This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft File: BZqsWXzkoNE7edIrO_GKSJnddk8.mft (raw, json) Hash identifier: X0QeJCvRa6QVqB7WJ7z6nvkx4LgkShIwdfvaP827qv0= Subject key identifier: E3:79:C4:48:69:36:AC:36:6F:61:86:63:E1:A5:13:20:61:EC:25:4B Authority key identifier: 05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F Certificate issuer: /CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f Certificate serial: 019C438FC479711A3EA5D62D0ABE2D5F93B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft Manifest number: 0C9E Signing time: Mon 09 Feb 2026 18:00:21 +0000 Manifest this update: Mon 09 Feb 2026 18:00:21 +0000 Manifest next update: Tue 10 Feb 2026 18:00:21 +0000 Files and hashes: 1: BZqsWXzkoNE7edIrO_GKSJnddk8.crl (hash: AJEIQ/RvHt6iaJGpq9UDN8OR4ycrBpSG34uE8oL7Pa4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:c4:79:71:1a:3e:a5:d6:2d:0a:be:2d:5f:93:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=059aac597ce4a0d13b79d22b3bf18a4899dd764f Validity Not Before: Feb 9 18:00:21 2026 GMT Not After : Feb 10 18:00:21 2026 GMT Subject: CN=e379c4486936ac366f618663e1a5132061ec254b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:bc:91:73:04:f0:94:7f:53:85:f1:72:e3:61: 7d:71:16:35:5d:b2:fe:87:c6:54:ce:eb:ce:ec:28: 53:c8:b5:41:cc:de:fd:e6:a0:54:8f:84:ff:f0:63: 89:21:1f:39:95:df:0d:42:d6:86:44:72:a3:fe:0d: 68:c9:a7:4f:f2:a7:98:75:ce:3d:8f:92:7f:c7:d8: b0:43:07:7a:0b:a4:fd:a7:67:da:95:aa:86:f5:65: 2d:dd:47:b3:96:c2:32:5a:e2:ea:43:b2:81:b4:bf: 16:a1:41:fe:3e:22:dc:4c:c6:0e:5d:c7:57:0f:b5: 36:9a:af:0a:db:cb:eb:00:fb:fe:6f:96:44:de:8c: ab:3b:d6:ff:c7:09:57:2a:41:29:1c:18:53:6f:82: e1:f8:4e:0b:66:7a:a7:21:b4:c7:c3:f0:18:9e:ef: 16:ad:c1:22:cf:a7:92:90:3d:6b:95:1d:de:ca:17: 45:26:d9:64:4a:08:52:d9:52:26:66:f9:4f:3c:7f: a0:0f:17:79:d5:c3:65:a0:86:cc:a7:50:c1:0c:94: e2:2a:5e:1c:6a:e5:63:81:88:88:4a:94:8e:a6:41: a1:c9:df:97:5a:82:3f:d3:e6:e4:3d:7f:11:ee:68: 73:09:b9:6c:8a:cf:37:f7:cb:71:e4:aa:a3:a1:c7: af:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:79:C4:48:69:36:AC:36:6F:61:86:63:E1:A5:13:20:61:EC:25:4B X509v3 Authority Key Identifier: keyid:05:9A:AC:59:7C:E4:A0:D1:3B:79:D2:2B:3B:F1:8A:48:99:DD:76:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BZqsWXzkoNE7edIrO_GKSJnddk8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/bab89a-d990-4fc7-86dd-e2c816db81cc/1/BZqsWXzkoNE7edIrO_GKSJnddk8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:07:8d:a4:81:bd:12:c2:63:ec:f8:f2:06:70:c8:5c:dc:75: 88:d4:9b:31:43:ba:e3:74:ac:74:13:1b:76:95:0b:a5:90:10: 79:d6:68:34:41:c5:df:1e:60:ba:c3:6f:11:ef:a2:e8:99:c0: 4f:5d:bf:cb:41:ab:2b:71:49:b2:48:de:a7:68:e8:a5:7c:56: 8b:b1:bb:73:a1:f4:53:05:9c:25:e1:20:73:7c:ec:c2:41:0e: 84:38:00:cf:8f:d1:bc:57:46:e1:8d:0f:ce:ee:6d:43:58:e6: dc:cb:8d:b7:59:be:ac:ba:47:22:ae:b6:05:8f:ca:e9:55:1f: c8:51:2a:e9:0d:91:0d:40:87:d0:b6:af:c3:24:70:13:15:9a: c5:7c:fe:73:60:61:f1:64:c1:d2:54:c6:35:4e:ef:5c:49:f4: 46:2e:38:15:3e:f8:88:3b:06:0d:78:0b:ff:f5:11:a4:34:7d: e7:66:7c:2f:e0:32:c0:b3:3c:1d:00:5d:dc:8b:a1:50:33:f1: 69:fa:0b:4b:2e:d0:1b:af:1c:42:50:85:02:a5:d2:04:b2:8f: be:64:82:1f:73:ba:89:01:a6:d4:c9:bf:88:09:16:22:e0:8f: ca:48:81:c0:b9:58:bc:6c:fd:46:1a:e2:e7:e4:3b:6f:6f:57: ba:1c:7c:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj8R5cRo+pdYtCr4tX5O1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1OWFhYzU5N2NlNGEwZDEzYjc5ZDIyYjNiZjE4YTQ4OTlk ZDc2NGYwHhcNMjYwMjA5MTgwMDIxWhcNMjYwMjEwMTgwMDIxWjAzMTEwLwYDVQQD EyhlMzc5YzQ0ODY5MzZhYzM2NmY2MTg2NjNlMWE1MTMyMDYxZWMyNTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmLyRcwTwlH9ThfFy42F9cRY1XbL+ h8ZUzuvO7ChTyLVBzN795qBUj4T/8GOJIR85ld8NQtaGRHKj/g1oyadP8qeYdc49 j5J/x9iwQwd6C6T9p2falaqG9WUt3UezlsIyWuLqQ7KBtL8WoUH+PiLcTMYOXcdX D7U2mq8K28vrAPv+b5ZE3oyrO9b/xwlXKkEpHBhTb4Lh+E4LZnqnIbTHw/AYnu8W rcEiz6eSkD1rlR3eyhdFJtlkSghS2VImZvlPPH+gDxd51cNloIbMp1DBDJTiKl4c auVjgYiISpSOpkGhyd+XWoI/0+bkPX8R7mhzCblsis8398tx5KqjocevDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFON5xEhpNqw2b2GGY+GlEyBh7CVLMB8GA1UdIwQY MBaAFAWarFl85KDRO3nSKzvxikiZ3XZPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQlpxc1dYemtvTkU3ZWRJck9fR0tTSm5kZGs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi9iYWI4OWEtZDk5MC00ZmM3LTg2ZGQt ZTJjODE2ZGI4MWNjLzEvQlpxc1dYemtvTkU3ZWRJck9fR0tTSm5kZGs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi9iYWI4OWEtZDk5MC00ZmM3LTg2ZGQtZTJjODE2ZGI4MWNj LzEvQlpxc1dYemtvTkU3ZWRJck9fR0tTSm5kZGs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARgeNpIG9 EsJj7PjyBnDIXNx1iNSbMUO643SsdBMbdpULpZAQedZoNEHF3x5gusNvEe+i6JnA T12/y0GrK3FJskjep2jopXxWi7G7c6H0UwWcJeEgc3zswkEOhDgAz4/RvFdG4Y0P zu5tQ1jm3MuNt1m+rLpHIq62BY/K6VUfyFEq6Q2RDUCH0LavwyRwExWaxXz+c2Bh 8WTB0lTGNU7vXEn0Ri44FT74iDsGDXgL//URpDR952Z8L+AywLM8HQBd3IuhUDPx afoLSy7QG68cQlCFAqXSBLKPvmSCH3O6iQGm1Mm/iAkWIuCPykiBwLlYvGz9Rhri 5+Q7b29Xuhx8dg== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:04 2026 by rpki-client