This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json) Hash identifier: sbLDkpjl6KCfKL27EHg7MA+uhL58d3noU7B/KfDnlEo= Subject key identifier: FB:D5:1C:0B:C6:97:57:FF:DA:19:FA:47:6B:84:37:FF:AD:8D:FD:C1 Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f Certificate serial: 019C427DC1EA4723A88F0D9E543DA5A29EEC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft Manifest number: 17A3 Signing time: Mon 09 Feb 2026 13:01:03 +0000 Manifest this update: Mon 09 Feb 2026 13:01:03 +0000 Manifest next update: Tue 10 Feb 2026 13:01:03 +0000 Files and hashes: 1: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: PTBw4We5x4W7A8wcXOzJ/fsowFD5oPQNS2IxRgDG0zk=) 2: q4MMxbvpWnkqIJJ1G1vh9k5IaD0.roa (hash: atJClVpeASPtSX6kEGrHIIjj/e8dWQQKfuBLHQmvtvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:c1:ea:47:23:a8:8f:0d:9e:54:3d:a5:a2:9e:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f Validity Not Before: Feb 9 13:01:03 2026 GMT Not After : Feb 10 13:01:03 2026 GMT Subject: CN=fbd51c0bc69757ffda19fa476b8437ffad8dfdc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:4e:8b:5e:56:1a:aa:c2:bf:11:cd:6f:be:15: 33:41:88:8b:56:dc:12:91:97:eb:b1:5d:dc:50:92: b3:56:f4:ff:f6:70:af:ca:54:a1:76:ae:b4:90:ce: b1:c0:80:15:c4:ce:52:98:75:60:36:67:77:60:67: a1:ab:dd:f7:a4:1e:65:4d:33:18:63:8d:92:d2:c8: 3b:b7:dd:d1:61:ac:b9:7d:c8:ad:93:80:f5:c7:d2: 3c:81:49:a6:6f:74:8f:36:de:07:51:7c:16:b4:db: 86:d3:66:92:0f:ca:75:bc:63:f3:70:38:ca:d1:66: b4:a0:d6:52:d4:0c:9d:87:df:7c:2b:95:19:d2:c0: a7:be:2f:6e:05:78:16:3a:d7:45:c4:2c:d0:4d:b4: 52:3b:2b:13:c9:81:b9:9f:0e:7c:0f:fe:bf:60:9e: 9c:25:b2:23:c5:ab:e4:d9:75:57:ab:f1:f6:6c:f5: 86:94:02:e4:ae:91:3f:c3:13:b6:9b:c1:b2:d9:a5: ad:25:f5:a3:cf:ef:9b:bd:62:0b:62:f2:1a:57:40: 01:5f:86:4e:80:b3:10:54:73:8a:f2:87:31:92:29: 8f:99:8d:57:ba:2a:fd:53:65:9b:1e:b2:b4:0f:21: 45:8c:b1:7a:fa:df:05:b3:a4:aa:5e:b9:bb:52:3f: da:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:D5:1C:0B:C6:97:57:FF:DA:19:FA:47:6B:84:37:FF:AD:8D:FD:C1 X509v3 Authority Key Identifier: keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:21:a4:11:71:41:2b:7f:bb:5e:de:21:cc:13:52:6a:68:8f: 32:bd:33:06:6b:dc:d1:48:6d:3d:31:bd:db:80:fc:94:98:d3: da:a6:8b:82:b4:0f:db:f5:32:9c:5a:cc:b6:b5:49:67:9c:67: 3f:b8:47:79:13:24:53:b9:ee:45:f2:09:08:5a:32:6a:cf:36: 28:ac:a1:10:91:20:5c:41:c2:f8:a4:ca:2d:8b:8f:67:dd:81: 96:0c:d8:42:49:da:12:17:65:e2:c7:01:95:2a:57:11:3c:e6: b8:e5:9e:7d:1a:18:cd:a5:32:93:88:7c:cd:56:6b:a6:ef:8a: 48:92:bf:b8:a8:e4:56:a0:bf:23:b5:a8:98:88:21:cf:fd:b3: d2:5c:08:17:c7:d8:4a:78:19:0e:f8:72:dc:b0:8b:28:82:13: 73:a6:a4:1b:72:96:28:75:d5:5e:04:f3:89:a7:b3:fd:c1:81: ef:a2:bc:82:e2:75:93:49:56:13:5c:0f:eb:07:b9:d7:ec:ea: 79:bc:42:32:32:e5:1a:fa:73:4c:87:3c:a8:99:65:a6:34:ef: ec:e3:4c:81:a4:e6:8a:4a:c8:59:d1:8c:f1:46:fb:ce:33:f6: 9f:a1:95:e8:57:af:f8:dd:88:37:0b:e0:11:94:3c:9e:87:c9: 27:e6:18:24 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfcHqRyOojw2eVD2lop7sMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZjI5MzIxMmQyNWQ0ODYzZTM4NmI5YzQ4MGRkYzliZTcz ODEyNGYwHhcNMjYwMjA5MTMwMTAzWhcNMjYwMjEwMTMwMTAzWjAzMTEwLwYDVQQD EyhmYmQ1MWMwYmM2OTc1N2ZmZGExOWZhNDc2Yjg0MzdmZmFkOGRmZGMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs06LXlYaqsK/Ec1vvhUzQYiLVtwS kZfrsV3cUJKzVvT/9nCvylShdq60kM6xwIAVxM5SmHVgNmd3YGehq933pB5lTTMY Y42S0sg7t93RYay5fcitk4D1x9I8gUmmb3SPNt4HUXwWtNuG02aSD8p1vGPzcDjK 0Wa0oNZS1Aydh998K5UZ0sCnvi9uBXgWOtdFxCzQTbRSOysTyYG5nw58D/6/YJ6c JbIjxavk2XVXq/H2bPWGlALkrpE/wxO2m8Gy2aWtJfWjz++bvWILYvIaV0ABX4ZO gLMQVHOK8ocxkimPmY1Xuir9U2WbHrK0DyFFjLF6+t8Fs6SqXrm7Uj/afQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPvVHAvGl1f/2hn6R2uEN/+tjf3BMB8GA1UdIwQY MBaAFG3ykyEtJdSGPjhrnEgN3JvnOBJPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZLVElTMGwxSVktT0d1Y1NBM2NtLWM0RWs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hZWNiOGEtZDc2My00NjQyLTgwMzYt ZjQwMDQwMmI1MzZjLzEvYmZLVElTMGwxSVktT0d1Y1NBM2NtLWM0RWs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9hZWNiOGEtZDc2My00NjQyLTgwMzYtZjQwMDQwMmI1MzZj LzEvYmZLVElTMGwxSVktT0d1Y1NBM2NtLWM0RWs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATSGkEXFB K3+7Xt4hzBNSamiPMr0zBmvc0UhtPTG924D8lJjT2qaLgrQP2/UynFrMtrVJZ5xn P7hHeRMkU7nuRfIJCFoyas82KKyhEJEgXEHC+KTKLYuPZ92BlgzYQknaEhdl4scB lSpXETzmuOWefRoYzaUyk4h8zVZrpu+KSJK/uKjkVqC/I7WomIghz/2z0lwIF8fY SngZDvhy3LCLKIITc6akG3KWKHXVXgTziaez/cGB76K8guJ1k0lWE1wP6we51+zq ebxCMjLlGvpzTIc8qJllpjTv7ONMgaTmikrIWdGM8Ub7zjP2n6GV6Fev+N2INwvg EZQ8nofJJ+YYJA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:03 2026 by rpki-client