This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft File: BgPfkU3wTkf1a9li8vncPwQ0pdM.mft (raw, json) Hash identifier: aghDLLZsLLDzk1TSuLtmVeoDPQTHEB+InmqvU3S2Ljo= Subject key identifier: F6:0A:19:38:30:FC:56:0F:FB:4D:A2:74:03:BF:5C:D2:FD:C3:58:C9 Authority key identifier: 06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3 Certificate issuer: /CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3 Certificate serial: 019C4390B0889C0C5F27A54D3D5D4B0814AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft Manifest number: 0A5B Signing time: Mon 09 Feb 2026 18:01:21 +0000 Manifest this update: Mon 09 Feb 2026 18:01:21 +0000 Manifest next update: Tue 10 Feb 2026 18:01:21 +0000 Files and hashes: 1: BgPfkU3wTkf1a9li8vncPwQ0pdM.crl (hash: qtctpty/c3z6qyLnfdsNax8HTR+GtfEPgvq5Uv9sSzM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:b0:88:9c:0c:5f:27:a5:4d:3d:5d:4b:08:14:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0603df914df04e47f56bd962f2f9dc3f0434a5d3 Validity Not Before: Feb 9 18:01:21 2026 GMT Not After : Feb 10 18:01:21 2026 GMT Subject: CN=f60a193830fc560ffb4da27403bf5cd2fdc358c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:fc:37:d4:d5:80:14:b4:1b:ef:17:1f:09:b4: 7f:dc:93:8b:c7:0c:25:45:41:60:e1:ba:02:fa:cf: c6:e7:96:39:61:a0:d2:6e:40:b3:23:91:5d:23:e6: 01:51:1f:a4:d1:9c:5c:92:41:84:10:8f:f5:c4:a2: 8f:f7:97:41:eb:f5:7b:ed:9e:01:ae:cf:a6:34:41: cb:d9:b9:93:3a:67:7a:f4:d5:af:d4:54:98:ea:93: 37:53:ca:23:05:24:aa:8f:99:2e:cb:e8:55:21:7c: e0:7c:36:7b:79:1b:53:6a:6b:01:ea:ee:a4:4e:4d: 74:8c:3c:be:c1:5e:aa:4b:03:b1:3b:3f:ea:19:0e: 41:b2:b1:9e:19:63:e7:71:e8:5d:39:16:b8:56:b5: e3:c0:fc:59:a0:ba:43:4a:c7:f8:9a:50:d9:9b:8b: 00:a8:16:05:18:8d:08:0e:88:db:95:b7:c7:7b:bb: ca:58:83:11:a8:73:e8:65:f7:df:9c:96:81:d1:65: d3:09:23:bf:95:b0:f9:f7:20:22:8a:7e:58:c4:4e: 4d:62:8e:80:7e:3b:06:88:d7:12:2e:72:3e:9a:4c: 9e:7d:a5:99:98:16:e4:4f:8c:b7:91:69:02:9b:8b: 14:e0:34:bc:16:f0:d5:91:ff:00:f5:62:e2:69:f3: f7:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:0A:19:38:30:FC:56:0F:FB:4D:A2:74:03:BF:5C:D2:FD:C3:58:C9 X509v3 Authority Key Identifier: keyid:06:03:DF:91:4D:F0:4E:47:F5:6B:D9:62:F2:F9:DC:3F:04:34:A5:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BgPfkU3wTkf1a9li8vncPwQ0pdM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9b5e26-0148-4f9f-a46a-bc8425c60604/1/BgPfkU3wTkf1a9li8vncPwQ0pdM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 27:9b:82:c1:d8:05:34:32:37:e9:af:e7:e5:24:74:ed:2c:24: 22:71:e6:67:b9:ce:f4:c1:2b:23:a4:33:50:ed:8e:fe:54:0f: 44:87:a7:04:1c:89:af:bd:3c:66:21:73:e8:8f:99:17:20:9a: 77:52:8c:51:f1:7a:68:52:78:ad:b0:7a:10:25:13:01:72:62: 20:db:4a:42:db:48:cf:c2:5c:88:9e:fb:b8:13:2f:c4:f1:bd: 92:ff:03:a2:53:09:16:1c:1d:7c:f1:54:c9:16:ce:e7:b7:57: 8c:36:cf:e9:58:2c:2a:1c:54:92:81:3f:55:e5:39:97:57:0d: d0:8c:0e:06:98:78:e7:36:cf:5f:9f:a9:c2:98:7a:6e:cf:32: 5b:8e:26:d1:40:a9:0b:eb:83:7e:84:99:e2:49:ca:80:82:a3: f8:9a:5d:65:13:b5:07:0e:6e:e7:55:b6:04:bc:3c:94:be:5d: d9:0c:09:43:21:c9:4b:af:5d:74:94:fb:b8:d6:33:95:ab:12: 8c:1a:36:75:b1:72:34:98:ad:ff:a2:33:4c:f7:71:61:5b:53: 77:b2:53:fa:b4:9d:d7:56:a2:30:4d:25:83:70:86:3c:8b:82: 61:3f:27:57:92:30:2a:9c:56:24:26:3a:1c:4d:1f:3d:34:d6: 8a:12:ff:12 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkLCInAxfJ6VNPV1LCBStMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2MDNkZjkxNGRmMDRlNDdmNTZiZDk2MmYyZjlkYzNmMDQz NGE1ZDMwHhcNMjYwMjA5MTgwMTIxWhcNMjYwMjEwMTgwMTIxWjAzMTEwLwYDVQQD EyhmNjBhMTkzODMwZmM1NjBmZmI0ZGEyNzQwM2JmNWNkMmZkYzM1OGM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAufw31NWAFLQb7xcfCbR/3JOLxwwl RUFg4boC+s/G55Y5YaDSbkCzI5FdI+YBUR+k0ZxckkGEEI/1xKKP95dB6/V77Z4B rs+mNEHL2bmTOmd69NWv1FSY6pM3U8ojBSSqj5kuy+hVIXzgfDZ7eRtTamsB6u6k Tk10jDy+wV6qSwOxOz/qGQ5BsrGeGWPncehdORa4VrXjwPxZoLpDSsf4mlDZm4sA qBYFGI0IDojblbfHe7vKWIMRqHPoZfffnJaB0WXTCSO/lbD59yAiin5YxE5NYo6A fjsGiNcSLnI+mkyefaWZmBbkT4y3kWkCm4sU4DS8FvDVkf8A9WLiafP3NQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPYKGTgw/FYP+02idAO/XNL9w1jJMB8GA1UdIwQY MBaAFAYD35FN8E5H9WvZYvL53D8ENKXTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jOS85YjVlMjYtMDE0OC00ZjlmLWE0NmEt YmM4NDI1YzYwNjA0LzEvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jOS85YjVlMjYtMDE0OC00ZjlmLWE0NmEtYmM4NDI1YzYwNjA0 LzEvQmdQZmtVM3dUa2YxYTlsaTh2bmNQd1EwcGRNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJ5uCwdgF NDI36a/n5SR07SwkInHmZ7nO9MErI6QzUO2O/lQPRIenBByJr708ZiFz6I+ZFyCa d1KMUfF6aFJ4rbB6ECUTAXJiINtKQttIz8JciJ77uBMvxPG9kv8DolMJFhwdfPFU yRbO57dXjDbP6VgsKhxUkoE/VeU5l1cN0IwOBph45zbPX5+pwph6bs8yW44m0UCp C+uDfoSZ4knKgIKj+JpdZRO1Bw5u51W2BLw8lL5d2QwJQyHJS69ddJT7uNYzlasS jBo2dbFyNJit/6IzTPdxYVtTd7JT+rSd11aiME0lg3CGPIuCYT8nV5IwKpxWJCY6 HE0fPTTWihL/Eg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:11 2026 by rpki-client