This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft File: 352lG6cnhKBORBIPne1HhWd5TBs.mft (raw, json) Hash identifier: kaQ2kW8W1hbVS4mZgqJ2shssOrcQpxOVm3U+mEPGod4= Subject key identifier: 47:2B:AD:33:BA:BA:96:78:95:EE:C6:8F:78:D6:7A:DE:2E:47:7B:92 Authority key identifier: DF:9D:A5:1B:A7:27:84:A0:4E:44:12:0F:9D:ED:47:85:67:79:4C:1B Certificate issuer: /CN=df9da51ba72784a04e44120f9ded478567794c1b Certificate serial: 019C443501076EF5FAD3DDE0938F19F2E05F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft Manifest number: 0BF9 Signing time: Mon 09 Feb 2026 21:00:50 +0000 Manifest this update: Mon 09 Feb 2026 21:00:50 +0000 Manifest next update: Tue 10 Feb 2026 21:00:50 +0000 Files and hashes: 1: 2W88bJ9UIevT6ruHtvcfNI1Zt7c.roa (hash: WGP7jajyyzt7YE+QpBz+OBA3QcdppcJEykw9cTms7PE=) 2: 352lG6cnhKBORBIPne1HhWd5TBs.crl (hash: kQHUiIiWJSIqv5CZqrKi4XeomsCpT3MZGwVFFTlM+mk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.crl rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:01:07:6e:f5:fa:d3:dd:e0:93:8f:19:f2:e0:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df9da51ba72784a04e44120f9ded478567794c1b Validity Not Before: Feb 9 21:00:50 2026 GMT Not After : Feb 10 21:00:50 2026 GMT Subject: CN=472bad33baba967895eec68f78d67ade2e477b92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:8a:b5:7e:a4:70:66:40:d9:9a:ad:69:63:09: 30:28:8d:fa:38:5b:ce:fa:c6:fe:6e:28:77:df:d2: 21:c4:8b:6b:fb:91:64:d7:7d:74:c0:e8:1e:84:3b: f1:dc:ee:b2:23:ba:30:7c:cc:05:44:79:c3:27:e6: 22:36:a5:58:c9:60:f4:b5:18:e4:d4:26:79:f4:00: c9:09:0f:0f:f9:dc:1d:a9:73:0d:6a:10:83:b4:f9: 6d:f4:31:45:d2:aa:91:f8:54:77:f1:6d:9d:f9:ae: de:b3:a1:38:d8:aa:ce:aa:3b:bd:33:43:75:43:98: 1f:16:3b:20:3e:dd:3e:a2:e9:f8:27:39:94:e8:04: 23:e7:52:37:20:21:73:8c:68:3d:d8:93:50:80:56: ae:e7:65:42:d4:b1:3a:17:00:bc:f9:0e:a4:e8:3b: 3d:a5:2b:51:34:7d:eb:ad:b5:d8:5e:fd:ad:4a:94: 62:ea:35:a7:fb:2e:01:91:7f:e0:74:eb:f1:46:27: e1:b0:f4:db:bc:48:c5:63:c7:ea:e9:02:8b:95:0a: fb:93:7a:e9:70:6c:cf:82:52:31:42:3e:6e:23:53: fc:66:e0:2c:ab:33:0e:cf:d3:d2:af:78:bb:e0:56: 10:5b:44:65:88:d3:90:47:82:1b:6e:0e:d2:94:15: 43:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2B:AD:33:BA:BA:96:78:95:EE:C6:8F:78:D6:7A:DE:2E:47:7B:92 X509v3 Authority Key Identifier: keyid:DF:9D:A5:1B:A7:27:84:A0:4E:44:12:0F:9D:ED:47:85:67:79:4C:1B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/352lG6cnhKBORBIPne1HhWd5TBs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/bf8eca-bcf9-4536-88bf-bc6975561078/1/352lG6cnhKBORBIPne1HhWd5TBs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:f8:54:94:73:74:71:c4:51:e2:46:23:e3:42:34:7f:fa:44: 02:29:c7:ad:23:96:a4:06:b8:5f:0b:5b:05:23:a6:92:db:9c: cf:89:c2:15:f3:44:b5:93:2a:28:7b:1f:e2:0d:ca:ea:51:3e: 07:cc:2d:57:e1:cb:5c:b4:6f:8f:37:a4:84:96:3d:57:66:54: 34:d7:03:2d:0c:c6:53:4a:a7:a4:08:62:3e:9c:17:0c:12:3d: 4f:fe:ff:86:ff:c0:51:41:53:29:1f:34:a8:c7:a5:ec:cc:00: af:f8:15:c3:73:57:19:bb:41:f1:91:29:bd:58:48:80:73:6a: 8c:64:00:be:21:7d:8e:97:3d:b2:65:63:73:54:83:f5:49:25: eb:23:3f:24:b9:b4:bc:95:de:08:f6:a0:10:dd:ca:01:0b:b8: 4e:d6:0e:83:d4:cd:6b:c5:58:b8:49:f9:8c:92:06:39:9e:2f: 9a:94:6a:76:ca:02:5c:5d:f2:85:8e:5c:49:50:63:9e:4f:8a: c4:98:8f:85:9b:cb:c1:68:c4:0b:63:a7:23:76:5e:e7:99:7d: 02:51:99:15:21:b3:d3:d5:55:34:eb:a7:09:76:da:cf:78:10: 94:4b:fe:95:79:75:26:d7:68:2a:05:7a:ae:21:e1:d5:e5:49: 8d:96:7a:57 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENQEHbvX6093gk48Z8uBfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRmOWRhNTFiYTcyNzg0YTA0ZTQ0MTIwZjlkZWQ0Nzg1Njc3 OTRjMWIwHhcNMjYwMjA5MjEwMDUwWhcNMjYwMjEwMjEwMDUwWjAzMTEwLwYDVQQD Eyg0NzJiYWQzM2JhYmE5Njc4OTVlZWM2OGY3OGQ2N2FkZTJlNDc3YjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqoq1fqRwZkDZmq1pYwkwKI36OFvO +sb+bih339IhxItr+5Fk1310wOgehDvx3O6yI7owfMwFRHnDJ+YiNqVYyWD0tRjk 1CZ59ADJCQ8P+dwdqXMNahCDtPlt9DFF0qqR+FR38W2d+a7es6E42KrOqju9M0N1 Q5gfFjsgPt0+oun4JzmU6AQj51I3ICFzjGg92JNQgFau52VC1LE6FwC8+Q6k6Ds9 pStRNH3rrbXYXv2tSpRi6jWn+y4BkX/gdOvxRifhsPTbvEjFY8fq6QKLlQr7k3rp cGzPglIxQj5uI1P8ZuAsqzMOz9PSr3i74FYQW0RliNOQR4Ibbg7SlBVDNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEcrrTO6upZ4le7Gj3jWet4uR3uSMB8GA1UdIwQY MBaAFN+dpRunJ4SgTkQSD53tR4VneUwbMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMzUybEc2Y25oS0JPUkJJUG5lMUhoV2Q1VEJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC9iZjhlY2EtYmNmOS00NTM2LTg4YmYt YmM2OTc1NTYxMDc4LzEvMzUybEc2Y25oS0JPUkJJUG5lMUhoV2Q1VEJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC9iZjhlY2EtYmNmOS00NTM2LTg4YmYtYmM2OTc1NTYxMDc4 LzEvMzUybEc2Y25oS0JPUkJJUG5lMUhoV2Q1VEJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/hUlHN0 ccRR4kYj40I0f/pEAinHrSOWpAa4XwtbBSOmktucz4nCFfNEtZMqKHsf4g3K6lE+ B8wtV+HLXLRvjzekhJY9V2ZUNNcDLQzGU0qnpAhiPpwXDBI9T/7/hv/AUUFTKR80 qMel7MwAr/gVw3NXGbtB8ZEpvVhIgHNqjGQAviF9jpc9smVjc1SD9Ukl6yM/JLm0 vJXeCPagEN3KAQu4TtYOg9TNa8VYuEn5jJIGOZ4vmpRqdsoCXF3yhY5cSVBjnk+K xJiPhZvLwWjEC2OnI3Ze55l9AlGZFSGz09VVNOunCXbaz3gQlEv+lXl1JtdoKgV6 riHh1eVJjZZ6Vw== -----END CERTIFICATE-----Generated at Tue Feb 10 07:38:38 2026 by rpki-client