This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft File: Bv170s3aV23AzQiOvm7mAZceEjQ.mft (raw, json) Hash identifier: ohTc0xmuZdDD7z61c+SMD57DO+CnUUrHE9KA2JHdvhM= Subject key identifier: 15:C5:DF:AD:77:25:D8:53:DD:25:DF:23:D8:0F:37:CF:3B:E0:72:90 Authority key identifier: 06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34 Certificate issuer: /CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234 Certificate serial: 019C43FE514278467EC2A9906F264C0F21D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft Manifest number: 0FE7 Signing time: Mon 09 Feb 2026 20:01:06 +0000 Manifest this update: Mon 09 Feb 2026 20:01:06 +0000 Manifest next update: Tue 10 Feb 2026 20:01:06 +0000 Files and hashes: 1: Bv170s3aV23AzQiOvm7mAZceEjQ.crl (hash: pyl/gCooq5p2tJY81JMz5DNqBf/i06R/TcRQpncz+q8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:51:42:78:46:7e:c2:a9:90:6f:26:4c:0f:21:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06fd7bd2cdda576dc0cd088ebe6ee601971e1234 Validity Not Before: Feb 9 20:01:06 2026 GMT Not After : Feb 10 20:01:06 2026 GMT Subject: CN=15c5dfad7725d853dd25df23d80f37cf3be07290 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:cf:47:a7:21:9c:b6:49:dc:45:e1:bd:fc:87: db:82:c1:12:7d:e8:a1:5c:89:ea:4f:bf:25:bb:2e: fc:f9:0d:5a:d3:3f:f6:be:b3:1b:eb:12:72:c4:04: 9c:2f:5c:62:50:b1:f2:f3:8f:82:38:6a:61:35:92: 3d:94:7b:c6:7d:77:64:2b:5a:af:7f:58:2e:cc:0f: 3e:38:2d:91:fa:9c:02:e4:bc:15:49:de:be:72:79: cc:7a:17:b8:61:82:7e:73:16:b7:07:10:85:48:e3: 3b:e9:9d:ac:67:e8:ec:ee:b7:88:e3:f1:e9:d4:cb: 01:71:c1:e8:58:93:be:e9:2b:b0:7e:71:f7:4c:78: 8b:b4:25:54:8d:e3:08:e0:55:3f:6a:63:a5:87:9c: e1:f3:29:d9:62:1b:e7:9e:78:aa:8c:54:af:c5:75: fe:df:34:94:67:f6:16:9a:59:9d:d9:34:e2:aa:d8: d3:a0:73:1e:e1:32:e6:ba:3a:40:ff:06:6f:ba:32: 07:35:f2:fb:bb:61:a7:d1:bd:39:d1:ab:e9:e0:79: 93:32:ca:80:c1:77:35:a2:03:eb:f8:7f:36:bd:91: 23:ec:70:1e:ee:94:22:87:cc:fc:90:e1:17:21:02: 81:00:10:c4:df:c3:27:0a:91:84:14:14:c0:54:01: da:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:C5:DF:AD:77:25:D8:53:DD:25:DF:23:D8:0F:37:CF:3B:E0:72:90 X509v3 Authority Key Identifier: keyid:06:FD:7B:D2:CD:DA:57:6D:C0:CD:08:8E:BE:6E:E6:01:97:1E:12:34 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bv170s3aV23AzQiOvm7mAZceEjQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/620df1-34ca-4e57-b3e1-b8d4bba7021e/1/Bv170s3aV23AzQiOvm7mAZceEjQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:8b:5a:56:74:ed:3a:c0:2d:89:49:b0:09:37:4d:4c:ca:ef: 5b:c6:8a:6d:24:79:05:23:c5:93:5f:f8:3e:f8:f3:4e:b5:5e: 4c:32:6b:a2:d5:26:07:f4:51:a4:a2:18:bc:e0:05:4b:7e:24: f4:47:b7:2b:2f:63:57:04:4a:f9:47:eb:98:f2:81:2e:ee:c1: ce:b6:cb:76:fa:e6:70:bc:9b:48:11:d4:c5:1b:15:f2:19:26: 5f:bf:54:93:2c:7b:e2:dc:11:6b:d9:19:41:dd:0d:e4:d7:85: 93:d1:9d:aa:ac:18:73:98:56:6f:ea:e0:a2:af:62:b1:3c:2e: 7e:89:cc:23:5c:d5:0e:39:91:23:3e:86:92:e9:e1:02:1b:5c: 05:d8:f0:f4:87:57:4b:19:3c:0f:f9:a7:54:ff:40:7f:0b:62: dc:8d:64:5b:30:b0:67:69:30:32:bf:55:20:df:5b:c8:60:7d: 91:f1:98:84:e7:46:95:c3:42:04:34:d1:14:b5:a3:c5:fa:af: af:c0:12:58:0e:19:2d:48:6e:9c:ad:54:bc:b9:49:16:8c:89: c4:b1:46:aa:04:f7:26:56:a9:8c:8e:15:4e:d0:3d:64:27:c5: 2e:cf:fc:6c:f8:62:0e:d6:2c:01:ca:56:35:23:64:e8:43:88: a4:ec:05:28 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/lFCeEZ+wqmQbyZMDyHXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2ZmQ3YmQyY2RkYTU3NmRjMGNkMDg4ZWJlNmVlNjAxOTcx ZTEyMzQwHhcNMjYwMjA5MjAwMTA2WhcNMjYwMjEwMjAwMTA2WjAzMTEwLwYDVQQD EygxNWM1ZGZhZDc3MjVkODUzZGQyNWRmMjNkODBmMzdjZjNiZTA3MjkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAis9HpyGctkncReG9/IfbgsESfeih XInqT78luy78+Q1a0z/2vrMb6xJyxAScL1xiULHy84+COGphNZI9lHvGfXdkK1qv f1guzA8+OC2R+pwC5LwVSd6+cnnMehe4YYJ+cxa3BxCFSOM76Z2sZ+js7reI4/Hp 1MsBccHoWJO+6SuwfnH3THiLtCVUjeMI4FU/amOlh5zh8ynZYhvnnniqjFSvxXX+ 3zSUZ/YWmlmd2TTiqtjToHMe4TLmujpA/wZvujIHNfL7u2Gn0b050avp4HmTMsqA wXc1ogPr+H82vZEj7HAe7pQih8z8kOEXIQKBABDE38MnCpGEFBTAVAHaQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBXF3613JdhT3SXfI9gPN8874HKQMB8GA1UdIwQY MBaAFAb9e9LN2ldtwM0Ijr5u5gGXHhI0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC82MjBkZjEtMzRjYS00ZTU3LWIzZTEt YjhkNGJiYTcwMjFlLzEvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC82MjBkZjEtMzRjYS00ZTU3LWIzZTEtYjhkNGJiYTcwMjFl LzEvQnYxNzBzM2FWMjNBelFpT3ZtN21BWmNlRWpRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABotaVnTt OsAtiUmwCTdNTMrvW8aKbSR5BSPFk1/4PvjzTrVeTDJrotUmB/RRpKIYvOAFS34k 9Ee3Ky9jVwRK+UfrmPKBLu7BzrbLdvrmcLybSBHUxRsV8hkmX79Ukyx74twRa9kZ Qd0N5NeFk9GdqqwYc5hWb+rgoq9isTwufonMI1zVDjmRIz6GkunhAhtcBdjw9IdX Sxk8D/mnVP9Afwti3I1kWzCwZ2kwMr9VIN9byGB9kfGYhOdGlcNCBDTRFLWjxfqv r8ASWA4ZLUhunK1UvLlJFoyJxLFGqgT3JlapjI4VTtA9ZCfFLs/8bPhiDtYsAcpW NSNk6EOIpOwFKA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:19 2026 by rpki-client