This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft File: bd1AUuD8dlNjYcu9x3UId93zYK0.mft (raw, json) Hash identifier: 8Bs44aYsQrYX/cjSC4a2k6U0FodzC1MoK/8G+pfLJA4= Subject key identifier: 9F:24:BB:27:08:9A:D8:76:C9:66:12:6A:CB:49:35:C7:96:57:1C:11 Authority key identifier: 6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD Certificate issuer: /CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad Certificate serial: 019C40FD47EB2AF7C7B2E2177B418BAA664D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft Manifest number: 111F Signing time: Mon 09 Feb 2026 06:01:06 +0000 Manifest this update: Mon 09 Feb 2026 06:01:06 +0000 Manifest next update: Tue 10 Feb 2026 06:01:06 +0000 Files and hashes: 1: bd1AUuD8dlNjYcu9x3UId93zYK0.crl (hash: lICkC22yBVP6rmAnCejGhWVAKsU7Fv8/MirgsrbZZjc=) 2: v-QuOOYMf4HsWM21RDZIDik1F8Y.roa (hash: tkB5JnPvXNK8KkYHS1hN95y7jCOIV01txTm1VSy3JoA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fd:47:eb:2a:f7:c7:b2:e2:17:7b:41:8b:aa:66:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ddd4052e0fc76536361cbbdc7750877ddf360ad Validity Not Before: Feb 9 06:01:06 2026 GMT Not After : Feb 10 06:01:06 2026 GMT Subject: CN=9f24bb27089ad876c966126acb4935c796571c11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:e3:ff:98:78:dc:b5:5d:33:20:8a:29:82:ad: 6b:b1:93:0d:63:14:46:22:27:bc:bb:aa:28:5f:d4: e1:7c:7f:48:d5:cd:20:65:90:c3:1c:d5:5b:03:a4: 7b:02:c4:df:12:82:28:af:02:41:b8:a9:e7:4a:3e: 9e:c2:3f:5b:60:be:6d:5d:09:21:07:dc:5d:87:dc: 61:35:66:bd:20:09:61:8d:ff:ad:ed:f4:1f:e6:58: a8:18:df:da:db:2f:b7:44:6e:d2:d8:bd:cc:6f:81: 2f:30:83:c6:fd:48:4b:ea:fa:78:4f:cf:52:10:f0: 21:58:df:27:cb:51:e9:d2:0f:e0:07:23:91:af:e6: 44:ef:a5:49:9d:5e:7d:34:a7:eb:97:c7:fc:11:a7: c4:af:14:20:e6:02:e7:eb:af:11:34:c6:14:30:39: 86:1e:47:85:55:d7:68:0f:91:e2:5e:46:4a:f9:4b: 31:07:52:eb:4e:be:cf:63:27:81:d6:1e:ec:1d:9f: ac:7d:e6:6e:91:60:22:8e:1a:14:7f:f9:ae:22:f7: 5c:3e:9b:76:30:60:0a:50:3c:de:53:c8:31:f7:db: fc:0e:ea:fd:e8:be:48:d7:1b:ee:e8:34:ba:f3:af: 30:87:3a:aa:68:e5:91:6d:ac:e3:7b:47:2f:9f:e1: 54:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:24:BB:27:08:9A:D8:76:C9:66:12:6A:CB:49:35:C7:96:57:1C:11 X509v3 Authority Key Identifier: keyid:6D:DD:40:52:E0:FC:76:53:63:61:CB:BD:C7:75:08:77:DD:F3:60:AD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd1AUuD8dlNjYcu9x3UId93zYK0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/af/923448-3027-4941-98a4-ba7b1f3769e3/1/bd1AUuD8dlNjYcu9x3UId93zYK0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:a4:9b:fc:69:7b:54:3e:db:49:92:6b:9d:36:2e:3d:cb:8c: e5:e8:81:1e:42:e3:be:59:c9:98:ee:50:3d:f8:9d:66:20:5c: 75:86:1d:e1:13:22:dd:4c:a1:92:3d:5a:f8:29:ca:71:43:72: 17:57:39:ec:13:c1:78:63:73:0e:c3:d3:8a:d9:19:a3:23:cc: f2:d7:32:f9:30:30:3e:bb:32:a8:e0:3f:8e:25:6d:0d:5e:73: 7e:25:04:b8:3f:9d:75:b6:c0:ee:7d:e4:9b:86:95:b4:f2:67: 50:27:b8:39:6d:eb:06:bb:62:4d:77:3b:80:3c:ae:97:bd:d2: f4:a3:6b:b2:75:6d:93:09:24:4b:0a:2b:38:c9:ea:39:23:dc: 92:80:c6:0a:eb:73:44:d2:c0:d2:c2:9d:c5:fa:49:e8:b6:a6: d9:f0:a8:9c:77:2c:2b:ba:bc:57:12:21:29:79:1a:40:e4:39: a1:46:44:b7:f6:26:d2:9a:ba:24:5f:b2:1e:f7:f2:47:e6:d1: 76:7c:31:f6:c0:c7:de:ee:3f:da:65:dd:6b:26:8f:7f:9c:9d: d5:4a:32:3e:be:ad:e2:68:5f:a3:56:9d:8f:f8:6f:9f:c1:61: 10:05:09:21:7e:f0:a6:64:c8:3e:df:5f:90:a7:fc:99:da:ea: 4a:bd:6d:dc -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/UfrKvfHsuIXe0GLqmZNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZGQ0MDUyZTBmYzc2NTM2MzYxY2JiZGM3NzUwODc3ZGRm MzYwYWQwHhcNMjYwMjA5MDYwMTA2WhcNMjYwMjEwMDYwMTA2WjAzMTEwLwYDVQQD Eyg5ZjI0YmIyNzA4OWFkODc2Yzk2NjEyNmFjYjQ5MzVjNzk2NTcxYzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5eP/mHjctV0zIIopgq1rsZMNYxRG Iie8u6ooX9ThfH9I1c0gZZDDHNVbA6R7AsTfEoIorwJBuKnnSj6ewj9bYL5tXQkh B9xdh9xhNWa9IAlhjf+t7fQf5lioGN/a2y+3RG7S2L3Mb4EvMIPG/UhL6vp4T89S EPAhWN8ny1Hp0g/gByORr+ZE76VJnV59NKfrl8f8EafErxQg5gLn668RNMYUMDmG HkeFVddoD5HiXkZK+UsxB1LrTr7PYyeB1h7sHZ+sfeZukWAijhoUf/muIvdcPpt2 MGAKUDzeU8gx99v8Dur96L5I1xvu6DS6868whzqqaOWRbazje0cvn+FUvwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ8kuycImth2yWYSastJNceWVxwRMB8GA1UdIwQY MBaAFG3dQFLg/HZTY2HLvcd1CHfd82CtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hZi85MjM0NDgtMzAyNy00OTQxLTk4YTQt YmE3YjFmMzc2OWUzLzEvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hZi85MjM0NDgtMzAyNy00OTQxLTk4YTQtYmE3YjFmMzc2OWUz LzEvYmQxQVV1RDhkbE5qWWN1OXgzVUlkOTN6WUswLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiaSb/Gl7 VD7bSZJrnTYuPcuM5eiBHkLjvlnJmO5QPfidZiBcdYYd4RMi3Uyhkj1a+CnKcUNy F1c57BPBeGNzDsPTitkZoyPM8tcy+TAwPrsyqOA/jiVtDV5zfiUEuD+ddbbA7n3k m4aVtPJnUCe4OW3rBrtiTXc7gDyul73S9KNrsnVtkwkkSworOMnqOSPckoDGCutz RNLA0sKdxfpJ6Lam2fConHcsK7q8VxIhKXkaQOQ5oUZEt/Ym0pq6JF+yHvfyR+bR dnwx9sDH3u4/2mXdayaPf5yd1UoyPr6t4mhfo1adj/hvn8FhEAUJIX7wpmTIPt9f kKf8mdrqSr1t3A== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:37 2026 by rpki-client