This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft File: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft (raw, json) Hash identifier: zcV0K0YB4TE+QsaBfErPlFGhXW0QvzcFzOChsDeMPkI= Subject key identifier: A0:08:3C:1A:37:DF:CD:19:6A:74:BB:99:B9:13:AC:2E:26:7C:0E:2D Authority key identifier: 6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4 Certificate issuer: /CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4 Certificate serial: 019C1C8365BE9B98F31BD70698BE496CA738 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft Manifest number: 03A2 Signing time: Mon 02 Feb 2026 04:01:39 +0000 Manifest this update: Mon 02 Feb 2026 04:01:39 +0000 Manifest next update: Tue 03 Feb 2026 04:01:39 +0000 Files and hashes: 1: bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl (hash: KYU/3InM9tbt2M+o/yc3hsBwzDvImcjSRWf1/U/aXBA=) 2: m4kYecQvosDEbgzFUfKOmbMpQHc.roa (hash: Qzj75bvQYH3AqSh7xgbB5Q2jMsStMjrkOv+BsYSia7o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 04:01:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:83:65:be:9b:98:f3:1b:d7:06:98:be:49:6c:a7:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e1d8dd31ae9e03af4d26e9da6e2dd86a03039a4 Validity Not Before: Feb 2 04:01:39 2026 GMT Not After : Feb 3 04:01:39 2026 GMT Subject: CN=a0083c1a37dfcd196a74bb99b913ac2e267c0e2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:2b:87:eb:f4:1b:bc:50:aa:96:b5:13:34:b9: 02:b2:81:33:01:a9:03:5f:2c:f4:67:ee:6a:c8:9d: 9f:48:a4:48:0b:68:b9:3a:98:1d:0a:3a:ac:7e:ef: 5d:20:64:d4:d7:02:6b:14:aa:99:ba:80:3e:b8:b6: 8f:5c:41:bf:7e:84:30:47:30:bf:9a:fa:c2:c7:81: a6:64:52:d0:3e:54:6d:28:e6:6e:8a:99:dd:ee:58: f8:5e:16:16:12:a9:1b:b6:d2:10:f7:e4:87:18:06: 56:9e:ee:03:d9:aa:f4:ff:b3:57:3a:dd:5b:98:e6: ee:36:11:10:81:b8:c7:66:3b:5c:56:6b:8e:9a:69: 88:61:ef:03:0a:c3:e7:89:f2:32:3c:7b:92:b9:80: 62:30:1d:2f:01:8f:d1:02:c1:c6:67:aa:dd:61:91: bc:ad:3b:60:eb:e2:ce:6a:8c:c3:40:d1:3b:07:d4: 05:26:43:a4:14:82:fd:3b:fa:09:62:10:75:00:7c: 2b:73:db:a8:ca:2a:81:52:cf:71:4a:9e:71:52:29: 51:e4:b7:f3:a2:bb:04:ab:d7:0f:9a:e8:7e:93:a0: a1:9d:a4:35:b6:85:58:99:25:1d:76:8a:82:65:35: 19:a6:9f:f9:62:37:7f:e4:9d:5c:5c:d1:18:1f:1d: 78:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:08:3C:1A:37:DF:CD:19:6A:74:BB:99:B9:13:AC:2E:26:7C:0E:2D X509v3 Authority Key Identifier: keyid:6E:1D:8D:D3:1A:E9:E0:3A:F4:D2:6E:9D:A6:E2:DD:86:A0:30:39:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/30/a269aa-c9bf-42c1-ade3-ed85ce094a87/1/bh2N0xrp4Dr00m6dpuLdhqAwOaQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:73:e4:2c:85:45:76:fb:81:2a:2c:fc:12:23:8d:5c:d1:49: 92:5f:0c:9f:00:13:ab:e6:a4:49:80:e6:1b:3a:16:78:07:f7: 7e:ca:0c:e9:9d:5f:72:dc:d6:8e:60:5e:a2:3b:43:a5:30:78: 05:af:34:31:57:4e:a4:04:be:c3:7a:ce:a1:cf:65:0e:8f:41: 86:1e:31:2c:c8:c6:e8:3a:ac:69:95:75:c4:31:77:67:16:c5: 67:14:6f:43:e8:23:91:d4:61:b8:33:f3:3f:09:b4:89:00:98: ed:4a:fb:6f:39:f7:cb:42:4b:eb:69:bd:e3:dd:d0:f4:18:b2: e1:49:c5:3a:a0:b4:46:08:aa:b1:81:e4:df:41:a0:14:a8:4e: 0f:29:fe:04:a6:51:ce:c0:5b:2f:9b:cb:e7:ba:5e:9e:74:b5: 98:5f:5f:7c:4e:e7:a4:6d:cb:77:ed:96:b6:4c:73:31:77:7c: 02:af:d1:33:a9:f1:e1:1f:65:e0:dd:b1:89:6b:17:6e:08:e4: f6:ff:fb:a3:6a:81:04:5e:9a:04:f4:a0:a8:9a:99:d3:bc:69: 1d:30:6a:cc:96:91:2f:7f:ee:a5:b1:e4:45:de:0b:77:a3:ca: 2e:7d:46:75:46:58:b9:de:cd:eb:f0:07:8e:d0:9c:bf:2e:4b: 7b:cc:d5:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcg2W+m5jzG9cGmL5JbKc4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlMWQ4ZGQzMWFlOWUwM2FmNGQyNmU5ZGE2ZTJkZDg2YTAz MDM5YTQwHhcNMjYwMjAyMDQwMTM5WhcNMjYwMjAzMDQwMTM5WjAzMTEwLwYDVQQD EyhhMDA4M2MxYTM3ZGZjZDE5NmE3NGJiOTliOTEzYWMyZTI2N2MwZTJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4iuH6/QbvFCqlrUTNLkCsoEzAakD Xyz0Z+5qyJ2fSKRIC2i5OpgdCjqsfu9dIGTU1wJrFKqZuoA+uLaPXEG/foQwRzC/ mvrCx4GmZFLQPlRtKOZuipnd7lj4XhYWEqkbttIQ9+SHGAZWnu4D2ar0/7NXOt1b mObuNhEQgbjHZjtcVmuOmmmIYe8DCsPnifIyPHuSuYBiMB0vAY/RAsHGZ6rdYZG8 rTtg6+LOaozDQNE7B9QFJkOkFIL9O/oJYhB1AHwrc9uoyiqBUs9xSp5xUilR5Lfz orsEq9cPmuh+k6ChnaQ1toVYmSUddoqCZTUZpp/5Yjd/5J1cXNEYHx14YwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKAIPBo3380ZanS7mbkTrC4mfA4tMB8GA1UdIwQY MBaAFG4djdMa6eA69NJunabi3YagMDmkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmgyTjB4cnA0RHIwMG02ZHB1TGRocUF3T2FRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMC9hMjY5YWEtYzliZi00MmMxLWFkZTMt ZWQ4NWNlMDk0YTg3LzEvYmgyTjB4cnA0RHIwMG02ZHB1TGRocUF3T2FRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMC9hMjY5YWEtYzliZi00MmMxLWFkZTMtZWQ4NWNlMDk0YTg3 LzEvYmgyTjB4cnA0RHIwMG02ZHB1TGRocUF3T2FRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXXPkLIVF dvuBKiz8EiONXNFJkl8MnwATq+akSYDmGzoWeAf3fsoM6Z1fctzWjmBeojtDpTB4 Ba80MVdOpAS+w3rOoc9lDo9Bhh4xLMjG6DqsaZV1xDF3ZxbFZxRvQ+gjkdRhuDPz Pwm0iQCY7Ur7bzn3y0JL62m9493Q9Biy4UnFOqC0RgiqsYHk30GgFKhODyn+BKZR zsBbL5vL57pennS1mF9ffE7npG3Ld+2WtkxzMXd8Aq/RM6nx4R9l4N2xiWsXbgjk 9v/7o2qBBF6aBPSgqJqZ07xpHTBqzJaRL3/upbHkRd4Ld6PKLn1GdUZYud7N6/AH jtCcvy5Le8zVbg== -----END CERTIFICATE-----Generated at Mon Feb 2 09:43:36 2026 by rpki-client