This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft File: bG9jkROWOM74MYEUEyzPJuFn06Q.mft (raw, json) Hash identifier: 3fpXvMmoqDxmg607ngjQge9F8ynSgBaL4r8FBRN5Gdo= Subject key identifier: 19:33:FE:99:A2:28:56:FB:DB:B1:57:C4:80:D8:7E:E4:85:EE:84:14 Authority key identifier: 6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4 Certificate issuer: /CN=6c6f6391139638cef8318114132ccf26e167d3a4 Certificate serial: 019C420FFAA553C2933A0CC4FFDCC404B5AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft Manifest number: 14E9 Signing time: Mon 09 Feb 2026 11:01:09 +0000 Manifest this update: Mon 09 Feb 2026 11:01:09 +0000 Manifest next update: Tue 10 Feb 2026 11:01:09 +0000 Files and hashes: 1: aCRE3gLyqKdnvA-j-2aLcuCjRwM.roa (hash: ynx5tfnKZJH99nxW03XgpU3cYgXZihD5CZxo4tNLmhI=) 2: bG9jkROWOM74MYEUEyzPJuFn06Q.crl (hash: SEqi6wQxEMVr+wf1MuFl8y7ky4zwcMSNxz4eFyElcew=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:fa:a5:53:c2:93:3a:0c:c4:ff:dc:c4:04:b5:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c6f6391139638cef8318114132ccf26e167d3a4 Validity Not Before: Feb 9 11:01:09 2026 GMT Not After : Feb 10 11:01:09 2026 GMT Subject: CN=1933fe99a22856fbdbb157c480d87ee485ee8414 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:54:d1:64:66:b4:19:83:b4:0a:89:68:f7:68: 69:fe:57:23:1b:90:5c:3b:fd:e6:35:46:fe:f3:c6: 5b:a4:2d:ea:5c:57:3b:ff:3b:4e:18:b1:8e:9b:8e: eb:f1:bd:07:c0:a7:cf:54:b4:ce:73:cd:98:a1:e0: 19:59:d1:fb:91:83:55:b4:6b:dc:9d:da:a0:a7:8a: e1:7c:0e:98:64:d9:14:2b:c1:b8:ab:d5:99:bc:fc: 2f:79:c3:24:5d:a3:82:b6:ee:34:40:1c:38:c1:8c: c9:00:ba:3a:68:84:50:f1:11:a5:11:5a:84:01:02: 68:1b:36:3d:50:e4:bb:22:3a:1d:a5:fe:e8:34:43: 90:3a:0f:8b:6f:2f:e2:90:01:ca:48:8d:e9:f2:61: 58:3e:73:77:90:45:2b:b6:32:58:4c:ad:b0:eb:17: 33:96:ff:70:8c:1c:5e:7d:73:23:28:28:af:0f:9e: f9:4e:ea:d9:9f:43:e7:96:91:f9:53:33:df:cc:de: f8:f1:6a:5b:ce:2d:2b:39:1a:32:a8:6a:26:d4:81: ff:0f:6a:4d:46:0e:48:8e:7d:86:82:74:a0:69:64: b3:12:5f:f7:61:b1:4a:29:48:8f:57:6a:5e:0b:83: 1b:6a:ef:6b:88:5c:6b:a1:13:e6:1f:93:fc:76:4f: 4b:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:33:FE:99:A2:28:56:FB:DB:B1:57:C4:80:D8:7E:E4:85:EE:84:14 X509v3 Authority Key Identifier: keyid:6C:6F:63:91:13:96:38:CE:F8:31:81:14:13:2C:CF:26:E1:67:D3:A4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bG9jkROWOM74MYEUEyzPJuFn06Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/69/95a6f4-8220-46dc-b238-34ad1c853599/1/bG9jkROWOM74MYEUEyzPJuFn06Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:fe:1a:d3:4d:3c:a8:6c:51:78:eb:af:e3:46:1d:e3:16:ea: d7:77:5b:42:13:ba:d0:cf:e6:45:b3:8d:20:17:05:4f:dc:20: d3:81:84:7d:21:90:46:5e:82:30:7e:52:5c:57:f1:87:c5:e3: af:64:be:c5:f8:ab:85:87:47:52:4e:7e:77:b2:0b:72:20:1b: c0:e6:50:2b:14:e2:c0:b6:88:52:99:a1:44:15:5c:b5:57:db: c3:26:c3:c0:99:54:12:0b:96:c9:d8:45:a1:ac:fe:01:98:c5: d9:d3:4f:bd:48:36:2a:bb:8d:e4:18:c8:57:c4:4f:3c:ee:5d: 72:ff:6f:9f:59:1e:a8:08:33:16:98:1a:5c:52:8a:f9:3d:ac: 87:e5:5b:2e:c6:8f:b0:93:ae:41:96:75:b5:32:e8:9f:5f:31: 5a:03:9f:54:f1:ce:13:8e:89:62:4b:b5:a3:4b:7f:8c:d9:57: 7c:2d:35:d8:d7:ce:26:4a:a6:dc:fe:c7:9a:cd:35:58:33:2f: 2f:2a:ba:dc:10:23:e1:d3:de:73:a5:43:e0:0b:44:be:c7:7f: 0a:23:af:6d:00:58:5f:da:5b:ca:ef:ee:77:fe:ec:37:ba:8c: 8b:eb:aa:b5:c6:d8:20:cd:26:9d:96:b4:8b:0f:02:b6:d6:64: b1:c9:82:fd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD/qlU8KTOgzE/9zEBLWrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNmY2MzkxMTM5NjM4Y2VmODMxODExNDEzMmNjZjI2ZTE2 N2QzYTQwHhcNMjYwMjA5MTEwMTA5WhcNMjYwMjEwMTEwMTA5WjAzMTEwLwYDVQQD EygxOTMzZmU5OWEyMjg1NmZiZGJiMTU3YzQ4MGQ4N2VlNDg1ZWU4NDE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplTRZGa0GYO0Colo92hp/lcjG5Bc O/3mNUb+88ZbpC3qXFc7/ztOGLGOm47r8b0HwKfPVLTOc82YoeAZWdH7kYNVtGvc ndqgp4rhfA6YZNkUK8G4q9WZvPwvecMkXaOCtu40QBw4wYzJALo6aIRQ8RGlEVqE AQJoGzY9UOS7Ijodpf7oNEOQOg+Lby/ikAHKSI3p8mFYPnN3kEUrtjJYTK2w6xcz lv9wjBxefXMjKCivD575TurZn0PnlpH5UzPfzN748Wpbzi0rORoyqGom1IH/D2pN Rg5Ijn2GgnSgaWSzEl/3YbFKKUiPV2peC4Mbau9riFxroRPmH5P8dk9LLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBkz/pmiKFb727FXxIDYfuSF7oQUMB8GA1UdIwQY MBaAFGxvY5ETljjO+DGBFBMszybhZ9OkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgt MzRhZDFjODUzNTk5LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OS85NWE2ZjQtODIyMC00NmRjLWIyMzgtMzRhZDFjODUzNTk5 LzEvYkc5amtST1dPTTc0TVlFVUV5elBKdUZuMDZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqf4a0008 qGxReOuv40Yd4xbq13dbQhO60M/mRbONIBcFT9wg04GEfSGQRl6CMH5SXFfxh8Xj r2S+xfirhYdHUk5+d7ILciAbwOZQKxTiwLaIUpmhRBVctVfbwybDwJlUEguWydhF oaz+AZjF2dNPvUg2KruN5BjIV8RPPO5dcv9vn1keqAgzFpgaXFKK+T2sh+VbLsaP sJOuQZZ1tTLon18xWgOfVPHOE46JYku1o0t/jNlXfC012NfOJkqm3P7Hms01WDMv Lyq63BAj4dPec6VD4AtEvsd/CiOvbQBYX9pbyu/ud/7sN7qMi+uqtcbYIM0mnZa0 iw8CttZkscmC/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:59 2026 by rpki-client