This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft File: vSpaBrm0P86hiFQdMMbcNDCq85I.mft (raw, json) Hash identifier: UVoYiFu/PjgYPzz2+ARg1gIanNOf1Xb4J1oqQqwybts= Subject key identifier: BF:67:24:A1:41:37:4E:01:61:D8:48:9A:5E:D9:D4:C5:88:3E:83:2B Authority key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92 Certificate issuer: /CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392 Certificate serial: 019C44DA44B8D31DB7AEADDAEFE29CD069BE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft Manifest number: 12E6 Signing time: Tue 10 Feb 2026 00:01:20 +0000 Manifest this update: Tue 10 Feb 2026 00:01:20 +0000 Manifest next update: Wed 11 Feb 2026 00:01:20 +0000 Files and hashes: 1: vSpaBrm0P86hiFQdMMbcNDCq85I.crl (hash: +UBWgFt33COIHcVeW6TbsBUyMGLpiz9G7tMZcLffSys=) 2: x8WGsbpBFb_K_stBpznpxseC6AA.roa (hash: G/WJvcDESUpg5wbrqINkweic0INsvffGZy1Iocg8/w0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:da:44:b8:d3:1d:b7:ae:ad:da:ef:e2:9c:d0:69:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392 Validity Not Before: Feb 10 00:01:20 2026 GMT Not After : Feb 11 00:01:20 2026 GMT Subject: CN=bf6724a141374e0161d8489a5ed9d4c5883e832b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:53:e2:86:cc:2c:e8:b7:37:ea:67:5b:e7:55: f1:11:32:7d:b0:75:a1:7b:1b:e0:60:a5:ca:2b:64: 50:4a:d9:fa:71:15:d0:4d:64:4f:a2:ad:bd:ca:8a: 6a:7c:0e:98:93:65:81:b2:81:44:92:dd:7a:50:1b: 68:46:5d:1b:05:06:82:1e:f9:d6:37:30:89:6a:f0: 45:ae:a7:79:3c:c0:1a:35:02:71:5c:24:92:c6:33: 91:3c:0d:29:80:22:3a:d7:56:d2:b0:ce:68:d8:76: 01:3f:c6:16:e2:0f:a5:63:3b:ae:d3:c8:45:05:74: 88:37:07:13:e2:2a:cc:f7:b5:94:3d:76:2a:05:35: ab:74:e1:63:a1:d8:4d:d2:36:37:43:e1:23:b3:83: c8:d0:c5:48:2e:9e:f2:21:db:04:d2:60:cf:71:f2: 41:e9:09:7d:02:ac:dc:fe:83:b8:01:ff:57:96:ad: 94:74:88:e0:be:12:db:ea:95:95:24:3a:c5:b6:87: 77:36:a0:41:b7:eb:30:50:1a:31:32:e7:9f:8b:ea: b4:12:9b:59:4c:af:10:6c:06:75:b5:ac:21:df:74: 3b:80:cd:16:8b:6d:de:9c:d1:3b:3b:32:77:54:a5: 09:10:fe:d8:1f:f3:fc:87:6c:69:df:e3:db:f2:25: 26:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:67:24:A1:41:37:4E:01:61:D8:48:9A:5E:D9:D4:C5:88:3E:83:2B X509v3 Authority Key Identifier: keyid:BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:57:fb:ed:4b:99:59:5c:9b:a6:89:17:22:c8:18:27:aa:f0: 9d:6f:b3:70:22:26:fd:bd:f3:6d:1c:e4:8e:95:a9:d2:60:6b: 57:51:37:6f:f0:87:de:1b:53:44:7a:12:63:61:1c:b1:9f:46: df:d3:44:03:fa:37:f0:f5:99:f0:0f:4d:7c:72:2d:6c:79:ab: 14:0f:f5:8f:96:a5:ad:a4:71:87:97:78:86:67:19:06:6f:c0: e8:3a:93:b4:42:e7:14:71:46:e7:c4:4c:50:62:b1:93:f8:ae: 64:27:f1:70:07:8a:c6:00:03:7f:f1:f2:40:48:55:bf:e5:d9: 03:0d:0f:bb:2d:57:d2:41:56:a9:c2:b1:76:7d:00:21:f1:27: 18:63:6f:ee:52:7b:3b:26:fd:29:b7:6e:0f:9a:0f:04:56:fd: 35:ab:99:25:b3:65:6c:44:c1:37:4c:ac:60:e9:08:c9:e2:e4: 0d:76:fa:61:93:c0:94:ff:d5:8c:e9:2f:c6:9e:01:9b:a0:74: 77:13:8c:e4:88:53:ae:be:fe:9f:6d:0b:97:e8:aa:9f:91:f2: ee:e9:51:d5:1d:4a:cd:2c:49:96:47:74:02:64:05:4b:9d:a3: e8:61:d6:10:3f:60:cf:b0:79:1f:d8:e6:9e:5f:ce:37:d0:7f: 18:fb:99:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2kS40x23rq3a7+Kc0Gm+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJkMmE1YTA2YjliNDNmY2VhMTg4NTQxZDMwYzZkYzM0MzBh YWYzOTIwHhcNMjYwMjEwMDAwMTIwWhcNMjYwMjExMDAwMTIwWjAzMTEwLwYDVQQD EyhiZjY3MjRhMTQxMzc0ZTAxNjFkODQ4OWE1ZWQ5ZDRjNTg4M2U4MzJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA31Pihsws6Lc36mdb51XxETJ9sHWh exvgYKXKK2RQStn6cRXQTWRPoq29yopqfA6Yk2WBsoFEkt16UBtoRl0bBQaCHvnW NzCJavBFrqd5PMAaNQJxXCSSxjORPA0pgCI611bSsM5o2HYBP8YW4g+lYzuu08hF BXSINwcT4irM97WUPXYqBTWrdOFjodhN0jY3Q+Ejs4PI0MVILp7yIdsE0mDPcfJB 6Ql9Aqzc/oO4Af9Xlq2UdIjgvhLb6pWVJDrFtod3NqBBt+swUBoxMuefi+q0EptZ TK8QbAZ1tawh33Q7gM0Wi23enNE7OzJ3VKUJEP7YH/P8h2xp3+Pb8iUmVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9nJKFBN04BYdhIml7Z1MWIPoMrMB8GA1UdIwQY MBaAFL0qWga5tD/OoYhUHTDG3DQwqvOSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdlNwYUJybTBQODZoaUZRZE1NYmNORENxODVJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84NS9jYWYwMzQtY2JlMi00ZDJkLWEwMmIt NWQzNDcwNGI3Yzg4LzEvdlNwYUJybTBQODZoaUZRZE1NYmNORENxODVJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84NS9jYWYwMzQtY2JlMi00ZDJkLWEwMmItNWQzNDcwNGI3Yzg4 LzEvdlNwYUJybTBQODZoaUZRZE1NYmNORENxODVJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGVf77UuZ WVybpokXIsgYJ6rwnW+zcCIm/b3zbRzkjpWp0mBrV1E3b/CH3htTRHoSY2EcsZ9G 39NEA/o38PWZ8A9NfHItbHmrFA/1j5alraRxh5d4hmcZBm/A6DqTtELnFHFG58RM UGKxk/iuZCfxcAeKxgADf/HyQEhVv+XZAw0Puy1X0kFWqcKxdn0AIfEnGGNv7lJ7 Oyb9KbduD5oPBFb9NauZJbNlbETBN0ysYOkIyeLkDXb6YZPAlP/VjOkvxp4Bm6B0 dxOM5IhTrr7+n20Ll+iqn5Hy7ulR1R1KzSxJlkd0AmQFS52j6GHWED9gz7B5H9jm nl/ON9B/GPuZSw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:41:38 2026 by rpki-client