This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft File: vflgsO5rxdD2oMZKafL4Yln9zVg.mft (raw, json) Hash identifier: 0Rkvmr4evza+Cq/jvg9rTW3WfZlEe+dCZoXOD4mYk5A= Subject key identifier: 96:B8:6F:0C:E2:47:65:93:81:31:4C:FA:9D:1B:5F:EF:3F:7F:D7:FF Authority key identifier: BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58 Certificate issuer: /CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58 Certificate serial: 019C4358C7308D19C18F39DBCB44BA9AF2D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft Manifest number: 16E9 Signing time: Mon 09 Feb 2026 17:00:17 +0000 Manifest this update: Mon 09 Feb 2026 17:00:17 +0000 Manifest next update: Tue 10 Feb 2026 17:00:17 +0000 Files and hashes: 1: FB6XhAljb_Cq4OzW1NxhRMI8uX8.roa (hash: oRoqHHkjJ5NsUTcwkAs7nSs4mia9Uv979j7dFZIGR9Y=) 2: vflgsO5rxdD2oMZKafL4Yln9zVg.crl (hash: vbKx7W5FBDzroZ6DrzZg3cDn1s+6J7GZKmA5uLq1G6o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:c7:30:8d:19:c1:8f:39:db:cb:44:ba:9a:f2:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bdf960b0ee6bc5d0f6a0c64a69f2f86259fdcd58 Validity Not Before: Feb 9 17:00:17 2026 GMT Not After : Feb 10 17:00:17 2026 GMT Subject: CN=96b86f0ce247659381314cfa9d1b5fef3f7fd7ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b7:19:e2:a1:7a:16:76:65:ae:d9:f6:ca:68: fd:a7:1f:ce:7f:a1:5e:1e:0c:bc:86:4e:3e:f0:aa: 12:07:8b:38:f2:de:b5:7f:1e:17:f2:dd:f2:82:40: ad:b1:00:c9:c1:e2:97:96:42:c8:99:d4:d8:df:f0: 02:4b:4b:55:98:cd:ce:cc:1a:42:fa:48:54:2e:0c: d0:31:45:06:bd:53:4e:16:d4:24:e3:14:d9:d7:c3: 01:58:93:9f:aa:d9:f4:7e:7a:4b:6c:39:21:35:a9: e6:db:9d:1a:67:3a:eb:70:1f:04:59:06:78:95:b3: 41:bb:41:c2:58:b4:5d:1f:1a:32:49:93:6d:bb:49: e4:78:0f:98:7b:8d:e1:e4:86:4c:a0:3b:51:93:ff: b4:0e:9f:9e:5c:99:a5:87:e1:0b:e8:e8:84:44:49: a4:a8:fa:c7:5e:16:96:64:31:e3:4e:3e:cb:0d:54: 1b:5a:7c:a6:ca:c9:94:24:d1:f8:4c:fe:e4:44:99: e3:9b:de:6c:3b:69:aa:d0:75:ae:1f:7f:9c:89:2a: 85:36:66:dd:fe:19:29:7f:7f:4c:d1:94:d2:8a:35: 62:4f:ac:36:a0:1c:4b:fa:fc:69:da:4d:a6:72:e2: 8d:ca:5a:fc:82:5a:85:1f:1e:20:38:e5:2d:77:e6: 3d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:B8:6F:0C:E2:47:65:93:81:31:4C:FA:9D:1B:5F:EF:3F:7F:D7:FF X509v3 Authority Key Identifier: keyid:BD:F9:60:B0:EE:6B:C5:D0:F6:A0:C6:4A:69:F2:F8:62:59:FD:CD:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vflgsO5rxdD2oMZKafL4Yln9zVg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/33684a-12c2-423a-bd3a-3ddffdeb9207/1/vflgsO5rxdD2oMZKafL4Yln9zVg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:b2:39:75:70:f3:1f:8a:27:b1:a6:2b:41:30:5a:4e:8d:d9: 46:4d:c5:8f:8c:8f:0e:d4:59:e4:e5:c6:f7:f6:00:3e:b6:54: 59:95:16:28:ea:40:b0:30:20:ae:28:07:22:f0:e3:81:96:89: 30:ad:73:a0:3f:4d:81:68:58:8e:6f:f2:d1:57:b8:80:62:72: 27:14:3f:cc:e6:46:6d:23:22:68:50:24:15:d7:a8:79:88:03: 41:2a:eb:dd:76:92:e0:90:f0:13:a4:29:c0:86:fb:83:87:d2: 5c:67:85:14:12:c4:3b:a9:0e:16:06:cd:1c:c7:50:d3:f2:f6: 65:62:2e:84:9a:54:54:44:cb:94:1d:ea:f9:3a:e4:fb:e6:0e: 7c:2d:53:2f:a4:1b:ae:4f:36:8c:46:87:47:24:7f:60:d3:7d: d5:40:02:f0:48:63:f4:a2:09:93:02:9d:0b:79:4f:9b:59:95: f9:2c:14:80:44:b9:07:ce:11:ab:86:a5:f3:2c:3c:b7:fb:b0: 4c:5a:8b:4e:57:73:45:25:96:39:c9:2c:2a:2b:fe:bd:e8:d6: 20:d6:ad:f1:0f:b9:e1:75:d5:81:b3:e6:86:ed:07:74:33:db: 61:d9:70:68:97:0a:95:2a:ad:4a:26:b0:0f:5c:85:f8:5c:a4: 36:cd:81:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWMcwjRnBjznby0S6mvLZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkZjk2MGIwZWU2YmM1ZDBmNmEwYzY0YTY5ZjJmODYyNTlm ZGNkNTgwHhcNMjYwMjA5MTcwMDE3WhcNMjYwMjEwMTcwMDE3WjAzMTEwLwYDVQQD Eyg5NmI4NmYwY2UyNDc2NTkzODEzMTRjZmE5ZDFiNWZlZjNmN2ZkN2ZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlbcZ4qF6FnZlrtn2ymj9px/Of6Fe Hgy8hk4+8KoSB4s48t61fx4X8t3ygkCtsQDJweKXlkLImdTY3/ACS0tVmM3OzBpC +khULgzQMUUGvVNOFtQk4xTZ18MBWJOfqtn0fnpLbDkhNanm250aZzrrcB8EWQZ4 lbNBu0HCWLRdHxoySZNtu0nkeA+Ye43h5IZMoDtRk/+0Dp+eXJmlh+EL6OiEREmk qPrHXhaWZDHjTj7LDVQbWnymysmUJNH4TP7kRJnjm95sO2mq0HWuH3+ciSqFNmbd /hkpf39M0ZTSijViT6w2oBxL+vxp2k2mcuKNylr8glqFHx4gOOUtd+Y9qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJa4bwziR2WTgTFM+p0bX+8/f9f/MB8GA1UdIwQY MBaAFL35YLDua8XQ9qDGSmny+GJZ/c1YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2Et M2RkZmZkZWI5MjA3LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8zMzY4NGEtMTJjMi00MjNhLWJkM2EtM2RkZmZkZWI5MjA3 LzEvdmZsZ3NPNXJ4ZEQyb01aS2FmTDRZbG45elZnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPbI5dXDz H4onsaYrQTBaTo3ZRk3Fj4yPDtRZ5OXG9/YAPrZUWZUWKOpAsDAgrigHIvDjgZaJ MK1zoD9NgWhYjm/y0Ve4gGJyJxQ/zOZGbSMiaFAkFdeoeYgDQSrr3XaS4JDwE6Qp wIb7g4fSXGeFFBLEO6kOFgbNHMdQ0/L2ZWIuhJpUVETLlB3q+Trk++YOfC1TL6Qb rk82jEaHRyR/YNN91UAC8Ehj9KIJkwKdC3lPm1mV+SwUgES5B84Rq4al8yw8t/uw TFqLTldzRSWWOcksKiv+vejWINat8Q+54XXVgbPmhu0HdDPbYdlwaJcKlSqtSiaw D1yF+FykNs2BvQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:38 2026 by rpki-client