This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft File: bhWkM20vXhvWBzfelXlomSp0cOk.mft (raw, json) Hash identifier: OfATklXWgbwi2EuJQrCEw8+hy7gz8ZI7WnCNEib0Pao= Subject key identifier: 41:0F:39:1B:05:45:21:B0:0A:06:1C:1F:BC:84:F9:55:78:81:1A:0F Authority key identifier: 6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9 Certificate issuer: /CN=6e15a4336d2f5e1bd60737de957968992a7470e9 Certificate serial: 019C42B4590D26EA299F79C0E76FA9E33A76 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 14:00:41 +0000 Manifest this update: Mon 09 Feb 2026 14:00:41 +0000 Manifest next update: Tue 10 Feb 2026 14:00:41 +0000 Files and hashes: 1: Vu-e1GygyQXjjracczxIzivdztw.roa (hash: VKVRS5igE/oTY5xgq6v9aHjG9onlTSU6jTSymC7H728=) 2: bhWkM20vXhvWBzfelXlomSp0cOk.crl (hash: JF/9C7v+iB9NYonKPD5OOWnV+uQHr4HIe+ZmvY2ivao=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:59:0d:26:ea:29:9f:79:c0:e7:6f:a9:e3:3a:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e15a4336d2f5e1bd60737de957968992a7470e9 Validity Not Before: Feb 9 14:00:41 2026 GMT Not After : Feb 10 14:00:41 2026 GMT Subject: CN=410f391b054521b00a061c1fbc84f95578811a0f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:84:4b:b3:db:b3:72:b6:99:e7:a3:8e:6a:d2: ef:24:aa:41:75:fc:3b:c1:81:aa:8c:84:91:09:d7: 9f:37:87:69:cb:02:0a:19:86:a5:04:db:26:9e:d1: 9a:b5:33:62:ab:a5:1a:cd:fd:eb:9a:35:fc:52:9e: 69:89:9b:8f:a5:d6:fc:9d:b7:80:f1:fc:59:e7:6b: c9:7b:02:4f:cd:b8:2b:af:11:31:5f:58:9e:5f:bb: a6:f0:be:fb:d5:4a:e1:21:96:ff:e0:9b:cf:7f:06: ce:95:d4:27:d1:e2:bb:73:94:85:89:c7:bc:cc:d6: 46:3f:fc:06:15:c6:3b:51:ee:b9:91:a5:c1:4b:73: e2:81:08:6f:ec:0c:a6:94:71:6f:53:87:9a:a5:b8: f6:15:cc:d2:d1:02:e5:01:9e:0b:1c:dd:b3:9f:49: 83:1b:37:55:0a:33:a5:1f:f8:7a:44:37:26:df:66: 56:c3:b6:2c:b7:a9:4f:76:43:96:97:b0:70:5a:5f: bd:08:0b:7f:dc:8d:b1:6c:7c:21:ce:7c:85:ca:b2: 87:a2:50:e5:65:33:30:a3:57:bb:b1:e9:06:b4:b5: a7:0a:0a:1f:cf:0e:7a:c3:b8:c9:ef:e4:cb:e3:a7: dc:05:4f:32:dc:dd:75:54:f5:02:31:c3:c9:b8:46: 61:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:0F:39:1B:05:45:21:B0:0A:06:1C:1F:BC:84:F9:55:78:81:1A:0F X509v3 Authority Key Identifier: keyid:6E:15:A4:33:6D:2F:5E:1B:D6:07:37:DE:95:79:68:99:2A:74:70:E9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bhWkM20vXhvWBzfelXlomSp0cOk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/893850-a855-4a54-b5d0-8d5246a20245/1/bhWkM20vXhvWBzfelXlomSp0cOk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:a3:e2:4f:e8:82:ec:b6:b9:47:e9:44:51:7b:62:11:e4:86: 98:04:2b:0b:b0:4f:8a:1e:93:b6:6e:e9:29:c7:62:f0:a3:a2: db:18:bc:c1:94:ab:3d:fc:6b:e9:97:08:ca:eb:13:63:25:fa: a2:d5:ef:4c:c3:5f:92:b2:c8:a3:43:ab:78:50:9c:20:6e:51: 36:07:0e:4f:b7:be:e2:e5:1f:df:7a:1f:79:4d:0a:34:61:bb: 6e:fb:c5:ef:c0:2b:eb:75:e5:85:ed:3d:cf:87:53:4b:dc:04: f3:9e:27:06:35:c6:46:0f:7d:50:17:53:54:fe:b6:4f:59:28: b1:82:00:9e:59:21:b6:37:c7:3c:6e:e8:d1:f5:d4:26:ac:06: 4f:73:59:c0:f6:ff:bf:32:33:93:17:16:9b:00:96:11:89:d4: 53:29:4c:8b:32:de:6b:f8:e4:bf:4a:2b:e0:00:d1:4c:bd:7c: a9:c4:c0:e4:10:9d:d8:81:2c:05:59:d7:a2:8e:d9:f3:c5:06: c4:7e:d2:fe:f0:30:fd:db:c2:54:25:39:82:ef:92:ad:f2:96: 4f:94:53:88:93:09:93:30:28:ea:a3:f5:27:9f:b7:b5:c1:f6: bd:07:ee:6a:b7:ff:8b:ae:39:c0:0b:d2:fe:9e:6b:f4:0f:21: e8:96:43:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFkNJuopn3nA52+p4zp2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlMTVhNDMzNmQyZjVlMWJkNjA3MzdkZTk1Nzk2ODk5MmE3 NDcwZTkwHhcNMjYwMjA5MTQwMDQxWhcNMjYwMjEwMTQwMDQxWjAzMTEwLwYDVQQD Eyg0MTBmMzkxYjA1NDUyMWIwMGEwNjFjMWZiYzg0Zjk1NTc4ODExYTBmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsIRLs9uzcraZ56OOatLvJKpBdfw7 wYGqjISRCdefN4dpywIKGYalBNsmntGatTNiq6Uazf3rmjX8Up5piZuPpdb8nbeA 8fxZ52vJewJPzbgrrxExX1ieX7um8L771UrhIZb/4JvPfwbOldQn0eK7c5SFice8 zNZGP/wGFcY7Ue65kaXBS3PigQhv7AymlHFvU4eapbj2FczS0QLlAZ4LHN2zn0mD GzdVCjOlH/h6RDcm32ZWw7Yst6lPdkOWl7BwWl+9CAt/3I2xbHwhznyFyrKHolDl ZTMwo1e7sekGtLWnCgofzw56w7jJ7+TL46fcBU8y3N11VPUCMcPJuEZhNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEEPORsFRSGwCgYcH7yE+VV4gRoPMB8GA1UdIwQY MBaAFG4VpDNtL14b1gc33pV5aJkqdHDpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmhXa00yMHZYaHZXQnpmZWxYbG9tU3AwY09rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny84OTM4NTAtYTg1NS00YTU0LWI1ZDAt OGQ1MjQ2YTIwMjQ1LzEvYmhXa00yMHZYaHZXQnpmZWxYbG9tU3AwY09rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny84OTM4NTAtYTg1NS00YTU0LWI1ZDAtOGQ1MjQ2YTIwMjQ1 LzEvYmhXa00yMHZYaHZXQnpmZWxYbG9tU3AwY09rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGKPiT+iC 7La5R+lEUXtiEeSGmAQrC7BPih6Ttm7pKcdi8KOi2xi8wZSrPfxr6ZcIyusTYyX6 otXvTMNfkrLIo0OreFCcIG5RNgcOT7e+4uUf33ofeU0KNGG7bvvF78Ar63Xlhe09 z4dTS9wE854nBjXGRg99UBdTVP62T1kosYIAnlkhtjfHPG7o0fXUJqwGT3NZwPb/ vzIzkxcWmwCWEYnUUylMizLea/jkv0or4ADRTL18qcTA5BCd2IEsBVnXoo7Z88UG xH7S/vAw/dvCVCU5gu+SrfKWT5RTiJMJkzAo6qP1J5+3tcH2vQfuarf/i645wAvS /p5r9A8h6JZDiw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:58 2026 by rpki-client