This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft File: BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft (raw, json) Hash identifier: mjcFq/nNdR6BWEoZcSa0ObhBNqZSwluw16X0+Y1bQEU= Subject key identifier: 40:8B:2E:AA:8C:F2:1F:7B:7A:AF:E4:53:B6:3A:13:A9:58:41:20:CD Authority key identifier: 04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F Certificate issuer: /CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Certificate serial: 019C420F80B047836AA448D47709BCA4AC59 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft Manifest number: 09BA Signing time: Mon 09 Feb 2026 11:00:38 +0000 Manifest this update: Mon 09 Feb 2026 11:00:38 +0000 Manifest next update: Tue 10 Feb 2026 11:00:38 +0000 Files and hashes: 1: BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl (hash: ZEoCgQlx4S0pVnYGMs13+wjkl22HV/eL6eBL0X4g910=) 2: Uo9-W2ZV65vRiK7JyaEHx54nLwM.roa (hash: UJ7a0gKDZTd9yEENvLgRe2acSSS/hxOdpooHg+CZtds=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:80:b0:47:83:6a:a4:48:d4:77:09:bc:a4:ac:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04e32c43f969ba417ba36d0721b1d9d50624c40f Validity Not Before: Feb 9 11:00:38 2026 GMT Not After : Feb 10 11:00:38 2026 GMT Subject: CN=408b2eaa8cf21f7b7aafe453b63a13a9584120cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:53:cb:ac:a3:fd:44:3f:f9:ed:09:ea:68:18: af:fc:e2:ce:19:fb:72:87:44:4b:b4:b3:02:2c:8a: 92:0f:ea:31:c7:b2:a5:dc:3d:c8:7e:44:01:ea:71: c5:d2:fb:b2:0b:05:db:4f:2c:d8:70:37:a5:69:83: a7:8b:35:94:7a:90:0d:82:25:b1:db:2f:b4:f8:c4: cd:a4:21:b4:8d:ce:0d:59:e1:72:f3:4e:f3:d5:a5: c5:43:06:cd:bd:b0:3e:9f:f1:9a:8c:a9:78:97:06: 1e:88:e4:68:f5:80:af:c6:cd:18:07:b7:d6:2a:93: c4:d9:7d:75:eb:62:98:10:f9:97:0d:b5:34:4b:79: b4:06:a4:bf:47:86:bc:5a:e3:e9:ac:36:6b:a5:d5: b1:5a:f8:3f:5c:22:df:30:c7:0a:b5:73:19:ec:2e: 7d:e2:2d:41:cd:de:c6:d3:ab:24:6d:d3:6d:fc:ef: 69:cc:e7:b1:e1:22:63:f2:21:99:f0:99:f5:ff:51: 5c:c7:dd:3e:2b:6f:a6:06:bc:73:ec:17:20:92:4d: 35:14:b0:2e:f6:c0:76:d5:75:59:b9:39:28:66:c2: 06:2c:98:2f:3a:1b:49:b5:8a:b1:b1:d1:ba:da:e3: 84:9f:a4:c9:f9:9b:e5:00:42:88:dd:ed:33:f1:2c: 4e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:8B:2E:AA:8C:F2:1F:7B:7A:AF:E4:53:B6:3A:13:A9:58:41:20:CD X509v3 Authority Key Identifier: keyid:04:E3:2C:43:F9:69:BA:41:7B:A3:6D:07:21:B1:D9:D5:06:24:C4:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BOMsQ_lpukF7o20HIbHZ1QYkxA8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/316f15-bcb5-422c-92a0-826a48eefd96/1/BOMsQ_lpukF7o20HIbHZ1QYkxA8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a0:e8:f2:ba:55:32:c5:19:39:e7:da:43:0d:0e:fb:9b:bc:76: 5a:63:1d:52:85:e1:17:51:89:c0:ed:1f:7a:4d:06:c2:e6:6f: d2:8d:6f:72:17:46:6c:2d:81:53:c5:18:e2:25:2b:c2:26:48: ef:dc:5e:18:fa:89:4b:47:7d:12:ca:50:03:f2:58:eb:15:79: 46:f7:22:cd:0e:c7:93:47:9c:92:72:ed:07:fc:78:49:32:dc: 03:91:93:2a:15:d5:2d:d2:2c:80:a9:db:48:a7:ec:18:78:9a: 98:b2:96:52:0a:f2:15:a1:dd:f5:62:9f:cf:ef:34:71:55:29: 79:80:e9:d0:e9:0f:b7:a4:fe:be:06:d8:66:11:c8:a0:b4:47: 70:33:ce:55:0c:a0:93:7b:39:9d:8e:96:93:83:34:ca:1a:42: d9:9a:d6:84:69:f8:b5:b7:24:e4:46:b7:d1:40:41:47:eb:22: 3f:41:68:0a:34:6a:58:98:91:6f:31:93:4a:81:88:72:5e:00: a3:95:cd:dd:20:dd:fb:db:b9:d1:e2:67:c5:44:bf:05:2b:09: af:03:68:f8:5a:cd:cb:70:b3:3a:a5:5e:e2:c4:ea:5e:45:b9: 10:7d:0f:1a:9d:7f:94:42:d5:c6:56:86:4b:66:21:9b:c6:8f: 70:ef:02:3c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD4CwR4NqpEjUdwm8pKxZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZTMyYzQzZjk2OWJhNDE3YmEzNmQwNzIxYjFkOWQ1MDYy NGM0MGYwHhcNMjYwMjA5MTEwMDM4WhcNMjYwMjEwMTEwMDM4WjAzMTEwLwYDVQQD Eyg0MDhiMmVhYThjZjIxZjdiN2FhZmU0NTNiNjNhMTNhOTU4NDEyMGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVPLrKP9RD/57QnqaBiv/OLOGfty h0RLtLMCLIqSD+oxx7Kl3D3IfkQB6nHF0vuyCwXbTyzYcDelaYOnizWUepANgiWx 2y+0+MTNpCG0jc4NWeFy807z1aXFQwbNvbA+n/GajKl4lwYeiORo9YCvxs0YB7fW KpPE2X1162KYEPmXDbU0S3m0BqS/R4a8WuPprDZrpdWxWvg/XCLfMMcKtXMZ7C59 4i1Bzd7G06skbdNt/O9pzOex4SJj8iGZ8Jn1/1Fcx90+K2+mBrxz7Bcgkk01FLAu 9sB21XVZuTkoZsIGLJgvOhtJtYqxsdG62uOEn6TJ+ZvlAEKI3e0z8SxO8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFECLLqqM8h97eq/kU7Y6E6lYQSDNMB8GA1UdIwQY MBaAFATjLEP5abpBe6NtByGx2dUGJMQPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAt ODI2YTQ4ZWVmZDk2LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi8zMTZmMTUtYmNiNS00MjJjLTkyYTAtODI2YTQ4ZWVmZDk2 LzEvQk9Nc1FfbHB1a0Y3bzIwSEliSFoxUVlreEE4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoOjyulUy xRk559pDDQ77m7x2WmMdUoXhF1GJwO0fek0GwuZv0o1vchdGbC2BU8UY4iUrwiZI 79xeGPqJS0d9EspQA/JY6xV5RvcizQ7Hk0ecknLtB/x4STLcA5GTKhXVLdIsgKnb SKfsGHiamLKWUgryFaHd9WKfz+80cVUpeYDp0OkPt6T+vgbYZhHIoLRHcDPOVQyg k3s5nY6Wk4M0yhpC2ZrWhGn4tbck5Ea30UBBR+siP0FoCjRqWJiRbzGTSoGIcl4A o5XN3SDd+9u50eJnxUS/BSsJrwNo+FrNy3CzOqVe4sTqXkW5EH0PGp1/lELVxlaG S2Yhm8aPcO8CPA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:09:12 2026 by rpki-client