This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft File: bLdrU2M4PWjlVeUnClkx2DQOGA0.mft (raw, json) Hash identifier: KEqTfRRuwElyh7uMhNSuzlFzMpW8qFIGaZ3+rt4mRv0= Subject key identifier: B2:5D:44:3D:50:D3:99:11:AA:25:A9:56:09:19:BF:0E:6D:6C:23:F4 Authority key identifier: 6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D Certificate issuer: /CN=6cb76b5363383d68e555e5270a5931d8340e180d Certificate serial: 019C43228739FBF445B3D9A583372218580A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft Manifest number: 0F9D Signing time: Mon 09 Feb 2026 16:01:02 +0000 Manifest this update: Mon 09 Feb 2026 16:01:02 +0000 Manifest next update: Tue 10 Feb 2026 16:01:02 +0000 Files and hashes: 1: bLdrU2M4PWjlVeUnClkx2DQOGA0.crl (hash: nhEZ3+foBenXy6+EBh9VCzhUw7v0jtiCJqGS4hTbLvE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:87:39:fb:f4:45:b3:d9:a5:83:37:22:18:58:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cb76b5363383d68e555e5270a5931d8340e180d Validity Not Before: Feb 9 16:01:02 2026 GMT Not After : Feb 10 16:01:02 2026 GMT Subject: CN=b25d443d50d39911aa25a9560919bf0e6d6c23f4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c9:fe:0b:83:a4:ae:90:8d:dc:75:0d:d5:68: 19:23:7d:43:69:73:6c:bf:2b:7a:cf:82:88:fb:d2: 08:e3:6f:88:65:38:05:fe:51:c0:d9:f2:56:dd:bf: 3f:69:09:5e:03:0a:d4:36:11:16:b2:ff:98:96:9c: c8:7e:23:25:aa:8f:0b:45:83:5b:a4:5b:2d:12:c6: f1:ea:41:56:dc:ac:b6:3f:40:d1:73:bb:73:95:a9: 17:27:2d:6a:f6:c1:37:e4:40:c9:a6:d1:d3:ad:1a: 41:dc:61:6a:c3:43:c5:3b:1f:47:77:2d:6e:aa:51: 8a:88:30:92:32:90:f3:9c:c9:79:63:44:b5:e5:39: b0:f8:d5:76:fb:e2:96:10:86:36:0a:79:41:9a:3f: 68:03:48:b1:fb:a1:ad:c7:97:d2:11:d7:1c:44:16: 20:9c:3f:e4:68:f6:5e:c6:09:52:05:3f:21:78:9e: cf:6a:1a:84:8c:74:08:bb:b6:59:58:90:95:3a:6b: 85:97:4c:af:3e:4c:48:04:38:5f:85:57:1f:12:7d: 54:22:fb:7c:24:59:92:50:48:2e:b1:ec:69:33:52: e3:c4:41:53:b6:09:cb:e4:3b:57:a3:03:60:57:cd: 65:dc:82:7b:99:f2:8e:95:36:f4:b1:3d:bb:7e:1c: 68:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:5D:44:3D:50:D3:99:11:AA:25:A9:56:09:19:BF:0E:6D:6C:23:F4 X509v3 Authority Key Identifier: keyid:6C:B7:6B:53:63:38:3D:68:E5:55:E5:27:0A:59:31:D8:34:0E:18:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bLdrU2M4PWjlVeUnClkx2DQOGA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/63/6de729-8c2d-4e12-87aa-cb4526fb17d0/1/bLdrU2M4PWjlVeUnClkx2DQOGA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:44:8f:91:c5:b2:50:0c:b3:91:35:d3:ea:4d:a4:04:b0:44: 44:c4:49:79:9f:a7:6c:d8:ac:83:6f:15:ed:62:6e:15:6f:50: 32:d0:0b:06:3a:fa:2a:cd:21:0a:6f:87:f3:e5:c2:82:0c:84: 8d:c3:bd:8e:9b:77:bb:e9:69:45:2b:6b:e9:86:cd:cc:17:11: 29:cc:40:57:5d:d8:03:7e:7e:c5:5f:c6:cd:ea:c3:0b:b7:e5: e8:92:14:3d:7e:15:54:c3:53:90:51:c5:11:82:3a:ee:4f:67: 79:b4:ad:1f:e9:05:43:cc:48:3a:25:1c:45:11:ce:67:73:ed: ec:08:0d:e8:f6:89:99:16:bf:4c:fd:eb:5f:df:36:2a:ea:3e: f1:a7:dd:04:40:15:10:bf:c6:36:23:c3:73:b0:86:d7:9c:31: 49:b9:b2:2d:e6:b1:c8:e2:5b:ff:35:dc:7a:d9:d0:55:05:27: ea:19:cb:0d:6a:a3:0a:c9:02:6c:cd:ae:a3:dc:a3:9f:36:c4: e3:43:3a:af:d4:aa:44:ad:43:47:85:84:cb:9f:28:0d:26:0d: a8:b9:b7:73:18:0f:6a:fc:f4:0d:bb:24:cb:dd:6a:7a:36:3b: e2:a6:18:76:0d:46:b6:26:ca:37:8d:c2:a4:e2:77:59:e2:58: 4b:d0:2c:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIoc5+/RFs9mlgzciGFgKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjYjc2YjUzNjMzODNkNjhlNTU1ZTUyNzBhNTkzMWQ4MzQw ZTE4MGQwHhcNMjYwMjA5MTYwMTAyWhcNMjYwMjEwMTYwMTAyWjAzMTEwLwYDVQQD EyhiMjVkNDQzZDUwZDM5OTExYWEyNWE5NTYwOTE5YmYwZTZkNmMyM2Y0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0cn+C4OkrpCN3HUN1WgZI31DaXNs vyt6z4KI+9II42+IZTgF/lHA2fJW3b8/aQleAwrUNhEWsv+YlpzIfiMlqo8LRYNb pFstEsbx6kFW3Ky2P0DRc7tzlakXJy1q9sE35EDJptHTrRpB3GFqw0PFOx9Hdy1u qlGKiDCSMpDznMl5Y0S15Tmw+NV2++KWEIY2CnlBmj9oA0ix+6Gtx5fSEdccRBYg nD/kaPZexglSBT8heJ7PahqEjHQIu7ZZWJCVOmuFl0yvPkxIBDhfhVcfEn1UIvt8 JFmSUEgusexpM1LjxEFTtgnL5DtXowNgV81l3IJ7mfKOlTb0sT27fhxoTwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLJdRD1Q05kRqiWpVgkZvw5tbCP0MB8GA1UdIwQY MBaAFGy3a1NjOD1o5VXlJwpZMdg0DhgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkxkclUyTTRQV2psVmVVbkNsa3gyRFFPR0EwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82My82ZGU3MjktOGMyZC00ZTEyLTg3YWEt Y2I0NTI2ZmIxN2QwLzEvYkxkclUyTTRQV2psVmVVbkNsa3gyRFFPR0EwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82My82ZGU3MjktOGMyZC00ZTEyLTg3YWEtY2I0NTI2ZmIxN2Qw LzEvYkxkclUyTTRQV2psVmVVbkNsa3gyRFFPR0EwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAk0SPkcWy UAyzkTXT6k2kBLBERMRJeZ+nbNisg28V7WJuFW9QMtALBjr6Ks0hCm+H8+XCggyE jcO9jpt3u+lpRStr6YbNzBcRKcxAV13YA35+xV/GzerDC7fl6JIUPX4VVMNTkFHF EYI67k9nebStH+kFQ8xIOiUcRRHOZ3Pt7AgN6PaJmRa/TP3rX982Kuo+8afdBEAV EL/GNiPDc7CG15wxSbmyLeaxyOJb/zXcetnQVQUn6hnLDWqjCskCbM2uo9yjnzbE 40M6r9SqRK1DR4WEy58oDSYNqLm3cxgPavz0Dbsky91qejY74qYYdg1GtibKN43C pOJ3WeJYS9Aspw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:33 2026 by rpki-client