This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft File: bQmekI59iHniTR7eCdgSz0at4sw.mft (raw, json) Hash identifier: s5XJZKOg3JoHnEbyqyuQhbYFWbIW1Wn/Nr/PT9lHSsM= Subject key identifier: AA:C4:F7:BC:AE:34:41:BE:FD:0E:79:11:AA:05:5D:A0:B5:59:B1:3B Authority key identifier: 6D:09:9E:90:8E:7D:88:79:E2:4D:1E:DE:09:D8:12:CF:46:AD:E2:CC Certificate issuer: /CN=6d099e908e7d8879e24d1ede09d812cf46ade2cc Certificate serial: 019C439090464F62DBFA613E54D209BC5903 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft Manifest number: 070C Signing time: Mon 09 Feb 2026 18:01:13 +0000 Manifest this update: Mon 09 Feb 2026 18:01:13 +0000 Manifest next update: Tue 10 Feb 2026 18:01:13 +0000 Files and hashes: 1: bQmekI59iHniTR7eCdgSz0at4sw.crl (hash: v1oVZGorpXSERizFFyHfxtfkm1UDpdtiW4ibNCADKbc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.crl rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:90:46:4f:62:db:fa:61:3e:54:d2:09:bc:59:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6d099e908e7d8879e24d1ede09d812cf46ade2cc Validity Not Before: Feb 9 18:01:13 2026 GMT Not After : Feb 10 18:01:13 2026 GMT Subject: CN=aac4f7bcae3441befd0e7911aa055da0b559b13b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:90:6f:be:a3:3b:d1:a6:00:f5:6c:ae:6b:d9: 52:79:b2:f7:d8:f3:d9:3d:fc:24:91:37:97:4a:4a: a5:0f:90:78:ff:e7:e5:78:35:b2:ca:8f:7b:e6:49: f4:2c:b7:27:eb:97:32:11:f3:f2:f4:da:a7:9d:63: 14:57:08:70:a0:c5:ed:77:ae:ae:74:a3:4e:45:18: 64:db:c8:2b:a2:0f:88:70:e5:7f:71:a2:6f:c0:f9: b8:e8:27:f4:88:1a:f1:0f:fd:06:80:85:c2:bf:70: 7f:2b:29:2e:a1:89:6e:1d:56:3a:f1:af:1a:12:dc: 01:f9:a3:18:82:8b:87:fc:47:05:a6:23:18:55:87: 5d:ca:62:29:e2:73:ab:76:1a:c2:04:d7:a7:c0:6a: 86:07:59:a5:0c:9c:76:a3:3c:08:d0:d6:b0:73:11: a9:41:ce:01:7d:a3:71:25:e6:70:cc:47:0b:8e:64: 43:94:91:c4:1e:78:6a:dc:06:2b:36:3d:06:24:91: f1:17:0e:99:67:fb:4c:1f:36:f2:37:59:75:da:8f: 0c:eb:bb:07:e9:d3:d6:a3:a0:9d:00:e2:94:63:c3: cd:43:de:11:2a:fc:b3:38:b3:b0:68:74:6e:51:d6: 53:54:12:e5:8a:af:46:35:45:dc:76:57:c8:c3:33: cd:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C4:F7:BC:AE:34:41:BE:FD:0E:79:11:AA:05:5D:A0:B5:59:B1:3B X509v3 Authority Key Identifier: keyid:6D:09:9E:90:8E:7D:88:79:E2:4D:1E:DE:09:D8:12:CF:46:AD:E2:CC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bQmekI59iHniTR7eCdgSz0at4sw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/45c53d-aba9-42f7-8496-7cce34fe6b5d/1/bQmekI59iHniTR7eCdgSz0at4sw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bb:a8:5c:aa:48:6d:f1:98:52:55:d6:92:86:c4:8f:6f:33:ad: 1a:83:b8:9d:e2:76:bc:2e:34:51:c7:85:79:29:ee:fb:a9:5f: e1:d9:19:ce:95:4d:5a:3d:c1:1b:5c:78:8b:e1:bb:6b:45:b9: 48:53:40:ba:1c:dd:5f:ae:b3:46:3b:bf:74:95:38:c8:0d:b7: 2f:18:b8:7c:fc:c1:f0:99:20:c1:5c:a2:7c:c0:ee:5d:31:64: 66:71:03:b8:73:cb:cc:5c:ee:9d:a7:3c:a8:a0:01:a4:0b:ce: ae:1d:39:89:db:3c:88:25:aa:80:0e:1e:91:31:fa:91:ac:72: ad:3a:cc:ee:16:0d:31:e8:11:87:d5:96:ea:12:76:29:3a:07: 9d:e3:d8:de:cf:82:93:2d:c0:59:b5:38:33:13:3c:f4:a5:86: 9d:cc:8e:60:2e:f2:f3:7c:ae:0b:54:e0:1c:ab:a0:dc:fb:1f: b5:18:7f:73:b0:11:6b:50:ef:5f:6d:93:c8:0b:37:8b:7d:a6: eb:95:31:cc:5d:3d:71:11:21:ac:84:23:46:23:d3:3f:19:2e: e3:a9:18:00:99:c4:0a:da:15:79:eb:cc:72:85:a4:9c:80:43: a1:4f:d5:b0:45:22:ef:23:d8:e5:ad:32:83:2d:1c:bc:49:86: e5:0c:76:cf -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJBGT2Lb+mE+VNIJvFkDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkMDk5ZTkwOGU3ZDg4NzllMjRkMWVkZTA5ZDgxMmNmNDZh ZGUyY2MwHhcNMjYwMjA5MTgwMTEzWhcNMjYwMjEwMTgwMTEzWjAzMTEwLwYDVQQD EyhhYWM0ZjdiY2FlMzQ0MWJlZmQwZTc5MTFhYTA1NWRhMGI1NTliMTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpBvvqM70aYA9Wyua9lSebL32PPZ PfwkkTeXSkqlD5B4/+fleDWyyo975kn0LLcn65cyEfPy9NqnnWMUVwhwoMXtd66u dKNORRhk28grog+IcOV/caJvwPm46Cf0iBrxD/0GgIXCv3B/KykuoYluHVY68a8a EtwB+aMYgouH/EcFpiMYVYddymIp4nOrdhrCBNenwGqGB1mlDJx2ozwI0NawcxGp Qc4BfaNxJeZwzEcLjmRDlJHEHnhq3AYrNj0GJJHxFw6ZZ/tMHzbyN1l12o8M67sH 6dPWo6CdAOKUY8PNQ94RKvyzOLOwaHRuUdZTVBLliq9GNUXcdlfIwzPNzQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKrE97yuNEG+/Q55EaoFXaC1WbE7MB8GA1UdIwQY MBaAFG0JnpCOfYh54k0e3gnYEs9GreLMMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYlFtZWtJNTlpSG5pVFI3ZUNkZ1N6MGF0NHN3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYi80NWM1M2QtYWJhOS00MmY3LTg0OTYt N2NjZTM0ZmU2YjVkLzEvYlFtZWtJNTlpSG5pVFI3ZUNkZ1N6MGF0NHN3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYi80NWM1M2QtYWJhOS00MmY3LTg0OTYtN2NjZTM0ZmU2YjVk LzEvYlFtZWtJNTlpSG5pVFI3ZUNkZ1N6MGF0NHN3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAu6hcqkht 8ZhSVdaShsSPbzOtGoO4neJ2vC40UceFeSnu+6lf4dkZzpVNWj3BG1x4i+G7a0W5 SFNAuhzdX66zRju/dJU4yA23Lxi4fPzB8JkgwVyifMDuXTFkZnEDuHPLzFzunac8 qKABpAvOrh05ids8iCWqgA4ekTH6kaxyrTrM7hYNMegRh9WW6hJ2KToHnePY3s+C ky3AWbU4MxM89KWGncyOYC7y83yuC1TgHKug3PsftRh/c7ARa1DvX22TyAs3i32m 65UxzF09cREhrIQjRiPTPxku46kYAJnECtoVeevMcoWknIBDoU/VsEUi7yPY5a0y gy0cvEmG5Qx2zw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:51 2026 by rpki-client