This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft File: BMWTwzo9oilIzOIyis8F2YoB8aU.mft (raw, json) Hash identifier: gsZNviDmerRx9liQO5MbbbJg8jpWBzqbjLUhBSv3Ko8= Subject key identifier: 01:79:31:86:09:EA:A0:D5:1D:2C:83:5D:C3:1F:B2:60:F4:86:CD:4C Authority key identifier: 04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5 Certificate issuer: /CN=04c593c33a3da22948cce2328acf05d98a01f1a5 Certificate serial: 019C42EB2C4E48E58E2D3AF33A5C0AC10BCB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft Manifest number: 0941 Signing time: Mon 09 Feb 2026 15:00:34 +0000 Manifest this update: Mon 09 Feb 2026 15:00:34 +0000 Manifest next update: Tue 10 Feb 2026 15:00:34 +0000 Files and hashes: 1: BMWTwzo9oilIzOIyis8F2YoB8aU.crl (hash: hVhL/prRXQTTSVyVDLo9uCymyS+++oN3utXiXsZnAW4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:2c:4e:48:e5:8e:2d:3a:f3:3a:5c:0a:c1:0b:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04c593c33a3da22948cce2328acf05d98a01f1a5 Validity Not Before: Feb 9 15:00:34 2026 GMT Not After : Feb 10 15:00:34 2026 GMT Subject: CN=0179318609eaa0d51d2c835dc31fb260f486cd4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f8:17:bb:9b:5e:82:7d:ce:d2:ae:ba:06:6d: 5c:61:de:8a:b9:c5:d5:dc:ef:c2:0b:56:3d:5d:d6: 25:7f:7d:85:c2:52:73:ab:b6:cd:92:36:53:ba:fd: 90:d5:22:cb:42:8f:e6:9f:f8:10:ca:fc:64:6a:01: 3e:df:e5:30:0d:53:07:53:9c:83:20:03:62:85:b6: 13:43:1f:e0:7e:c6:76:42:41:58:3a:e8:6d:65:33: ac:9c:83:8f:58:f8:62:6b:a9:6c:53:17:a9:4c:48: e8:54:28:12:c1:5d:06:d6:0f:52:04:ea:85:c0:98: 56:96:53:b4:6a:a5:0d:9b:98:e1:5d:20:41:2d:26: b0:b0:67:d4:0d:99:a2:30:c7:b7:e3:fc:7c:e6:46: af:e6:2a:1b:5e:85:37:20:5b:8b:b8:7d:1f:6b:26: 80:30:fd:ee:0e:06:f1:6f:96:48:f6:ad:a9:65:85: 01:8f:30:dd:1c:c3:9c:ec:f5:7d:67:15:6f:c0:cc: c6:b7:0f:91:77:ef:6b:12:3f:99:55:2e:5a:fa:c2: 6d:41:06:ff:f1:67:41:2b:bc:1a:6e:4c:22:6e:a3: 6b:fe:b0:25:66:c1:33:7d:08:b4:d7:84:2d:8c:20: 26:8f:6b:68:f5:63:fa:76:ab:12:e0:89:60:c4:47: 52:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:79:31:86:09:EA:A0:D5:1D:2C:83:5D:C3:1F:B2:60:F4:86:CD:4C X509v3 Authority Key Identifier: keyid:04:C5:93:C3:3A:3D:A2:29:48:CC:E2:32:8A:CF:05:D9:8A:01:F1:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BMWTwzo9oilIzOIyis8F2YoB8aU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/007683-43ed-4a9c-b3ea-50a735b29760/1/BMWTwzo9oilIzOIyis8F2YoB8aU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:1c:37:1a:c4:1e:80:e4:24:14:ed:38:c0:de:8d:cd:30:4d: 41:fb:02:45:7c:eb:63:81:e5:70:98:a6:db:16:de:b9:01:49: 6e:e5:0b:91:e0:e0:4b:0a:1d:bf:6d:21:17:64:2a:bd:c4:99: 72:cd:4c:42:c8:0c:55:f1:fa:fc:42:16:03:cf:42:33:7d:95: 4d:e6:4e:23:32:b0:b9:34:87:1d:59:ac:f6:88:e1:9d:d6:de: 59:2a:5a:69:0f:44:d4:5f:a3:e7:f8:88:20:ff:38:f4:00:6e: 58:fd:88:3e:73:1f:ee:78:ba:3b:82:c8:d9:b9:3b:72:63:67: c6:29:6d:08:18:55:c1:78:ad:44:d0:6d:d1:2d:bf:e2:fb:68: 3d:a3:79:11:f3:ac:38:78:61:40:6e:75:42:e1:5a:b7:17:5a: e0:e5:eb:91:6a:d3:58:c1:00:1f:53:35:b4:9a:c9:e2:13:8e: 53:8a:ca:8c:29:e0:26:ac:84:1c:45:8b:47:74:6e:7f:cb:c5: 4b:ae:a3:93:27:f4:16:b3:d6:05:77:ab:ae:86:e8:b8:67:44: 76:a3:ea:b3:c1:19:d6:70:d4:9a:40:41:b0:ff:dd:13:e9:19: e1:1a:46:6e:ef:37:aa:a6:01:56:58:70:f9:3f:bc:79:2f:bd: 65:4f:e4:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6yxOSOWOLTrzOlwKwQvLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0YzU5M2MzM2EzZGEyMjk0OGNjZTIzMjhhY2YwNWQ5OGEw MWYxYTUwHhcNMjYwMjA5MTUwMDM0WhcNMjYwMjEwMTUwMDM0WjAzMTEwLwYDVQQD EygwMTc5MzE4NjA5ZWFhMGQ1MWQyYzgzNWRjMzFmYjI2MGY0ODZjZDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp/gXu5tegn3O0q66Bm1cYd6KucXV 3O/CC1Y9XdYlf32FwlJzq7bNkjZTuv2Q1SLLQo/mn/gQyvxkagE+3+UwDVMHU5yD IANihbYTQx/gfsZ2QkFYOuhtZTOsnIOPWPhia6lsUxepTEjoVCgSwV0G1g9SBOqF wJhWllO0aqUNm5jhXSBBLSawsGfUDZmiMMe34/x85kav5iobXoU3IFuLuH0fayaA MP3uDgbxb5ZI9q2pZYUBjzDdHMOc7PV9ZxVvwMzGtw+Rd+9rEj+ZVS5a+sJtQQb/ 8WdBK7wabkwibqNr/rAlZsEzfQi014QtjCAmj2to9WP6dqsS4IlgxEdSYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAF5MYYJ6qDVHSyDXcMfsmD0hs1MMB8GA1UdIwQY MBaAFATFk8M6PaIpSMziMorPBdmKAfGlMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk1XVHd6bzlvaWxJek9JeWlzOEYyWW9COGFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC8wMDc2ODMtNDNlZC00YTljLWIzZWEt NTBhNzM1YjI5NzYwLzEvQk1XVHd6bzlvaWxJek9JeWlzOEYyWW9COGFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC8wMDc2ODMtNDNlZC00YTljLWIzZWEtNTBhNzM1YjI5NzYw LzEvQk1XVHd6bzlvaWxJek9JeWlzOEYyWW9COGFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABBw3GsQe gOQkFO04wN6NzTBNQfsCRXzrY4HlcJim2xbeuQFJbuULkeDgSwodv20hF2QqvcSZ cs1MQsgMVfH6/EIWA89CM32VTeZOIzKwuTSHHVms9ojhndbeWSpaaQ9E1F+j5/iI IP849ABuWP2IPnMf7ni6O4LI2bk7cmNnxiltCBhVwXitRNBt0S2/4vtoPaN5EfOs OHhhQG51QuFatxda4OXrkWrTWMEAH1M1tJrJ4hOOU4rKjCngJqyEHEWLR3Ruf8vF S66jkyf0FrPWBXerrobouGdEdqPqs8EZ1nDUmkBBsP/dE+kZ4RpGbu83qqYBVlhw +T+8eS+9ZU/kmA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:28 2026 by rpki-client