This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft File: BsL3NfcUX3DScCYC7oyBVknrLkU.mft (raw, json) Hash identifier: Vv1eXq8EhpyYgkxtulio7AGI8DlQN3QKIqw/EagIJ7k= Subject key identifier: 10:ED:D8:37:A1:13:07:5A:FB:A3:89:59:BA:50:D4:4F:CD:4F:26:24 Authority key identifier: 06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45 Certificate issuer: /CN=06c2f735f7145f70d2702602ee8c815649eb2e45 Certificate serial: 019C432267AE1ACA0D62240791F9D751D2A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft Manifest number: 1244 Signing time: Mon 09 Feb 2026 16:00:54 +0000 Manifest this update: Mon 09 Feb 2026 16:00:54 +0000 Manifest next update: Tue 10 Feb 2026 16:00:54 +0000 Files and hashes: 1: BsL3NfcUX3DScCYC7oyBVknrLkU.crl (hash: V/fqHg9tTrd8KT65qj3pVY6/qiIo2C06430vz8fwmuU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:67:ae:1a:ca:0d:62:24:07:91:f9:d7:51:d2:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=06c2f735f7145f70d2702602ee8c815649eb2e45 Validity Not Before: Feb 9 16:00:54 2026 GMT Not After : Feb 10 16:00:54 2026 GMT Subject: CN=10edd837a113075afba38959ba50d44fcd4f2624 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:3c:fd:ac:14:23:29:be:b4:81:47:09:58:5f: 0c:86:40:40:9f:c4:5c:d5:17:6c:a0:50:ae:dd:46: 42:fb:00:6f:66:b0:b6:be:08:73:85:6d:63:db:87: 9a:3f:29:d7:d1:46:a6:28:57:f7:c8:b2:e7:7e:8d: ce:53:ff:5a:85:87:3e:34:db:f3:57:8f:24:49:8a: f1:cf:9c:1c:ed:d6:4b:dd:8c:4e:99:ee:5e:8f:f5: 69:f0:22:ba:78:33:b2:f1:30:96:d9:cb:03:6b:8f: c3:d9:1e:22:78:7a:15:23:dc:d9:18:5d:2f:de:25: db:87:b2:7b:38:8b:a8:03:90:92:e4:40:33:b3:a9: e5:ff:60:84:8f:e6:50:b7:e3:49:2a:8a:1a:87:de: 48:3d:42:45:83:c0:88:d3:f9:6b:4b:12:cf:09:f9: 25:31:2c:51:f3:89:72:a3:5e:96:e5:28:74:98:0b: 22:9c:fe:4f:e1:4a:79:ce:e7:58:1f:61:c1:d4:4c: d2:7c:f8:a1:34:21:78:db:32:e3:ee:f9:7d:09:71: e4:1c:2f:46:00:ea:ed:76:25:a0:24:49:c7:9d:21: bd:f2:2b:c9:19:68:7a:50:4e:fb:42:38:5a:f4:34: b9:50:fa:7e:99:94:47:aa:aa:a0:c2:9e:f0:9e:56: 0c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:ED:D8:37:A1:13:07:5A:FB:A3:89:59:BA:50:D4:4F:CD:4F:26:24 X509v3 Authority Key Identifier: keyid:06:C2:F7:35:F7:14:5F:70:D2:70:26:02:EE:8C:81:56:49:EB:2E:45 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BsL3NfcUX3DScCYC7oyBVknrLkU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/a57328-77c6-4ca3-8b6d-1ff630c350ff/1/BsL3NfcUX3DScCYC7oyBVknrLkU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3a:2d:38:af:b8:08:67:eb:01:32:c9:e7:4e:b7:a6:19:34:31: d4:30:a4:20:e7:34:ab:c5:de:1c:ca:82:1f:6d:c7:91:50:f3: b1:9a:fa:6a:93:03:7a:c8:b4:d9:b6:d2:d9:0e:9e:77:35:c0: e5:98:60:e4:90:6e:7a:db:7a:3e:45:ee:31:e2:21:86:90:aa: 5a:b6:21:1e:b9:7f:3f:11:a1:ce:5b:90:14:3d:b0:7f:c6:de: d2:7f:ac:aa:39:9f:80:53:3c:49:81:b9:24:f0:e9:19:b3:38: a9:40:19:9d:3c:e1:ae:ee:0f:d5:1d:b2:a8:7a:5b:01:01:2d: a9:3b:a1:ca:44:16:98:1a:93:b7:6f:77:ed:2a:0d:11:9a:0b: 9b:54:0d:76:69:4e:16:74:4b:b7:f0:e3:6f:11:54:0a:ae:75: a5:27:07:2e:bf:c4:91:86:a8:8e:77:3f:98:de:bb:ac:65:35: 1c:5f:38:0d:b3:98:95:9a:91:73:50:6d:6d:c6:f0:1e:6d:ba: c0:2b:7c:d2:f9:e7:10:b1:3f:0f:b7:cd:53:71:6c:87:50:d6: d9:e3:a3:45:98:65:e5:33:44:85:db:15:ef:5f:d7:33:13:0e: 67:f7:4c:28:2d:6c:96:4b:3b:7e:e4:8a:ad:fe:75:c5:86:b6: ed:2d:9f:1a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImeuGsoNYiQHkfnXUdKhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2YzJmNzM1ZjcxNDVmNzBkMjcwMjYwMmVlOGM4MTU2NDll YjJlNDUwHhcNMjYwMjA5MTYwMDU0WhcNMjYwMjEwMTYwMDU0WjAzMTEwLwYDVQQD EygxMGVkZDgzN2ExMTMwNzVhZmJhMzg5NTliYTUwZDQ0ZmNkNGYyNjI0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDz9rBQjKb60gUcJWF8MhkBAn8Rc 1RdsoFCu3UZC+wBvZrC2vghzhW1j24eaPynX0UamKFf3yLLnfo3OU/9ahYc+NNvz V48kSYrxz5wc7dZL3YxOme5ej/Vp8CK6eDOy8TCW2csDa4/D2R4ieHoVI9zZGF0v 3iXbh7J7OIuoA5CS5EAzs6nl/2CEj+ZQt+NJKooah95IPUJFg8CI0/lrSxLPCfkl MSxR84lyo16W5Sh0mAsinP5P4Up5zudYH2HB1EzSfPihNCF42zLj7vl9CXHkHC9G AOrtdiWgJEnHnSG98ivJGWh6UE77Qjha9DS5UPp+mZRHqqqgwp7wnlYMjQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBDt2DehEwda+6OJWbpQ1E/NTyYkMB8GA1UdIwQY MBaAFAbC9zX3FF9w0nAmAu6MgVZJ6y5FMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQnNMM05mY1VYM0RTY0NZQzdveUJWa25yTGtVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy9hNTczMjgtNzdjNi00Y2EzLThiNmQt MWZmNjMwYzM1MGZmLzEvQnNMM05mY1VYM0RTY0NZQzdveUJWa25yTGtVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy9hNTczMjgtNzdjNi00Y2EzLThiNmQtMWZmNjMwYzM1MGZm LzEvQnNMM05mY1VYM0RTY0NZQzdveUJWa25yTGtVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOi04r7gI Z+sBMsnnTremGTQx1DCkIOc0q8XeHMqCH23HkVDzsZr6apMDesi02bbS2Q6edzXA 5Zhg5JBuett6PkXuMeIhhpCqWrYhHrl/PxGhzluQFD2wf8be0n+sqjmfgFM8SYG5 JPDpGbM4qUAZnTzhru4P1R2yqHpbAQEtqTuhykQWmBqTt2937SoNEZoLm1QNdmlO FnRLt/DjbxFUCq51pScHLr/EkYaojnc/mN67rGU1HF84DbOYlZqRc1BtbcbwHm26 wCt80vnnELE/D7fNU3Fsh1DW2eOjRZhl5TNEhdsV71/XMxMOZ/dMKC1slks7fuSK rf51xYa27S2fGg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:17 2026 by rpki-client