This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft File: bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft (raw, json) Hash identifier: iIDmIQc8bkjptkkq/PhJbqoA6Ya3BXJxyHEyXBnX2aI= Subject key identifier: 95:7C:74:3A:64:BA:82:69:C1:09:FB:FF:E2:73:02:B0:36:E0:62:94 Authority key identifier: 6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28 Certificate issuer: /CN=6d64a867f45c48f2027b00b83c77796fbbbe0328 Certificate serial: 019C42B45AE8068D5B9679FB2E435A1D04A2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft Manifest number: 03BB Signing time: Mon 09 Feb 2026 14:00:41 +0000 Manifest this update: Mon 09 Feb 2026 14:00:41 +0000 Manifest next update: Tue 10 Feb 2026 14:00:41 +0000 Files and hashes: 1: _kQKugUbFDKzjAHcApu2141cq6c.roa (hash: /1a50vxH9IeUabW9ZG6RdtEES2xJ9jyKfKc7dsU4ebc=) 2: bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl (hash: 9WON+JfZPpdkvo/sePRohB1qwpZHT4Y1GkA9rfMPyqE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:5a:e8:06:8d:5b:96:79:fb:2e:43:5a:1d:04:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d64a867f45c48f2027b00b83c77796fbbbe0328 Validity Not Before: Feb 9 14:00:41 2026 GMT Not After : Feb 10 14:00:41 2026 GMT Subject: CN=957c743a64ba8269c109fbffe27302b036e06294 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e3:1e:43:0d:fe:2e:47:9e:28:0c:31:3b:65: e8:0a:ea:7a:6f:8b:d3:70:1d:ae:83:d1:1a:bf:cf: bd:13:e7:31:85:5a:0e:6a:ed:00:ad:ae:79:73:7c: 56:82:7a:77:27:0d:9b:d2:55:0b:ba:59:77:20:66: e6:04:b3:1f:4e:03:c7:a6:c0:c8:77:dd:6a:8b:46: 5d:08:1f:c2:c0:ae:27:0b:8d:b8:1c:dd:96:aa:f8: 31:5f:7b:78:0f:45:29:ad:3f:14:99:4b:0b:1f:4e: ff:bf:c1:50:cd:37:f1:10:2b:ca:94:85:36:24:c2: ed:b7:29:ec:16:61:14:3d:d3:41:08:11:76:00:c8: cd:3f:8c:01:5a:86:35:a0:19:01:c9:0d:12:1e:e7: ad:34:ee:38:6d:a3:43:9d:d9:f6:db:3c:0d:5f:55: 39:e9:d3:2b:24:3b:7c:20:6c:26:35:9f:e8:da:7f: b1:76:44:d5:9f:29:74:3f:2f:d8:6e:21:6d:aa:bc: f3:38:5e:20:af:37:de:38:59:1e:a1:c7:62:cc:e4: 1e:47:2f:f9:1c:b3:ac:ed:37:ad:c0:dd:c2:dd:1d: 0d:da:69:b8:67:90:66:51:7b:1d:62:c5:38:98:5c: d7:f9:03:24:b4:65:8d:b1:ef:fb:05:9a:ed:18:23: 97:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:7C:74:3A:64:BA:82:69:C1:09:FB:FF:E2:73:02:B0:36:E0:62:94 X509v3 Authority Key Identifier: keyid:6D:64:A8:67:F4:5C:48:F2:02:7B:00:B8:3C:77:79:6F:BB:BE:03:28 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bWSoZ_RcSPICewC4PHd5b7u-Ayg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/0f9d37-fb57-48cf-839e-b0623ea7fb01/1/bWSoZ_RcSPICewC4PHd5b7u-Ayg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:a8:67:a2:cf:ae:68:92:7b:24:dd:85:a8:41:4b:77:9a:43: 19:78:70:a9:14:05:5a:c0:52:20:35:34:4a:cb:78:be:2f:4e: 6e:50:f5:9a:f1:8b:e0:19:b6:c1:c7:34:16:fd:45:38:32:e2: 95:c6:4b:7e:7f:2a:30:f5:81:6b:78:df:1a:61:e4:1f:a9:cd: 91:93:d2:5f:cf:0d:da:4c:cf:df:aa:eb:10:f7:6e:ff:88:8a: 3c:f2:ca:88:3a:ed:c3:0a:ff:e8:19:14:c7:48:5d:ca:20:58: ed:69:f5:c5:5f:c9:cf:a8:1c:42:ac:40:2b:59:41:33:61:6d: 57:bb:b8:a1:3d:e9:0a:db:7d:64:3e:6f:2c:53:5d:7e:33:28: df:cf:b2:a2:b3:48:68:13:08:17:50:43:57:43:26:d7:80:60: 2f:85:0f:7a:b3:06:0d:be:e7:05:e9:75:95:ad:de:02:55:89: 0c:13:9c:a6:95:df:53:73:4a:dd:46:70:d4:39:03:10:44:91: ff:ee:67:24:96:15:d3:ec:27:1e:a9:c1:8d:61:be:2c:e4:58: 3e:e9:1a:69:ba:82:f2:0c:64:fd:3b:6b:45:72:08:9a:70:67: 41:84:0d:de:a1:9a:97:6a:c1:d1:63:b7:ff:df:2d:13:f5:69: d2:6e:c6:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFroBo1blnn7LkNaHQSiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkNjRhODY3ZjQ1YzQ4ZjIwMjdiMDBiODNjNzc3OTZmYmJi ZTAzMjgwHhcNMjYwMjA5MTQwMDQxWhcNMjYwMjEwMTQwMDQxWjAzMTEwLwYDVQQD Eyg5NTdjNzQzYTY0YmE4MjY5YzEwOWZiZmZlMjczMDJiMDM2ZTA2Mjk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuMeQw3+LkeeKAwxO2XoCup6b4vT cB2ug9Eav8+9E+cxhVoOau0Ara55c3xWgnp3Jw2b0lULull3IGbmBLMfTgPHpsDI d91qi0ZdCB/CwK4nC424HN2WqvgxX3t4D0UprT8UmUsLH07/v8FQzTfxECvKlIU2 JMLttynsFmEUPdNBCBF2AMjNP4wBWoY1oBkByQ0SHuetNO44baNDndn22zwNX1U5 6dMrJDt8IGwmNZ/o2n+xdkTVnyl0Py/YbiFtqrzzOF4grzfeOFkeocdizOQeRy/5 HLOs7TetwN3C3R0N2mm4Z5BmUXsdYsU4mFzX+QMktGWNse/7BZrtGCOXnQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJV8dDpkuoJpwQn7/+JzArA24GKUMB8GA1UdIwQY MBaAFG1kqGf0XEjyAnsAuDx3eW+7vgMoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYldTb1pfUmNTUElDZXdDNFBIZDViN3UtQXlnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8wZjlkMzctZmI1Ny00OGNmLTgzOWUt YjA2MjNlYTdmYjAxLzEvYldTb1pfUmNTUElDZXdDNFBIZDViN3UtQXlnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8wZjlkMzctZmI1Ny00OGNmLTgzOWUtYjA2MjNlYTdmYjAx LzEvYldTb1pfUmNTUElDZXdDNFBIZDViN3UtQXlnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOahnos+u aJJ7JN2FqEFLd5pDGXhwqRQFWsBSIDU0Sst4vi9OblD1mvGL4Bm2wcc0Fv1FODLi lcZLfn8qMPWBa3jfGmHkH6nNkZPSX88N2kzP36rrEPdu/4iKPPLKiDrtwwr/6BkU x0hdyiBY7Wn1xV/Jz6gcQqxAK1lBM2FtV7u4oT3pCtt9ZD5vLFNdfjMo38+yorNI aBMIF1BDV0Mm14BgL4UPerMGDb7nBel1la3eAlWJDBOcppXfU3NK3UZw1DkDEESR /+5nJJYV0+wnHqnBjWG+LORYPukaabqC8gxk/TtrRXIImnBnQYQN3qGal2rB0WO3 /98tE/Vp0m7G2g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:34 2026 by rpki-client