This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft File: BkizODOZAP9_O1myRtJNJofGNnw.mft (raw, json) Hash identifier: eDaEzpTrgYXz72rDZsoYxMZRtEBcpLQwmPc0KcRo2gY= Subject key identifier: F9:D3:0C:DA:44:11:08:BE:2F:41:EC:42:AF:22:8C:EC:AE:5A:D4:01 Authority key identifier: 06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C Certificate issuer: /CN=0648b338339900ff7f3b59b246d24d2687c6367c Certificate serial: 019C42EAF945766E2C75B93B584AD13484EE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft Manifest number: 038F Signing time: Mon 09 Feb 2026 15:00:21 +0000 Manifest this update: Mon 09 Feb 2026 15:00:21 +0000 Manifest next update: Tue 10 Feb 2026 15:00:21 +0000 Files and hashes: 1: BkizODOZAP9_O1myRtJNJofGNnw.crl (hash: P1+f/uWtc1tbvdOXIXloNWnpy0FGklf0ZyY0hAetfNY=) 2: cfmhFWxRmQMPqxzLZOdLCKBVtII.roa (hash: hnNzoR6kq2MH8dzC1wQ5EZyQAUNnpRqddoSLhzjNpPw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:ea:f9:45:76:6e:2c:75:b9:3b:58:4a:d1:34:84:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0648b338339900ff7f3b59b246d24d2687c6367c Validity Not Before: Feb 9 15:00:21 2026 GMT Not After : Feb 10 15:00:21 2026 GMT Subject: CN=f9d30cda441108be2f41ec42af228cecae5ad401 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:93:8b:cc:e7:44:fb:82:31:48:f6:47:8c:32: f8:e9:76:8f:df:70:3a:a8:b3:b6:07:de:c0:64:86: bf:c7:99:45:68:78:c6:16:7c:ad:90:26:e7:5d:56: 9d:73:2e:c7:ee:43:f0:f1:d4:46:b0:41:d3:9d:3d: d4:16:5a:35:44:a1:be:04:8d:79:ea:db:a5:63:e3: e8:31:20:13:c4:50:73:b1:17:74:15:b9:7f:0a:29: 06:0c:23:34:6c:60:e7:cd:a7:2c:ec:b1:31:8d:ee: c8:f8:48:a7:a8:79:5b:10:29:5f:51:b9:67:db:91: 9c:b1:e5:c0:da:6d:6d:f8:de:1b:03:f5:c5:dc:aa: 36:5f:84:ff:53:72:aa:a9:b7:12:61:c4:29:12:b7: d1:ba:ac:9d:e0:1d:9b:f4:20:c0:44:75:ee:ef:bb: e8:74:44:18:20:c4:8f:2d:65:f3:0a:7a:20:18:45: 00:e0:4f:fd:dd:29:8a:56:5c:43:89:54:d3:c8:75: 86:96:2c:7b:f1:1c:6e:1b:8b:66:b1:23:d2:f8:a0: 08:09:cf:5b:82:0f:22:3e:30:08:0f:c2:d2:74:d7: fc:e7:28:3d:de:06:4d:ec:86:67:ef:c2:c6:d2:b0: 63:42:91:4b:22:aa:68:1a:fe:6f:0a:11:d6:78:49: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D3:0C:DA:44:11:08:BE:2F:41:EC:42:AF:22:8C:EC:AE:5A:D4:01 X509v3 Authority Key Identifier: keyid:06:48:B3:38:33:99:00:FF:7F:3B:59:B2:46:D2:4D:26:87:C6:36:7C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkizODOZAP9_O1myRtJNJofGNnw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/33a037-0675-48f8-925d-0d918eedc26f/1/BkizODOZAP9_O1myRtJNJofGNnw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:e2:b9:7a:8e:9d:da:30:48:e5:d3:01:d5:78:1a:4c:17:17: 15:7e:22:c9:f5:e4:bc:a6:aa:d9:de:dc:a9:2f:ff:a6:83:07: 44:19:c0:21:b5:a3:65:d0:d6:7e:18:c0:e2:e4:27:c5:04:13: f5:a7:c8:00:06:f1:d4:11:31:5f:f6:5c:00:5a:40:d7:2a:5c: 97:b6:08:37:04:fe:76:ee:33:0d:e3:7d:93:fb:58:4a:c9:02: 94:d3:3a:69:13:a2:8e:3d:f7:08:4b:fc:16:37:ac:ba:c3:0b: 37:39:58:2b:8e:2f:91:c9:e3:a3:96:53:9c:ca:5e:7b:95:bc: 52:71:d5:9b:1e:e5:bf:74:00:f1:87:78:d4:e7:c7:47:e1:d1: 97:94:63:e5:b9:e4:82:6d:11:95:4e:97:79:c7:05:f5:60:17: 95:1f:1d:e7:71:9d:02:c1:b0:0c:2a:af:4b:6c:b0:cd:4a:d6: c3:fc:5e:b0:1f:95:ba:db:49:41:54:58:a9:40:f6:9f:f6:35: 6a:75:9c:04:e4:60:d1:c9:81:b3:77:0f:73:dc:ab:da:21:4d: f9:84:51:f3:e5:50:d1:86:c4:c1:30:82:9e:1c:d1:af:e1:f0: 82:25:d3:b4:60:bc:1c:92:8c:97:0e:5b:50:dd:1c:0d:2e:01: ae:62:18:11 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6vlFdm4sdbk7WErRNITuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NDhiMzM4MzM5OTAwZmY3ZjNiNTliMjQ2ZDI0ZDI2ODdj NjM2N2MwHhcNMjYwMjA5MTUwMDIxWhcNMjYwMjEwMTUwMDIxWjAzMTEwLwYDVQQD EyhmOWQzMGNkYTQ0MTEwOGJlMmY0MWVjNDJhZjIyOGNlY2FlNWFkNDAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA65OLzOdE+4IxSPZHjDL46XaP33A6 qLO2B97AZIa/x5lFaHjGFnytkCbnXVadcy7H7kPw8dRGsEHTnT3UFlo1RKG+BI15 6tulY+PoMSATxFBzsRd0Fbl/CikGDCM0bGDnzacs7LExje7I+EinqHlbEClfUbln 25GcseXA2m1t+N4bA/XF3Ko2X4T/U3KqqbcSYcQpErfRuqyd4B2b9CDARHXu77vo dEQYIMSPLWXzCnogGEUA4E/93SmKVlxDiVTTyHWGlix78RxuG4tmsSPS+KAICc9b gg8iPjAID8LSdNf85yg93gZN7IZn78LG0rBjQpFLIqpoGv5vChHWeEnGSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPnTDNpEEQi+L0HsQq8ijOyuWtQBMB8GA1UdIwQY MBaAFAZIszgzmQD/fztZskbSTSaHxjZ8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQt MGQ5MThlZWRjMjZmLzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi8zM2EwMzctMDY3NS00OGY4LTkyNWQtMGQ5MThlZWRjMjZm LzEvQmtpek9ET1pBUDlfTzFteVJ0Sk5Kb2ZHTm53LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFuK5eo6d 2jBI5dMB1XgaTBcXFX4iyfXkvKaq2d7cqS//poMHRBnAIbWjZdDWfhjA4uQnxQQT 9afIAAbx1BExX/ZcAFpA1ypcl7YINwT+du4zDeN9k/tYSskClNM6aROijj33CEv8 FjesusMLNzlYK44vkcnjo5ZTnMpee5W8UnHVmx7lv3QA8Yd41OfHR+HRl5Rj5bnk gm0RlU6XeccF9WAXlR8d53GdAsGwDCqvS2ywzUrWw/xesB+VuttJQVRYqUD2n/Y1 anWcBORg0cmBs3cPc9yr2iFN+YRR8+VQ0YbEwTCCnhzRr+HwgiXTtGC8HJKMlw5b UN0cDS4BrmIYEQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:29 2026 by rpki-client