This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft File: vPI0wEREFriFL7NHh4rTdtCBjWQ.mft (raw, json) Hash identifier: pE0syjJLn0FFHbGk9YxfT1mRoHFMiPK0CAq0EqDZWDs= Subject key identifier: D4:53:75:CF:78:DF:A0:DD:15:38:9E:4E:FA:1D:CF:74:04:58:0F:A5 Authority key identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64 Certificate issuer: /CN=bcf234c0444416b8852fb347878ad376d0818d64 Certificate serial: 019C427D9033A65FCC85FDF82A642074A7D9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft Manifest number: 0B9A Signing time: Mon 09 Feb 2026 13:00:50 +0000 Manifest this update: Mon 09 Feb 2026 13:00:50 +0000 Manifest next update: Tue 10 Feb 2026 13:00:50 +0000 Files and hashes: 1: vPI0wEREFriFL7NHh4rTdtCBjWQ.crl (hash: +tqsHxhlXM+pX4t/Xafl5Q0VdwvJx72Iy6ViwAQlJOM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:90:33:a6:5f:cc:85:fd:f8:2a:64:20:74:a7:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bcf234c0444416b8852fb347878ad376d0818d64 Validity Not Before: Feb 9 13:00:50 2026 GMT Not After : Feb 10 13:00:50 2026 GMT Subject: CN=d45375cf78dfa0dd15389e4efa1dcf7404580fa5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1c:bd:30:55:5c:5a:92:03:36:a6:83:df:37: 99:75:aa:74:4f:fa:4c:05:f8:26:c4:c1:36:9d:be: bc:0f:eb:1e:d4:4e:c4:38:7a:7a:b3:97:d9:fe:cb: d5:7c:45:6b:27:a8:28:ef:69:be:e7:a0:bb:e2:08: 30:2c:12:80:1b:b7:ed:1d:dc:27:a8:59:53:51:39: 25:37:2d:c6:cb:8d:22:bc:2c:57:40:e9:81:f8:06: ab:0a:2f:3c:28:60:80:17:5e:61:2b:69:a0:74:12: f9:47:89:3f:66:ca:70:a7:db:e9:9f:b6:d7:48:28: fa:ee:d7:d0:0b:cc:b1:eb:61:3d:be:37:d8:f0:5e: b9:c2:db:d5:01:99:a3:f8:f9:4e:a5:2b:af:0e:5f: 69:04:b5:39:e4:43:6f:78:e9:55:44:24:37:d8:f9: 20:db:20:fe:38:42:10:76:3d:19:54:dc:10:e7:3f: af:98:00:a0:e2:41:f4:66:4f:73:1c:77:58:5f:50: d5:7f:6f:76:cd:ef:6e:2c:9a:f6:09:14:55:4e:01: dd:1d:d6:24:fa:84:4d:8b:ae:13:70:1e:b1:ea:7e: c7:be:89:0d:85:2c:16:34:57:89:d1:3f:41:81:c4: 32:91:bf:94:93:57:76:82:35:90:10:9d:58:e2:75: 68:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:53:75:CF:78:DF:A0:DD:15:38:9E:4E:FA:1D:CF:74:04:58:0F:A5 X509v3 Authority Key Identifier: keyid:BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:24:e2:15:e7:6f:ea:24:e9:84:5b:e6:10:b5:b3:a4:7a:d3: 44:ac:8b:50:c6:77:96:7f:49:8e:35:47:53:a9:86:72:a9:96: 55:a3:4a:2c:6e:d1:59:90:16:60:ac:a3:fd:48:08:84:56:5e: 5b:86:1f:1b:80:d0:d3:b7:53:fa:b9:c2:a1:3e:4b:e1:69:03: fc:0c:b8:b9:ae:3f:99:6a:7e:0b:55:d1:09:e7:6e:5e:15:b5: c9:0e:a5:e8:19:09:1c:b4:0d:a6:01:26:48:50:fe:8c:1d:16: 09:c5:69:86:34:5c:86:39:60:92:d8:92:07:41:ec:c2:62:7b: 93:ed:89:59:f6:70:39:46:3a:23:c0:75:86:74:8d:ed:98:c3: ef:f3:ea:34:65:75:68:49:17:4e:68:cd:79:03:fe:ab:7f:dc: 8a:60:50:ec:e9:d9:c8:c9:25:57:88:f4:46:65:7c:46:cc:5f: 2e:aa:b1:14:0a:68:92:62:14:14:4f:55:2b:08:5c:c5:00:ef: 8a:90:00:e2:f3:1c:19:ae:f0:25:94:d4:91:97:f4:4d:e7:9b: 6b:11:67:aa:83:ad:6f:19:ad:80:0c:60:8a:63:4b:30:1a:b0: c5:8c:9c:8c:6a:2f:41:ca:10:38:62:10:f9:1d:2f:32:d2:8a: 79:3b:f0:77 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfZAzpl/Mhf34KmQgdKfZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJjZjIzNGMwNDQ0NDE2Yjg4NTJmYjM0Nzg3OGFkMzc2ZDA4 MThkNjQwHhcNMjYwMjA5MTMwMDUwWhcNMjYwMjEwMTMwMDUwWjAzMTEwLwYDVQQD EyhkNDUzNzVjZjc4ZGZhMGRkMTUzODllNGVmYTFkY2Y3NDA0NTgwZmE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBy9MFVcWpIDNqaD3zeZdap0T/pM BfgmxME2nb68D+se1E7EOHp6s5fZ/svVfEVrJ6go72m+56C74ggwLBKAG7ftHdwn qFlTUTklNy3Gy40ivCxXQOmB+AarCi88KGCAF15hK2mgdBL5R4k/Zspwp9vpn7bX SCj67tfQC8yx62E9vjfY8F65wtvVAZmj+PlOpSuvDl9pBLU55ENveOlVRCQ32Pkg 2yD+OEIQdj0ZVNwQ5z+vmACg4kH0Zk9zHHdYX1DVf292ze9uLJr2CRRVTgHdHdYk +oRNi64TcB6x6n7HvokNhSwWNFeJ0T9BgcQykb+Uk1d2gjWQEJ1Y4nVoHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNRTdc9436DdFTieTvodz3QEWA+lMB8GA1UdIwQY MBaAFLzyNMBERBa4hS+zR4eK03bQgY1kMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlBJMHdFUkVGcmlGTDdOSGg0clRkdENCaldRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NC9iYjdhN2EtMzAzZi00MjM0LTgyYTEt OWFjYTdiZDhlYzBmLzEvdlBJMHdFUkVGcmlGTDdOSGg0clRkdENCaldRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NC9iYjdhN2EtMzAzZi00MjM0LTgyYTEtOWFjYTdiZDhlYzBm LzEvdlBJMHdFUkVGcmlGTDdOSGg0clRkdENCaldRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWyTiFedv 6iTphFvmELWzpHrTRKyLUMZ3ln9JjjVHU6mGcqmWVaNKLG7RWZAWYKyj/UgIhFZe W4YfG4DQ07dT+rnCoT5L4WkD/Ay4ua4/mWp+C1XRCeduXhW1yQ6l6BkJHLQNpgEm SFD+jB0WCcVphjRchjlgktiSB0HswmJ7k+2JWfZwOUY6I8B1hnSN7ZjD7/PqNGV1 aEkXTmjNeQP+q3/cimBQ7OnZyMklV4j0RmV8RsxfLqqxFApokmIUFE9VKwhcxQDv ipAA4vMcGa7wJZTUkZf0TeebaxFnqoOtbxmtgAxgimNLMBqwxYycjGovQcoQOGIQ +R0vMtKKeTvwdw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:22 2026 by rpki-client