This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft File: bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft (raw, json) Hash identifier: NUoqbu98EG/hYmEgLe1h1AulkG6KlE+6wlyvkLB/Yh4= Subject key identifier: B8:71:7F:88:CA:73:23:D9:DE:13:8D:59:C6:FF:FE:1C:B7:EC:D3:41 Authority key identifier: 6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54 Certificate issuer: /CN=6d5700916f90983bd8e89cd05fe629ec183bfa54 Certificate serial: 019C43229B216319E2929D5A4B4A05BB76C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft Manifest number: 0C7A Signing time: Mon 09 Feb 2026 16:01:07 +0000 Manifest this update: Mon 09 Feb 2026 16:01:07 +0000 Manifest next update: Tue 10 Feb 2026 16:01:07 +0000 Files and hashes: 1: bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl (hash: aU+V9cwGS1MYQr35YNcjaZl3icKH2Mv91VRis6gDm0w=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:9b:21:63:19:e2:92:9d:5a:4b:4a:05:bb:76:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d5700916f90983bd8e89cd05fe629ec183bfa54 Validity Not Before: Feb 9 16:01:07 2026 GMT Not After : Feb 10 16:01:07 2026 GMT Subject: CN=b8717f88ca7323d9de138d59c6fffe1cb7ecd341 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:34:96:48:cf:69:92:d4:ab:bc:d9:87:9d:5d: c7:57:07:a3:99:ce:cb:55:f9:9a:83:40:e4:31:ba: b0:cf:1a:6e:87:f8:1d:94:36:ec:60:61:e5:5d:b1: c5:50:72:3b:d9:d4:54:7e:91:16:44:b6:fa:44:64: d8:6d:2e:73:76:38:26:d6:e8:8b:69:a3:9b:7b:f0: 50:26:b3:8f:f2:70:33:b1:03:c0:fa:a3:88:fe:68: 84:9b:da:f4:7a:d3:d6:c5:8e:a2:50:11:c3:01:03: 46:6b:b2:65:c1:1d:19:1e:2d:dd:86:41:e3:f8:54: 95:b0:00:af:75:08:0e:26:a4:8a:42:c7:01:29:b2: 39:80:b9:27:6c:94:d1:0f:ad:1b:97:8c:3f:9c:db: 20:c0:55:f6:e8:6e:cf:c7:16:d2:5e:2f:23:29:88: 37:2e:47:d1:d0:2e:0d:3f:e4:2c:7d:ed:fc:ae:3b: 80:42:e7:30:1b:ee:96:e1:c0:60:25:03:8c:38:71: 86:7d:c5:35:b8:26:f1:4f:ef:ca:63:e9:cc:91:18: 7c:66:b3:9b:be:3a:46:fc:e6:75:e7:46:d7:4b:24: 5d:68:1b:13:d0:86:5d:44:5c:41:d0:1d:05:3d:5d: f9:29:51:10:c3:ef:c7:64:6a:0f:e1:c9:de:e4:0e: 1e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:71:7F:88:CA:73:23:D9:DE:13:8D:59:C6:FF:FE:1C:B7:EC:D3:41 X509v3 Authority Key Identifier: keyid:6D:57:00:91:6F:90:98:3B:D8:E8:9C:D0:5F:E6:29:EC:18:3B:FA:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/9bfdb6-08b7-4b1d-8a88-926b34814130/1/bVcAkW-QmDvY6JzQX-Yp7Bg7-lQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:87:60:55:c2:9a:c3:d0:9b:b3:3f:78:3e:3c:cf:4c:69:8e: a5:80:c8:5b:b4:12:3d:bf:18:04:d1:07:bc:e7:b5:0d:04:20: 1e:e9:4e:3e:3d:4e:ab:da:1e:4f:51:01:d7:44:5b:7c:dc:54: 5a:25:bd:60:f5:23:8c:cd:3e:45:12:aa:62:ac:ef:05:cb:82: 09:d9:ce:5a:a2:19:6d:fc:64:3f:9f:90:b2:d1:cf:b7:7a:1c: b7:de:e9:fc:e7:26:df:82:4a:23:d9:5d:d9:40:a2:44:74:11: 9d:24:b1:69:32:c3:ac:d6:0f:52:21:5f:82:da:9a:0f:f7:b5: 99:84:55:d1:98:fd:73:bf:60:fd:32:14:00:e0:fe:1e:4d:f1: b4:61:a1:f3:f0:97:33:91:a5:7e:74:79:71:0d:fa:c0:81:a3: 9e:c8:ae:80:30:93:8a:9b:92:c3:d0:fa:38:19:0f:4b:3d:86: d0:8c:3a:a1:4a:2d:a4:e9:58:42:10:00:c4:1c:60:27:24:2c: c1:fd:29:c7:c5:bd:e3:42:0d:0b:62:fd:16:18:34:cb:ed:d3: 4f:8f:16:39:ae:5e:30:e5:60:64:86:74:94:45:dc:15:65:68: 22:f5:7d:a8:a5:f7:21:02:13:b0:d4:dd:97:aa:5a:8d:41:1d: 6b:d7:24:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIpshYxnikp1aS0oFu3bBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkNTcwMDkxNmY5MDk4M2JkOGU4OWNkMDVmZTYyOWVjMTgz YmZhNTQwHhcNMjYwMjA5MTYwMTA3WhcNMjYwMjEwMTYwMTA3WjAzMTEwLwYDVQQD EyhiODcxN2Y4OGNhNzMyM2Q5ZGUxMzhkNTljNmZmZmUxY2I3ZWNkMzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqTSWSM9pktSrvNmHnV3HVwejmc7L Vfmag0DkMbqwzxpuh/gdlDbsYGHlXbHFUHI72dRUfpEWRLb6RGTYbS5zdjgm1uiL aaObe/BQJrOP8nAzsQPA+qOI/miEm9r0etPWxY6iUBHDAQNGa7JlwR0ZHi3dhkHj +FSVsACvdQgOJqSKQscBKbI5gLknbJTRD60bl4w/nNsgwFX26G7PxxbSXi8jKYg3 LkfR0C4NP+Qsfe38rjuAQucwG+6W4cBgJQOMOHGGfcU1uCbxT+/KY+nMkRh8ZrOb vjpG/OZ150bXSyRdaBsT0IZdRFxB0B0FPV35KVEQw+/HZGoP4cne5A4ebwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhxf4jKcyPZ3hONWcb//hy37NNBMB8GA1UdIwQY MBaAFG1XAJFvkJg72Oic0F/mKewYO/pUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNi85YmZkYjYtMDhiNy00YjFkLThhODgt OTI2YjM0ODE0MTMwLzEvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNi85YmZkYjYtMDhiNy00YjFkLThhODgtOTI2YjM0ODE0MTMw LzEvYlZjQWtXLVFtRHZZNkp6UVgtWXA3Qmc3LWxRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYYdgVcKa w9Cbsz94PjzPTGmOpYDIW7QSPb8YBNEHvOe1DQQgHulOPj1Oq9oeT1EB10RbfNxU WiW9YPUjjM0+RRKqYqzvBcuCCdnOWqIZbfxkP5+QstHPt3oct97p/Ocm34JKI9ld 2UCiRHQRnSSxaTLDrNYPUiFfgtqaD/e1mYRV0Zj9c79g/TIUAOD+Hk3xtGGh8/CX M5GlfnR5cQ36wIGjnsiugDCTipuSw9D6OBkPSz2G0Iw6oUotpOlYQhAAxBxgJyQs wf0px8W940INC2L9Fhg0y+3TT48WOa5eMOVgZIZ0lEXcFWVoIvV9qKX3IQITsNTd l6pajUEda9ckhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:53 2026 by rpki-client