This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft File: bzHGTD5afeEED0Daj-3EfDj-Wfo.mft (raw, json) Hash identifier: eugKZ/FaKzWkfvW5cq+OmgE5h5cKnInr7w1Km6FM6E8= Subject key identifier: DC:C5:CC:4F:F6:93:8C:DC:A0:77:B9:73:02:9B:91:5C:57:0B:52:7F Authority key identifier: 6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA Certificate issuer: /CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa Certificate serial: 019C41A1483A5299927C177D50BCD7D4C6B0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft Manifest number: 10BC Signing time: Mon 09 Feb 2026 09:00:14 +0000 Manifest this update: Mon 09 Feb 2026 09:00:14 +0000 Manifest next update: Tue 10 Feb 2026 09:00:14 +0000 Files and hashes: 1: bzHGTD5afeEED0Daj-3EfDj-Wfo.crl (hash: dFGt+sq1P9QM5tNiKcsNwhuvtloxWaLZ62FLz4dIklU=) 2: mis20mCNr7-z3Juye3bJqllLhII.roa (hash: jr44OSFfE8hxxzeZqyHwzACU4GFNkuxHslOFaTPqZNE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:48:3a:52:99:92:7c:17:7d:50:bc:d7:d4:c6:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f31c64c3e5a7de1040f40da8fedc47c38fe59fa Validity Not Before: Feb 9 09:00:14 2026 GMT Not After : Feb 10 09:00:14 2026 GMT Subject: CN=dcc5cc4ff6938cdca077b973029b915c570b527f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:bb:63:10:c1:73:ba:88:f6:cb:fc:7f:c3:71: d0:ff:83:05:35:b6:8c:7c:c1:ea:0a:c7:78:f0:0e: fc:d1:d9:05:ee:b0:b4:80:71:ef:5e:c8:09:d8:15: 0b:aa:45:a7:bc:15:f7:03:3c:0b:aa:82:d9:c9:7b: 83:cb:73:db:62:31:12:cf:4c:3f:e3:42:2c:b6:ed: d1:43:31:78:a4:45:5e:15:36:c6:b0:c9:97:40:27: dd:bd:f3:94:1e:6d:39:08:5e:00:5b:a8:0d:76:a1: 4a:d6:04:95:ad:77:49:1f:21:aa:3f:6c:29:4b:fd: 57:25:da:c5:21:d5:22:3a:d6:dc:13:46:28:13:7e: aa:7f:53:fb:ee:42:70:f7:44:01:45:38:01:83:e6: 90:71:9c:1b:d3:db:ea:e1:2d:48:a2:e6:45:73:81: 73:bc:8f:ea:03:77:b3:6b:aa:1a:ee:9f:ee:a5:84: 5d:6d:9f:36:fd:0f:88:cd:71:21:fa:85:31:82:56: 02:48:9d:0d:1e:bd:78:b9:ae:0e:95:63:f4:3c:8b: a5:0e:ec:51:d1:36:43:6a:da:15:ea:27:47:61:a6: 28:99:bb:0b:dc:12:fb:e1:7e:65:f7:83:53:78:8a: 36:aa:06:2d:57:8c:63:12:f8:da:3b:bb:be:f2:1a: 61:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:C5:CC:4F:F6:93:8C:DC:A0:77:B9:73:02:9B:91:5C:57:0B:52:7F X509v3 Authority Key Identifier: keyid:6F:31:C6:4C:3E:5A:7D:E1:04:0F:40:DA:8F:ED:C4:7C:38:FE:59:FA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzHGTD5afeEED0Daj-3EfDj-Wfo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/8ed382-3097-413e-b6a2-b080a3451c7f/1/bzHGTD5afeEED0Daj-3EfDj-Wfo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:68:31:d8:e0:33:e4:ca:60:9c:07:34:fa:f0:ed:d5:48:67: f2:db:3d:73:d9:92:a7:5b:a3:9d:84:2d:49:98:d5:dc:87:17: 37:26:f4:97:00:22:82:1b:a8:01:25:3f:cf:11:b3:9c:2b:49: 25:7d:cc:7d:9e:85:a7:2d:5d:e6:fe:21:18:33:eb:9c:e3:e0: ed:04:10:e5:49:10:7f:05:ad:53:7b:58:41:10:7a:b0:08:e0: 34:18:a5:77:88:92:f4:89:a7:f2:69:a0:3e:cc:84:a8:6b:b6: 1a:90:47:e6:0d:c7:ef:b7:94:33:e2:32:d4:3a:57:8a:3b:7e: 88:ad:a6:10:60:e1:f9:b5:0b:06:df:33:0d:45:db:27:6b:07: 5f:ba:79:1e:6b:05:6d:0f:93:8c:7e:93:d2:44:48:c0:de:77: 49:b2:ff:d1:40:50:c1:c9:ad:8d:7b:3b:83:45:6b:48:53:6b: 78:8f:24:18:93:f6:0b:98:38:74:e0:e0:27:63:34:1f:08:ab: ca:8a:f0:d2:35:83:0f:3e:56:8e:31:89:66:83:90:37:0a:49: 54:57:b2:97:65:66:ed:4c:8b:3a:dc:20:21:cd:7b:e2:a6:1a: e3:63:61:0f:5e:1e:c6:a7:4f:04:2c:d1:a8:2a:7d:3b:fe:ae: d3:02:ac:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoUg6UpmSfBd9ULzX1MawMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzFjNjRjM2U1YTdkZTEwNDBmNDBkYThmZWRjNDdjMzhm ZTU5ZmEwHhcNMjYwMjA5MDkwMDE0WhcNMjYwMjEwMDkwMDE0WjAzMTEwLwYDVQQD EyhkY2M1Y2M0ZmY2OTM4Y2RjYTA3N2I5NzMwMjliOTE1YzU3MGI1MjdmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvLtjEMFzuoj2y/x/w3HQ/4MFNbaM fMHqCsd48A780dkF7rC0gHHvXsgJ2BULqkWnvBX3AzwLqoLZyXuDy3PbYjESz0w/ 40Istu3RQzF4pEVeFTbGsMmXQCfdvfOUHm05CF4AW6gNdqFK1gSVrXdJHyGqP2wp S/1XJdrFIdUiOtbcE0YoE36qf1P77kJw90QBRTgBg+aQcZwb09vq4S1IouZFc4Fz vI/qA3eza6oa7p/upYRdbZ82/Q+IzXEh+oUxglYCSJ0NHr14ua4OlWP0PIulDuxR 0TZDatoV6idHYaYombsL3BL74X5l94NTeIo2qgYtV4xjEvjaO7u+8hpheQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNzFzE/2k4zcoHe5cwKbkVxXC1J/MB8GA1UdIwQY MBaAFG8xxkw+Wn3hBA9A2o/txHw4/ln6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTIt YjA4MGEzNDUxYzdmLzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi84ZWQzODItMzA5Ny00MTNlLWI2YTItYjA4MGEzNDUxYzdm LzEvYnpIR1RENWFmZUVFRDBEYWotM0VmRGotV2ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJGgx2OAz 5MpgnAc0+vDt1Uhn8ts9c9mSp1ujnYQtSZjV3IcXNyb0lwAighuoASU/zxGznCtJ JX3MfZ6Fpy1d5v4hGDPrnOPg7QQQ5UkQfwWtU3tYQRB6sAjgNBild4iS9Imn8mmg PsyEqGu2GpBH5g3H77eUM+Iy1DpXijt+iK2mEGDh+bULBt8zDUXbJ2sHX7p5HmsF bQ+TjH6T0kRIwN53SbL/0UBQwcmtjXs7g0VrSFNreI8kGJP2C5g4dODgJ2M0Hwir yorw0jWDDz5WjjGJZoOQNwpJVFeyl2Vm7UyLOtwgIc174qYa42NhD14exqdPBCzR qCp9O/6u0wKs8Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:09 2026 by rpki-client