This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft File: bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft (raw, json) Hash identifier: eEF72U1jqfNuRlNwqSPZ5ziRqZFFiD/gAQ6kNDfnz0o= Subject key identifier: 9A:4E:E1:61:75:17:4E:9F:5B:15:80:1D:DE:30:C3:69:69:82:E2:0B Authority key identifier: 6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C Certificate issuer: /CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c Certificate serial: 019C4322325110A55DEBA7AA9400216A5150 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft Manifest number: 062F Signing time: Mon 09 Feb 2026 16:00:40 +0000 Manifest this update: Mon 09 Feb 2026 16:00:40 +0000 Manifest next update: Tue 10 Feb 2026 16:00:40 +0000 Files and hashes: 1: bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl (hash: 45yZpQqk2U0eUlE1wGF25cnY+d43/UmH9T0N24Gdsb8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:32:51:10:a5:5d:eb:a7:aa:94:00:21:6a:51:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6c70d6eec2b5605f8b1be6ce84395f246c42df1c Validity Not Before: Feb 9 16:00:40 2026 GMT Not After : Feb 10 16:00:40 2026 GMT Subject: CN=9a4ee16175174e9f5b15801dde30c3696982e20b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:93:ea:f8:0c:58:54:c2:d1:bf:4e:62:7d:26: d9:1e:26:c4:c3:84:40:ec:0f:7a:50:1c:d2:91:cb: 7c:10:03:dc:e3:78:40:eb:73:81:a5:20:d5:81:17: b1:5a:42:75:67:28:f5:76:0a:c6:b5:35:7c:0c:ab: 32:0e:8b:7f:26:e4:0b:ad:a6:bf:43:a8:47:91:e8: 10:70:f5:f8:a4:fe:7d:b4:24:3d:17:0b:57:de:84: 16:79:55:3e:14:91:25:19:28:3e:35:b5:df:49:74: 4e:8c:6f:4f:06:62:89:5b:79:da:6f:e5:c4:3c:0b: 25:a4:7a:24:5d:01:8c:44:43:b5:27:5d:f5:6b:44: 93:65:95:23:1a:0e:0a:bc:d0:19:a0:1a:2e:b5:a5: 97:e6:fd:4e:b4:60:b9:65:01:d6:c1:57:c8:54:69: 03:ce:35:a1:2c:b5:3a:dd:b9:4a:d5:00:95:b3:a0: ea:ec:5a:3a:5d:db:66:c9:d3:d4:e7:21:f4:99:1c: fa:6f:08:e9:a7:73:a1:2d:e2:6b:f5:b1:8f:0c:c6: c6:54:7b:d0:5f:e8:61:d9:43:d0:00:fc:11:8f:83: 5e:56:ce:ac:76:80:ee:b4:a3:ba:1f:6f:9e:cd:70: d0:95:39:3a:68:11:7c:05:9d:2a:b7:79:a5:a6:33: 38:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:4E:E1:61:75:17:4E:9F:5B:15:80:1D:DE:30:C3:69:69:82:E2:0B X509v3 Authority Key Identifier: keyid:6C:70:D6:EE:C2:B5:60:5F:8B:1B:E6:CE:84:39:5F:24:6C:42:DF:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bHDW7sK1YF-LG-bOhDlfJGxC3xw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/119c70-3950-4636-8395-2fc486015564/1/bHDW7sK1YF-LG-bOhDlfJGxC3xw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:8d:2d:bd:9d:9c:2c:74:9a:73:49:b2:e0:c3:6b:56:35:a1: 98:dd:0e:cf:11:57:b0:e3:4c:e8:b4:8f:cf:ca:5f:9d:f3:2a: be:50:1c:ab:7d:be:7d:dd:7e:83:52:dd:25:df:11:50:dd:b5: 08:1d:f2:74:3d:95:0e:d1:d3:76:3f:e6:7e:29:0c:e0:31:4e: 1b:19:36:98:da:1d:6b:ce:f2:1d:ed:cf:37:22:a8:74:c3:28: 89:bd:a4:03:4c:c0:74:e9:bd:e5:fc:1e:cd:af:42:0d:42:8b: 12:9d:40:50:91:e3:7e:23:59:03:9e:df:49:40:53:bf:2a:47: a8:58:fa:c3:77:da:22:0b:e9:67:c2:fc:45:08:6c:39:fc:9e: 20:00:36:27:8e:c2:70:51:71:02:cd:7e:d7:df:53:83:76:44: 12:28:d5:c3:2e:fd:98:14:de:90:20:72:ab:06:08:63:ef:59: 71:cf:9e:78:fc:a6:20:24:5e:d0:63:bc:6d:88:96:82:c4:ef: 1b:7f:f4:ed:b1:6b:23:94:74:6b:6d:4f:54:d1:c7:ff:c6:2c: f6:cc:47:1a:75:e4:54:8c:2e:88:1f:01:8f:fe:d0:59:39:da: 95:a1:2a:68:e1:94:39:97:97:0f:35:42:11:d7:94:d5:3c:26: 13:f6:ff:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjJREKVd66eqlAAhalFQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjNzBkNmVlYzJiNTYwNWY4YjFiZTZjZTg0Mzk1ZjI0NmM0 MmRmMWMwHhcNMjYwMjA5MTYwMDQwWhcNMjYwMjEwMTYwMDQwWjAzMTEwLwYDVQQD Eyg5YTRlZTE2MTc1MTc0ZTlmNWIxNTgwMWRkZTMwYzM2OTY5ODJlMjBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw5Pq+AxYVMLRv05ifSbZHibEw4RA 7A96UBzSkct8EAPc43hA63OBpSDVgRexWkJ1Zyj1dgrGtTV8DKsyDot/JuQLraa/ Q6hHkegQcPX4pP59tCQ9FwtX3oQWeVU+FJElGSg+NbXfSXROjG9PBmKJW3nab+XE PAslpHokXQGMREO1J131a0STZZUjGg4KvNAZoBoutaWX5v1OtGC5ZQHWwVfIVGkD zjWhLLU63blK1QCVs6Dq7Fo6XdtmydPU5yH0mRz6bwjpp3OhLeJr9bGPDMbGVHvQ X+hh2UPQAPwRj4NeVs6sdoDutKO6H2+ezXDQlTk6aBF8BZ0qt3mlpjM4JQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJpO4WF1F06fWxWAHd4ww2lpguILMB8GA1UdIwQY MBaAFGxw1u7CtWBfixvmzoQ5XyRsQt8cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYkhEVzdzSzFZRi1MRy1iT2hEbGZKR3hDM3h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi8xMTljNzAtMzk1MC00NjM2LTgzOTUt MmZjNDg2MDE1NTY0LzEvYkhEVzdzSzFZRi1MRy1iT2hEbGZKR3hDM3h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi8xMTljNzAtMzk1MC00NjM2LTgzOTUtMmZjNDg2MDE1NTY0 LzEvYkhEVzdzSzFZRi1MRy1iT2hEbGZKR3hDM3h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQI0tvZ2c LHSac0my4MNrVjWhmN0OzxFXsONM6LSPz8pfnfMqvlAcq32+fd1+g1LdJd8RUN21 CB3ydD2VDtHTdj/mfikM4DFOGxk2mNoda87yHe3PNyKodMMoib2kA0zAdOm95fwe za9CDUKLEp1AUJHjfiNZA57fSUBTvypHqFj6w3faIgvpZ8L8RQhsOfyeIAA2J47C cFFxAs1+199Tg3ZEEijVwy79mBTekCByqwYIY+9Zcc+eePymICRe0GO8bYiWgsTv G3/07bFrI5R0a21PVNHH/8Ys9sxHGnXkVIwuiB8Bj/7QWTnalaEqaOGUOZeXDzVC EdeU1TwmE/b/iw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:10:21 2026 by rpki-client