This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft File: BgOecctxUgSoPMJTgi3CmmLHmeY.mft (raw, json) Hash identifier: /02yJGWRKR70grZcMwOYhrizYBUPS+EXVT6fEK/+caw= Subject key identifier: 49:EB:9A:CE:B1:A8:A8:12:9D:DF:62:3F:32:ED:BB:32:7D:1C:3B:96 Authority key identifier: 06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6 Certificate issuer: /CN=06039e71cb715204a83cc253822dc29a62c799e6 Certificate serial: 019C427D77E775DCD3FD75BBD5346738471B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft Manifest number: 0921 Signing time: Mon 09 Feb 2026 13:00:44 +0000 Manifest this update: Mon 09 Feb 2026 13:00:44 +0000 Manifest next update: Tue 10 Feb 2026 13:00:44 +0000 Files and hashes: 1: BgOecctxUgSoPMJTgi3CmmLHmeY.crl (hash: f7WNnl0qmBNkH4MnV0fCTrLsX46R1t/csNKNvcqTM3k=) 2: WsB2cpz5PeeV12FuRGXIMnfEpDA.roa (hash: RXGdsxXZdhMgqQg6njT8x//0fSXw5JT6Hs6Qaa1Fb6M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:77:e7:75:dc:d3:fd:75:bb:d5:34:67:38:47:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06039e71cb715204a83cc253822dc29a62c799e6 Validity Not Before: Feb 9 13:00:44 2026 GMT Not After : Feb 10 13:00:44 2026 GMT Subject: CN=49eb9aceb1a8a8129ddf623f32edbb327d1c3b96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:13:a3:31:e8:d1:c6:b4:3c:d4:b9:50:5c:8a: 87:6b:c9:50:70:19:7f:47:5d:be:e4:3c:d3:bc:1b: a1:70:79:57:30:9f:94:30:3c:fd:73:a3:8a:e0:ed: 9f:39:99:d8:19:b1:92:7a:47:49:98:e5:33:5f:f8: 2d:8a:96:0b:97:68:19:31:d8:d2:e6:fc:a4:34:54: 92:93:81:88:4b:54:bb:5d:e1:66:df:f5:06:fb:e5: 19:1c:06:95:f1:0f:18:ea:81:ee:ce:a2:64:65:a0: cc:39:c9:15:8c:46:31:99:6a:6f:04:bb:0d:85:bc: aa:3a:89:35:d1:72:c3:21:03:11:2a:69:e7:47:44: 98:57:62:15:d4:5c:6f:e0:40:20:15:c8:bd:59:c7: 09:a5:c9:ad:54:b3:a4:73:00:6a:af:14:bc:02:05: 42:cb:c4:ae:d0:8d:b7:50:e6:85:d6:66:08:2c:bd: 53:9d:42:8b:da:3d:d2:04:36:c6:d6:28:8c:e4:96: ce:72:e9:6d:d5:59:e5:5b:19:03:96:80:ab:39:a8: 53:fc:d0:39:e4:70:0f:ff:db:e4:1a:1b:fe:e0:b8: b5:61:c4:c7:e2:1b:43:8d:13:8a:db:91:8e:24:4c: f4:1f:6b:31:c1:0b:0e:14:ad:c6:1e:f6:26:11:06: 11:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:EB:9A:CE:B1:A8:A8:12:9D:DF:62:3F:32:ED:BB:32:7D:1C:3B:96 X509v3 Authority Key Identifier: keyid:06:03:9E:71:CB:71:52:04:A8:3C:C2:53:82:2D:C2:9A:62:C7:99:E6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgOecctxUgSoPMJTgi3CmmLHmeY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b2/e62879-2c69-40c3-b116-0e46875d45fd/1/BgOecctxUgSoPMJTgi3CmmLHmeY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:9b:48:d8:65:df:35:d0:af:6a:c0:80:f9:04:ee:ef:05:1e: 4f:f2:62:b4:5c:bc:72:68:78:c2:67:e5:0a:a2:75:7c:3f:12: 05:45:65:21:4e:9f:99:90:6c:a3:c7:fb:9a:9b:79:1d:dc:46: 66:87:83:d4:86:e0:f9:37:df:0c:d3:51:0a:2d:00:3c:d6:e3: ee:b0:34:6d:28:db:1b:e4:a5:c0:49:b9:6e:2e:83:98:17:65: bc:9f:10:d3:7e:5d:99:43:08:57:78:c6:9c:ac:4f:a1:fa:f1: 07:19:bf:c6:40:4e:66:34:ff:3d:d7:2b:34:9e:a4:39:ca:3d: d9:e5:69:03:80:8a:54:30:b9:19:37:ce:b7:a2:6b:da:16:49: 11:65:52:9d:d4:25:fc:42:54:b2:6f:fa:66:82:c1:23:28:31: 3c:38:3a:93:d5:7c:9c:c5:4e:2b:fe:92:96:fa:bb:32:aa:17: b0:d3:b3:37:a8:08:f5:56:da:68:fa:81:c2:8a:d7:91:c0:b8: 68:9b:99:6a:a0:8a:03:61:37:8e:54:26:59:51:85:c9:5d:48: 87:f0:1d:76:16:d8:e6:b2:97:3e:70:68:49:a9:0c:6d:28:8a: 04:f8:ad:b1:60:08:89:10:8d:7a:a2:e5:b7:f7:5f:7c:ae:16: 68:09:5a:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXfnddzT/XW71TRnOEcbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDM5ZTcxY2I3MTUyMDRhODNjYzI1MzgyMmRjMjlhNjJj Nzk5ZTYwHhcNMjYwMjA5MTMwMDQ0WhcNMjYwMjEwMTMwMDQ0WjAzMTEwLwYDVQQD Eyg0OWViOWFjZWIxYThhODEyOWRkZjYyM2YzMmVkYmIzMjdkMWMzYjk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlROjMejRxrQ81LlQXIqHa8lQcBl/ R12+5DzTvBuhcHlXMJ+UMDz9c6OK4O2fOZnYGbGSekdJmOUzX/gtipYLl2gZMdjS 5vykNFSSk4GIS1S7XeFm3/UG++UZHAaV8Q8Y6oHuzqJkZaDMOckVjEYxmWpvBLsN hbyqOok10XLDIQMRKmnnR0SYV2IV1Fxv4EAgFci9WccJpcmtVLOkcwBqrxS8AgVC y8Su0I23UOaF1mYILL1TnUKL2j3SBDbG1iiM5JbOcult1VnlWxkDloCrOahT/NA5 5HAP/9vkGhv+4Li1YcTH4htDjROK25GOJEz0H2sxwQsOFK3GHvYmEQYRHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEnrms6xqKgSnd9iPzLtuzJ9HDuWMB8GA1UdIwQY MBaAFAYDnnHLcVIEqDzCU4Itwppix5nmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYt MGU0Njg3NWQ0NWZkLzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMi9lNjI4NzktMmM2OS00MGMzLWIxMTYtMGU0Njg3NWQ0NWZk LzEvQmdPZWNjdHhVZ1NvUE1KVGdpM0NtbUxIbWVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfptI2GXf NdCvasCA+QTu7wUeT/JitFy8cmh4wmflCqJ1fD8SBUVlIU6fmZBso8f7mpt5HdxG ZoeD1Ibg+TffDNNRCi0APNbj7rA0bSjbG+SlwEm5bi6DmBdlvJ8Q035dmUMIV3jG nKxPofrxBxm/xkBOZjT/PdcrNJ6kOco92eVpA4CKVDC5GTfOt6Jr2hZJEWVSndQl /EJUsm/6ZoLBIygxPDg6k9V8nMVOK/6Slvq7MqoXsNOzN6gI9VbaaPqBworXkcC4 aJuZaqCKA2E3jlQmWVGFyV1Ih/AddhbY5rKXPnBoSakMbSiKBPitsWAIiRCNeqLl t/dffK4WaAlaPQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:26 2026 by rpki-client