This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft File: bfhqH1cK4xUpAiqk9h79nsK5fQU.mft (raw, json) Hash identifier: u2uh9O4tZu2K2EEOGQJOWJMVvjrXA483I9aZGUvViR4= Subject key identifier: A4:18:C8:5A:10:D9:9F:D1:FA:E3:D5:CF:32:5F:AA:0B:D1:97:2B:A0 Authority key identifier: 6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05 Certificate issuer: /CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05 Certificate serial: 019C41A2266FBB189C3614299E23989C0980 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft Manifest number: 168B Signing time: Mon 09 Feb 2026 09:01:11 +0000 Manifest this update: Mon 09 Feb 2026 09:01:11 +0000 Manifest next update: Tue 10 Feb 2026 09:01:11 +0000 Files and hashes: 1: Nx4WUGOdHpNQN9XS38e-AsCcPVw.roa (hash: 34pVZ/V8QJHpQ0HgHgjAh/BvMJod9h4SmiBh4ahKV2A=) 2: bfhqH1cK4xUpAiqk9h79nsK5fQU.crl (hash: IKxnCEEyFbrnxi8cWR3EKU+CtG+DNdLDD96ZY5PlSug=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:26:6f:bb:18:9c:36:14:29:9e:23:98:9c:09:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6df86a1f570ae31529022aa4f61efd9ec2b97d05 Validity Not Before: Feb 9 09:01:11 2026 GMT Not After : Feb 10 09:01:11 2026 GMT Subject: CN=a418c85a10d99fd1fae3d5cf325faa0bd1972ba0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:41:63:42:98:a7:8f:43:0c:ce:dc:21:a3:27: b4:7d:10:53:d1:5c:a8:ab:6a:c3:ca:be:a9:8c:d3: d4:d0:33:23:51:09:c5:30:24:6c:a6:0d:96:70:04: 22:ed:9d:47:7c:79:6e:c1:9a:9d:1e:79:74:21:a8: 02:1f:c6:a6:7d:e4:72:7e:e1:08:cf:5b:d1:f5:80: 91:e3:a7:d5:ca:19:1c:6c:f1:0a:d7:9a:7a:45:0d: 25:5d:45:5a:6b:7b:6d:97:8c:e2:d2:2e:cc:00:34: ed:51:e6:75:06:17:28:5d:1f:1c:ca:7b:3e:6f:6e: 1d:b5:8c:c1:46:c8:73:cd:b9:75:21:d7:fc:6a:b2: 3c:b8:21:db:77:18:90:32:19:2d:6e:8a:6b:50:d9: 8b:ce:10:a5:1d:d1:a4:f4:2c:5c:a5:cc:45:62:b2: ea:f6:4d:28:da:45:15:de:8a:c8:21:28:cd:c2:46: 42:62:f8:5b:64:69:4d:02:98:1c:86:32:5c:50:08: 48:12:90:d1:2b:91:d6:12:47:c1:92:15:49:1e:b2: d8:9f:59:68:46:86:43:a4:ea:91:01:d5:23:dc:6b: e1:97:2f:be:a8:5d:79:82:82:32:05:05:59:54:18: 0e:64:96:70:2c:1f:cf:49:41:6a:65:80:b8:c8:71: c2:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:18:C8:5A:10:D9:9F:D1:FA:E3:D5:CF:32:5F:AA:0B:D1:97:2B:A0 X509v3 Authority Key Identifier: keyid:6D:F8:6A:1F:57:0A:E3:15:29:02:2A:A4:F6:1E:FD:9E:C2:B9:7D:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfhqH1cK4xUpAiqk9h79nsK5fQU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/6add35-a983-4011-af8a-7aac2d847955/1/bfhqH1cK4xUpAiqk9h79nsK5fQU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:3c:e1:20:37:aa:54:6d:42:96:c2:16:71:aa:63:dc:1f:8a: 5f:92:cb:03:f9:78:e5:ee:97:da:de:ff:04:b0:f2:dd:03:8d: 9a:23:92:c8:00:05:0c:a0:a6:94:d5:98:7e:b7:e1:8b:42:d0: 7a:86:9c:81:02:0b:8d:b1:91:49:c0:f0:84:85:18:3b:97:62: fe:fc:40:ef:a1:ef:c3:0e:1e:bc:21:a8:d2:d3:7c:44:ec:a2: 7d:8c:5e:82:f3:73:d0:a7:13:b8:a7:8e:dc:3a:d4:03:f8:06: 43:0c:b0:e1:6b:89:57:4d:4d:04:a8:4e:19:1c:6f:07:dc:37: 6d:e6:be:65:4c:72:e8:83:81:20:c0:4c:e7:b5:32:d7:04:e9: 58:fd:7e:2b:ac:d2:5b:c9:65:6f:53:2a:2f:d2:ad:9f:8f:d8: 6e:09:34:d8:59:9b:c9:da:d4:e2:e2:e2:c1:76:3a:ab:72:65: 71:e5:d3:3b:fa:fb:03:44:7d:75:0b:a4:28:8c:90:3a:ea:89: cb:bb:e9:e3:12:1a:33:b8:cd:40:c4:e7:fa:57:6b:bc:80:f2: 05:65:32:56:6b:02:da:a5:14:df:eb:df:b3:a9:0c:0e:be:e9: 81:03:a6:b7:62:9b:fc:24:15:d1:36:72:fa:73:24:31:9d:0b: 74:46:c3:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoiZvuxicNhQpniOYnAmAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZjg2YTFmNTcwYWUzMTUyOTAyMmFhNGY2MWVmZDllYzJi OTdkMDUwHhcNMjYwMjA5MDkwMTExWhcNMjYwMjEwMDkwMTExWjAzMTEwLwYDVQQD EyhhNDE4Yzg1YTEwZDk5ZmQxZmFlM2Q1Y2YzMjVmYWEwYmQxOTcyYmEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuUFjQpinj0MMztwhoye0fRBT0Vyo q2rDyr6pjNPU0DMjUQnFMCRspg2WcAQi7Z1HfHluwZqdHnl0IagCH8amfeRyfuEI z1vR9YCR46fVyhkcbPEK15p6RQ0lXUVaa3ttl4zi0i7MADTtUeZ1BhcoXR8cyns+ b24dtYzBRshzzbl1Idf8arI8uCHbdxiQMhktboprUNmLzhClHdGk9CxcpcxFYrLq 9k0o2kUV3orIISjNwkZCYvhbZGlNApgchjJcUAhIEpDRK5HWEkfBkhVJHrLYn1lo RoZDpOqRAdUj3Gvhly++qF15goIyBQVZVBgOZJZwLB/PSUFqZYC4yHHCUwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKQYyFoQ2Z/R+uPVzzJfqgvRlyugMB8GA1UdIwQY MBaAFG34ah9XCuMVKQIqpPYe/Z7CuX0FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEt N2FhYzJkODQ3OTU1LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS82YWRkMzUtYTk4My00MDExLWFmOGEtN2FhYzJkODQ3OTU1 LzEvYmZocUgxY0s0eFVwQWlxazloNzluc0s1ZlFVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiTzhIDeq VG1ClsIWcapj3B+KX5LLA/l45e6X2t7/BLDy3QONmiOSyAAFDKCmlNWYfrfhi0LQ eoacgQILjbGRScDwhIUYO5di/vxA76Hvww4evCGo0tN8ROyifYxegvNz0KcTuKeO 3DrUA/gGQwyw4WuJV01NBKhOGRxvB9w3bea+ZUxy6IOBIMBM57Uy1wTpWP1+K6zS W8llb1MqL9Ktn4/Ybgk02FmbydrU4uLiwXY6q3JlceXTO/r7A0R9dQukKIyQOuqJ y7vp4xIaM7jNQMTn+ldrvIDyBWUyVmsC2qUU3+vfs6kMDr7pgQOmt2Kb/CQV0TZy +nMkMZ0LdEbD+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:20 2026 by rpki-client