This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft File: BozI9XorPCKZsfSCtn4V2d5DrTw.mft (raw, json) Hash identifier: JBIlkgIRNrdYFXe4Ho7kZZhTmGTkRKG7M38PoTScqyk= Subject key identifier: AA:48:A6:77:AA:B0:FA:44:49:C8:CF:B4:9A:E3:C3:B6:6E:D2:D9:EF Authority key identifier: 06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C Certificate issuer: /CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c Certificate serial: 019C44D9B2745CE0DCDEA292064028D76E4F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft Manifest number: 1587 Signing time: Tue 10 Feb 2026 00:00:43 +0000 Manifest this update: Tue 10 Feb 2026 00:00:43 +0000 Manifest next update: Wed 11 Feb 2026 00:00:43 +0000 Files and hashes: 1: 1-2P8OWE-nT9yglepyYQAlaB5NfE.roa (hash: hXJitTuZsInHr+UtjyUxAZf5csxkpDvw7CF/W7Cve9U=) 2: BozI9XorPCKZsfSCtn4V2d5DrTw.crl (hash: m0NlYCUm4ljIuJFUAj2Z6RKo/ZLiofeLq80sLEGbzmY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:b2:74:5c:e0:dc:de:a2:92:06:40:28:d7:6e:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=068cc8f57a2b3c2299b1f482b67e15d9de43ad3c Validity Not Before: Feb 10 00:00:43 2026 GMT Not After : Feb 11 00:00:43 2026 GMT Subject: CN=aa48a677aab0fa4449c8cfb49ae3c3b66ed2d9ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d2:ab:b5:bd:38:c0:58:98:f8:c4:6a:8a:14: 96:c3:ed:ff:52:f4:0f:81:2c:08:76:b0:86:09:e4: c4:51:eb:41:b0:7a:15:35:52:17:a8:4b:af:d7:1a: a6:3c:be:bf:b8:73:74:ba:b8:bb:0a:f8:f9:c4:eb: 61:e9:53:5d:0b:f0:ae:53:a4:9d:aa:04:86:b9:10: 36:d3:18:7d:ac:e6:2a:a4:05:77:77:20:b7:62:a9: c3:4c:02:8d:9f:4d:71:f2:49:3b:ad:9d:d2:65:c2: 27:e4:be:54:22:e5:4f:dd:84:b7:fb:ca:1b:30:e2: 29:c9:17:6f:01:62:17:f8:ee:90:87:97:5c:ee:35: f1:31:43:ca:d6:cd:f9:2e:0c:34:48:14:84:85:9f: c8:dd:b4:92:59:41:0d:6f:4d:ae:49:62:d4:b6:a4: 08:56:29:26:64:fe:33:5e:3e:d8:59:0f:d5:cb:98: 9d:d5:8b:4c:87:bf:16:f8:94:11:cb:5a:4c:74:79: e5:dc:a3:b5:d3:f9:c5:78:0c:f0:86:dd:e9:e1:24: 82:0a:9c:fd:ab:bd:91:0a:d7:94:6c:23:f5:fd:99: 93:fa:da:51:a1:ee:4d:b5:e7:2d:11:2b:e0:8d:d0: 64:ec:9a:bc:ce:81:f0:18:ef:e7:e8:9c:1f:f3:81: 0f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:48:A6:77:AA:B0:FA:44:49:C8:CF:B4:9A:E3:C3:B6:6E:D2:D9:EF X509v3 Authority Key Identifier: keyid:06:8C:C8:F5:7A:2B:3C:22:99:B1:F4:82:B6:7E:15:D9:DE:43:AD:3C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BozI9XorPCKZsfSCtn4V2d5DrTw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3a/dbde8c-a0fc-44d7-993b-2a28416d45b2/1/BozI9XorPCKZsfSCtn4V2d5DrTw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:35:05:95:a4:26:ce:c3:65:fb:5e:60:15:af:20:62:b1:a1: 04:69:19:be:38:93:ce:d4:6f:f5:06:51:b1:00:9d:11:c4:d4: 2f:b4:7f:30:46:77:ac:1f:03:73:d3:9b:82:53:ad:69:5c:eb: 31:d5:25:ec:30:b7:d0:d5:12:7a:63:74:2c:83:85:3d:9c:7b: 1d:a6:0c:72:c9:e9:7b:16:19:2f:c3:0b:ff:f2:43:3c:af:d2: 03:62:d6:3d:6e:ce:40:e7:13:1c:0f:80:2a:df:c2:4a:7a:32: a6:5c:d3:1f:41:e0:df:7d:99:c9:95:6d:cb:d3:1d:b1:d4:ca: df:d9:88:82:b0:bd:e6:3b:10:14:b3:0d:57:d5:4a:08:af:79: 8a:3b:00:00:f1:80:f0:cf:68:1e:2f:84:74:11:0a:46:94:c0: 3e:47:73:85:d6:53:01:d2:26:08:1c:41:30:1b:6d:10:c3:1e: a8:d5:90:a7:7b:40:3d:d9:84:f9:ce:cf:7e:40:58:1e:b1:bc: 09:5b:ad:b9:da:79:91:f3:4e:29:09:37:c2:c0:fe:b9:b9:7e: e6:f4:a6:40:e1:0a:42:d1:c8:cb:3f:80:25:83:c0:c8:d4:ca: bd:d7:f0:75:7d:d2:d0:fb:de:9b:52:8f:39:21:c7:bb:b3:19: dd:5a:b6:39 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2bJ0XODc3qKSBkAo125PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2OGNjOGY1N2EyYjNjMjI5OWIxZjQ4MmI2N2UxNWQ5ZGU0 M2FkM2MwHhcNMjYwMjEwMDAwMDQzWhcNMjYwMjExMDAwMDQzWjAzMTEwLwYDVQQD EyhhYTQ4YTY3N2FhYjBmYTQ0NDljOGNmYjQ5YWUzYzNiNjZlZDJkOWVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9Krtb04wFiY+MRqihSWw+3/UvQP gSwIdrCGCeTEUetBsHoVNVIXqEuv1xqmPL6/uHN0uri7Cvj5xOth6VNdC/CuU6Sd qgSGuRA20xh9rOYqpAV3dyC3YqnDTAKNn01x8kk7rZ3SZcIn5L5UIuVP3YS3+8ob MOIpyRdvAWIX+O6Qh5dc7jXxMUPK1s35Lgw0SBSEhZ/I3bSSWUENb02uSWLUtqQI VikmZP4zXj7YWQ/Vy5id1YtMh78W+JQRy1pMdHnl3KO10/nFeAzwht3p4SSCCpz9 q72RCteUbCP1/ZmT+tpRoe5NtectESvgjdBk7Jq8zoHwGO/n6Jwf84EPAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKpIpneqsPpEScjPtJrjw7Zu0tnvMB8GA1UdIwQY MBaAFAaMyPV6KzwimbH0grZ+FdneQ608MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm96STlYb3JQQ0tac2ZTQ3RuNFYyZDVEclR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYS9kYmRlOGMtYTBmYy00NGQ3LTk5M2It MmEyODQxNmQ0NWIyLzEvQm96STlYb3JQQ0tac2ZTQ3RuNFYyZDVEclR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYS9kYmRlOGMtYTBmYy00NGQ3LTk5M2ItMmEyODQxNmQ0NWIy LzEvQm96STlYb3JQQ0tac2ZTQ3RuNFYyZDVEclR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASjUFlaQm zsNl+15gFa8gYrGhBGkZvjiTztRv9QZRsQCdEcTUL7R/MEZ3rB8Dc9ObglOtaVzr MdUl7DC30NUSemN0LIOFPZx7HaYMcsnpexYZL8ML//JDPK/SA2LWPW7OQOcTHA+A Kt/CSnoyplzTH0Hg332ZyZVty9MdsdTK39mIgrC95jsQFLMNV9VKCK95ijsAAPGA 8M9oHi+EdBEKRpTAPkdzhdZTAdImCBxBMBttEMMeqNWQp3tAPdmE+c7PfkBYHrG8 CVutudp5kfNOKQk3wsD+ubl+5vSmQOEKQtHIyz+AJYPAyNTKvdfwdX3S0Pvem1KP OSHHu7MZ3Vq2OQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:31 2026 by rpki-client