This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft File: bIlKsevTD7N84imjdNPjE52QUY8.mft (raw, json) Hash identifier: zl3taHwnK+kP2HNf4TJL48ynaaYpL+8twamEi/Gdp7Q= Subject key identifier: 94:C3:2E:10:29:57:35:91:96:9F:B3:91:2C:7C:A1:9A:14:54:B7:9E Authority key identifier: 6C:89:4A:B1:EB:D3:0F:B3:7C:E2:29:A3:74:D3:E3:13:9D:90:51:8F Certificate issuer: /CN=6c894ab1ebd30fb37ce229a374d3e3139d90518f Certificate serial: 019C4322433E506BD03DBEBBD5BD3A20B158 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft Manifest number: 0850 Signing time: Mon 09 Feb 2026 16:00:44 +0000 Manifest this update: Mon 09 Feb 2026 16:00:44 +0000 Manifest next update: Tue 10 Feb 2026 16:00:44 +0000 Files and hashes: 1: HMK0XQoxdRxzLrSbOk3nRa3LDfU.roa (hash: ULrE37Ak3LEpHtIRIUxe40WhUc8sSXQeL2cSCTuAsyw=) 2: bIlKsevTD7N84imjdNPjE52QUY8.crl (hash: Ghtq3pXqrnfzkVSnf/jDe8Pqzy8+Kv5enBk2M1yaIKA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:43:3e:50:6b:d0:3d:be:bb:d5:bd:3a:20:b1:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c894ab1ebd30fb37ce229a374d3e3139d90518f Validity Not Before: Feb 9 16:00:44 2026 GMT Not After : Feb 10 16:00:44 2026 GMT Subject: CN=94c32e1029573591969fb3912c7ca19a1454b79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:66:32:04:88:6c:25:c5:94:2f:89:8b:a4:06: 5c:0a:49:19:dc:fb:0a:11:bb:b3:eb:26:26:b4:81: c6:16:85:9c:c1:46:bb:44:a1:24:8d:dd:2d:5e:90: 37:16:55:70:bf:90:90:7a:54:a9:f3:32:5b:24:4a: 8d:c9:68:53:5b:8d:2d:e3:17:df:b5:78:88:fd:f8: 15:f8:8c:a5:2b:b2:1e:e4:69:e5:7c:46:6b:97:52: 45:d6:a1:ee:e5:d0:12:02:e6:11:ae:83:81:d6:29: e1:eb:f8:f0:d5:c1:e2:8c:ee:fb:7d:16:dd:36:42: e5:9f:45:45:f3:f3:ea:cf:93:b5:a0:2d:ec:d3:d5: d3:4e:ce:1e:84:8f:b0:1f:1f:d8:7b:ab:bf:50:76: 32:f5:b2:99:97:71:31:c8:1f:5f:c3:93:59:53:91: fc:d3:95:6b:66:19:92:f4:c7:f6:39:47:58:27:ec: 96:ab:f8:96:08:d4:2e:28:f8:33:a5:e5:8a:53:0d: d5:9c:69:30:6c:c7:54:e6:07:04:18:5f:84:bb:79: 4b:cb:53:4a:7f:c1:f1:5e:fc:09:4b:c2:33:88:d7: 06:fa:7b:2f:a7:f9:a6:5e:8a:66:06:3c:69:a9:48: 31:5d:93:8b:7d:42:d2:af:4b:30:5f:0b:ed:08:28: 0a:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:C3:2E:10:29:57:35:91:96:9F:B3:91:2C:7C:A1:9A:14:54:B7:9E X509v3 Authority Key Identifier: keyid:6C:89:4A:B1:EB:D3:0F:B3:7C:E2:29:A3:74:D3:E3:13:9D:90:51:8F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bIlKsevTD7N84imjdNPjE52QUY8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/5faf76-1bc2-4721-9498-a1ae59e16873/1/bIlKsevTD7N84imjdNPjE52QUY8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:f1:76:4f:b2:39:44:6d:4e:a9:6f:12:9c:c7:36:2a:48:b0: d1:d3:76:40:51:b4:7d:8d:8b:73:97:17:fe:b3:af:fe:68:63: 66:7c:18:c9:ea:eb:c8:34:ef:8a:73:52:10:84:e6:69:51:99: 2f:48:00:e2:27:2b:b1:f4:9e:26:e3:84:31:fd:ed:f9:19:e8: b5:02:1b:51:21:75:23:47:15:14:91:59:57:89:39:7a:33:91: 54:e9:cd:7b:7e:0d:16:b2:12:12:9d:73:f1:a2:4d:27:be:b8: eb:ac:4c:fe:a6:b5:01:ab:96:29:d2:2f:ae:86:5a:fe:30:93: 55:bc:a3:6a:35:32:39:a4:f1:80:00:33:89:ad:f1:56:57:84: 46:f8:2f:47:3d:20:01:9b:74:d0:79:35:20:52:5d:3e:5b:40: 98:3d:4f:48:0a:b9:0b:28:d6:8f:90:69:96:1d:0a:27:3d:93: b3:d1:44:5b:d5:af:ce:73:85:fc:e4:a4:4c:70:3c:94:24:9f: e3:5c:80:1f:8b:b7:19:39:0f:04:ce:20:6b:e9:f0:8b:8e:97: 6f:83:f3:3e:b7:c0:9c:4e:9a:26:16:e5:38:a5:32:f0:67:2b: 94:70:6a:b5:83:bb:22:67:2c:7b:f8:5f:fc:09:6c:62:a4:ee: 26:84:ff:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkM+UGvQPb671b06ILFYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjODk0YWIxZWJkMzBmYjM3Y2UyMjlhMzc0ZDNlMzEzOWQ5 MDUxOGYwHhcNMjYwMjA5MTYwMDQ0WhcNMjYwMjEwMTYwMDQ0WjAzMTEwLwYDVQQD Eyg5NGMzMmUxMDI5NTczNTkxOTY5ZmIzOTEyYzdjYTE5YTE0NTRiNzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkmYyBIhsJcWUL4mLpAZcCkkZ3PsK Ebuz6yYmtIHGFoWcwUa7RKEkjd0tXpA3FlVwv5CQelSp8zJbJEqNyWhTW40t4xff tXiI/fgV+IylK7Ie5GnlfEZrl1JF1qHu5dASAuYRroOB1inh6/jw1cHijO77fRbd NkLln0VF8/Pqz5O1oC3s09XTTs4ehI+wHx/Ye6u/UHYy9bKZl3ExyB9fw5NZU5H8 05VrZhmS9Mf2OUdYJ+yWq/iWCNQuKPgzpeWKUw3VnGkwbMdU5gcEGF+Eu3lLy1NK f8HxXvwJS8IziNcG+nsvp/mmXopmBjxpqUgxXZOLfULSr0swXwvtCCgKwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJTDLhApVzWRlp+zkSx8oZoUVLeeMB8GA1UdIwQY MBaAFGyJSrHr0w+zfOIpo3TT4xOdkFGPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYklsS3NldlREN044NGltamROUGpFNTJRVVk4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS81ZmFmNzYtMWJjMi00NzIxLTk0OTgt YTFhZTU5ZTE2ODczLzEvYklsS3NldlREN044NGltamROUGpFNTJRVVk4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS81ZmFmNzYtMWJjMi00NzIxLTk0OTgtYTFhZTU5ZTE2ODcz LzEvYklsS3NldlREN044NGltamROUGpFNTJRVVk4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcvF2T7I5 RG1OqW8SnMc2Kkiw0dN2QFG0fY2Lc5cX/rOv/mhjZnwYyerryDTvinNSEITmaVGZ L0gA4icrsfSeJuOEMf3t+RnotQIbUSF1I0cVFJFZV4k5ejORVOnNe34NFrISEp1z 8aJNJ76466xM/qa1AauWKdIvroZa/jCTVbyjajUyOaTxgAAzia3xVleERvgvRz0g AZt00Hk1IFJdPltAmD1PSAq5CyjWj5Bplh0KJz2Ts9FEW9WvznOF/OSkTHA8lCSf 41yAH4u3GTkPBM4ga+nwi46Xb4PzPrfAnE6aJhblOKUy8GcrlHBqtYO7Imcse/hf /AlsYqTuJoT/wg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:26 2026 by rpki-client