This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft File: BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft (raw, json) Hash identifier: iQqhu+lHFh6dNjYJhi0jLx0H2V5LFCEHRWf5al0ucO4= Subject key identifier: 76:D6:E4:42:35:01:3C:13:A6:A8:F2:7A:F8:4E:39:DC:E3:8D:49:B1 Authority key identifier: 06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09 Certificate issuer: /CN=061702d2c29195fa0a7db11ee465f0c0545d1709 Certificate serial: 019C03D69E74490C7914E6692E2EC8E7EDEE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft Manifest number: 17EF Signing time: Wed 28 Jan 2026 09:02:02 +0000 Manifest this update: Wed 28 Jan 2026 09:02:02 +0000 Manifest next update: Thu 29 Jan 2026 09:02:02 +0000 Files and hashes: 1: BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl (hash: fHp/z5wVh8727QKUBRf+TQ6kF0p8ysRnnO/Tasc3BiE=) 2: IuvYb1hnFC_R3vbmr804zDcQ564.roa (hash: NxUdZjpgsvcOhxi2GuJmepTyufWX4gZ8PVnHKb+FC34=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 29 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:03:d6:9e:74:49:0c:79:14:e6:69:2e:2e:c8:e7:ed:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=061702d2c29195fa0a7db11ee465f0c0545d1709 Validity Not Before: Jan 28 09:02:02 2026 GMT Not After : Jan 29 09:02:02 2026 GMT Subject: CN=76d6e44235013c13a6a8f27af84e39dce38d49b1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:49:bf:46:93:74:11:4f:22:13:f8:37:15:05: 88:a2:61:da:25:e1:f7:37:27:a2:30:48:4b:e6:bc: fd:2e:b4:59:b3:4c:f5:8b:07:26:c4:70:f1:8b:57: cf:99:37:82:6e:78:54:ce:40:bd:12:0f:c1:61:a2: b5:16:e3:79:eb:08:85:ec:3b:e0:07:1e:c6:89:b7: c6:d1:7a:89:77:f6:90:4b:d0:29:cf:b7:49:2c:0b: f2:a6:2f:c6:a1:b8:1e:40:83:3a:6b:5c:b5:e3:de: 47:18:5d:3f:59:2d:6a:62:c6:e3:20:d6:37:70:4a: 46:ce:e2:93:5e:f9:74:78:62:4c:35:33:95:35:29: 3a:43:4c:96:a2:20:2b:9f:1f:1f:45:d4:9e:a4:98: 37:27:30:48:c7:2b:3a:70:16:a3:6a:1a:f3:7e:35: 2b:cc:ac:2b:42:57:a6:76:eb:b1:55:10:a0:36:71: 5e:69:85:d9:69:55:2a:44:86:94:2c:26:ba:09:bc: e6:37:a2:8a:c1:6e:48:50:56:a6:69:cb:3c:6a:01: 76:b0:28:49:1c:cf:fb:77:d9:24:ef:77:38:49:aa: da:7c:2b:43:d8:e3:a9:fb:11:76:53:d3:52:60:6e: 3d:b2:25:d2:ad:68:7e:5d:1e:0d:33:9f:7e:0f:59: aa:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:D6:E4:42:35:01:3C:13:A6:A8:F2:7A:F8:4E:39:DC:E3:8D:49:B1 X509v3 Authority Key Identifier: keyid:06:17:02:D2:C2:91:95:FA:0A:7D:B1:1E:E4:65:F0:C0:54:5D:17:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BhcC0sKRlfoKfbEe5GXwwFRdFwk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/00b28b-cc72-4406-b6d8-4c51c6797c1f/1/BhcC0sKRlfoKfbEe5GXwwFRdFwk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:63:88:5f:bd:62:6d:98:0f:8d:7d:3f:e5:84:16:91:d6:b9: f0:b2:2b:a1:4e:86:9c:ef:a7:1a:df:f5:74:79:e6:c7:a6:50: 48:11:6f:06:f9:2e:9e:ea:9c:e5:01:e4:da:06:8a:5c:b8:51: 9e:67:df:11:61:c9:3b:b9:98:c2:8c:7d:82:b1:d3:42:3c:a7: 25:9c:d1:87:9e:48:0c:2f:31:6f:35:46:ec:90:55:87:83:55: d3:b9:35:64:3e:d4:e1:e4:7d:9e:0e:d1:84:70:ee:ee:4e:19: 2a:86:71:8e:21:28:3e:43:4c:fd:be:00:eb:56:1e:69:9a:63: df:3b:cc:11:e8:f8:b8:15:c1:ff:eb:a7:f1:51:1f:07:3c:b9: 68:7c:b0:36:b6:b7:7f:ce:e9:5e:9d:67:05:0f:1f:dc:0f:af: 33:ac:70:18:1f:5f:b2:01:ec:d0:fe:0b:90:f2:3a:26:f3:63: f7:33:a5:af:8b:91:35:a7:be:a0:d2:ff:63:c8:b4:43:0d:31: c5:4c:03:7a:ef:23:a5:7d:bf:7d:7d:59:ba:aa:fd:09:31:e7: 08:6a:e6:66:9b:5b:f2:3a:0a:cf:d0:1a:45:c9:d3:d8:01:64: 3d:5d:be:53:f2:ba:72:be:e7:43:2d:3b:7e:43:79:01:89:f8: ae:87:d3:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwD1p50SQx5FOZpLi7I5+3uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MTcwMmQyYzI5MTk1ZmEwYTdkYjExZWU0NjVmMGMwNTQ1 ZDE3MDkwHhcNMjYwMTI4MDkwMjAyWhcNMjYwMTI5MDkwMjAyWjAzMTEwLwYDVQQD Eyg3NmQ2ZTQ0MjM1MDEzYzEzYTZhOGYyN2FmODRlMzlkY2UzOGQ0OWIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6Um/RpN0EU8iE/g3FQWIomHaJeH3 NyeiMEhL5rz9LrRZs0z1iwcmxHDxi1fPmTeCbnhUzkC9Eg/BYaK1FuN56wiF7Dvg Bx7GibfG0XqJd/aQS9Apz7dJLAvypi/GobgeQIM6a1y1495HGF0/WS1qYsbjINY3 cEpGzuKTXvl0eGJMNTOVNSk6Q0yWoiArnx8fRdSepJg3JzBIxys6cBajahrzfjUr zKwrQlemduuxVRCgNnFeaYXZaVUqRIaULCa6CbzmN6KKwW5IUFamacs8agF2sChJ HM/7d9kk73c4SarafCtD2OOp+xF2U9NSYG49siXSrWh+XR4NM59+D1mqDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHbW5EI1ATwTpqjyevhOOdzjjUmxMB8GA1UdIwQY MBaAFAYXAtLCkZX6Cn2xHuRl8MBUXRcJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmhjQzBzS1JsZm9LZmJFZTVHWHd3RlJkRndrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS8wMGIyOGItY2M3Mi00NDA2LWI2ZDgt NGM1MWM2Nzk3YzFmLzEvQmhjQzBzS1JsZm9LZmJFZTVHWHd3RlJkRndrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS8wMGIyOGItY2M3Mi00NDA2LWI2ZDgtNGM1MWM2Nzk3YzFm LzEvQmhjQzBzS1JsZm9LZmJFZTVHWHd3RlJkRndrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWWOIX71i bZgPjX0/5YQWkda58LIroU6GnO+nGt/1dHnmx6ZQSBFvBvkunuqc5QHk2gaKXLhR nmffEWHJO7mYwox9grHTQjynJZzRh55IDC8xbzVG7JBVh4NV07k1ZD7U4eR9ng7R hHDu7k4ZKoZxjiEoPkNM/b4A61YeaZpj3zvMEej4uBXB/+un8VEfBzy5aHywNra3 f87pXp1nBQ8f3A+vM6xwGB9fsgHs0P4LkPI6JvNj9zOlr4uRNae+oNL/Y8i0Qw0x xUwDeu8jpX2/fX1Zuqr9CTHnCGrmZptb8joKz9AaRcnT2AFkPV2+U/K6cr7nQy07 fkN5AYn4rofT+g== -----END CERTIFICATE-----Generated at Wed Jan 28 19:17:31 2026 by rpki-client