This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft File: BfCLdPURftOAcj2eQp7LSqU4Ulo.mft (raw, json) Hash identifier: qP4B17aiAXPLGWMyMBJ/Yjcs7BTd4a7M+La8R6MFiu0= Subject key identifier: B8:77:B7:0D:AD:0A:40:67:BF:2C:51:60:C8:C3:49:2E:08:B3:86:F3 Authority key identifier: 05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A Certificate issuer: /CN=05f08b74f5117ed380723d9e429ecb4aa538525a Certificate serial: 019BFEAF8C50F262C0BB91FE9A25E94951B8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft Manifest number: 17F1 Signing time: Tue 27 Jan 2026 09:01:16 +0000 Manifest this update: Tue 27 Jan 2026 09:01:16 +0000 Manifest next update: Wed 28 Jan 2026 09:01:16 +0000 Files and hashes: 1: BfCLdPURftOAcj2eQp7LSqU4Ulo.crl (hash: otBqh6MsfaA8WMFDOvmdZfuxx2Tr8MZGK5bFbCl+gaM=) 2: oq7B2jOnBFc5xmS1hAmRi3Iizs8.roa (hash: cJWrmd7TH+I8F5geYRcuRFFIpG0qtCHY7V96oxqqLg4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fe:af:8c:50:f2:62:c0:bb:91:fe:9a:25:e9:49:51:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05f08b74f5117ed380723d9e429ecb4aa538525a Validity Not Before: Jan 27 09:01:16 2026 GMT Not After : Jan 28 09:01:16 2026 GMT Subject: CN=b877b70dad0a4067bf2c5160c8c3492e08b386f3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:0e:49:3f:f9:0b:b4:4a:1e:34:d2:77:0e:8d: 0b:60:c3:37:de:1f:c8:eb:89:9f:99:27:2b:9a:40: ba:ab:31:9b:ce:a5:a2:95:0b:28:0b:75:2f:3c:30: 70:27:9b:1a:45:3b:3b:74:95:b4:eb:98:d6:2b:08: 19:23:54:ad:76:a9:0d:1b:92:84:9d:06:ca:0b:a3: f4:81:e4:a2:9c:90:e0:5c:2d:94:71:18:61:bb:a4: 35:55:e1:2e:2d:37:62:64:6b:3c:31:ac:34:16:57: 31:b3:e3:dc:1f:ee:1e:28:8a:0f:08:cc:8b:89:a0: 92:ee:76:d9:ef:c3:53:68:f1:23:ee:c8:e0:8e:df: 12:44:65:90:55:7e:7a:11:e4:45:3a:0d:f0:2d:58: 0d:2f:e6:c5:cf:77:2a:1d:63:fd:67:36:b4:23:5c: 64:46:0d:76:55:dc:2e:25:58:1c:62:bd:a2:dc:9b: bf:5e:6a:09:6a:a2:48:78:6f:a3:fb:87:84:6e:6d: 38:8e:9a:64:29:3f:d6:7f:74:a2:96:87:08:00:bf: 9a:c4:3f:75:04:96:fc:9c:c7:3b:ce:4f:e5:b1:94: 58:45:58:e3:bf:37:6c:5a:33:dc:9d:5d:ce:b1:cb: 21:3e:8c:13:be:ae:4e:51:7a:38:05:ee:d8:44:fc: 52:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:77:B7:0D:AD:0A:40:67:BF:2C:51:60:C8:C3:49:2E:08:B3:86:F3 X509v3 Authority Key Identifier: keyid:05:F0:8B:74:F5:11:7E:D3:80:72:3D:9E:42:9E:CB:4A:A5:38:52:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BfCLdPURftOAcj2eQp7LSqU4Ulo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/32/1886d8-d874-4c24-92b9-d41ac81d1cc4/1/BfCLdPURftOAcj2eQp7LSqU4Ulo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:23:20:1c:7b:c3:92:79:d7:3c:31:5d:15:e3:d4:f7:b6:6e: 29:71:ed:03:a8:a4:44:8e:1a:77:b9:b8:b4:b7:a9:d6:ca:7d: 6e:04:c9:e9:9f:ef:17:56:64:19:27:0d:58:c2:47:0f:17:05: 24:93:8e:82:3e:1e:0d:1b:c4:fe:82:c9:3d:3e:4a:9d:49:62: f6:2b:cf:e9:c5:e4:db:d3:1b:e8:d6:2b:9a:cb:76:61:dc:e7: 57:8f:f6:0c:b3:e6:eb:6f:58:99:e1:d7:08:9b:bb:e1:31:a5: 37:8d:58:3e:3b:29:c7:2d:1d:3d:01:17:ce:51:af:27:8f:e1: 15:86:af:b9:f1:d3:b5:8d:26:c3:75:e2:43:16:f2:72:ea:56: e0:f4:f5:29:5a:ad:b5:ea:50:10:b8:07:96:18:5f:8d:0f:cd: 81:47:77:16:31:1e:4d:b1:a2:f4:1e:33:40:a3:c2:b2:88:55: 74:a0:b8:5f:ea:b4:d0:a1:b7:4f:24:4f:2c:24:94:f5:83:9e: 5d:64:19:0c:df:5e:f4:d8:f6:c4:6d:42:29:6e:f1:60:c3:30: b1:2b:12:d4:3c:5e:39:b9:c7:b2:33:b4:eb:b4:ef:b9:6c:e8: 78:d7:32:d2:c9:1e:7e:34:a1:c9:fa:8d:33:a0:f5:e5:05:1a: 7e:35:f2:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv+r4xQ8mLAu5H+miXpSVG4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1ZjA4Yjc0ZjUxMTdlZDM4MDcyM2Q5ZTQyOWVjYjRhYTUz ODUyNWEwHhcNMjYwMTI3MDkwMTE2WhcNMjYwMTI4MDkwMTE2WjAzMTEwLwYDVQQD EyhiODc3YjcwZGFkMGE0MDY3YmYyYzUxNjBjOGMzNDkyZTA4YjM4NmYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApQ5JP/kLtEoeNNJ3Do0LYMM33h/I 64mfmScrmkC6qzGbzqWilQsoC3UvPDBwJ5saRTs7dJW065jWKwgZI1StdqkNG5KE nQbKC6P0geSinJDgXC2UcRhhu6Q1VeEuLTdiZGs8Maw0Flcxs+PcH+4eKIoPCMyL iaCS7nbZ78NTaPEj7sjgjt8SRGWQVX56EeRFOg3wLVgNL+bFz3cqHWP9Zza0I1xk Rg12VdwuJVgcYr2i3Ju/XmoJaqJIeG+j+4eEbm04jppkKT/Wf3SilocIAL+axD91 BJb8nMc7zk/lsZRYRVjjvzdsWjPcnV3OscshPowTvq5OUXo4Be7YRPxSUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLh3tw2tCkBnvyxRYMjDSS4Is4bzMB8GA1UdIwQY MBaAFAXwi3T1EX7TgHI9nkKey0qlOFJaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmZDTGRQVVJmdE9BY2oyZVFwN0xTcVU0VWxvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zMi8xODg2ZDgtZDg3NC00YzI0LTkyYjkt ZDQxYWM4MWQxY2M0LzEvQmZDTGRQVVJmdE9BY2oyZVFwN0xTcVU0VWxvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zMi8xODg2ZDgtZDg3NC00YzI0LTkyYjktZDQxYWM4MWQxY2M0 LzEvQmZDTGRQVVJmdE9BY2oyZVFwN0xTcVU0VWxvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADiMgHHvD knnXPDFdFePU97ZuKXHtA6ikRI4ad7m4tLep1sp9bgTJ6Z/vF1ZkGScNWMJHDxcF JJOOgj4eDRvE/oLJPT5KnUli9ivP6cXk29Mb6NYrmst2YdznV4/2DLPm629YmeHX CJu74TGlN41YPjspxy0dPQEXzlGvJ4/hFYavufHTtY0mw3XiQxbycupW4PT1KVqt tepQELgHlhhfjQ/NgUd3FjEeTbGi9B4zQKPCsohVdKC4X+q00KG3TyRPLCSU9YOe XWQZDN9e9Nj2xG1CKW7xYMMwsSsS1DxeObnHsjO067TvuWzoeNcy0skefjShyfqN M6D15QUafjXy8w== -----END CERTIFICATE-----Generated at Tue Jan 27 17:50:16 2026 by rpki-client