This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft File: a-BR-5PgFam3YbtFr-EJ2740fGY.mft (raw, json) Hash identifier: 9plDR1qaVEfq1lYnbRRdd53F48s/ILJWm0OcSW7rDJU= Subject key identifier: C6:C2:1F:08:33:F1:B5:AC:FB:A5:88:8C:D1:8C:54:1E:AA:2E:1E:47 Authority key identifier: 6B:E0:51:FB:93:E0:15:A9:B7:61:BB:45:AF:E1:09:DB:BE:34:7C:66 Certificate issuer: /CN=6be051fb93e015a9b761bb45afe109dbbe347c66 Certificate serial: 019C420F67F37B9802B94FFCA15F5058E145 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft Manifest number: 07C0 Signing time: Mon 09 Feb 2026 11:00:31 +0000 Manifest this update: Mon 09 Feb 2026 11:00:31 +0000 Manifest next update: Tue 10 Feb 2026 11:00:31 +0000 Files and hashes: 1: a-BR-5PgFam3YbtFr-EJ2740fGY.crl (hash: UYx8b4xTTqOLb2cZdib+qYSOZWoq853BmDwhnhx+GZ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.crl rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:67:f3:7b:98:02:b9:4f:fc:a1:5f:50:58:e1:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6be051fb93e015a9b761bb45afe109dbbe347c66 Validity Not Before: Feb 9 11:00:31 2026 GMT Not After : Feb 10 11:00:31 2026 GMT Subject: CN=c6c21f0833f1b5acfba5888cd18c541eaa2e1e47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8a:e1:20:2f:df:15:6b:41:51:2a:6e:5e:da: 8a:5a:fd:95:cb:a6:57:de:93:c7:73:10:3c:bc:f4: 34:68:a3:09:70:40:d3:f7:18:ed:8d:96:bf:d2:55: 67:56:09:79:6b:b6:13:f8:e1:a4:31:84:a9:34:fd: a0:c2:89:20:e6:74:e9:26:7e:c7:8b:d4:bc:10:89: cb:c8:55:d9:b5:a2:e6:65:38:55:eb:b6:8e:b5:9b: 5f:50:17:c1:c5:21:9f:4f:c8:89:79:b8:9e:41:71: e6:ce:9c:7f:37:d1:88:d9:65:26:dd:12:21:f1:c2: 21:a1:d5:f5:65:30:b2:37:7a:96:a7:03:15:41:11: b4:3b:52:60:eb:f7:0b:50:ae:e7:c3:d1:20:84:5b: 54:a9:f4:6b:64:74:ac:e1:ab:d1:72:a5:ec:fd:d9: 8b:1c:ed:0d:5c:ce:04:4b:af:7d:39:75:45:47:ea: cd:1f:71:f3:de:de:92:e4:31:d3:5a:c3:59:b4:1a: cf:78:e5:3c:76:6a:ea:11:04:88:76:b8:fd:e4:73: f5:f3:d9:49:82:eb:dc:5f:da:06:57:d3:e7:27:a5: 3c:ae:48:53:19:e0:40:a1:26:c0:b6:e5:7e:0e:63: 0b:b1:54:ec:b3:0e:31:83:33:53:71:81:0e:d1:e4: 53:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:C2:1F:08:33:F1:B5:AC:FB:A5:88:8C:D1:8C:54:1E:AA:2E:1E:47 X509v3 Authority Key Identifier: keyid:6B:E0:51:FB:93:E0:15:A9:B7:61:BB:45:AF:E1:09:DB:BE:34:7C:66 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/a-BR-5PgFam3YbtFr-EJ2740fGY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/25f85e-d070-488b-89f6-f4e59f39a74a/1/a-BR-5PgFam3YbtFr-EJ2740fGY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:8f:29:b0:52:1d:a1:00:34:ba:66:6c:17:cb:bb:ba:ba:1b: 0e:33:18:17:a8:ff:e5:84:87:eb:b1:d5:13:bf:84:d0:49:84: bc:90:16:74:66:c5:68:55:8c:69:0f:77:4c:38:42:5d:84:75: 37:9d:e6:d8:af:42:f2:a9:55:2f:4b:67:bf:ee:62:64:1a:66: 91:3c:b6:7c:89:3b:ce:16:da:d5:d1:76:47:46:88:fc:a7:ee: 67:73:fb:e3:72:44:15:ee:8e:aa:2e:27:f9:87:bb:4e:b5:71: 48:e2:30:4b:e8:b3:93:e8:7a:0a:48:42:8b:37:85:0a:b7:e2: 9c:71:2a:8d:e4:51:31:ec:62:bc:94:f2:e2:e2:c3:5d:62:d9: 19:55:2f:ac:d2:09:0f:eb:a7:eb:94:cf:1d:24:14:93:eb:6f: 93:f2:12:a7:61:54:15:1e:45:e6:d8:08:00:7f:d0:96:6c:3e: ec:7e:b9:06:b1:6c:da:66:e1:a8:cb:85:a9:7c:ec:15:ff:fd: 0a:5d:85:88:78:4d:d4:9a:be:8e:a0:80:f4:57:3d:8d:ac:d4: 1b:7e:32:c9:51:1f:23:e9:76:0a:56:15:63:0c:6e:10:d9:c5: 39:f1:8c:9b:c2:df:3b:96:f6:48:82:c9:7d:87:7c:1c:93:06: d1:d4:23:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD2fze5gCuU/8oV9QWOFFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZiZTA1MWZiOTNlMDE1YTliNzYxYmI0NWFmZTEwOWRiYmUz NDdjNjYwHhcNMjYwMjA5MTEwMDMxWhcNMjYwMjEwMTEwMDMxWjAzMTEwLwYDVQQD EyhjNmMyMWYwODMzZjFiNWFjZmJhNTg4OGNkMThjNTQxZWFhMmUxZTQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6IrhIC/fFWtBUSpuXtqKWv2Vy6ZX 3pPHcxA8vPQ0aKMJcEDT9xjtjZa/0lVnVgl5a7YT+OGkMYSpNP2gwokg5nTpJn7H i9S8EInLyFXZtaLmZThV67aOtZtfUBfBxSGfT8iJebieQXHmzpx/N9GI2WUm3RIh 8cIhodX1ZTCyN3qWpwMVQRG0O1Jg6/cLUK7nw9EghFtUqfRrZHSs4avRcqXs/dmL HO0NXM4ES699OXVFR+rNH3Hz3t6S5DHTWsNZtBrPeOU8dmrqEQSIdrj95HP189lJ guvcX9oGV9PnJ6U8rkhTGeBAoSbAtuV+DmMLsVTssw4xgzNTcYEO0eRTLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMbCHwgz8bWs+6WIjNGMVB6qLh5HMB8GA1UdIwQY MBaAFGvgUfuT4BWpt2G7Ra/hCdu+NHxmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYS1CUi01UGdGYW0zWWJ0RnItRUoyNzQwZkdZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC8yNWY4NWUtZDA3MC00ODhiLTg5ZjYt ZjRlNTlmMzlhNzRhLzEvYS1CUi01UGdGYW0zWWJ0RnItRUoyNzQwZkdZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC8yNWY4NWUtZDA3MC00ODhiLTg5ZjYtZjRlNTlmMzlhNzRh LzEvYS1CUi01UGdGYW0zWWJ0RnItRUoyNzQwZkdZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjY8psFId oQA0umZsF8u7urobDjMYF6j/5YSH67HVE7+E0EmEvJAWdGbFaFWMaQ93TDhCXYR1 N53m2K9C8qlVL0tnv+5iZBpmkTy2fIk7zhba1dF2R0aI/KfuZ3P743JEFe6Oqi4n +Ye7TrVxSOIwS+izk+h6CkhCizeFCrfinHEqjeRRMexivJTy4uLDXWLZGVUvrNIJ D+un65TPHSQUk+tvk/ISp2FUFR5F5tgIAH/Qlmw+7H65BrFs2mbhqMuFqXzsFf/9 Cl2FiHhN1Jq+jqCA9Fc9jazUG34yyVEfI+l2ClYVYwxuENnFOfGMm8LfO5b2SILJ fYd8HJMG0dQjSw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:47 2026 by rpki-client