This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft File: bxfKsp3wkGVUwRzpqynGDR56Z1w.mft (raw, json) Hash identifier: C5uYvkP7DrX3eiDpJZ5dGsDNnXXtWtXragQHQOdTf14= Subject key identifier: BE:D2:0A:FE:39:F7:23:9E:EA:4C:CF:83:A4:D4:1A:5C:B1:2B:E6:CC Authority key identifier: 6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C Certificate issuer: /CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c Certificate serial: 019C43C7062FE9C72C6405EEBDF1A888A7DB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft Manifest number: 06E7 Signing time: Mon 09 Feb 2026 19:00:42 +0000 Manifest this update: Mon 09 Feb 2026 19:00:42 +0000 Manifest next update: Tue 10 Feb 2026 19:00:42 +0000 Files and hashes: 1: bxfKsp3wkGVUwRzpqynGDR56Z1w.crl (hash: IrpOkKBbmk/lBUhE/Ld7cSt/dI2OJ2rCZ6fMGKoqZd4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:06:2f:e9:c7:2c:64:05:ee:bd:f1:a8:88:a7:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f17cab29df0906554c11ce9ab29c60d1e7a675c Validity Not Before: Feb 9 19:00:42 2026 GMT Not After : Feb 10 19:00:42 2026 GMT Subject: CN=bed20afe39f7239eea4ccf83a4d41a5cb12be6cc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:82:b0:4a:cf:4f:fd:cb:ae:b6:e3:22:e0:e0: 59:d4:76:98:ee:af:fb:5a:3a:c2:f2:85:e5:11:30: 68:76:a4:c6:cd:70:c0:38:d9:e6:ab:cc:81:48:b6: 4f:5b:70:62:07:ea:d7:c7:39:cf:f8:f5:78:55:3b: 13:e0:bf:43:11:07:4e:ed:70:c7:eb:42:c9:14:fe: 81:11:82:bf:25:5b:8f:8a:7a:33:f8:04:08:f6:a7: e1:6a:dc:1a:bb:1d:41:12:34:34:ab:e8:f7:c4:f2: 46:d3:80:f5:8a:04:9e:d3:a0:aa:01:17:ea:a3:d2: bb:77:a4:12:62:5a:77:4d:32:d8:ce:a8:17:d4:5c: 57:28:d4:18:f3:d2:80:76:b6:da:b9:47:17:3b:69: 66:77:45:09:65:3a:2d:8b:01:56:1e:99:c3:6e:23: 7c:77:91:c2:a8:ab:1b:ad:a0:c6:77:62:ea:a0:de: 39:72:d3:52:ae:50:5b:98:cc:12:98:81:a3:a3:9c: 38:c1:de:ca:7d:27:8e:c9:04:1b:c9:2f:d1:79:a0: bd:5a:56:9a:39:ca:d5:49:67:8f:24:4d:a1:91:b8: cf:e1:49:c8:21:e3:49:4f:5e:ec:7b:c4:0d:f8:b6: 24:b3:30:e9:01:38:b2:b4:65:b7:68:c8:d0:a5:c8: b7:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:D2:0A:FE:39:F7:23:9E:EA:4C:CF:83:A4:D4:1A:5C:B1:2B:E6:CC X509v3 Authority Key Identifier: keyid:6F:17:CA:B2:9D:F0:90:65:54:C1:1C:E9:AB:29:C6:0D:1E:7A:67:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxfKsp3wkGVUwRzpqynGDR56Z1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/56/3113e1-4230-4380-971e-6782a73c2b47/1/bxfKsp3wkGVUwRzpqynGDR56Z1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:e6:3b:29:f4:d3:80:ca:9c:3e:9c:5f:6e:f3:a1:48:22:41: 49:85:ae:75:ef:58:4d:4b:77:6d:a9:86:02:bc:bc:80:aa:a5: 88:34:10:26:ff:97:32:e9:d0:3f:22:5d:f2:2a:1c:f7:7f:74: 17:29:a2:15:9c:66:66:06:8b:f0:5a:00:77:a0:61:74:5b:42: 24:c2:23:f6:43:07:ff:42:41:9f:74:2f:81:24:28:5e:3c:7c: ee:06:7e:98:45:b8:5a:b9:cd:ca:f5:2d:a9:93:f5:30:95:c5: 50:96:44:2d:8b:e1:08:76:1c:5c:5a:ef:bb:6c:fa:8b:f0:ae: 46:04:ed:5a:76:62:c7:57:c5:ce:40:a1:37:4a:d1:f2:e6:70: 09:57:19:d5:9f:83:b0:8d:e5:53:be:15:0b:4f:52:d5:56:77: af:2d:22:d3:b7:8b:25:79:6a:d4:2d:69:73:78:f9:72:f1:9c: a5:8e:c7:cc:cf:04:55:ef:06:62:28:6e:80:b8:62:62:9f:24: 6c:50:ae:fc:61:63:00:be:96:6f:21:1d:6b:ce:43:44:d6:45: 1c:fb:76:7c:5c:c5:8e:61:b0:82:52:c6:0e:53:06:04:04:75: 4e:07:e9:47:b1:4c:26:4b:59:89:a2:29:61:15:a6:a9:36:db: 3f:5b:fc:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxwYv6ccsZAXuvfGoiKfbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMTdjYWIyOWRmMDkwNjU1NGMxMWNlOWFiMjljNjBkMWU3 YTY3NWMwHhcNMjYwMjA5MTkwMDQyWhcNMjYwMjEwMTkwMDQyWjAzMTEwLwYDVQQD EyhiZWQyMGFmZTM5ZjcyMzllZWE0Y2NmODNhNGQ0MWE1Y2IxMmJlNmNjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4KwSs9P/cuutuMi4OBZ1HaY7q/7 WjrC8oXlETBodqTGzXDAONnmq8yBSLZPW3BiB+rXxznP+PV4VTsT4L9DEQdO7XDH 60LJFP6BEYK/JVuPinoz+AQI9qfhatwaux1BEjQ0q+j3xPJG04D1igSe06CqARfq o9K7d6QSYlp3TTLYzqgX1FxXKNQY89KAdrbauUcXO2lmd0UJZTotiwFWHpnDbiN8 d5HCqKsbraDGd2LqoN45ctNSrlBbmMwSmIGjo5w4wd7KfSeOyQQbyS/ReaC9Wlaa OcrVSWePJE2hkbjP4UnIIeNJT17se8QN+LYkszDpATiytGW3aMjQpci3rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL7SCv459yOe6kzPg6TUGlyxK+bMMB8GA1UdIwQY MBaAFG8XyrKd8JBlVMEc6aspxg0eemdcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnhmS3NwM3drR1ZVd1J6cHF5bkdEUjU2WjF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Ni8zMTEzZTEtNDIzMC00MzgwLTk3MWUt Njc4MmE3M2MyYjQ3LzEvYnhmS3NwM3drR1ZVd1J6cHF5bkdEUjU2WjF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Ni8zMTEzZTEtNDIzMC00MzgwLTk3MWUtNjc4MmE3M2MyYjQ3 LzEvYnhmS3NwM3drR1ZVd1J6cHF5bkdEUjU2WjF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIuY7KfTT gMqcPpxfbvOhSCJBSYWude9YTUt3bamGAry8gKqliDQQJv+XMunQPyJd8ioc9390 FymiFZxmZgaL8FoAd6BhdFtCJMIj9kMH/0JBn3QvgSQoXjx87gZ+mEW4WrnNyvUt qZP1MJXFUJZELYvhCHYcXFrvu2z6i/CuRgTtWnZix1fFzkChN0rR8uZwCVcZ1Z+D sI3lU74VC09S1VZ3ry0i07eLJXlq1C1pc3j5cvGcpY7HzM8EVe8GYihugLhiYp8k bFCu/GFjAL6WbyEda85DRNZFHPt2fFzFjmGwglLGDlMGBAR1TgfpR7FMJktZiaIp YRWmqTbbP1v8Pw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:11 2026 by rpki-client