This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft File: bZOet0q7zSInwhkqoqN-bcuJjlM.mft (raw, json) Hash identifier: hnd7u229nWpJJk+Z+x91SHKA7z8IqGUvVWKRnbRyk/E= Subject key identifier: B0:E7:98:39:E3:6C:6C:B9:0C:02:04:3C:0A:FE:2F:0D:6A:AD:44:E3 Authority key identifier: 6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53 Certificate issuer: /CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53 Certificate serial: 019C427D37295B2C63D946986CF64898A46C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 13:00:28 +0000 Manifest this update: Mon 09 Feb 2026 13:00:28 +0000 Manifest next update: Tue 10 Feb 2026 13:00:28 +0000 Files and hashes: 1: bZOet0q7zSInwhkqoqN-bcuJjlM.crl (hash: 48nZTnB9aO/b+dG0MxHjkr3fgZXNi9SZkUEdoUl49Us=) 2: rLpRZvFN9tLJOZKsRQ2iN0bOTkA.roa (hash: 7Y/pwxfKMpnXy8fpQNc1oxHBEDERRxAILiQLxs4GnLU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:37:29:5b:2c:63:d9:46:98:6c:f6:48:98:a4:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d939eb74abbcd2227c2192aa2a37e6dcb898e53 Validity Not Before: Feb 9 13:00:28 2026 GMT Not After : Feb 10 13:00:28 2026 GMT Subject: CN=b0e79839e36c6cb90c02043c0afe2f0d6aad44e3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:0e:00:58:04:f4:d7:52:5c:57:e0:80:c1:72: 35:83:c4:b3:bb:9d:78:1a:0f:93:6e:e5:43:5c:cc: a3:5f:21:a2:97:e1:f1:29:71:72:c8:57:86:f5:78: 4a:54:38:2d:98:88:e4:ae:77:fd:bb:58:a1:ce:1f: d5:64:0d:ab:1c:09:1d:5d:6b:19:e6:2c:95:23:b5: 12:6e:57:9c:be:56:44:72:9f:58:cf:6d:9e:e1:10: 15:09:b0:a1:a1:22:7a:d8:92:20:b5:91:82:42:53: 39:ae:73:f0:82:ca:1e:2d:13:21:4f:6b:ac:c1:82: cf:f6:92:45:07:6e:9a:4d:eb:09:48:0e:5b:59:64: 1c:3a:84:95:12:ca:45:52:fb:5d:30:17:3a:7d:41: 52:ca:e8:22:73:49:de:74:af:a3:4e:bf:32:93:8e: c2:75:4d:72:ce:4f:44:9b:f8:2b:00:d2:18:57:88: b7:57:e9:38:2f:fa:f3:75:53:67:ad:4c:59:14:33: c3:ea:ad:79:13:53:b9:1c:18:f4:03:ab:45:09:45: f0:75:06:89:ed:b8:51:55:dc:c4:aa:03:f3:3e:96: 9d:58:60:a9:34:64:82:6b:a0:2b:9a:ef:93:09:c2: 9b:58:3e:db:75:a2:93:5b:ae:4c:69:6e:22:03:f1: 57:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:E7:98:39:E3:6C:6C:B9:0C:02:04:3C:0A:FE:2F:0D:6A:AD:44:E3 X509v3 Authority Key Identifier: keyid:6D:93:9E:B7:4A:BB:CD:22:27:C2:19:2A:A2:A3:7E:6D:CB:89:8E:53 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bZOet0q7zSInwhkqoqN-bcuJjlM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/ffc3c6-f64f-4090-8292-e95e2d3d23e0/1/bZOet0q7zSInwhkqoqN-bcuJjlM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:d1:7c:2d:77:7b:94:f1:aa:25:70:23:1e:98:35:61:5d:89: f2:d7:5f:62:11:b0:13:ca:d9:15:93:25:7a:d7:de:92:05:95: f1:b9:9f:28:7f:cb:40:a2:25:ee:d4:fb:c8:30:7c:a1:bd:e1: 1b:8d:44:55:3e:72:4c:0f:fe:26:6a:26:11:98:c9:af:0e:57: 69:b6:34:d1:5d:7a:a3:a1:cb:60:01:a7:01:21:cc:70:32:d2: af:46:de:03:92:95:04:bd:29:db:25:ad:dc:53:a8:80:34:03: df:89:5c:e7:73:f6:f7:ea:93:29:11:9c:bb:ba:03:13:06:49: 5b:49:77:39:85:f7:e2:eb:83:f7:33:c0:bd:1b:29:e1:70:08: c3:7b:3e:70:a2:62:2d:28:3c:81:36:e4:a9:0c:f1:a9:34:8d: 90:5d:19:5b:cc:77:b5:2e:38:99:75:59:cf:b0:40:bc:14:5c: f5:0f:7c:3c:e4:2a:95:b7:51:85:55:c2:40:e4:55:c9:b9:02: 9b:f5:6b:38:33:67:15:62:62:61:e0:6b:78:f7:75:5a:d8:73: c5:4f:ca:cc:f5:af:0f:a5:2e:ae:7d:fd:ee:d4:3e:a2:5c:7b: f1:a6:82:da:4b:ab:a3:68:db:dd:a0:18:5e:22:01:00:9b:11: ed:f7:23:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfTcpWyxj2UaYbPZImKRsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkOTM5ZWI3NGFiYmNkMjIyN2MyMTkyYWEyYTM3ZTZkY2I4 OThlNTMwHhcNMjYwMjA5MTMwMDI4WhcNMjYwMjEwMTMwMDI4WjAzMTEwLwYDVQQD EyhiMGU3OTgzOWUzNmM2Y2I5MGMwMjA0M2MwYWZlMmYwZDZhYWQ0NGUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2g4AWAT011JcV+CAwXI1g8Szu514 Gg+TbuVDXMyjXyGil+HxKXFyyFeG9XhKVDgtmIjkrnf9u1ihzh/VZA2rHAkdXWsZ 5iyVI7USblecvlZEcp9Yz22e4RAVCbChoSJ62JIgtZGCQlM5rnPwgsoeLRMhT2us wYLP9pJFB26aTesJSA5bWWQcOoSVEspFUvtdMBc6fUFSyugic0nedK+jTr8yk47C dU1yzk9Em/grANIYV4i3V+k4L/rzdVNnrUxZFDPD6q15E1O5HBj0A6tFCUXwdQaJ 7bhRVdzEqgPzPpadWGCpNGSCa6Armu+TCcKbWD7bdaKTW65MaW4iA/FXIwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLDnmDnjbGy5DAIEPAr+Lw1qrUTjMB8GA1UdIwQY MBaAFG2TnrdKu80iJ8IZKqKjfm3LiY5TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mOC9mZmMzYzYtZjY0Zi00MDkwLTgyOTIt ZTk1ZTJkM2QyM2UwLzEvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mOC9mZmMzYzYtZjY0Zi00MDkwLTgyOTItZTk1ZTJkM2QyM2Uw LzEvYlpPZXQwcTd6U0lud2hrcW9xTi1iY3VKamxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARNF8LXd7 lPGqJXAjHpg1YV2J8tdfYhGwE8rZFZMletfekgWV8bmfKH/LQKIl7tT7yDB8ob3h G41EVT5yTA/+JmomEZjJrw5XabY00V16o6HLYAGnASHMcDLSr0beA5KVBL0p2yWt 3FOogDQD34lc53P29+qTKRGcu7oDEwZJW0l3OYX34uuD9zPAvRsp4XAIw3s+cKJi LSg8gTbkqQzxqTSNkF0ZW8x3tS44mXVZz7BAvBRc9Q98POQqlbdRhVXCQORVybkC m/VrODNnFWJiYeBrePd1WthzxU/KzPWvD6Uurn397tQ+olx78aaC2kuro2jb3aAY XiIBAJsR7fcj0g== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:33 2026 by rpki-client