This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft File: Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft (raw, json) Hash identifier: YSw8CgSs/X+c8A469z2xFItZ0o4/c1eNAYnKHhhTLb4= Subject key identifier: F8:D0:95:5F:E6:80:98:44:79:70:7E:6E:5C:DD:25:38:C4:E8:24:0B Authority key identifier: 06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98 Certificate issuer: /CN=06097a72e4ae40b6b9929b72f81efd71c517dd98 Certificate serial: 019BFBE4FDE03B96D86FE5EAEEC7A0F9129D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft Manifest number: 040E Signing time: Mon 26 Jan 2026 20:00:46 +0000 Manifest this update: Mon 26 Jan 2026 20:00:46 +0000 Manifest next update: Tue 27 Jan 2026 20:00:46 +0000 Files and hashes: 1: Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl (hash: S2La2IBr5X2Adgn8VpcHmY24Zu9SQRGa5pKZECt14kk=) 2: egh2jlJ3EvVVoKqsyyD80-m512Q.roa (hash: RHu71nLbKp8lHX4W0lV6aHdUtImYmFlIXsjzf9wXMgw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fb:e4:fd:e0:3b:96:d8:6f:e5:ea:ee:c7:a0:f9:12:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06097a72e4ae40b6b9929b72f81efd71c517dd98 Validity Not Before: Jan 26 20:00:46 2026 GMT Not After : Jan 27 20:00:46 2026 GMT Subject: CN=f8d0955fe680984479707e6e5cdd2538c4e8240b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:18:97:66:80:ef:c3:2e:ae:4d:2e:55:28:ca: 9b:f4:f1:94:19:1c:ed:30:43:ea:3c:2a:0a:65:70: e3:f8:90:5b:e7:8b:6e:0f:cc:20:34:77:4c:63:2b: 2c:6c:76:c9:77:8f:fa:fb:07:7f:84:c2:52:bd:ee: 20:62:85:2a:07:25:d7:e4:1d:93:44:59:76:90:84: 8a:58:95:83:37:42:aa:12:a6:60:78:c6:42:83:65: 4b:03:af:1c:fc:f0:df:cf:35:ba:00:5f:0a:5b:8e: 0e:4c:6d:a6:b1:27:d3:94:b5:6b:9a:b4:c0:6f:22: 4c:63:c7:ea:b5:97:b0:29:7e:95:cc:ff:ac:02:72: 8c:66:bb:43:80:dd:68:1a:d2:14:6a:0d:e9:c6:d9: d7:b7:7f:a1:5d:c2:ee:af:14:bc:52:be:8c:ef:f5: 8e:da:12:b1:17:52:ee:3c:e7:17:a7:51:3c:33:2f: ba:dd:a2:ca:5e:97:40:37:30:ac:b0:42:a3:d0:4a: 31:76:b8:36:9d:f2:23:71:34:13:71:dc:c3:20:fa: 95:95:07:ec:6c:b9:19:c8:cf:ba:77:42:b6:53:ce: 9b:80:0a:c5:7f:4a:7f:4a:3a:71:7d:f4:ae:41:a4: c0:f9:5d:e2:6b:bd:0c:11:89:ef:33:f8:67:27:80: a1:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:D0:95:5F:E6:80:98:44:79:70:7E:6E:5C:DD:25:38:C4:E8:24:0B X509v3 Authority Key Identifier: keyid:06:09:7A:72:E4:AE:40:B6:B9:92:9B:72:F8:1E:FD:71:C5:17:DD:98 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Bgl6cuSuQLa5kpty-B79ccUX3Zg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/3a109a-9b32-45a8-9b0c-7a02517fd9d2/1/Bgl6cuSuQLa5kpty-B79ccUX3Zg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:41:42:10:8e:ae:c2:7a:0d:2e:c1:bf:69:2d:6f:b2:75:19: a4:54:c1:c9:8d:ed:5d:28:dc:0e:69:40:7b:d4:9e:03:05:be: 86:eb:09:8a:34:b6:04:66:20:0f:8f:95:c5:59:56:be:70:5b: a0:3e:46:d3:7b:26:16:78:19:7c:47:75:13:81:7c:0b:ea:c3: 56:72:ef:a8:29:50:1f:aa:a3:26:8e:47:17:3e:13:62:81:9a: a8:04:a9:60:4a:ca:6b:52:43:7c:99:85:9a:be:9d:68:40:a5: 31:92:b9:2c:5c:80:c1:23:7c:2c:ca:76:dc:05:ce:e2:81:30: bc:c6:c1:d3:ab:01:53:da:41:09:b7:86:07:ef:b0:39:a5:20: b7:d6:9e:0b:10:dc:7e:6f:15:f3:19:4d:ae:6b:04:68:71:cd: 3d:80:13:63:2f:56:8c:9f:cd:c7:d1:58:7f:58:87:cf:32:27: 15:fb:8c:b6:58:5e:f0:de:74:2f:aa:aa:d1:0e:b5:2a:9a:8e: 82:84:d2:11:aa:c9:6f:47:b8:21:04:ab:c1:8f:4a:dc:da:02: e9:93:81:a8:d3:f9:a2:ff:e0:68:e6:60:46:1c:67:3e:81:21: 3d:26:77:70:e1:fd:fc:ce:3a:7a:20:42:e3:1c:69:92:61:47: 81:52:1e:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv75P3gO5bYb+Xq7seg+RKdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDk3YTcyZTRhZTQwYjZiOTkyOWI3MmY4MWVmZDcxYzUx N2RkOTgwHhcNMjYwMTI2MjAwMDQ2WhcNMjYwMTI3MjAwMDQ2WjAzMTEwLwYDVQQD EyhmOGQwOTU1ZmU2ODA5ODQ0Nzk3MDdlNmU1Y2RkMjUzOGM0ZTgyNDBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhiXZoDvwy6uTS5VKMqb9PGUGRzt MEPqPCoKZXDj+JBb54tuD8wgNHdMYyssbHbJd4/6+wd/hMJSve4gYoUqByXX5B2T RFl2kISKWJWDN0KqEqZgeMZCg2VLA68c/PDfzzW6AF8KW44OTG2msSfTlLVrmrTA byJMY8fqtZewKX6VzP+sAnKMZrtDgN1oGtIUag3pxtnXt3+hXcLurxS8Ur6M7/WO 2hKxF1LuPOcXp1E8My+63aLKXpdANzCssEKj0Eoxdrg2nfIjcTQTcdzDIPqVlQfs bLkZyM+6d0K2U86bgArFf0p/SjpxffSuQaTA+V3ia70MEYnvM/hnJ4ChywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPjQlV/mgJhEeXB+blzdJTjE6CQLMB8GA1UdIwQY MBaAFAYJenLkrkC2uZKbcvge/XHFF92YMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMt N2EwMjUxN2ZkOWQyLzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8zYTEwOWEtOWIzMi00NWE4LTliMGMtN2EwMjUxN2ZkOWQy LzEvQmdsNmN1U3VRTGE1a3B0eS1CNzljY1VYM1pnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArkFCEI6u wnoNLsG/aS1vsnUZpFTByY3tXSjcDmlAe9SeAwW+husJijS2BGYgD4+VxVlWvnBb oD5G03smFngZfEd1E4F8C+rDVnLvqClQH6qjJo5HFz4TYoGaqASpYErKa1JDfJmF mr6daEClMZK5LFyAwSN8LMp23AXO4oEwvMbB06sBU9pBCbeGB++wOaUgt9aeCxDc fm8V8xlNrmsEaHHNPYATYy9WjJ/Nx9FYf1iHzzInFfuMtlhe8N50L6qq0Q61KpqO goTSEarJb0e4IQSrwY9K3NoC6ZOBqNP5ov/gaOZgRhxnPoEhPSZ3cOH9/M46eiBC 4xxpkmFHgVIe2g== -----END CERTIFICATE-----Generated at Tue Jan 27 01:19:29 2026 by rpki-client