This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft File: BmVsWtlzg3LVTAN-OX81vpqpJNs.mft (raw, json) Hash identifier: 6YGxCb5jnJIkfc9uUFwqbjjUph0wev+l9TYQ4jfstuM= Subject key identifier: D6:61:3F:82:84:B2:8D:CF:BA:B4:57:FE:FA:82:6B:A8:14:E5:3B:1B Authority key identifier: 06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB Certificate issuer: /CN=06656c5ad9738372d54c037e397f35be9aa924db Certificate serial: 019C45B5BB6A66C64B2738A43F0F38E2C59E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft Manifest number: 03E0 Signing time: Tue 10 Feb 2026 04:01:03 +0000 Manifest this update: Tue 10 Feb 2026 04:01:03 +0000 Manifest next update: Wed 11 Feb 2026 04:01:03 +0000 Files and hashes: 1: BmVsWtlzg3LVTAN-OX81vpqpJNs.crl (hash: HIrxeNgzROp4cpzuMiSm5W0hh2NFf2h3jQrOYQGO6Ys=) 2: IuMZcspQ8K2Rh1GaYKyW2FT1kL4.roa (hash: 9/0A8YPeaznPXiLNVP4FFOJdTd1wwZVGFqXuoC2dxWg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:b5:bb:6a:66:c6:4b:27:38:a4:3f:0f:38:e2:c5:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06656c5ad9738372d54c037e397f35be9aa924db Validity Not Before: Feb 10 04:01:03 2026 GMT Not After : Feb 11 04:01:03 2026 GMT Subject: CN=d6613f8284b28dcfbab457fefa826ba814e53b1b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:33:db:65:43:c0:00:6c:2a:ae:d0:9b:21:80: d0:a2:6a:11:f5:88:1c:4f:0a:8a:ac:4b:f8:2b:82: 15:7b:4b:d0:85:42:0d:37:d7:25:c3:19:87:e8:ae: 24:8e:8b:32:c3:8e:8f:30:41:8a:3d:58:dc:dd:55: bb:e4:f4:29:15:7e:78:d3:c7:ca:7d:47:18:92:74: f7:8c:a1:ad:dc:5e:c6:d4:f6:8a:e8:41:f6:41:01: fd:fc:b0:96:a4:96:20:d6:62:53:58:47:83:9f:9d: 20:23:63:94:74:d3:e9:04:71:25:6b:d7:e7:84:a0: 91:64:16:9b:e6:7b:6b:d4:ea:ca:d0:00:37:fa:75: 55:6d:2b:94:4a:11:19:45:2c:25:2f:48:9c:55:3d: 82:1a:f3:d1:aa:1f:76:f8:1c:80:8d:18:ac:cf:01: 08:e3:20:31:09:a5:7a:2b:50:4e:36:3d:d1:a4:b0: 66:7e:04:3c:a3:09:f5:8a:d5:25:f3:4c:be:52:b9: 98:e2:45:39:bb:22:95:32:29:30:2d:64:68:82:06: 5f:53:10:c0:de:29:31:ba:8b:b3:76:20:0a:fb:50: d8:a0:44:e7:60:e6:84:97:c3:d8:63:10:72:5e:54: 24:41:e1:47:ef:55:80:e7:e1:b0:77:e7:2c:4b:c0: a4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:61:3F:82:84:B2:8D:CF:BA:B4:57:FE:FA:82:6B:A8:14:E5:3B:1B X509v3 Authority Key Identifier: keyid:06:65:6C:5A:D9:73:83:72:D5:4C:03:7E:39:7F:35:BE:9A:A9:24:DB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmVsWtlzg3LVTAN-OX81vpqpJNs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/3b9d27-7ba4-409e-888c-8b076256f39d/1/BmVsWtlzg3LVTAN-OX81vpqpJNs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:e2:11:0f:8e:28:26:8f:71:34:e3:a6:cb:f1:1c:82:e5:ad: 34:93:b7:bc:f6:e0:5d:c1:57:0b:57:92:54:03:2b:45:d6:26: 83:6e:3a:83:a7:fc:6b:7b:63:38:6d:1c:1f:4b:a0:aa:cf:8c: 2f:58:40:0c:f5:09:5c:59:43:32:bc:48:80:b6:50:2c:86:d9: 47:ce:87:6b:ec:1d:b8:72:b8:09:87:1f:cf:dd:78:c0:b3:cf: 60:ac:57:37:22:df:7e:83:7a:0c:8e:a5:2c:24:80:32:2f:c6: 9b:9c:0f:e0:c7:53:bb:5b:af:f1:42:cf:89:d3:37:b4:18:a5: e1:d8:75:c0:ab:66:05:9f:8f:26:cd:19:e3:be:47:8a:1a:4f: 33:3c:20:74:51:be:8d:61:0c:9a:d8:57:db:63:97:64:f9:9c: f3:e5:d8:c6:08:46:c5:d4:5d:f2:d0:ad:1d:a9:eb:6a:f0:f8: b8:3d:d0:60:93:61:05:52:dc:ee:06:0c:42:9c:89:a0:77:bc: 9a:83:42:0a:e2:d9:cc:cc:b8:ff:d2:23:88:60:88:2e:70:c0: d6:1b:dd:77:8c:c9:1c:c4:31:14:8e:d1:42:27:16:66:c2:bd: 97:43:e3:57:47:bb:06:6b:8e:d9:91:e3:30:00:5f:9f:e0:00: 7a:c4:5b:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFtbtqZsZLJzikPw844sWeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NjU2YzVhZDk3MzgzNzJkNTRjMDM3ZTM5N2YzNWJlOWFh OTI0ZGIwHhcNMjYwMjEwMDQwMTAzWhcNMjYwMjExMDQwMTAzWjAzMTEwLwYDVQQD EyhkNjYxM2Y4Mjg0YjI4ZGNmYmFiNDU3ZmVmYTgyNmJhODE0ZTUzYjFiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyTPbZUPAAGwqrtCbIYDQomoR9Ygc TwqKrEv4K4IVe0vQhUINN9clwxmH6K4kjosyw46PMEGKPVjc3VW75PQpFX5408fK fUcYknT3jKGt3F7G1PaK6EH2QQH9/LCWpJYg1mJTWEeDn50gI2OUdNPpBHEla9fn hKCRZBab5ntr1OrK0AA3+nVVbSuUShEZRSwlL0icVT2CGvPRqh92+ByAjRiszwEI 4yAxCaV6K1BONj3RpLBmfgQ8own1itUl80y+UrmY4kU5uyKVMikwLWRoggZfUxDA 3ikxuouzdiAK+1DYoETnYOaEl8PYYxByXlQkQeFH71WA5+Gwd+csS8Ck2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNZhP4KEso3PurRX/vqCa6gU5TsbMB8GA1UdIwQY MBaAFAZlbFrZc4Ny1UwDfjl/Nb6aqSTbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMt OGIwNzYyNTZmMzlkLzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS8zYjlkMjctN2JhNC00MDllLTg4OGMtOGIwNzYyNTZmMzlk LzEvQm1Wc1d0bHpnM0xWVEFOLU9YODF2cHFwSk5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMuIRD44o Jo9xNOOmy/EcguWtNJO3vPbgXcFXC1eSVAMrRdYmg246g6f8a3tjOG0cH0ugqs+M L1hADPUJXFlDMrxIgLZQLIbZR86Ha+wduHK4CYcfz914wLPPYKxXNyLffoN6DI6l LCSAMi/Gm5wP4MdTu1uv8ULPidM3tBil4dh1wKtmBZ+PJs0Z475HihpPMzwgdFG+ jWEMmthX22OXZPmc8+XYxghGxdRd8tCtHanravD4uD3QYJNhBVLc7gYMQpyJoHe8 moNCCuLZzMy4/9IjiGCILnDA1hvdd4zJHMQxFI7RQicWZsK9l0PjV0e7BmuO2ZHj MABfn+AAesRbmQ== -----END CERTIFICATE-----Generated at Tue Feb 10 08:40:31 2026 by rpki-client