This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft File: BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft (raw, json) Hash identifier: mNj/B3Vnr6aMxGXPv/ExYtvWZeWCzxC8ONRM+Aa16K0= Subject key identifier: 6D:F7:EB:37:6E:24:DE:9E:C5:5D:28:D3:1E:A7:AB:35:0D:0C:70:2C Authority key identifier: 04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A Certificate issuer: /CN=04d29211f92e560f0b7834bb2932ac63cabfa14a Certificate serial: 019C43225801C03E74A6B04D5FF60A54560E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft Manifest number: 0CF5 Signing time: Mon 09 Feb 2026 16:00:49 +0000 Manifest this update: Mon 09 Feb 2026 16:00:49 +0000 Manifest next update: Tue 10 Feb 2026 16:00:49 +0000 Files and hashes: 1: BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl (hash: WcZTFjIsWdM1mSx5eWm6XHeZ/JTQ6zy1KIkHJr8RE84=) 2: we5jn01Cx98OQV43_9pqKOC3HXA.roa (hash: s+Xsw2hTwbHWmllV0HmHTjp9ztGy7bm5p6ULJLREmd4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:58:01:c0:3e:74:a6:b0:4d:5f:f6:0a:54:56:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04d29211f92e560f0b7834bb2932ac63cabfa14a Validity Not Before: Feb 9 16:00:49 2026 GMT Not After : Feb 10 16:00:49 2026 GMT Subject: CN=6df7eb376e24de9ec55d28d31ea7ab350d0c702c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:28:0f:98:a5:95:f6:37:7d:d1:ad:b9:e6:68: 2b:21:a7:ca:21:fd:ee:11:d2:99:ab:cb:e3:19:d9: 88:20:bd:93:58:dc:56:20:28:9d:b6:4f:52:2e:0d: d6:70:55:6b:63:99:8d:f8:f6:96:96:3f:e9:c1:ac: 11:e4:0a:4c:50:92:d1:fc:2d:2c:7b:5d:0a:72:88: 38:a3:88:2b:7c:7f:25:64:e0:43:b8:e7:95:6c:77: 68:d5:e3:50:0b:4d:5c:74:84:f1:16:0b:be:02:4e: ba:a0:e2:85:c4:ad:80:18:be:18:bd:27:f4:3a:c2: 73:ec:cd:d6:02:15:ef:ea:e4:9e:ac:ac:a3:63:37: 13:3b:e7:65:d4:70:8c:b2:84:83:71:fd:11:53:ce: c1:ab:13:4b:4d:1d:cc:6c:f0:b2:52:e7:a5:ab:dd: 62:7b:40:5f:85:01:68:86:0c:e0:5e:47:a2:c4:e6: 0c:89:23:40:5b:ee:94:03:07:ff:48:94:6d:a6:bf: 5e:3b:70:5a:1c:4d:f1:fd:33:49:74:6f:b6:44:b4: 7e:a8:e1:77:6c:45:b4:56:ff:1a:d7:33:5d:8a:4d: de:76:4d:a9:10:d5:b1:07:9e:97:eb:21:a5:34:6b: 2d:5c:fd:62:5d:63:21:a9:51:d8:a7:8c:3d:78:8f: 96:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:F7:EB:37:6E:24:DE:9E:C5:5D:28:D3:1E:A7:AB:35:0D:0C:70:2C X509v3 Authority Key Identifier: keyid:04:D2:92:11:F9:2E:56:0F:0B:78:34:BB:29:32:AC:63:CA:BF:A1:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BNKSEfkuVg8LeDS7KTKsY8q_oUo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/66/f6ac34-6bc3-417b-814d-e8d19296395c/1/BNKSEfkuVg8LeDS7KTKsY8q_oUo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:ee:50:91:4f:87:9e:01:5e:a1:3a:d3:00:4e:59:38:9a:10: 36:8a:a3:d0:2d:d1:7f:87:dd:b1:d8:0a:ad:0c:b5:0e:13:b4: 7a:c3:ec:13:a1:93:9d:88:04:2e:bf:fd:25:ae:bf:55:93:06: 22:f1:70:2e:71:48:af:97:c1:07:1f:18:87:21:ae:44:8e:05: a0:9b:f5:63:4a:82:20:f0:8a:ab:27:57:e7:22:ec:36:68:0a: 85:a5:82:8a:6c:01:c7:e8:ba:b2:a4:26:b6:fd:46:6b:00:2b: 18:8e:c8:a6:1e:4b:34:0c:a5:19:3e:d7:86:ae:88:2b:7b:2c: 2a:03:6d:ff:33:6f:7e:90:19:d6:db:b7:13:bf:a3:4a:fa:63: 59:2b:b0:8d:94:87:d6:72:1e:85:c6:04:e0:b9:4e:c1:eb:df: 38:8c:1d:aa:fd:d3:95:3c:e7:fb:e2:3c:5e:c9:78:d4:98:fa: 21:be:19:cb:0b:21:ac:00:3a:e8:46:ac:76:41:73:15:27:87: 0b:30:1f:e0:2f:ee:b8:ae:be:da:56:9e:0a:3d:7d:62:f0:34: 06:d6:13:65:65:e4:5e:e7:39:83:ad:d9:30:af:a6:c8:56:9d: 2c:c7:5d:82:a0:b6:31:0b:ef:9a:01:94:cd:4d:f0:da:c2:bf: 9d:24:cb:6a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlgBwD50prBNX/YKVFYOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0ZDI5MjExZjkyZTU2MGYwYjc4MzRiYjI5MzJhYzYzY2Fi ZmExNGEwHhcNMjYwMjA5MTYwMDQ5WhcNMjYwMjEwMTYwMDQ5WjAzMTEwLwYDVQQD Eyg2ZGY3ZWIzNzZlMjRkZTllYzU1ZDI4ZDMxZWE3YWIzNTBkMGM3MDJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvygPmKWV9jd90a255mgrIafKIf3u EdKZq8vjGdmIIL2TWNxWICidtk9SLg3WcFVrY5mN+PaWlj/pwawR5ApMUJLR/C0s e10Kcog4o4grfH8lZOBDuOeVbHdo1eNQC01cdITxFgu+Ak66oOKFxK2AGL4YvSf0 OsJz7M3WAhXv6uSerKyjYzcTO+dl1HCMsoSDcf0RU87BqxNLTR3MbPCyUuelq91i e0BfhQFohgzgXkeixOYMiSNAW+6UAwf/SJRtpr9eO3BaHE3x/TNJdG+2RLR+qOF3 bEW0Vv8a1zNdik3edk2pENWxB56X6yGlNGstXP1iXWMhqVHYp4w9eI+WvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFG336zduJN6exV0o0x6nqzUNDHAsMB8GA1UdIwQY MBaAFATSkhH5LlYPC3g0uykyrGPKv6FKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQt ZThkMTkyOTYzOTVjLzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ni9mNmFjMzQtNmJjMy00MTdiLTgxNGQtZThkMTkyOTYzOTVj LzEvQk5LU0Vma3VWZzhMZURTN0tUS3NZOHFfb1VvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAee5QkU+H ngFeoTrTAE5ZOJoQNoqj0C3Rf4fdsdgKrQy1DhO0esPsE6GTnYgELr/9Ja6/VZMG IvFwLnFIr5fBBx8YhyGuRI4FoJv1Y0qCIPCKqydX5yLsNmgKhaWCimwBx+i6sqQm tv1GawArGI7Iph5LNAylGT7Xhq6IK3ssKgNt/zNvfpAZ1tu3E7+jSvpjWSuwjZSH 1nIehcYE4LlOwevfOIwdqv3TlTzn++I8Xsl41Jj6Ib4ZywshrAA66EasdkFzFSeH CzAf4C/uuK6+2laeCj19YvA0BtYTZWXkXuc5g63ZMK+myFadLMddgqC2MQvvmgGU zU3w2sK/nSTLag== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:11 2026 by rpki-client