This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft File: bMfzcUDRMXn5pckglknIDDfGpxM.mft (raw, json) Hash identifier: Xc1lYTNsn2ZOZrzrDDEvNDATT1MrtWfeDPN7iitkUxQ= Subject key identifier: FB:73:8B:7E:7A:6C:76:5E:6D:BE:5C:A6:FC:B7:E6:90:C7:D7:2E:8F Authority key identifier: 6C:C7:F3:71:40:D1:31:79:F9:A5:C9:20:96:49:C8:0C:37:C6:A7:13 Certificate issuer: /CN=6cc7f37140d13179f9a5c9209649c80c37c6a713 Certificate serial: 019C43900A5397E0EFFB96058D350110957E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft Manifest number: 1428 Signing time: Mon 09 Feb 2026 18:00:39 +0000 Manifest this update: Mon 09 Feb 2026 18:00:39 +0000 Manifest next update: Tue 10 Feb 2026 18:00:39 +0000 Files and hashes: 1: bMfzcUDRMXn5pckglknIDDfGpxM.crl (hash: t6mKqbZEbr3DLBcjwiIMO3zH05WrMG2Mn1kcfvk6f6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.crl rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:0a:53:97:e0:ef:fb:96:05:8d:35:01:10:95:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cc7f37140d13179f9a5c9209649c80c37c6a713 Validity Not Before: Feb 9 18:00:39 2026 GMT Not After : Feb 10 18:00:39 2026 GMT Subject: CN=fb738b7e7a6c765e6dbe5ca6fcb7e690c7d72e8f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d1:f7:43:94:07:9d:7b:33:70:8a:80:d0:d6: 91:1b:5a:91:c9:0c:b1:60:f7:99:c5:ca:62:88:1d: e7:9f:5d:6c:a9:47:99:5e:9e:29:11:77:13:91:5f: 6c:1d:10:0d:75:da:87:cb:17:66:62:60:0a:5e:31: 53:e3:a3:da:cb:1f:44:f6:c3:1a:92:f9:7d:07:b1: 09:a8:97:e1:a3:b9:54:77:6e:e1:3b:39:14:05:ac: 72:ea:76:1f:d8:fb:6b:99:d8:9a:c3:71:d0:30:f2: 9a:f6:20:b0:2c:d5:a1:d1:38:68:57:de:b4:e7:2a: d5:ee:17:c8:70:0c:1a:a6:62:6e:fd:2b:dd:35:86: 73:e7:cd:24:89:5f:c4:3c:dd:a5:7f:4f:c5:37:01: 16:a9:57:e3:b3:9d:4e:41:b6:f8:ef:d6:6e:cc:6d: 8c:d2:4c:5c:e5:ca:1c:7b:e9:44:d6:4b:f9:92:7a: 2c:06:68:87:95:2a:88:79:b4:4e:cf:d0:75:e0:45: e8:70:19:c5:e3:e8:56:3c:14:07:34:f1:36:f7:32: 7e:39:c2:47:c4:51:98:ab:e9:b0:d3:ec:6c:29:63: fb:9b:ef:6a:5e:7d:2b:aa:b8:8f:fb:f9:ff:18:f1: f1:ff:23:ac:6f:30:b9:0a:9d:ba:99:ce:1b:24:ae: 14:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:73:8B:7E:7A:6C:76:5E:6D:BE:5C:A6:FC:B7:E6:90:C7:D7:2E:8F X509v3 Authority Key Identifier: keyid:6C:C7:F3:71:40:D1:31:79:F9:A5:C9:20:96:49:C8:0C:37:C6:A7:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bMfzcUDRMXn5pckglknIDDfGpxM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a75507-5c5c-4842-a1c4-8d56ddcfa4b8/1/bMfzcUDRMXn5pckglknIDDfGpxM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:0c:8a:23:b7:9b:4e:09:d9:70:c5:f5:3d:3a:3a:f2:bc:75: 37:4c:e6:f5:05:21:93:a5:f4:08:72:d9:06:0a:9f:40:8c:9d: e2:5f:47:da:50:e7:9b:8a:3c:76:de:16:35:0b:e4:49:d4:27: a6:9e:13:a4:0e:25:9c:87:6d:aa:d5:5f:8f:73:1e:ac:83:98: 7d:7f:b4:f7:eb:2b:4d:79:66:bb:6f:f1:a1:ef:ff:74:3e:24: 3f:4e:40:58:a2:c1:67:d6:8d:df:2b:44:5e:50:48:2c:29:aa: 04:34:73:4d:2a:d7:91:43:7d:a4:00:92:26:5a:be:3b:15:6c: e5:f9:ad:dd:94:86:ed:6c:9b:0c:ed:89:54:97:bc:70:7d:1d: 3c:a7:31:e1:5e:d6:e6:1f:1d:2c:ee:05:e9:e1:af:88:10:28: f6:42:91:ac:0c:ef:c2:5e:c3:79:c5:90:16:83:00:16:23:b3: 67:67:fa:bb:fe:6b:34:e8:34:e2:54:ff:be:b5:97:53:cc:ec: 97:ca:dd:0d:89:bf:6a:bd:f0:65:46:11:65:6d:98:15:4b:c1: cc:b9:ed:81:0e:1f:19:85:9c:55:0f:5d:dc:11:ab:9a:6e:ec: ce:bb:0f:48:91:d2:23:79:71:44:fb:b5:67:40:c7:6a:93:8c: f0:95:ef:e8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkApTl+Dv+5YFjTUBEJV+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYzdmMzcxNDBkMTMxNzlmOWE1YzkyMDk2NDljODBjMzdj NmE3MTMwHhcNMjYwMjA5MTgwMDM5WhcNMjYwMjEwMTgwMDM5WjAzMTEwLwYDVQQD EyhmYjczOGI3ZTdhNmM3NjVlNmRiZTVjYTZmY2I3ZTY5MGM3ZDcyZThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn9H3Q5QHnXszcIqA0NaRG1qRyQyx YPeZxcpiiB3nn11sqUeZXp4pEXcTkV9sHRANddqHyxdmYmAKXjFT46Payx9E9sMa kvl9B7EJqJfho7lUd27hOzkUBaxy6nYf2Ptrmdiaw3HQMPKa9iCwLNWh0ThoV960 5yrV7hfIcAwapmJu/SvdNYZz580kiV/EPN2lf0/FNwEWqVfjs51OQbb479ZuzG2M 0kxc5coce+lE1kv5knosBmiHlSqIebROz9B14EXocBnF4+hWPBQHNPE29zJ+OcJH xFGYq+mw0+xsKWP7m+9qXn0rqriP+/n/GPHx/yOsbzC5Cp26mc4bJK4UHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPtzi356bHZebb5cpvy35pDH1y6PMB8GA1UdIwQY MBaAFGzH83FA0TF5+aXJIJZJyAw3xqcTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk1memNVRFJNWG41cGNrZ2xrbklERGZHcHhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hNzU1MDctNWM1Yy00ODQyLWExYzQt OGQ1NmRkY2ZhNGI4LzEvYk1memNVRFJNWG41cGNrZ2xrbklERGZHcHhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9hNzU1MDctNWM1Yy00ODQyLWExYzQtOGQ1NmRkY2ZhNGI4 LzEvYk1memNVRFJNWG41cGNrZ2xrbklERGZHcHhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWgyKI7eb TgnZcMX1PTo68rx1N0zm9QUhk6X0CHLZBgqfQIyd4l9H2lDnm4o8dt4WNQvkSdQn pp4TpA4lnIdtqtVfj3MerIOYfX+09+srTXlmu2/xoe//dD4kP05AWKLBZ9aN3ytE XlBILCmqBDRzTSrXkUN9pACSJlq+OxVs5fmt3ZSG7WybDO2JVJe8cH0dPKcx4V7W 5h8dLO4F6eGviBAo9kKRrAzvwl7DecWQFoMAFiOzZ2f6u/5rNOg04lT/vrWXU8zs l8rdDYm/ar3wZUYRZW2YFUvBzLntgQ4fGYWcVQ9d3BGrmm7szrsPSJHSI3lxRPu1 Z0DHapOM8JXv6A== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:10 2026 by rpki-client