This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft File: bJHX1fXOV5JskDlz7L8RK_rhUw0.mft (raw, json) Hash identifier: 25vGxEP08w/Sc3xZngbtgKNpH+4NnzvCF0GjEzoMj5U= Subject key identifier: 79:70:2F:64:94:22:74:5F:25:32:11:E1:2C:44:D2:68:CE:35:D8:92 Authority key identifier: 6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D Certificate issuer: /CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d Certificate serial: 019C42103F098E296478CAC2DFFABFE5F021 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 11:01:26 +0000 Manifest this update: Mon 09 Feb 2026 11:01:26 +0000 Manifest next update: Tue 10 Feb 2026 11:01:26 +0000 Files and hashes: 1: bJHX1fXOV5JskDlz7L8RK_rhUw0.crl (hash: CS36G4lnRr9d/0TczlZjiyCDFSWVeAMlvFAUTQtW6Yk=) 2: gAFSZzKTjEVRf47WvbPQw9RuhoM.roa (hash: jPokL5/z/e0Il4m/WG56yEQQsrUzjo4pjF7u6A/T3a4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:3f:09:8e:29:64:78:ca:c2:df:fa:bf:e5:f0:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c91d7d5f5ce57926c903973ecbf112bfae1530d Validity Not Before: Feb 9 11:01:26 2026 GMT Not After : Feb 10 11:01:26 2026 GMT Subject: CN=79702f649422745f253211e12c44d268ce35d892 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:82:de:10:fd:e3:41:fd:5c:b3:b4:56:47:9c: 16:b3:04:84:a5:38:ff:fb:32:91:b7:42:7e:6f:ef: 39:72:20:e4:a6:1d:1d:f4:06:0e:e7:7f:53:3a:ea: a4:e7:ee:74:16:84:19:5b:b1:92:23:c3:81:c5:b5: 44:18:4a:c4:80:0b:56:ad:2e:1d:eb:21:ae:bc:62: cd:9d:02:74:40:8c:16:de:60:e8:e2:21:d0:60:5a: da:3b:e3:28:c5:f5:b5:bb:45:12:ab:9b:ad:9f:fc: 4f:46:f1:4e:68:d7:53:f7:8b:61:90:81:08:3f:ce: 7f:da:48:7e:27:f3:fc:c3:c0:37:7f:78:f2:05:e6: 04:3b:70:3d:c1:3a:ad:14:e0:3f:f5:04:23:0f:a9: ad:7b:4d:63:f1:e3:38:2a:1c:30:0f:5f:fd:4b:66: ff:f1:cb:cf:85:2c:f7:eb:5d:bd:41:10:0c:0f:1c: eb:74:ca:7f:90:42:a4:53:ec:7c:85:d6:1d:14:ec: 33:ab:f4:95:ff:b0:24:5f:ed:5c:4a:b7:29:d4:c9: ac:7c:a2:20:f6:5c:8c:36:74:2a:88:7d:c3:72:88: d9:6e:cd:85:74:6d:35:89:cd:fe:b5:22:8c:99:d6: d2:fc:f9:15:2d:38:b0:9d:60:8f:f1:10:fc:6b:7d: 7a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:70:2F:64:94:22:74:5F:25:32:11:E1:2C:44:D2:68:CE:35:D8:92 X509v3 Authority Key Identifier: keyid:6C:91:D7:D5:F5:CE:57:92:6C:90:39:73:EC:BF:11:2B:FA:E1:53:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bJHX1fXOV5JskDlz7L8RK_rhUw0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/dd3fc8-47dc-4a36-8734-45d84da39874/1/bJHX1fXOV5JskDlz7L8RK_rhUw0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:d8:38:ca:2c:dc:f7:33:db:fc:8b:e2:f8:8a:0c:23:a2:e5: b4:fd:f8:5c:d4:e1:85:f7:7e:98:6c:a5:b4:ef:fe:57:58:f8: e8:d8:01:63:99:78:a1:6f:e2:79:bb:88:d0:cc:f8:15:61:d9: da:70:80:74:c1:79:d1:80:f5:e8:a1:0c:64:c8:41:83:08:cc: f3:f3:f7:89:6e:68:3f:3d:90:ac:d8:c9:62:46:b8:8e:cd:4b: 7c:cb:46:17:f9:11:65:5d:2d:04:aa:ab:48:1d:52:46:4c:6f: 3b:0a:6f:3d:69:b8:40:9d:57:87:dd:cf:8f:46:3d:19:fc:0e: 4d:8a:18:46:66:43:d1:c1:1b:87:83:50:53:35:0c:9d:9c:e8: 59:a4:9d:c2:56:57:7a:44:14:24:21:73:10:05:a0:72:3e:c3: 88:94:2f:fe:ab:59:eb:00:68:e2:03:30:22:72:12:3b:4f:59: 8d:06:8e:ad:0b:6c:ef:23:f7:bb:08:df:41:33:aa:75:43:0a: 7d:a5:7f:90:d7:84:46:ba:7f:8e:5e:9a:18:2c:aa:fc:22:fd: 1f:e9:41:a6:cb:cf:83:bd:87:54:c6:77:6f:92:76:ea:6a:03: 9c:90:68:d7:d2:b6:eb:65:f7:1b:65:26:7b:50:28:3f:e5:cd: d6:ef:f6:96 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCED8JjilkeMrC3/q/5fAhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjOTFkN2Q1ZjVjZTU3OTI2YzkwMzk3M2VjYmYxMTJiZmFl MTUzMGQwHhcNMjYwMjA5MTEwMTI2WhcNMjYwMjEwMTEwMTI2WjAzMTEwLwYDVQQD Eyg3OTcwMmY2NDk0MjI3NDVmMjUzMjExZTEyYzQ0ZDI2OGNlMzVkODkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoLeEP3jQf1cs7RWR5wWswSEpTj/ +zKRt0J+b+85ciDkph0d9AYO539TOuqk5+50FoQZW7GSI8OBxbVEGErEgAtWrS4d 6yGuvGLNnQJ0QIwW3mDo4iHQYFraO+MoxfW1u0USq5utn/xPRvFOaNdT94thkIEI P85/2kh+J/P8w8A3f3jyBeYEO3A9wTqtFOA/9QQjD6mte01j8eM4KhwwD1/9S2b/ 8cvPhSz36129QRAMDxzrdMp/kEKkU+x8hdYdFOwzq/SV/7AkX+1cSrcp1MmsfKIg 9lyMNnQqiH3DcojZbs2FdG01ic3+tSKMmdbS/PkVLTiwnWCP8RD8a316AQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlwL2SUInRfJTIR4SxE0mjONdiSMB8GA1UdIwQY MBaAFGyR19X1zleSbJA5c+y/ESv64VMNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNC9kZDNmYzgtNDdkYy00YTM2LTg3MzQt NDVkODRkYTM5ODc0LzEvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNC9kZDNmYzgtNDdkYy00YTM2LTg3MzQtNDVkODRkYTM5ODc0 LzEvYkpIWDFmWE9WNUpza0RsejdMOFJLX3JoVXcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU9g4yizc 9zPb/Ivi+IoMI6LltP34XNThhfd+mGyltO/+V1j46NgBY5l4oW/iebuI0Mz4FWHZ 2nCAdMF50YD16KEMZMhBgwjM8/P3iW5oPz2QrNjJYka4js1LfMtGF/kRZV0tBKqr SB1SRkxvOwpvPWm4QJ1Xh93Pj0Y9GfwOTYoYRmZD0cEbh4NQUzUMnZzoWaSdwlZX ekQUJCFzEAWgcj7DiJQv/qtZ6wBo4gMwInISO09ZjQaOrQts7yP3uwjfQTOqdUMK faV/kNeERrp/jl6aGCyq/CL9H+lBpsvPg72HVMZ3b5J26moDnJBo19K262X3G2Um e1AoP+XN1u/2lg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:54 2026 by rpki-client