This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft File: cBKlLoiwGDLPDuN8zath3s59EsY.mft (raw, json) Hash identifier: G5B/9SHNU80MMHaW/mdPfzpgDqUrOjjhFb6ZaC5HkZw= Subject key identifier: 6C:71:23:B7:F1:5E:CE:51:81:D6:6C:08:36:F9:65:44:9A:1C:08:6E Authority key identifier: 70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6 Certificate issuer: /CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6 Certificate serial: 019C4246381372CA4FB9C3DBDDF774881216 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft Manifest number: 0C91 Signing time: Mon 09 Feb 2026 12:00:23 +0000 Manifest this update: Mon 09 Feb 2026 12:00:23 +0000 Manifest next update: Tue 10 Feb 2026 12:00:23 +0000 Files and hashes: 1: SNdVrzFoTGYFoAaQRYv8cJ6F2H0.roa (hash: MfCh5miyV4l1WaY/F5DKyibenGShF9S2TLmog0i5DGQ=) 2: cBKlLoiwGDLPDuN8zath3s59EsY.crl (hash: /oxB0pwMUS3GFpCzphUk+0dCY5xgStSKoTWV1RMnK5o=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:38:13:72:ca:4f:b9:c3:db:dd:f7:74:88:12:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7012a52e88b01832cf0ee37ccdab61dece7d12c6 Validity Not Before: Feb 9 12:00:23 2026 GMT Not After : Feb 10 12:00:23 2026 GMT Subject: CN=6c7123b7f15ece5181d66c0836f965449a1c086e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:7a:08:d2:78:4d:9e:8a:89:95:dc:34:7e: 0e:6d:ee:28:32:4a:9c:a0:f2:2b:41:46:56:7b:a3: 82:a4:a0:43:3a:fc:7d:e9:26:a3:f8:51:8f:06:a5: 85:f6:41:7d:66:8b:8d:4b:74:9a:55:ae:d5:f4:40: 2c:65:fe:35:a1:62:25:56:c3:2b:60:fe:2a:b5:d0: 58:64:58:ed:91:6f:fa:99:b8:99:65:e8:00:07:ac: 08:60:fa:9f:56:65:4e:71:08:f0:3c:b9:e3:d6:41: 00:7a:b9:a1:7b:63:cd:65:11:f4:8d:0a:45:e0:1e: 76:2b:9c:7b:ab:65:33:3d:9a:6f:78:40:c6:32:55: c4:55:31:56:84:6c:1f:8e:0a:9f:40:66:c3:5d:f3: 6e:c1:69:56:95:0e:c0:3a:25:26:74:1f:88:4f:f1: d2:18:e9:3f:ba:71:cb:47:b0:8a:01:f3:11:74:44: 06:7a:09:95:a2:7c:d9:62:2b:5c:7d:4c:4e:9a:1c: 88:cd:e5:af:7f:51:e7:16:09:68:9a:62:4b:6d:7c: 41:f8:73:8a:e3:5b:05:b8:e7:73:c5:cd:e1:9b:cc: 90:5d:bb:80:8f:62:d9:ad:08:a4:b6:35:c7:ae:e5: 15:66:6b:13:46:5a:d4:74:de:ca:bd:32:1a:f9:14: 68:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:71:23:B7:F1:5E:CE:51:81:D6:6C:08:36:F9:65:44:9A:1C:08:6E X509v3 Authority Key Identifier: keyid:70:12:A5:2E:88:B0:18:32:CF:0E:E3:7C:CD:AB:61:DE:CE:7D:12:C6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cBKlLoiwGDLPDuN8zath3s59EsY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/0e545b-443f-4cfb-8c28-3201b87f1490/1/cBKlLoiwGDLPDuN8zath3s59EsY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:b7:32:4f:47:25:fb:55:7b:c9:32:78:77:15:f7:f8:bf:d1: 12:49:d2:4a:89:e9:33:24:c3:8b:23:5d:a3:3e:a5:49:5f:2a: c1:8d:aa:3b:ab:9d:25:28:c0:d1:23:14:1d:eb:e8:fa:a2:d2: c1:9b:31:87:72:9f:66:79:4d:93:b7:56:1f:18:5a:59:ad:5a: 49:75:35:cc:3f:c6:a7:ea:59:12:ba:45:95:84:d1:56:32:70: 7a:f9:f9:6b:2a:f9:3d:28:2e:58:a8:31:9c:5d:68:23:ea:0f: fd:e0:b5:df:f4:13:bb:21:a0:20:9d:bd:0f:3b:1c:90:42:95: 78:51:5f:65:fd:42:3c:1d:32:76:6b:94:3a:8a:76:74:90:6f: 07:4a:fb:7f:7d:46:3b:06:b3:f2:bb:95:9e:59:40:3c:60:b0: cc:88:f0:ec:14:08:af:9f:15:1e:0f:00:8d:99:8f:65:65:cf: e8:ad:15:85:44:3c:68:48:ec:e0:c0:d8:68:ba:85:a1:10:85: 1d:12:1e:d1:a0:8e:0f:22:a4:4e:63:c9:b5:c6:8e:e2:70:82: 3a:ab:17:39:63:89:e3:92:aa:b3:80:77:ba:a1:06:13:b9:d8: 19:c0:be:37:e6:a9:96:58:25:70:15:26:02:30:96:f6:35:b5: a0:02:4b:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjgTcspPucPb3fd0iBIWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcwMTJhNTJlODhiMDE4MzJjZjBlZTM3Y2NkYWI2MWRlY2U3 ZDEyYzYwHhcNMjYwMjA5MTIwMDIzWhcNMjYwMjEwMTIwMDIzWjAzMTEwLwYDVQQD Eyg2YzcxMjNiN2YxNWVjZTUxODFkNjZjMDgzNmY5NjU0NDlhMWMwODZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGx6CNJ4TZ6KiZXcNH4Obe4oMkqc oPIrQUZWe6OCpKBDOvx96Saj+FGPBqWF9kF9ZouNS3SaVa7V9EAsZf41oWIlVsMr YP4qtdBYZFjtkW/6mbiZZegAB6wIYPqfVmVOcQjwPLnj1kEAermhe2PNZRH0jQpF 4B52K5x7q2UzPZpveEDGMlXEVTFWhGwfjgqfQGbDXfNuwWlWlQ7AOiUmdB+IT/HS GOk/unHLR7CKAfMRdEQGegmVonzZYitcfUxOmhyIzeWvf1HnFglommJLbXxB+HOK 41sFuOdzxc3hm8yQXbuAj2LZrQiktjXHruUVZmsTRlrUdN7KvTIa+RRoVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGxxI7fxXs5RgdZsCDb5ZUSaHAhuMB8GA1UdIwQY MBaAFHASpS6IsBgyzw7jfM2rYd7OfRLGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC8wZTU0NWItNDQzZi00Y2ZiLThjMjgt MzIwMWI4N2YxNDkwLzEvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC8wZTU0NWItNDQzZi00Y2ZiLThjMjgtMzIwMWI4N2YxNDkw LzEvY0JLbExvaXdHRExQRHVOOHphdGgzczU5RXNZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASbcyT0cl +1V7yTJ4dxX3+L/REknSSonpMyTDiyNdoz6lSV8qwY2qO6udJSjA0SMUHevo+qLS wZsxh3KfZnlNk7dWHxhaWa1aSXU1zD/Gp+pZErpFlYTRVjJwevn5ayr5PSguWKgx nF1oI+oP/eC13/QTuyGgIJ29DzsckEKVeFFfZf1CPB0ydmuUOop2dJBvB0r7f31G Owaz8ruVnllAPGCwzIjw7BQIr58VHg8AjZmPZWXP6K0VhUQ8aEjs4MDYaLqFoRCF HRIe0aCODyKkTmPJtcaO4nCCOqsXOWOJ45Kqs4B3uqEGE7nYGcC+N+apllglcBUm AjCW9jW1oAJLIQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:21 2026 by rpki-client