This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft File: BkwamGxZM6O5EIToo_8IBm05jhk.mft (raw, json) Hash identifier: 2TVsgR+SzDRvvr7ZSH26hLVtpGwMBGS/QzVVQrYXEc4= Subject key identifier: 42:82:AB:27:88:86:4C:95:99:4C:C1:BE:2B:96:EF:BC:CB:16:9A:B8 Authority key identifier: 06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19 Certificate issuer: /CN=064c1a986c5933a3b91084e8a3ff08066d398e19 Certificate serial: 019C43223BE58E8327199004B0334969CC0C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft Manifest number: 0C20 Signing time: Mon 09 Feb 2026 16:00:42 +0000 Manifest this update: Mon 09 Feb 2026 16:00:42 +0000 Manifest next update: Tue 10 Feb 2026 16:00:42 +0000 Files and hashes: 1: BkwamGxZM6O5EIToo_8IBm05jhk.crl (hash: IqQIYIXvTyFQj8CHXxM4jEkXrbPzNoOwjyjK3AjlLts=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:3b:e5:8e:83:27:19:90:04:b0:33:49:69:cc:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=064c1a986c5933a3b91084e8a3ff08066d398e19 Validity Not Before: Feb 9 16:00:42 2026 GMT Not After : Feb 10 16:00:42 2026 GMT Subject: CN=4282ab2788864c95994cc1be2b96efbccb169ab8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:b1:31:96:da:fa:fa:db:ec:a0:1c:8b:70:04: 2c:79:c8:af:65:4f:7e:39:0f:40:aa:36:81:4e:fc: 6a:2a:66:bf:ca:81:1b:b6:db:51:fd:1c:fd:9b:1d: 2d:e8:fb:7f:b6:9d:a8:81:bd:8c:ed:61:6f:3e:52: 23:c0:a1:57:34:50:f4:90:fa:f3:0d:1e:d5:bf:38: 71:be:db:5e:83:ec:8b:8f:be:be:c6:e1:11:7b:0e: ac:6b:c4:5c:76:63:df:4c:5b:f0:05:f4:ca:81:b8: 08:ae:01:44:39:17:37:e1:92:34:83:27:55:d2:16: cd:44:29:ca:d4:16:46:5f:3f:37:06:94:2c:ed:06: c5:8a:13:dd:21:60:9b:1f:1b:66:4b:97:c2:49:9d: d6:c2:1b:8a:57:10:26:55:22:e7:ca:4f:68:08:7d: 9f:d1:94:94:c1:d3:94:a8:08:0d:93:45:c3:14:f8: 33:1b:56:2c:46:66:fe:75:ec:d7:84:0b:ea:b9:ca: 75:3b:7b:0d:d1:71:29:82:3a:63:8b:7e:2f:4a:56: 25:2d:16:f9:62:d0:ff:c1:b4:38:03:b7:1e:7d:e5: 07:7a:e9:5b:ec:99:c2:44:76:d1:e4:38:58:a2:af: 2d:d3:34:e3:13:3f:0c:4e:1f:8a:c3:6d:cc:26:0d: ae:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:82:AB:27:88:86:4C:95:99:4C:C1:BE:2B:96:EF:BC:CB:16:9A:B8 X509v3 Authority Key Identifier: keyid:06:4C:1A:98:6C:59:33:A3:B9:10:84:E8:A3:FF:08:06:6D:39:8E:19 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BkwamGxZM6O5EIToo_8IBm05jhk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/f62552-14f1-499c-af78-7f6a655fd788/1/BkwamGxZM6O5EIToo_8IBm05jhk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:24:f7:de:84:c2:8b:46:8e:8a:cd:2c:51:33:7b:de:d9:9e: e6:9f:22:97:d5:c8:5f:02:1c:ea:3c:b3:8f:1f:de:98:3d:5a: 6b:95:a5:89:6d:73:dd:0f:22:36:5a:bb:f4:fb:f8:a2:f3:49: 5c:44:76:24:17:85:4b:f4:31:72:2d:55:f3:ff:d7:44:1d:17: dc:05:ce:7a:ef:01:42:23:6d:a2:c5:9e:4a:c5:c8:a3:6c:0c: c4:47:af:11:e7:bc:77:29:5b:93:8d:a1:ee:db:90:d7:7b:92: 16:bb:5c:09:5d:12:22:e1:4d:a6:ab:35:91:bf:e1:01:40:8e: 81:7b:ec:dc:34:b2:ac:f7:ca:83:41:d5:16:df:0f:c8:33:23: 58:87:f2:5f:cd:be:1e:4f:26:41:76:f1:0d:f1:af:e6:f4:c9: 7b:3c:3b:e4:d5:14:5f:c3:73:4e:2e:49:96:0a:8c:45:1b:a4: a1:f2:d2:7b:fa:a5:a5:d9:b5:75:2f:e2:57:d9:5f:8d:dd:aa: 25:46:96:22:64:08:db:3e:7a:26:a9:55:b6:c9:81:cb:37:5b: 8a:b6:8f:6c:02:a1:ae:8b:81:0d:ee:ce:f1:bc:18:7e:18:5b: ef:45:7d:93:f6:37:c7:b2:6b:84:b7:bc:6d:1d:37:25:de:59: 44:cc:a4:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjvljoMnGZAEsDNJacwMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NGMxYTk4NmM1OTMzYTNiOTEwODRlOGEzZmYwODA2NmQz OThlMTkwHhcNMjYwMjA5MTYwMDQyWhcNMjYwMjEwMTYwMDQyWjAzMTEwLwYDVQQD Eyg0MjgyYWIyNzg4ODY0Yzk1OTk0Y2MxYmUyYjk2ZWZiY2NiMTY5YWI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqLExltr6+tvsoByLcAQsecivZU9+ OQ9AqjaBTvxqKma/yoEbtttR/Rz9mx0t6Pt/tp2ogb2M7WFvPlIjwKFXNFD0kPrz DR7Vvzhxvtteg+yLj76+xuERew6sa8RcdmPfTFvwBfTKgbgIrgFEORc34ZI0gydV 0hbNRCnK1BZGXz83BpQs7QbFihPdIWCbHxtmS5fCSZ3WwhuKVxAmVSLnyk9oCH2f 0ZSUwdOUqAgNk0XDFPgzG1YsRmb+dezXhAvqucp1O3sN0XEpgjpji34vSlYlLRb5 YtD/wbQ4A7cefeUHeulb7JnCRHbR5DhYoq8t0zTjEz8MTh+Kw23MJg2uhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEKCqyeIhkyVmUzBviuW77zLFpq4MB8GA1UdIwQY MBaAFAZMGphsWTOjuRCE6KP/CAZtOY4ZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgt N2Y2YTY1NWZkNzg4LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kNi9mNjI1NTItMTRmMS00OTljLWFmNzgtN2Y2YTY1NWZkNzg4 LzEvQmt3YW1HeFpNNk81RUlUb29fOElCbTA1amhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfyT33oTC i0aOis0sUTN73tme5p8il9XIXwIc6jyzjx/emD1aa5WliW1z3Q8iNlq79Pv4ovNJ XER2JBeFS/Qxci1V8//XRB0X3AXOeu8BQiNtosWeSsXIo2wMxEevEee8dylbk42h 7tuQ13uSFrtcCV0SIuFNpqs1kb/hAUCOgXvs3DSyrPfKg0HVFt8PyDMjWIfyX82+ Hk8mQXbxDfGv5vTJezw75NUUX8NzTi5JlgqMRRukofLSe/qlpdm1dS/iV9lfjd2q JUaWImQI2z56JqlVtsmByzdbiraPbAKhrouBDe7O8bwYfhhb70V9k/Y3x7JrhLe8 bR03Jd5ZRMykdA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:35 2026 by rpki-client