This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft File: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft (raw, json) Hash identifier: wKRWnUQGzrXsxqIMuqMAj9iZYlI8O71X0rxZQUKWSU8= Subject key identifier: 73:55:E5:0B:E8:3C:9D:CD:0D:9A:5D:4B:9E:AF:50:10:68:42:FB:6C Authority key identifier: 05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4 Certificate issuer: /CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4 Certificate serial: 019C43C6E002992DBBC419448F8A995F8CBA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 19:00:32 +0000 Manifest this update: Mon 09 Feb 2026 19:00:32 +0000 Manifest next update: Tue 10 Feb 2026 19:00:32 +0000 Files and hashes: 1: Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl (hash: 4/wNcVeq+4wIG9Q55h6vt4FpYBeNAB8ohLBfbYaMpH4=) 2: Lqd1mryq0eI3XAJCMSKyJDpltOI.roa (hash: NKrZd+8ubVZMRdGL7RM/ghy07bvO6vCdLTdgz04D2Kg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:e0:02:99:2d:bb:c4:19:44:8f:8a:99:5f:8c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05ae5f23db983fd136ae9d71e87e1e5130bcf6d4 Validity Not Before: Feb 9 19:00:32 2026 GMT Not After : Feb 10 19:00:32 2026 GMT Subject: CN=7355e50be83c9dcd0d9a5d4b9eaf50106842fb6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:4f:08:6d:ad:cb:a6:b4:79:1a:45:85:7e:a3: 94:35:84:ad:19:0c:05:42:bb:6c:c4:cf:5c:1f:58: e6:d2:de:a7:c9:24:ee:c1:c0:64:f4:29:fe:6d:2d: a1:65:6c:d6:b3:d5:42:75:10:b2:a1:b4:db:c2:41: 61:c0:dc:ae:6c:c2:ea:56:c6:e1:ed:06:4a:68:6c: 50:f8:f3:d1:84:db:eb:03:f4:76:cd:4a:3f:7c:60: 55:08:81:a4:09:9c:02:07:c7:40:d6:03:d8:9b:dc: 15:87:b2:e2:8c:5e:03:f3:ea:b9:3f:7d:62:51:c6: cc:00:fe:67:50:73:2a:d4:55:33:bc:98:aa:5f:55: df:63:02:a5:47:70:23:c3:90:ab:0d:5e:4e:c1:d9: d1:7a:bb:c0:c9:c9:c6:f0:b9:47:e8:7c:89:9c:a7: b3:c4:cb:f6:3b:a7:db:df:76:0f:ea:21:27:cf:64: 69:e5:28:15:c2:14:62:63:06:11:be:23:13:22:f9: 54:2c:9b:87:da:05:64:67:7e:ed:3a:d6:7d:e1:a9: 49:71:a3:ec:84:08:9a:ea:26:db:b5:53:d0:59:3c: 51:ba:8d:65:32:e9:5a:68:a7:d8:fd:7c:28:d7:48: 5c:fa:e5:fd:cd:d5:01:b6:fd:6d:e0:5a:ff:d8:0c: 51:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:55:E5:0B:E8:3C:9D:CD:0D:9A:5D:4B:9E:AF:50:10:68:42:FB:6C X509v3 Authority Key Identifier: keyid:05:AE:5F:23:DB:98:3F:D1:36:AE:9D:71:E8:7E:1E:51:30:BC:F6:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/745fcb-f472-4039-8b1d-44efd130659c/1/Ba5fI9uYP9E2rp1x6H4eUTC89tQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:86:02:e6:da:79:fe:e7:4c:43:80:67:2f:0f:95:ac:30:d6: f4:54:71:7e:5b:b3:2b:10:28:91:98:93:89:94:fc:bf:21:29: ad:36:a3:83:fd:aa:34:23:d2:2e:d3:8d:46:45:1e:b7:25:6a: 6b:f7:33:6a:1b:11:88:6c:b6:7b:ab:e4:93:21:dd:05:d9:3b: d5:c5:de:99:d8:52:5e:47:0d:83:79:fa:c7:68:6e:c0:e1:73: 5c:8c:c5:46:55:a2:75:26:09:b4:95:03:51:09:a6:08:65:fa: 96:d4:a4:15:fd:b4:10:25:a8:42:e3:61:55:e9:3c:83:dc:9d: 10:94:db:06:09:e4:68:cf:6e:9b:68:ea:52:30:ee:82:d2:7c: 2a:76:3c:ef:dd:b7:32:6c:c9:ac:12:42:88:33:1c:58:7a:ba: c2:6e:6b:2e:68:ce:ee:5a:25:48:a4:b3:15:20:79:cb:2a:60: 15:50:d3:df:a8:26:7c:75:8e:18:3d:84:97:d6:4d:ab:a9:ae: df:5e:44:0b:f1:68:87:d8:d7:48:1e:24:bf:4d:0e:7d:dd:3b: bb:ac:f5:60:66:6a:d1:60:31:85:c1:4a:ee:02:71:e3:80:96: 1c:e3:fb:ff:af:5c:88:79:a4:57:fa:a6:4f:f9:fd:a0:52:f3: d5:30:66:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxuACmS27xBlEj4qZX4y6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1YWU1ZjIzZGI5ODNmZDEzNmFlOWQ3MWU4N2UxZTUxMzBi Y2Y2ZDQwHhcNMjYwMjA5MTkwMDMyWhcNMjYwMjEwMTkwMDMyWjAzMTEwLwYDVQQD Eyg3MzU1ZTUwYmU4M2M5ZGNkMGQ5YTVkNGI5ZWFmNTAxMDY4NDJmYjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyk8Iba3LprR5GkWFfqOUNYStGQwF QrtsxM9cH1jm0t6nySTuwcBk9Cn+bS2hZWzWs9VCdRCyobTbwkFhwNyubMLqVsbh 7QZKaGxQ+PPRhNvrA/R2zUo/fGBVCIGkCZwCB8dA1gPYm9wVh7LijF4D8+q5P31i UcbMAP5nUHMq1FUzvJiqX1XfYwKlR3Ajw5CrDV5OwdnRervAycnG8LlH6HyJnKez xMv2O6fb33YP6iEnz2Rp5SgVwhRiYwYRviMTIvlULJuH2gVkZ37tOtZ94alJcaPs hAia6ibbtVPQWTxRuo1lMulaaKfY/Xwo10hc+uX9zdUBtv1t4Fr/2AxRtQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHNV5QvoPJ3NDZpdS56vUBBoQvtsMB8GA1UdIwQY MBaAFAWuXyPbmD/RNq6dceh+HlEwvPbUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQt NDRlZmQxMzA2NTljLzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS83NDVmY2ItZjQ3Mi00MDM5LThiMWQtNDRlZmQxMzA2NTlj LzEvQmE1Zkk5dVlQOUUycnAxeDZINGVVVEM4OXRRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALIYC5tp5 /udMQ4BnLw+VrDDW9FRxfluzKxAokZiTiZT8vyEprTajg/2qNCPSLtONRkUetyVq a/czahsRiGy2e6vkkyHdBdk71cXemdhSXkcNg3n6x2huwOFzXIzFRlWidSYJtJUD UQmmCGX6ltSkFf20ECWoQuNhVek8g9ydEJTbBgnkaM9um2jqUjDugtJ8KnY87923 MmzJrBJCiDMcWHq6wm5rLmjO7lolSKSzFSB5yypgFVDT36gmfHWOGD2El9ZNq6mu 315EC/Foh9jXSB4kv00Ofd07u6z1YGZq0WAxhcFK7gJx44CWHOP7/69ciHmkV/qm T/n9oFLz1TBmUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:55 2026 by rpki-client