This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft File: BcojF2aaRo1QmoqhkGvvp1v5wgE.mft (raw, json) Hash identifier: rkwy1UgyS82wZKjFAgJcm7GFZRAecTqYQIdVpUS92WU= Subject key identifier: 1B:30:A8:E3:0E:DD:7A:24:8F:0E:67:A2:38:54:7F:BC:2A:E2:75:A2 Authority key identifier: 05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01 Certificate issuer: /CN=05ca2317669a468d509a8aa1906befa75bf9c201 Certificate serial: 019C43228F50DEA634A883B9878A3519882A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft Manifest number: 0F48 Signing time: Mon 09 Feb 2026 16:01:04 +0000 Manifest this update: Mon 09 Feb 2026 16:01:04 +0000 Manifest next update: Tue 10 Feb 2026 16:01:04 +0000 Files and hashes: 1: BcojF2aaRo1QmoqhkGvvp1v5wgE.crl (hash: mY/mPqvhedUSns58ijKV9bGxg2QlYERYyemdDfLJJXE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:8f:50:de:a6:34:a8:83:b9:87:8a:35:19:88:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=05ca2317669a468d509a8aa1906befa75bf9c201 Validity Not Before: Feb 9 16:01:04 2026 GMT Not After : Feb 10 16:01:04 2026 GMT Subject: CN=1b30a8e30edd7a248f0e67a238547fbc2ae275a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:40:82:1f:61:94:1e:28:68:1e:d8:21:87:c7: ff:1d:4a:ca:88:74:75:d7:14:54:aa:dd:cb:22:bf: 63:e8:20:3a:ed:d7:c9:c0:c5:fb:3e:35:39:d1:d1: de:f5:30:75:3d:1c:ba:b5:43:87:b2:76:44:a8:71: 12:ad:90:87:45:5f:4a:b3:51:c8:29:0b:76:e1:5c: 1f:73:b3:10:bd:4c:bb:a1:2b:e5:76:d9:73:62:8b: 02:aa:c3:89:18:16:bd:70:e9:fb:ee:58:fb:65:d4: 78:e4:2e:9a:3c:73:cb:27:18:51:a0:5c:ca:cd:d2: 82:b7:02:0b:a3:58:09:a5:fa:e9:0f:7b:89:4f:52: 6c:82:f1:97:79:dc:5b:1f:31:ea:3f:87:b5:3f:39: 5f:63:86:0f:eb:ef:68:01:3c:4a:5d:db:aa:11:51: d6:ad:6a:d3:64:fd:e1:a7:31:40:f8:3d:dc:b3:9c: 99:ae:31:aa:06:77:f4:fc:ba:13:58:81:46:bb:e7: 2b:bc:d3:c5:9a:24:f0:20:85:5b:0d:f0:38:87:95: fb:f3:46:29:4a:c7:ad:da:09:d7:cf:86:82:f8:a8: a7:be:a9:25:a9:7b:2e:6e:a2:c9:a0:d6:ca:82:8e: ce:1b:d4:a5:1a:0a:c4:ea:59:cf:bf:d3:5b:e2:37: 23:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:30:A8:E3:0E:DD:7A:24:8F:0E:67:A2:38:54:7F:BC:2A:E2:75:A2 X509v3 Authority Key Identifier: keyid:05:CA:23:17:66:9A:46:8D:50:9A:8A:A1:90:6B:EF:A7:5B:F9:C2:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BcojF2aaRo1QmoqhkGvvp1v5wgE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/84/bdecaa-d141-46b2-9d40-1331e651c79f/1/BcojF2aaRo1QmoqhkGvvp1v5wgE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:f8:09:f7:e6:63:cc:2d:46:dc:76:7f:24:8a:83:9e:aa:a5: f9:15:96:69:af:5e:99:06:0a:4a:cd:f6:4a:4a:6c:8b:15:08: 43:5f:c4:82:43:cb:e3:27:a6:03:be:65:4d:c1:35:c2:a4:fa: d1:88:1b:34:42:34:46:50:d7:a2:74:f4:87:6e:94:5d:12:a3: 0e:70:a4:d4:f6:9d:b9:06:28:7d:1f:cf:89:27:6f:c6:41:ed: ec:46:de:94:42:98:9d:52:e3:cf:ca:a7:15:f5:de:04:a3:20: 9d:8b:ff:cc:36:bd:f1:e6:61:33:90:02:6d:55:31:69:b0:c4: 30:33:af:a0:fd:74:d9:b8:33:96:9f:7b:b9:aa:5d:35:80:31: 1b:cf:13:93:03:72:b5:11:30:2f:ed:04:25:c6:cc:06:f0:85: 80:8b:04:ff:93:d7:25:75:a3:00:29:6e:1a:4a:15:9a:c3:8e: 2e:cf:51:0b:b1:96:9b:fc:8f:e4:8a:69:69:1e:cf:a2:76:1c: 2c:dd:46:16:c9:73:be:ce:c2:80:44:19:61:c5:4e:7c:24:bc: 48:45:4e:c1:c1:49:bf:f9:58:0a:05:7f:06:21:5d:12:d3:6d: b3:3f:54:e2:91:fe:35:44:5c:3b:0e:0f:08:47:89:8a:d0:d9: f0:de:4d:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIo9Q3qY0qIO5h4o1GYgqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA1Y2EyMzE3NjY5YTQ2OGQ1MDlhOGFhMTkwNmJlZmE3NWJm OWMyMDEwHhcNMjYwMjA5MTYwMTA0WhcNMjYwMjEwMTYwMTA0WjAzMTEwLwYDVQQD EygxYjMwYThlMzBlZGQ3YTI0OGYwZTY3YTIzODU0N2ZiYzJhZTI3NWEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtkCCH2GUHihoHtghh8f/HUrKiHR1 1xRUqt3LIr9j6CA67dfJwMX7PjU50dHe9TB1PRy6tUOHsnZEqHESrZCHRV9Ks1HI KQt24Vwfc7MQvUy7oSvldtlzYosCqsOJGBa9cOn77lj7ZdR45C6aPHPLJxhRoFzK zdKCtwILo1gJpfrpD3uJT1JsgvGXedxbHzHqP4e1PzlfY4YP6+9oATxKXduqEVHW rWrTZP3hpzFA+D3cs5yZrjGqBnf0/LoTWIFGu+crvNPFmiTwIIVbDfA4h5X780Yp Sset2gnXz4aC+KinvqklqXsubqLJoNbKgo7OG9SlGgrE6lnPv9Nb4jcjGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBswqOMO3Xokjw5nojhUf7wq4nWiMB8GA1UdIwQY MBaAFAXKIxdmmkaNUJqKoZBr76db+cIBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NC9iZGVjYWEtZDE0MS00NmIyLTlkNDAt MTMzMWU2NTFjNzlmLzEvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NC9iZGVjYWEtZDE0MS00NmIyLTlkNDAtMTMzMWU2NTFjNzlm LzEvQmNvakYyYWFSbzFRbW9xaGtHdnZwMXY1d2dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApfgJ9+Zj zC1G3HZ/JIqDnqql+RWWaa9emQYKSs32SkpsixUIQ1/EgkPL4yemA75lTcE1wqT6 0YgbNEI0RlDXonT0h26UXRKjDnCk1PaduQYofR/PiSdvxkHt7EbelEKYnVLjz8qn FfXeBKMgnYv/zDa98eZhM5ACbVUxabDEMDOvoP102bgzlp97uapdNYAxG88TkwNy tREwL+0EJcbMBvCFgIsE/5PXJXWjACluGkoVmsOOLs9RC7GWm/yP5IppaR7PonYc LN1GFslzvs7CgEQZYcVOfCS8SEVOwcFJv/lYCgV/BiFdEtNtsz9U4pH+NURcOw4P CEeJitDZ8N5NUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:34 2026 by rpki-client