This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft File: BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft (raw, json) Hash identifier: 3gZjZjDTn45Sz2a5LSs0eEpxsnT6F+2TY3dHL29vCB8= Subject key identifier: BE:A5:4D:A1:68:CF:D3:5F:D6:5F:90:EF:38:85:B3:6A:68:54:AA:D5 Authority key identifier: 04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49 Certificate issuer: /CN=0471881778a1e12f6d97c5288efd4cb9563d1d49 Certificate serial: 019BF2AB6675D1BB00D00FBC38BDA82FB073 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft Manifest number: 01BB Signing time: Sun 25 Jan 2026 01:01:17 +0000 Manifest this update: Sun 25 Jan 2026 01:01:17 +0000 Manifest next update: Mon 26 Jan 2026 01:01:17 +0000 Files and hashes: 1: BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl (hash: yTlPgc2cVSC7rdn8qPtglfWtsXdRu8vvia2c8Zc/e6A=) 2: eTOwOWQzkIQMSFcd7XvHaxwHhHg.roa (hash: wPtbDFR3QsqzxzI7/DNrIndvuS59lQkNZu8MuJSmfaE=) 3: hebM_59_tHRwgwIXMubQjV7ZKnA.roa (hash: 67WRXgG1YYYSINNxV4jZ+taQ8P62HynuQpfE/cUxzG0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:ab:66:75:d1:bb:00:d0:0f:bc:38:bd:a8:2f:b0:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0471881778a1e12f6d97c5288efd4cb9563d1d49 Validity Not Before: Jan 25 01:01:17 2026 GMT Not After : Jan 26 01:01:17 2026 GMT Subject: CN=bea54da168cfd35fd65f90ef3885b36a6854aad5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:a3:67:c4:fd:93:21:16:99:57:0c:8c:82:b3: e8:ae:10:07:bc:d1:6b:6c:d3:d1:36:09:08:50:ef: 95:1c:b8:d0:3b:4e:66:7f:85:f8:44:a0:46:f3:d0: d4:a3:3a:af:80:b0:f5:ba:57:fa:25:50:86:ed:b1: 55:29:ea:52:7c:d9:8a:c0:82:54:b3:a7:11:dc:a0: 44:5b:e2:38:21:ad:2b:fa:95:1b:ed:47:a2:84:88: e2:52:19:aa:8a:e8:a8:d8:bb:aa:1d:21:6d:94:6b: e5:8d:08:fe:4a:54:fe:0f:2e:c9:2a:c6:16:96:82: 50:b1:6f:d4:7f:ec:95:92:19:95:43:cd:7a:3c:7d: 3c:5d:11:61:57:cf:07:e5:72:bb:6d:8b:0c:cc:9a: df:3d:4f:87:f7:f4:f2:9b:37:c3:3a:63:93:c0:1e: ea:1e:e4:3c:20:24:2d:8b:4d:09:5c:05:2a:ab:99: 25:b6:a5:b9:b5:6d:c8:ce:36:e1:83:c7:de:46:6a: 66:b1:0c:d5:4a:fc:3a:71:80:be:c4:8e:78:88:44: 07:47:4b:50:08:94:b9:b9:91:50:0b:f7:82:01:3d: f5:28:6f:ed:bd:5f:7e:7b:3c:dd:de:40:37:df:09: 3f:3a:db:a9:6c:c9:74:89:11:ff:9e:4e:ea:5c:52: 40:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:A5:4D:A1:68:CF:D3:5F:D6:5F:90:EF:38:85:B3:6A:68:54:AA:D5 X509v3 Authority Key Identifier: keyid:04:71:88:17:78:A1:E1:2F:6D:97:C5:28:8E:FD:4C:B9:56:3D:1D:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BHGIF3ih4S9tl8Uojv1MuVY9HUk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2c/4a8cfa-542b-40b2-8a08-42ea47b12537/1/BHGIF3ih4S9tl8Uojv1MuVY9HUk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9b:e9:e9:83:3e:0d:db:b0:44:50:ac:0e:70:04:9b:7a:01:a2: 48:35:3f:b8:ee:24:ae:b9:aa:ab:39:30:28:78:c8:5e:07:51: e3:5a:af:a5:5f:5b:e6:0d:eb:93:71:00:e1:fb:cf:cc:10:c7: 05:97:80:e6:ef:0e:20:46:aa:b4:3d:71:4a:96:20:28:85:f8: 24:47:48:57:bc:ff:17:23:38:e8:21:c2:cd:06:7b:f5:33:b2: 02:52:3d:f9:4a:c9:52:80:28:6f:08:42:59:0f:f6:41:d1:5f: a0:6a:ce:b4:f4:a1:4c:8d:21:12:ec:26:81:61:ca:88:c1:b9: e7:0f:ce:14:05:51:58:93:ff:4d:61:11:7e:6b:f1:67:92:1e: d7:ec:c6:7a:be:23:42:7d:dc:a0:0b:9b:df:82:a0:cd:82:22: d1:5b:8a:d2:1a:d7:e9:0b:86:af:8c:e2:2e:2e:f7:60:72:30: 44:8f:ad:92:17:aa:2c:ed:a0:a8:e9:2c:13:e7:da:5b:1a:ab: a1:36:35:b2:a3:e0:c9:e3:de:16:07:fe:fc:67:54:e4:0d:89: b0:ee:a3:0c:2b:6e:82:6a:55:28:ab:99:0c:1b:d8:a6:be:65: cc:f6:3f:5b:ae:16:f7:5e:4b:14:2f:87:e9:5d:85:a6:fd:ea: be:6a:8a:74 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvyq2Z10bsA0A+8OL2oL7BzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NzE4ODE3NzhhMWUxMmY2ZDk3YzUyODhlZmQ0Y2I5NTYz ZDFkNDkwHhcNMjYwMTI1MDEwMTE3WhcNMjYwMTI2MDEwMTE3WjAzMTEwLwYDVQQD EyhiZWE1NGRhMTY4Y2ZkMzVmZDY1ZjkwZWYzODg1YjM2YTY4NTRhYWQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsqNnxP2TIRaZVwyMgrPorhAHvNFr bNPRNgkIUO+VHLjQO05mf4X4RKBG89DUozqvgLD1ulf6JVCG7bFVKepSfNmKwIJU s6cR3KBEW+I4Ia0r+pUb7UeihIjiUhmqiuio2LuqHSFtlGvljQj+SlT+Dy7JKsYW loJQsW/Uf+yVkhmVQ816PH08XRFhV88H5XK7bYsMzJrfPU+H9/TymzfDOmOTwB7q HuQ8ICQti00JXAUqq5kltqW5tW3Izjbhg8feRmpmsQzVSvw6cYC+xI54iEQHR0tQ CJS5uZFQC/eCAT31KG/tvV9+ezzd3kA33wk/OtupbMl0iRH/nk7qXFJANQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6lTaFoz9Nf1l+Q7ziFs2poVKrVMB8GA1UdIwQY MBaAFARxiBd4oeEvbZfFKI79TLlWPR1JMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkhHSUYzaWg0Uzl0bDhVb2p2MU11Vlk5SFVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYy80YThjZmEtNTQyYi00MGIyLThhMDgt NDJlYTQ3YjEyNTM3LzEvQkhHSUYzaWg0Uzl0bDhVb2p2MU11Vlk5SFVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYy80YThjZmEtNTQyYi00MGIyLThhMDgtNDJlYTQ3YjEyNTM3 LzEvQkhHSUYzaWg0Uzl0bDhVb2p2MU11Vlk5SFVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAm+npgz4N 27BEUKwOcASbegGiSDU/uO4krrmqqzkwKHjIXgdR41qvpV9b5g3rk3EA4fvPzBDH BZeA5u8OIEaqtD1xSpYgKIX4JEdIV7z/FyM46CHCzQZ79TOyAlI9+UrJUoAobwhC WQ/2QdFfoGrOtPShTI0hEuwmgWHKiMG55w/OFAVRWJP/TWERfmvxZ5Ie1+zGer4j Qn3coAub34KgzYIi0VuK0hrX6QuGr4ziLi73YHIwRI+tkheqLO2gqOksE+faWxqr oTY1sqPgyePeFgf+/GdU5A2JsO6jDCtugmpVKKuZDBvYpr5lzPY/W64W915LFC+H 6V2Fpv3qvmqKdA== -----END CERTIFICATE-----Generated at Sun Jan 25 10:43:05 2026 by rpki-client