This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft File: BmNp4nBctDPbBlirZm0ItnsVUdw.mft (raw, json) Hash identifier: C4Rnpuw6ZL89DgHB7CFpHFHbsTd6s1SHYWhmhJVgOGk= Subject key identifier: B9:8F:10:E3:AF:A4:B7:84:6A:D9:3A:14:8C:65:D1:9A:F6:E7:A0:6C Authority key identifier: 06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC Certificate issuer: /CN=066369e2705cb433db0658ab666d08b67b1551dc Certificate serial: 019BF72D00931F5C6DE88A6D617E0F1F5B2A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft Manifest number: 170E Signing time: Sun 25 Jan 2026 22:01:20 +0000 Manifest this update: Sun 25 Jan 2026 22:01:20 +0000 Manifest next update: Mon 26 Jan 2026 22:01:20 +0000 Files and hashes: 1: BmNp4nBctDPbBlirZm0ItnsVUdw.crl (hash: Y3k3K45DptnnTx2ehx8+HJdtQ+vhbwZh3s7mh+Gsw9Q=) 2: M2182yhCWIp3Dr1q8N4Z80xWV3w.roa (hash: IY36SUnI5dTjS3K8jOcIn+WsAvHQBxCsJZS9oy5ygLI=) 3: jYy2uYNL4nb69qr5FWiz-y5I14g.roa (hash: uK2ZzVfws+izj4DF8qyLOr4woZd1HOHCjMW0FZXm+bY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:00:93:1f:5c:6d:e8:8a:6d:61:7e:0f:1f:5b:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=066369e2705cb433db0658ab666d08b67b1551dc Validity Not Before: Jan 25 22:01:20 2026 GMT Not After : Jan 26 22:01:20 2026 GMT Subject: CN=b98f10e3afa4b7846ad93a148c65d19af6e7a06c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:24:40:1d:60:0d:89:08:4e:1c:55:6d:78:25: e3:04:a0:2b:01:67:3d:c1:12:1b:61:3a:a3:6a:43: 10:57:77:bf:10:14:2a:f9:a2:6e:f0:da:8c:8c:74: 8b:52:e5:b3:0d:cf:44:5b:79:96:a7:9f:d7:f9:be: 44:6c:50:56:3b:98:25:ab:f9:31:40:ed:9a:44:10: 3c:f8:ec:a4:cd:f5:40:38:70:a0:b7:08:82:d9:dc: 65:fb:e9:c1:ba:5c:dc:a8:cf:e2:ca:a5:67:b3:f7: 8f:71:d4:ad:0f:8c:87:66:32:27:78:ea:8a:a2:fc: b8:9e:13:63:f8:c9:1b:71:66:6d:6a:54:c8:a7:37: 82:84:a0:35:11:7f:65:34:c1:52:cb:1c:69:da:e1: c5:0a:68:d6:77:84:cb:16:05:32:83:11:6c:73:11: 36:56:02:a7:be:74:fd:4a:de:a1:6a:67:79:98:c7: 2b:08:f6:20:8f:8b:2c:fc:b4:50:36:be:8b:14:3c: 53:9e:bf:68:8d:61:2d:9a:a0:3f:fb:6c:9a:cf:08: e2:4f:82:f2:93:60:cc:0c:b3:2b:00:34:54:82:94: 61:c9:85:bb:93:4f:0e:24:ba:cd:a2:7a:d4:d4:c9: 69:58:52:f5:60:4c:0c:b0:46:3e:a7:82:f7:ae:6b: a4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:8F:10:E3:AF:A4:B7:84:6A:D9:3A:14:8C:65:D1:9A:F6:E7:A0:6C X509v3 Authority Key Identifier: keyid:06:63:69:E2:70:5C:B4:33:DB:06:58:AB:66:6D:08:B6:7B:15:51:DC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BmNp4nBctDPbBlirZm0ItnsVUdw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/64e49a-5fe1-45c2-8310-34a9e98a5f86/1/BmNp4nBctDPbBlirZm0ItnsVUdw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:e7:fd:5a:bf:a9:d3:d0:9c:17:2f:c0:84:b0:c8:bc:a5:76: 37:46:e1:fc:0f:10:d7:c1:82:c8:94:ce:80:c1:06:bb:66:19: ac:35:e6:22:a2:a1:e6:0f:af:99:86:ab:8f:1c:a6:6f:80:80: ab:2f:26:ba:54:45:96:40:0f:f4:47:f6:a9:ed:b8:8d:af:da: d9:e2:39:a5:39:34:94:ab:9a:98:88:1f:70:ab:46:1f:52:82: 53:5c:02:45:6f:1b:f0:ce:e8:b9:7d:30:c0:a9:44:ab:12:8a: ba:cb:c5:93:6a:d2:45:da:26:a4:07:39:8e:fa:e5:6e:a0:15: 6d:5f:04:31:bd:e9:15:21:3c:12:3e:1b:b8:36:35:19:4e:25: 2a:ce:1a:cd:37:b2:85:ac:ac:39:68:bc:0f:dc:d0:ba:27:15: 99:94:fd:71:6b:c0:ab:4d:8b:da:08:b1:0e:69:2a:fc:65:21: e4:0f:2b:d5:4d:5f:4c:19:fd:12:4f:3d:b8:22:2e:32:d2:4f: 16:f9:f4:d7:4a:fa:57:00:2e:04:ce:9c:53:7e:5a:1f:50:4b: 1f:4f:94:6b:0b:a8:78:e8:c6:b9:83:9e:64:78:64:84:fd:92: 83:f6:b3:cd:ca:dc:a8:fc:d0:9a:28:60:96:60:fc:11:73:83: 9b:5d:fa:21 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LQCTH1xt6IptYX4PH1sqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA2NjM2OWUyNzA1Y2I0MzNkYjA2NThhYjY2NmQwOGI2N2Ix NTUxZGMwHhcNMjYwMTI1MjIwMTIwWhcNMjYwMTI2MjIwMTIwWjAzMTEwLwYDVQQD EyhiOThmMTBlM2FmYTRiNzg0NmFkOTNhMTQ4YzY1ZDE5YWY2ZTdhMDZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuyRAHWANiQhOHFVteCXjBKArAWc9 wRIbYTqjakMQV3e/EBQq+aJu8NqMjHSLUuWzDc9EW3mWp5/X+b5EbFBWO5glq/kx QO2aRBA8+OykzfVAOHCgtwiC2dxl++nBulzcqM/iyqVns/ePcdStD4yHZjIneOqK ovy4nhNj+MkbcWZtalTIpzeChKA1EX9lNMFSyxxp2uHFCmjWd4TLFgUygxFscxE2 VgKnvnT9St6hamd5mMcrCPYgj4ss/LRQNr6LFDxTnr9ojWEtmqA/+2yazwjiT4Ly k2DMDLMrADRUgpRhyYW7k08OJLrNonrU1MlpWFL1YEwMsEY+p4L3rmukgwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLmPEOOvpLeEatk6FIxl0Zr256BsMB8GA1UdIwQY MBaAFAZjaeJwXLQz2wZYq2ZtCLZ7FVHcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAt MzRhOWU5OGE1Zjg2LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC82NGU0OWEtNWZlMS00NWMyLTgzMTAtMzRhOWU5OGE1Zjg2 LzEvQm1OcDRuQmN0RFBiQmxpclptMEl0bnNWVWR3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc+f9Wr+p 09CcFy/AhLDIvKV2N0bh/A8Q18GCyJTOgMEGu2YZrDXmIqKh5g+vmYarjxymb4CA qy8mulRFlkAP9Ef2qe24ja/a2eI5pTk0lKuamIgfcKtGH1KCU1wCRW8b8M7ouX0w wKlEqxKKusvFk2rSRdompAc5jvrlbqAVbV8EMb3pFSE8Ej4buDY1GU4lKs4azTey haysOWi8D9zQuicVmZT9cWvAq02L2gixDmkq/GUh5A8r1U1fTBn9Ek89uCIuMtJP Fvn010r6VwAuBM6cU35aH1BLH0+UawuoeOjGuYOeZHhkhP2Sg/azzcrcqPzQmihg lmD8EXODm136IQ== -----END CERTIFICATE-----Generated at Mon Jan 26 03:12:09 2026 by rpki-client