcRPEwUDCpKeTZ0XGtKLIkRDPi9KSXMGfmYwq5IGkA5exFVUtur Fb3Cnn4DkpPsG4CCQEuy1FeueF0/Hg2YacHWcnGcAasmITHVNvX7Xt6RYqy08336 FA1ZlSa9Zq3OiQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:05:58 2026 by rpki-client