This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft File: bzOv1B6gEvsoA8cnRSPI7D8mExE.mft (raw, json) Hash identifier: adLpAQ9Pp31LIXmM6nTCfJs16GGWYeKWbnG+V/lYqvA= Subject key identifier: CF:44:D6:C2:87:62:59:D7:60:9B:32:02:14:56:5D:75:FC:1D:A9:A8 Authority key identifier: 6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11 Certificate issuer: /CN=6f33afd41ea012fb2803c7274523c8ec3f261311 Certificate serial: 019BFCC1480F88322DC7224DEE848AAE779B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft Manifest number: 17EC Signing time: Tue 27 Jan 2026 00:01:23 +0000 Manifest this update: Tue 27 Jan 2026 00:01:23 +0000 Manifest next update: Wed 28 Jan 2026 00:01:23 +0000 Files and hashes: 1: 6QL-slvQFdh5mvAbIdNlA4MoLfE.roa (hash: xCB6LBupsekAKglg6eVWd5d4GZfCpoZMakFZRmJ0HsM=) 2: bzOv1B6gEvsoA8cnRSPI7D8mExE.crl (hash: CG3G7bGYQHgeDFwJoYlsFtGrX17hChMLiGi9KPZIKeg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:c1:48:0f:88:32:2d:c7:22:4d:ee:84:8a:ae:77:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f33afd41ea012fb2803c7274523c8ec3f261311 Validity Not Before: Jan 27 00:01:23 2026 GMT Not After : Jan 28 00:01:23 2026 GMT Subject: CN=cf44d6c2876259d7609b320214565d75fc1da9a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:7c:19:7b:67:19:f6:43:20:48:f2:ed:96:71: 6d:c0:c8:33:50:ff:50:78:4f:35:78:18:88:89:ed: dc:16:46:1f:fd:95:7b:f9:a0:0b:8c:2b:ad:77:be: 42:86:5f:0b:bb:f3:46:1a:9a:64:5c:0f:1a:60:94: 4c:c4:10:25:f4:c5:39:a5:10:29:88:3f:6c:c7:db: 05:01:72:db:1a:9f:b2:a4:7e:ce:36:d5:77:8f:a8: 9b:20:2d:93:2c:1a:b0:d1:17:23:c4:93:c6:3a:a9: 15:cd:72:54:78:55:2e:b6:0c:f4:55:e3:f7:a4:24: a8:b0:d2:3b:1a:5b:f9:4e:60:96:32:00:c9:41:f2: 52:4b:d1:c5:31:9f:fd:c4:18:6c:39:8f:f3:0c:c2: fa:55:7d:cf:c3:71:6b:11:bc:fe:4f:57:15:24:e5: dd:a6:65:b8:c8:86:0d:ff:9a:87:68:d3:b2:e7:44: 73:0b:5d:3b:74:7d:04:d1:e3:f8:0a:a0:b1:0f:38: 38:8b:c4:09:7d:27:a5:f4:2d:a8:53:ad:f6:ec:20: bb:59:76:97:a3:ed:d8:af:0a:87:03:2f:50:df:04: b9:b2:f3:75:50:84:53:57:06:db:c7:cc:6b:6a:d5: 6c:fd:b5:97:4f:34:e7:49:47:2b:58:df:ae:af:f2: 18:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:44:D6:C2:87:62:59:D7:60:9B:32:02:14:56:5D:75:FC:1D:A9:A8 X509v3 Authority Key Identifier: keyid:6F:33:AF:D4:1E:A0:12:FB:28:03:C7:27:45:23:C8:EC:3F:26:13:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bzOv1B6gEvsoA8cnRSPI7D8mExE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/de/9eaf7f-ab00-42b2-9ce2-b3580994a3b1/1/bzOv1B6gEvsoA8cnRSPI7D8mExE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:8d:13:fb:4f:d6:17:00:e2:dc:d1:4a:e4:b1:97:27:5b:eb: 04:f5:09:88:09:51:63:0b:37:3f:7d:cf:e3:62:56:bb:fa:8e: 97:64:94:1b:8c:7e:af:3c:6f:92:78:aa:20:56:47:bd:a9:d3: 2a:5e:f0:36:17:ba:90:ca:28:37:6d:a5:b2:60:36:3c:a7:3d: 02:0b:6e:09:13:31:f1:96:79:80:b9:1e:c3:d5:b3:e2:97:c7: 96:33:b6:78:62:72:c3:7a:b0:04:70:5d:b3:ff:cf:35:78:c5: af:b1:89:f4:b7:a5:9c:f4:b4:58:18:e1:4e:f2:77:4b:74:8b: db:7a:1b:ca:da:94:c9:59:46:4f:0f:fa:6b:8e:94:7b:0e:23: 27:23:e7:2d:57:1d:23:d5:70:fa:1f:cb:15:e8:8e:3e:8e:f0: a1:8a:8c:71:03:e1:b4:4a:bf:17:1d:01:bb:69:0f:6f:41:ad: 09:71:3f:73:07:00:67:18:d1:c6:26:7c:0d:8b:a3:52:eb:27: 57:01:94:78:11:58:4d:09:fe:27:b0:21:d9:60:03:c1:3d:d0: 9f:0b:0a:77:53:0f:c5:2c:b6:6c:b3:56:7f:eb:3b:11:b6:fc: 21:c3:68:ec:d5:a3:83:9d:a7:ad:f9:4a:19:5f:ec:85:c1:61: 59:b3:58:22 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8wUgPiDItxyJN7oSKrnebMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMzNhZmQ0MWVhMDEyZmIyODAzYzcyNzQ1MjNjOGVjM2Yy NjEzMTEwHhcNMjYwMTI3MDAwMTIzWhcNMjYwMTI4MDAwMTIzWjAzMTEwLwYDVQQD EyhjZjQ0ZDZjMjg3NjI1OWQ3NjA5YjMyMDIxNDU2NWQ3NWZjMWRhOWE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3wZe2cZ9kMgSPLtlnFtwMgzUP9Q eE81eBiIie3cFkYf/ZV7+aALjCutd75Chl8Lu/NGGppkXA8aYJRMxBAl9MU5pRAp iD9sx9sFAXLbGp+ypH7ONtV3j6ibIC2TLBqw0RcjxJPGOqkVzXJUeFUutgz0VeP3 pCSosNI7Glv5TmCWMgDJQfJSS9HFMZ/9xBhsOY/zDML6VX3Pw3FrEbz+T1cVJOXd pmW4yIYN/5qHaNOy50RzC107dH0E0eP4CqCxDzg4i8QJfSel9C2oU6327CC7WXaX o+3YrwqHAy9Q3wS5svN1UIRTVwbbx8xratVs/bWXTzTnSUcrWN+ur/IYfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM9E1sKHYlnXYJsyAhRWXXX8HamoMB8GA1UdIwQY MBaAFG8zr9QeoBL7KAPHJ0UjyOw/JhMRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTIt YjM1ODA5OTRhM2IxLzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZS85ZWFmN2YtYWIwMC00MmIyLTljZTItYjM1ODA5OTRhM2Ix LzEvYnpPdjFCNmdFdnNvQThjblJTUEk3RDhtRXhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvI0T+0/W FwDi3NFK5LGXJ1vrBPUJiAlRYws3P33P42JWu/qOl2SUG4x+rzxvkniqIFZHvanT Kl7wNhe6kMooN22lsmA2PKc9AgtuCRMx8ZZ5gLkew9Wz4pfHljO2eGJyw3qwBHBd s//PNXjFr7GJ9LelnPS0WBjhTvJ3S3SL23obytqUyVlGTw/6a46Uew4jJyPnLVcd I9Vw+h/LFeiOPo7woYqMcQPhtEq/Fx0Bu2kPb0GtCXE/cwcAZxjRxiZ8DYujUusn VwGUeBFYTQn+J7Ah2WADwT3QnwsKd1MPxSy2bLNWf+s7Ebb8IcNo7NWjg52nrflK GV/shcFhWbNYIg== -----END CERTIFICATE-----Generated at Tue Jan 27 10:43:46 2026 by rpki-client