This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft File: bn-6EaMdOqkN48e7i1bTzQbmvnU.mft (raw, json) Hash identifier: l4RYLcTUKk4hhFLHwkGaBainDIQQkYKjrvyktfaDURg= Subject key identifier: 58:D3:F8:A5:A4:06:DF:84:B8:7A:F2:41:7F:B9:36:2F:0D:77:61:1A Authority key identifier: 6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75 Certificate issuer: /CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75 Certificate serial: 019C432205AB8F8E01B4A9FDAF92BD757E84 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft Manifest number: 17F6 Signing time: Mon 09 Feb 2026 16:00:28 +0000 Manifest this update: Mon 09 Feb 2026 16:00:28 +0000 Manifest next update: Tue 10 Feb 2026 16:00:28 +0000 Files and hashes: 1: bn-6EaMdOqkN48e7i1bTzQbmvnU.crl (hash: NG8HJe/WDvv3DpUVOCGTWVVsgG07RW32A3E8zBtHqag=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:05:ab:8f:8e:01:b4:a9:fd:af:92:bd:75:7e:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6e7fba11a31d3aa90de3c7bb8b56d3cd06e6be75 Validity Not Before: Feb 9 16:00:28 2026 GMT Not After : Feb 10 16:00:28 2026 GMT Subject: CN=58d3f8a5a406df84b87af2417fb9362f0d77611a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:0e:84:77:af:ff:16:f7:86:74:94:47:3d:32: 4c:67:77:d2:d3:21:e1:a0:39:1a:fc:43:8c:14:7b: b4:52:16:24:05:a6:3a:19:7d:23:a8:52:05:5a:ee: 75:7a:77:0c:83:68:f1:26:70:29:72:dc:45:d0:c2: 39:f8:25:2f:06:67:58:02:d2:f2:4e:5a:5e:55:b4: 91:ee:15:8e:ee:82:65:bb:06:a3:fc:78:36:d6:d6: c0:97:8b:0b:5d:0d:8c:53:e0:bf:a4:03:a7:dc:62: da:a4:df:d2:d1:00:48:1a:ca:7d:8c:58:76:6f:b5: d5:40:e0:ec:fb:28:cf:cd:0f:56:3c:a1:db:37:e8: 77:69:0a:d4:c1:bf:13:d4:46:a0:d4:d4:28:85:f1: 90:0b:db:45:af:35:05:2c:c2:61:75:f8:71:1c:c9: 6a:fc:81:38:c9:b7:00:2d:72:ac:3e:4e:b6:b8:93: b6:61:79:45:82:1b:d5:19:93:cc:d2:8c:f3:07:1b: 63:ca:00:55:88:9b:c4:96:19:4e:74:37:30:d7:7d: fe:20:54:7c:f7:60:8d:e9:60:e6:64:f2:61:05:2a: 0f:cd:be:a5:c2:27:8a:b4:44:5f:b5:56:eb:19:d3: 8e:7e:15:59:35:c3:94:c5:90:90:d3:59:12:81:26: b3:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:D3:F8:A5:A4:06:DF:84:B8:7A:F2:41:7F:B9:36:2F:0D:77:61:1A X509v3 Authority Key Identifier: keyid:6E:7F:BA:11:A3:1D:3A:A9:0D:E3:C7:BB:8B:56:D3:CD:06:E6:BE:75 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bn-6EaMdOqkN48e7i1bTzQbmvnU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/52ef7c-9a36-4362-8e7f-6394214a122c/1/bn-6EaMdOqkN48e7i1bTzQbmvnU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:02:bb:86:71:d5:02:94:09:ea:84:c2:8d:88:f2:4d:ec:60: 27:dc:ef:5e:27:1d:df:b9:34:af:d6:64:5a:56:8b:7b:f7:a4: 61:13:43:5f:f1:ff:3c:a4:b2:56:13:49:42:8a:c9:10:f3:60: dc:ce:fe:23:ee:ca:a4:3c:16:9c:c7:f4:15:35:82:ea:86:65: 36:9d:39:6b:a0:53:c5:99:8a:26:e7:08:d9:c9:b5:b7:7a:fb: 83:09:8e:6d:08:ff:22:f2:97:b0:2e:0e:ed:c3:b7:2b:4f:1f: 1c:90:f5:59:fc:a4:82:d2:f7:e9:84:af:70:58:71:30:d1:e3: c4:d8:a9:4b:59:b0:06:0d:11:c6:9a:59:5c:61:df:68:41:9d: 42:2b:98:b2:a9:7d:0e:2d:5c:f1:7a:1d:8d:d1:75:c3:50:f3: 56:00:3e:65:39:ec:ce:c2:a4:35:bc:8a:6c:46:f3:32:13:c1: f8:c6:ae:e7:5c:e2:c0:15:1f:88:70:43:b7:94:1b:67:20:5f: 53:5b:25:dc:a3:8e:d8:fb:b2:cf:f6:19:3b:50:0e:d1:b3:25: e2:d4:b4:6a:22:3a:7e:bb:f5:f6:33:e8:e2:1c:20:ce:ac:96: d5:b7:17:e3:f9:df:39:6d:86:75:d2:a3:5e:c1:8d:4d:cf:3f: 06:f8:21:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIgWrj44BtKn9r5K9dX6EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZlN2ZiYTExYTMxZDNhYTkwZGUzYzdiYjhiNTZkM2NkMDZl NmJlNzUwHhcNMjYwMjA5MTYwMDI4WhcNMjYwMjEwMTYwMDI4WjAzMTEwLwYDVQQD Eyg1OGQzZjhhNWE0MDZkZjg0Yjg3YWYyNDE3ZmI5MzYyZjBkNzc2MTFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsQ6Ed6//FveGdJRHPTJMZ3fS0yHh oDka/EOMFHu0UhYkBaY6GX0jqFIFWu51encMg2jxJnApctxF0MI5+CUvBmdYAtLy TlpeVbSR7hWO7oJluwaj/Hg21tbAl4sLXQ2MU+C/pAOn3GLapN/S0QBIGsp9jFh2 b7XVQODs+yjPzQ9WPKHbN+h3aQrUwb8T1Eag1NQohfGQC9tFrzUFLMJhdfhxHMlq /IE4ybcALXKsPk62uJO2YXlFghvVGZPM0ozzBxtjygBViJvElhlOdDcw133+IFR8 92CN6WDmZPJhBSoPzb6lwieKtERftVbrGdOOfhVZNcOUxZCQ01kSgSazQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFjT+KWkBt+EuHryQX+5Ni8Nd2EaMB8GA1UdIwQY MBaAFG5/uhGjHTqpDePHu4tW080G5r51MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi81MmVmN2MtOWEzNi00MzYyLThlN2Yt NjM5NDIxNGExMjJjLzEvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi81MmVmN2MtOWEzNi00MzYyLThlN2YtNjM5NDIxNGExMjJj LzEvYm4tNkVhTWRPcWtONDhlN2kxYlR6UWJtdm5VLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZAK7hnHV ApQJ6oTCjYjyTexgJ9zvXicd37k0r9ZkWlaLe/ekYRNDX/H/PKSyVhNJQorJEPNg 3M7+I+7KpDwWnMf0FTWC6oZlNp05a6BTxZmKJucI2cm1t3r7gwmObQj/IvKXsC4O 7cO3K08fHJD1WfykgtL36YSvcFhxMNHjxNipS1mwBg0RxppZXGHfaEGdQiuYsql9 Di1c8XodjdF1w1DzVgA+ZTnszsKkNbyKbEbzMhPB+Mau51ziwBUfiHBDt5QbZyBf U1sl3KOO2Puyz/YZO1AO0bMl4tS0aiI6frv19jPo4hwgzqyW1bcX4/nfOW2GddKj XsGNTc8/BvghQw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:01 2026 by rpki-client