This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft File: BQJMtECm3Xana1aUwOL07jMOCnw.mft (raw, json) Hash identifier: 8uIkUi+CgyXM62rC07ixrdKNvvlZLWvqiqIV6p4bwv4= Subject key identifier: 89:AA:67:F2:80:D1:D4:BD:60:A4:9E:05:11:D7:F6:0A:26:E4:16:A8 Authority key identifier: 05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C Certificate issuer: /CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c Certificate serial: 019C432282F167D03BFCB9208EA1BDCA8E92 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft Manifest number: 053A Signing time: Mon 09 Feb 2026 16:01:00 +0000 Manifest this update: Mon 09 Feb 2026 16:01:00 +0000 Manifest next update: Tue 10 Feb 2026 16:01:00 +0000 Files and hashes: 1: BQJMtECm3Xana1aUwOL07jMOCnw.crl (hash: gllM22stEEV+GdJPzpP4AbnTlNS2yC8aNFWS4Q2hegU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:82:f1:67:d0:3b:fc:b9:20:8e:a1:bd:ca:8e:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05024cb440a6dd76a76b5694c0e2f4ee330e0a7c Validity Not Before: Feb 9 16:01:00 2026 GMT Not After : Feb 10 16:01:00 2026 GMT Subject: CN=89aa67f280d1d4bd60a49e0511d7f60a26e416a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8c:7b:06:e6:83:ef:33:0c:cd:d1:0e:32:f4: 99:30:ed:ce:5b:d0:a0:98:07:a8:ce:6d:bd:35:b2: 31:b4:5d:ac:b3:a4:81:d7:88:0b:be:68:bf:05:34: ea:61:bb:1a:9a:3d:0a:d8:7d:4e:3e:aa:18:de:8d: ea:1c:01:6b:6e:14:55:c1:b5:3f:26:a1:4f:7e:03: 86:c1:36:ec:09:14:14:28:81:0e:6b:9b:3d:56:9a: da:5b:ce:b9:a4:7a:c1:26:d7:27:78:ea:8c:ac:65: f0:84:b2:11:1a:80:3b:83:d8:01:0b:9c:47:ca:60: ca:03:bd:e2:18:2a:15:91:8b:7a:4c:80:b9:dd:c1: de:c8:8f:32:15:1a:5a:fb:c4:50:32:57:6d:53:cd: e1:e7:93:7f:d5:7a:e9:0f:97:d6:e7:2d:7d:e7:ea: f8:3b:6d:53:fb:60:9b:5f:20:30:b9:74:d6:f9:ed: 0b:9b:34:84:7d:3e:b8:73:cb:e4:37:96:2a:93:67: 31:1e:44:ac:8a:e2:27:d1:6c:c5:e4:63:a2:b9:63: fa:16:54:de:c9:d2:9a:06:56:40:dc:61:87:ce:b9: 78:4e:79:6a:b8:e1:49:a8:20:b4:61:1f:59:c7:34: 9f:ee:a6:59:d7:18:3b:e3:f4:9f:e9:43:d8:f7:24: 8a:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AA:67:F2:80:D1:D4:BD:60:A4:9E:05:11:D7:F6:0A:26:E4:16:A8 X509v3 Authority Key Identifier: keyid:05:02:4C:B4:40:A6:DD:76:A7:6B:56:94:C0:E2:F4:EE:33:0E:0A:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BQJMtECm3Xana1aUwOL07jMOCnw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2e/a60b1a-27bb-4604-9340-a82262204e38/1/BQJMtECm3Xana1aUwOL07jMOCnw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:02:cb:f0:09:be:3a:5b:04:58:0e:26:30:17:8f:c4:98:a9: a6:ad:d0:d3:9a:7e:63:ea:98:73:00:41:b5:c5:db:8a:ec:7e: fd:69:19:7d:8b:da:0d:7e:85:ac:8d:1d:64:72:c7:1e:5a:24: e0:02:6d:39:45:bd:ef:80:90:0e:4d:65:cf:6f:0b:63:26:a5: f3:50:0c:87:15:8a:31:db:8c:06:2b:24:b4:28:03:ce:6a:c9: d0:a3:5a:b9:3e:49:cb:5d:9f:0c:1d:d2:bd:4c:fe:c6:cb:f6: c1:89:7e:60:47:fd:1a:e8:3c:69:f4:2a:25:a5:88:f7:aa:3f: 12:91:2d:4e:a6:fc:8c:44:81:48:11:e1:69:27:bc:a7:74:64: 0b:92:5b:3f:0b:e1:41:b5:e9:2a:7e:af:4b:1b:3c:4a:60:0d: 04:27:be:4b:16:31:0b:ae:be:9d:e7:e9:68:93:74:ec:78:38: b2:67:70:78:20:8a:35:fc:3e:61:2c:d0:e6:95:e2:ba:39:51: 73:54:9b:1d:37:77:7a:67:63:20:54:8f:ac:a7:11:d4:9d:9b: 9e:12:65:d8:f5:2f:c8:e6:b7:fe:35:b1:04:5d:60:52:f7:4f: 70:f9:81:a1:96:7b:38:1a:35:b5:fc:ef:90:4d:5c:16:97:99: c9:37:1c:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoLxZ9A7/LkgjqG9yo6SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1MDI0Y2I0NDBhNmRkNzZhNzZiNTY5NGMwZTJmNGVlMzMw ZTBhN2MwHhcNMjYwMjA5MTYwMTAwWhcNMjYwMjEwMTYwMTAwWjAzMTEwLwYDVQQD Eyg4OWFhNjdmMjgwZDFkNGJkNjBhNDllMDUxMWQ3ZjYwYTI2ZTQxNmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6ox7BuaD7zMMzdEOMvSZMO3OW9Cg mAeozm29NbIxtF2ss6SB14gLvmi/BTTqYbsamj0K2H1OPqoY3o3qHAFrbhRVwbU/ JqFPfgOGwTbsCRQUKIEOa5s9VpraW865pHrBJtcneOqMrGXwhLIRGoA7g9gBC5xH ymDKA73iGCoVkYt6TIC53cHeyI8yFRpa+8RQMldtU83h55N/1XrpD5fW5y195+r4 O21T+2CbXyAwuXTW+e0LmzSEfT64c8vkN5Yqk2cxHkSsiuIn0WzF5GOiuWP6FlTe ydKaBlZA3GGHzrl4TnlquOFJqCC0YR9ZxzSf7qZZ1xg74/Sf6UPY9ySK5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFImqZ/KA0dS9YKSeBRHX9gom5BaoMB8GA1UdIwQY MBaAFAUCTLRApt12p2tWlMDi9O4zDgp8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZS9hNjBiMWEtMjdiYi00NjA0LTkzNDAt YTgyMjYyMjA0ZTM4LzEvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZS9hNjBiMWEtMjdiYi00NjA0LTkzNDAtYTgyMjYyMjA0ZTM4 LzEvQlFKTXRFQ20zWGFuYTFhVXdPTDA3ak1PQ253LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYgLL8Am+ OlsEWA4mMBePxJippq3Q05p+Y+qYcwBBtcXbiux+/WkZfYvaDX6FrI0dZHLHHlok 4AJtOUW974CQDk1lz28LYyal81AMhxWKMduMBisktCgDzmrJ0KNauT5Jy12fDB3S vUz+xsv2wYl+YEf9Gug8afQqJaWI96o/EpEtTqb8jESBSBHhaSe8p3RkC5JbPwvh QbXpKn6vSxs8SmANBCe+SxYxC66+nefpaJN07Hg4smdweCCKNfw+YSzQ5pXiujlR c1SbHTd3emdjIFSPrKcR1J2bnhJl2PUvyOa3/jWxBF1gUvdPcPmBoZZ7OBo1tfzv kE1cFpeZyTcc+w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:06 2026 by rpki-client