This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft File: bxS5AO_2EKQYf2-9ReO4V9CJagA.mft (raw, json) Hash identifier: z0Gqbw0JKYoPLVrewvTsAr8Edc//xXIJ6OxKgNVAGEI= Subject key identifier: 73:DA:FE:29:C2:FE:E1:93:82:E6:82:AD:53:11:86:20:11:DD:96:45 Authority key identifier: 6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00 Certificate issuer: /CN=6f14b900eff610a4187f6fbd45e3b857d0896a00 Certificate serial: 019C438FDC31EED4F58C86A4B2F2641DA63D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft Manifest number: 13E3 Signing time: Mon 09 Feb 2026 18:00:27 +0000 Manifest this update: Mon 09 Feb 2026 18:00:27 +0000 Manifest next update: Tue 10 Feb 2026 18:00:27 +0000 Files and hashes: 1: bxS5AO_2EKQYf2-9ReO4V9CJagA.crl (hash: fRnvnF07fW5uoJNpkI9WDerZognJRom3sN9Zzlei8Eo=) 2: gQ9G1wyw8P68T-YoeRrNExRIJ54.roa (hash: U225Ret2JuGydyVsYjJv8x78fpJD2cYEwUxTjEVRMGY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:dc:31:ee:d4:f5:8c:86:a4:b2:f2:64:1d:a6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6f14b900eff610a4187f6fbd45e3b857d0896a00 Validity Not Before: Feb 9 18:00:27 2026 GMT Not After : Feb 10 18:00:27 2026 GMT Subject: CN=73dafe29c2fee19382e682ad5311862011dd9645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:97:16:a9:34:01:c8:a1:32:88:f0:1a:f9:bd: d9:ad:73:48:d7:3f:d4:a6:d7:6f:99:d6:2f:73:de: ef:9f:47:49:a1:a8:89:d7:bd:7e:dc:f5:a1:b1:4f: 62:11:8e:a1:45:88:75:b8:e3:6a:bb:35:a4:38:6d: a7:f5:b3:c6:8d:63:64:5b:c1:cd:cf:38:e1:b8:7e: 89:f2:4a:52:31:6f:7e:02:f8:1e:fc:50:26:9b:44: b9:89:19:f9:4d:f0:a5:da:9c:c8:9f:8a:2a:56:f6: 83:73:b2:ec:34:68:a8:c8:54:43:00:33:0d:95:fc: 14:cc:fc:6d:2e:59:84:a7:6b:19:44:49:82:a4:2c: 34:9a:65:27:33:47:8d:4d:f0:cc:0d:4e:53:4f:f5: 10:85:10:69:09:2f:cb:3a:c6:31:c2:03:c5:81:ac: 15:c7:38:9a:54:92:3d:11:60:64:7b:4f:2e:36:fc: d1:49:5c:2d:5e:b7:dd:15:92:e4:0f:fb:c8:88:33: de:28:ed:56:64:cb:df:19:cd:de:ae:38:26:ea:1a: 68:eb:80:3d:b3:40:85:ec:28:cf:74:87:00:d9:cd: 7d:d2:bb:50:39:ff:d6:eb:28:ac:c7:ac:7d:51:97: 23:32:64:f1:45:c7:b2:2b:e0:c7:e7:cf:da:16:49: 00:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:DA:FE:29:C2:FE:E1:93:82:E6:82:AD:53:11:86:20:11:DD:96:45 X509v3 Authority Key Identifier: keyid:6F:14:B9:00:EF:F6:10:A4:18:7F:6F:BD:45:E3:B8:57:D0:89:6A:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bxS5AO_2EKQYf2-9ReO4V9CJagA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/7b1826-a6af-4704-8f85-5181a2f0d197/1/bxS5AO_2EKQYf2-9ReO4V9CJagA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:65:03:70:b3:0d:00:61:5b:31:9c:62:d7:d7:df:64:a7:9d: 5b:1a:53:8b:99:1f:c4:34:e4:e5:e7:ea:3b:70:f5:9c:4a:f9: 27:17:04:78:77:15:3e:fb:eb:4f:5a:20:87:2b:96:2c:c0:32: 64:42:eb:07:91:47:b6:d3:06:74:71:9b:3d:8f:18:d9:21:cb: de:9a:06:67:81:04:19:17:8a:01:e5:11:3c:0b:80:62:61:dc: 65:f1:92:b1:21:f2:27:cf:b2:c6:b5:ed:91:cf:fe:7e:b1:40: a2:7f:82:e1:30:09:12:62:10:24:c6:e1:18:fc:3b:c2:d9:48: 79:26:37:d3:4b:78:86:54:45:28:26:b4:66:7b:2f:67:4f:b7: 5c:6b:a0:56:e4:8f:c3:3d:b5:96:54:a7:e9:19:85:59:fc:0e: 26:66:37:c3:9b:30:63:5e:04:94:db:bd:e8:ac:39:4e:0c:96: ad:1a:85:ef:75:68:c2:18:a4:75:45:7d:ac:37:02:f4:f6:c8: a0:f1:1b:02:c7:29:51:db:bd:9f:28:03:87:60:36:10:4f:8c: 38:0b:51:4e:ec:46:67:c3:bf:20:db:38:b3:5a:41:ae:2a:e4: 28:87:74:db:43:07:52:82:73:65:90:fe:11:dd:89:45:1d:c7: cc:23:4a:58 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9wx7tT1jIaksvJkHaY9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZmMTRiOTAwZWZmNjEwYTQxODdmNmZiZDQ1ZTNiODU3ZDA4 OTZhMDAwHhcNMjYwMjA5MTgwMDI3WhcNMjYwMjEwMTgwMDI3WjAzMTEwLwYDVQQD Eyg3M2RhZmUyOWMyZmVlMTkzODJlNjgyYWQ1MzExODYyMDExZGQ5NjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpcWqTQByKEyiPAa+b3ZrXNI1z/U ptdvmdYvc97vn0dJoaiJ171+3PWhsU9iEY6hRYh1uONquzWkOG2n9bPGjWNkW8HN zzjhuH6J8kpSMW9+Avge/FAmm0S5iRn5TfCl2pzIn4oqVvaDc7LsNGioyFRDADMN lfwUzPxtLlmEp2sZREmCpCw0mmUnM0eNTfDMDU5TT/UQhRBpCS/LOsYxwgPFgawV xziaVJI9EWBke08uNvzRSVwtXrfdFZLkD/vIiDPeKO1WZMvfGc3erjgm6hpo64A9 s0CF7CjPdIcA2c190rtQOf/W6yisx6x9UZcjMmTxRceyK+DH58/aFkkAfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHPa/inC/uGTguaCrVMRhiAR3ZZFMB8GA1UdIwQY MBaAFG8UuQDv9hCkGH9vvUXjuFfQiWoAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYnhTNUFPXzJFS1FZZjItOVJlTzRWOUNKYWdBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMS83YjE4MjYtYTZhZi00NzA0LThmODUt NTE4MWEyZjBkMTk3LzEvYnhTNUFPXzJFS1FZZjItOVJlTzRWOUNKYWdBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMS83YjE4MjYtYTZhZi00NzA0LThmODUtNTE4MWEyZjBkMTk3 LzEvYnhTNUFPXzJFS1FZZjItOVJlTzRWOUNKYWdBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkWUDcLMN AGFbMZxi19ffZKedWxpTi5kfxDTk5efqO3D1nEr5JxcEeHcVPvvrT1oghyuWLMAy ZELrB5FHttMGdHGbPY8Y2SHL3poGZ4EEGReKAeURPAuAYmHcZfGSsSHyJ8+yxrXt kc/+frFAon+C4TAJEmIQJMbhGPw7wtlIeSY300t4hlRFKCa0ZnsvZ0+3XGugVuSP wz21llSn6RmFWfwOJmY3w5swY14ElNu96Kw5TgyWrRqF73VowhikdUV9rDcC9PbI oPEbAscpUdu9nygDh2A2EE+MOAtRTuxGZ8O/INs4s1pBrirkKId020MHUoJzZZD+ Ed2JRR3HzCNKWA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:16 2026 by rpki-client