This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft File: biw-HNO4VNZu9GxWd-9y0sWjZpc.mft (raw, json) Hash identifier: LH6L2Z5v71aveQIL+6zAOZwXpNbOUje3hMzcEEhimGU= Subject key identifier: 44:2A:C7:69:5E:26:16:69:DA:1A:70:19:A3:BF:1F:03:07:3C:C6:07 Authority key identifier: 6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97 Certificate issuer: /CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697 Certificate serial: 019C42466DAADD5F6300BF91A5A12A3E8DAD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft Manifest number: 09C9 Signing time: Mon 09 Feb 2026 12:00:37 +0000 Manifest this update: Mon 09 Feb 2026 12:00:37 +0000 Manifest next update: Tue 10 Feb 2026 12:00:37 +0000 Files and hashes: 1: biw-HNO4VNZu9GxWd-9y0sWjZpc.crl (hash: L39l56dkNzuQYkvfJG3jf1xSYZQ/d9QA9MYAHDrQM3c=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:6d:aa:dd:5f:63:00:bf:91:a5:a1:2a:3e:8d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e2c3e1cd3b854d66ef46c5677ef72d2c5a36697 Validity Not Before: Feb 9 12:00:37 2026 GMT Not After : Feb 10 12:00:37 2026 GMT Subject: CN=442ac7695e261669da1a7019a3bf1f03073cc607 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:6f:1e:07:a3:eb:a9:a2:3e:04:10:ab:bd:81: 53:bf:e0:9f:65:6d:eb:7b:30:0b:46:0c:33:60:1e: 97:20:7b:05:07:8f:45:41:74:37:7d:31:a5:11:06: 8b:dc:e5:a0:ff:55:7c:a5:52:10:6d:f2:55:6e:2e: b7:87:1b:8a:5d:a2:73:a0:9b:c6:af:4b:f2:e6:77: 4b:36:8a:63:c1:2e:59:f1:e5:93:ec:90:ca:7b:e3: bf:2e:e8:a8:02:b0:c6:dc:7c:95:88:d1:76:d2:33: 0b:9a:85:c0:1f:19:0a:eb:44:47:94:cb:74:3b:95: 86:aa:ee:e1:94:ee:01:2f:90:57:c5:f0:8f:a5:5d: 96:4f:fa:e8:e0:2e:a8:ed:1e:51:48:55:6a:91:ff: 48:13:3f:92:f9:88:34:0d:f3:d6:d4:4c:0f:66:59: 69:de:78:d2:7a:e4:28:53:22:3f:ce:27:67:51:50: 8b:64:d9:fd:87:df:d0:a5:0b:00:92:b1:79:dc:2e: c4:54:b6:36:1f:12:2f:8a:74:65:c3:45:c3:a2:61: a5:9f:73:08:65:6d:a0:3c:fa:40:3e:77:2b:5e:de: 57:a5:be:9c:05:9e:21:e1:41:25:89:84:e2:f6:a6: 11:c9:dd:12:3c:26:9f:26:4d:41:69:d4:1b:d7:b4: 32:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:2A:C7:69:5E:26:16:69:DA:1A:70:19:A3:BF:1F:03:07:3C:C6:07 X509v3 Authority Key Identifier: keyid:6E:2C:3E:1C:D3:B8:54:D6:6E:F4:6C:56:77:EF:72:D2:C5:A3:66:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/biw-HNO4VNZu9GxWd-9y0sWjZpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2590fb-b05e-4441-add1-f8355b78db24/1/biw-HNO4VNZu9GxWd-9y0sWjZpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:5a:e0:c8:77:e2:24:b5:4d:70:c2:83:4c:d1:81:bd:39:ff: 04:33:69:04:c3:dd:88:29:8f:0f:37:37:79:aa:c3:c9:0c:87: 1d:cb:f5:6a:53:fb:c4:da:6b:5f:38:41:94:f1:f5:e8:69:6b: 15:b8:ba:9f:8e:c8:63:d6:93:5d:1a:62:6e:31:9d:2a:53:da: 86:15:bd:dc:48:9a:25:db:75:ec:b9:a4:1b:64:16:27:c8:a9: 3c:34:97:79:ef:14:f9:fb:ca:b9:95:93:fb:50:dc:cb:93:48: 7a:ec:0b:e3:96:63:2f:4f:70:34:99:22:de:3e:1c:be:2e:6f: 34:b0:32:cd:c8:d5:98:39:30:24:66:d9:df:28:d2:57:0e:d9: 67:08:96:5d:5d:30:e5:14:11:66:79:4d:e9:a5:d7:66:76:1c: 86:bb:a3:f5:b7:cc:b9:8b:9a:db:a4:c8:5f:d9:ba:c9:9c:f1: 21:7c:9d:e9:b6:f0:af:d5:2b:82:7f:4c:52:2f:01:9d:18:c7: ee:4a:1d:ee:74:4c:34:ce:37:8b:7b:d5:81:65:52:a5:bf:b0: 1f:ca:81:f8:f3:63:70:1d:a9:de:07:16:9d:ba:78:dc:a8:57: 77:11:5f:54:9d:6f:f7:b0:64:59:42:b9:95:e5:5c:12:69:1e: a4:ac:ed:e5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRm2q3V9jAL+RpaEqPo2tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlMmMzZTFjZDNiODU0ZDY2ZWY0NmM1Njc3ZWY3MmQyYzVh MzY2OTcwHhcNMjYwMjA5MTIwMDM3WhcNMjYwMjEwMTIwMDM3WjAzMTEwLwYDVQQD Eyg0NDJhYzc2OTVlMjYxNjY5ZGExYTcwMTlhM2JmMWYwMzA3M2NjNjA3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu28eB6PrqaI+BBCrvYFTv+CfZW3r ezALRgwzYB6XIHsFB49FQXQ3fTGlEQaL3OWg/1V8pVIQbfJVbi63hxuKXaJzoJvG r0vy5ndLNopjwS5Z8eWT7JDKe+O/LuioArDG3HyViNF20jMLmoXAHxkK60RHlMt0 O5WGqu7hlO4BL5BXxfCPpV2WT/ro4C6o7R5RSFVqkf9IEz+S+Yg0DfPW1EwPZllp 3njSeuQoUyI/zidnUVCLZNn9h9/QpQsAkrF53C7EVLY2HxIvinRlw0XDomGln3MI ZW2gPPpAPncrXt5Xpb6cBZ4h4UEliYTi9qYRyd0SPCafJk1BadQb17QygQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEQqx2leJhZp2hpwGaO/HwMHPMYHMB8GA1UdIwQY MBaAFG4sPhzTuFTWbvRsVnfvctLFo2aXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yNTkwZmItYjA1ZS00NDQxLWFkZDEt ZjgzNTViNzhkYjI0LzEvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yNTkwZmItYjA1ZS00NDQxLWFkZDEtZjgzNTViNzhkYjI0 LzEvYml3LUhOTzRWTlp1OUd4V2QtOXkwc1dqWnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiVrgyHfi JLVNcMKDTNGBvTn/BDNpBMPdiCmPDzc3earDyQyHHcv1alP7xNprXzhBlPH16Glr Fbi6n47IY9aTXRpibjGdKlPahhW93EiaJdt17LmkG2QWJ8ipPDSXee8U+fvKuZWT +1Dcy5NIeuwL45ZjL09wNJki3j4cvi5vNLAyzcjVmDkwJGbZ3yjSVw7ZZwiWXV0w 5RQRZnlN6aXXZnYchruj9bfMuYua26TIX9m6yZzxIXyd6bbwr9Urgn9MUi8BnRjH 7kod7nRMNM43i3vVgWVSpb+wH8qB+PNjcB2p3gcWnbp43KhXdxFfVJ1v97BkWUK5 leVcEmkepKzt5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:08 2026 by rpki-client