This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft File: bfHIcky70DS6t6Da3wq0uZ_2b_8.mft (raw, json) Hash identifier: 3wOjqQXUZYqyb8uXIikkcMS2jdUT1XTb/DteOQSa3Rg= Subject key identifier: 81:1A:8B:AE:4E:8E:DF:80:E8:73:AD:9E:E7:34:D3:5A:DD:47:D1:CB Authority key identifier: 6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF Certificate issuer: /CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff Certificate serial: 019BF6F5CE07032482533552D473335D3176 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft Manifest number: 17EA Signing time: Sun 25 Jan 2026 21:01:02 +0000 Manifest this update: Sun 25 Jan 2026 21:01:02 +0000 Manifest next update: Mon 26 Jan 2026 21:01:02 +0000 Files and hashes: 1: QfIo87XsCuJzTUYuuoqKD3WaLb0.roa (hash: 3OJrGr0r+PmdJst/a4vFJ2BEBu96S/fI6q0nYYtF9LQ=) 2: bfHIcky70DS6t6Da3wq0uZ_2b_8.crl (hash: caARWZo5gvbxMB0JpS0i5+BuKFS9rllxvyptMDPJYlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 21:01:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f6:f5:ce:07:03:24:82:53:35:52:d4:73:33:5d:31:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6df1c8724cbbd034bab7a0dadf0ab4b99ff66fff Validity Not Before: Jan 25 21:01:02 2026 GMT Not After : Jan 26 21:01:02 2026 GMT Subject: CN=811a8bae4e8edf80e873ad9ee734d35add47d1cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d6:43:e5:c9:d7:cc:54:4b:45:fc:f3:9e:4f: 20:7e:b2:ff:c9:32:44:bc:36:7a:2e:8d:15:32:bc: 31:7b:49:bd:15:9a:fe:d2:b1:bd:74:3c:22:49:90: 3b:8e:fb:d8:29:96:a4:49:63:5b:7a:e6:70:7f:9b: 01:d8:03:fd:45:02:1b:78:16:0d:8f:d6:e1:a9:df: 5a:02:51:cc:58:5e:6b:dc:95:61:f7:0d:7a:01:18: be:ec:bd:81:d3:15:34:59:0d:f9:fc:92:58:51:bd: 2b:7e:66:56:c2:06:2e:7f:56:12:7a:f8:89:3a:49: ac:9f:53:b4:3b:19:7a:8b:ca:ec:30:87:5c:b9:a3: 8d:1a:fe:8c:fa:31:0f:b1:88:78:1c:69:66:d1:7e: 93:7e:86:c7:07:32:51:65:8e:f3:02:4f:24:a1:a1: d3:be:8f:17:8b:b7:c9:c5:7e:41:82:f7:73:a2:6d: 19:25:df:c3:5d:a2:21:3f:11:0c:52:d1:5b:58:8f: 68:f8:73:f8:b7:51:6f:75:5e:02:ae:b0:05:82:bb: fe:7b:d8:7a:5e:c7:8a:ba:00:da:4d:da:95:be:13: 70:cc:6c:de:39:57:52:70:91:9d:49:e1:81:ba:ea: b9:bf:2b:81:da:a6:f9:e9:bf:3b:66:a7:ff:0d:7b: b6:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:1A:8B:AE:4E:8E:DF:80:E8:73:AD:9E:E7:34:D3:5A:DD:47:D1:CB X509v3 Authority Key Identifier: keyid:6D:F1:C8:72:4C:BB:D0:34:BA:B7:A0:DA:DF:0A:B4:B9:9F:F6:6F:FF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfHIcky70DS6t6Da3wq0uZ_2b_8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/e0781f-6e64-46aa-8af0-f924d6f6a595/1/bfHIcky70DS6t6Da3wq0uZ_2b_8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:f0:9f:88:57:d1:5e:a6:1f:85:68:8f:07:16:3a:7e:da:f1: 21:33:e4:7d:71:2d:22:37:6c:ec:68:8e:81:94:eb:c1:9e:39: 78:f4:a8:15:18:5a:b5:22:2b:69:50:9e:23:98:00:f6:d4:4b: 4d:34:4c:d8:ab:97:33:fb:6b:82:13:06:5a:c5:e1:00:c5:26: 28:36:fa:41:ef:44:01:29:51:a8:d2:87:72:20:ee:9e:e5:71: 53:82:b0:5d:da:f1:47:f6:72:d1:ac:92:ab:07:95:d7:a2:76: 9a:8e:50:59:85:6c:20:2b:d6:fc:6c:7e:f4:56:a5:1b:48:60: ae:d5:3c:07:65:79:8f:91:e5:3c:64:11:c9:18:1b:e3:c0:a4: 31:0f:14:eb:47:d3:3e:ee:cc:31:47:2a:0f:cd:ac:95:35:79: bf:ba:95:ef:71:1a:36:50:04:e5:18:26:d7:5e:6a:b7:ad:24: 42:bd:0d:9e:d5:2a:c9:6b:06:8f:c5:b5:5d:e0:a7:da:8d:57: ff:e3:da:b5:ce:cf:f0:71:d6:e4:f0:08:11:c0:dc:b1:32:4b: 8d:7d:74:28:1c:48:ae:69:be:a6:47:8c:7b:ee:5d:05:0b:3e: 80:03:31:6b:08:c3:82:4b:65:f4:5c:a2:a5:dc:83:64:d4:03: 59:9e:a3:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv29c4HAySCUzVS1HMzXTF2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZjFjODcyNGNiYmQwMzRiYWI3YTBkYWRmMGFiNGI5OWZm NjZmZmYwHhcNMjYwMTI1MjEwMTAyWhcNMjYwMTI2MjEwMTAyWjAzMTEwLwYDVQQD Eyg4MTFhOGJhZTRlOGVkZjgwZTg3M2FkOWVlNzM0ZDM1YWRkNDdkMWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAptZD5cnXzFRLRfzznk8gfrL/yTJE vDZ6Lo0VMrwxe0m9FZr+0rG9dDwiSZA7jvvYKZakSWNbeuZwf5sB2AP9RQIbeBYN j9bhqd9aAlHMWF5r3JVh9w16ARi+7L2B0xU0WQ35/JJYUb0rfmZWwgYuf1YSeviJ Okmsn1O0Oxl6i8rsMIdcuaONGv6M+jEPsYh4HGlm0X6TfobHBzJRZY7zAk8koaHT vo8Xi7fJxX5Bgvdzom0ZJd/DXaIhPxEMUtFbWI9o+HP4t1FvdV4CrrAFgrv+e9h6 XseKugDaTdqVvhNwzGzeOVdScJGdSeGBuuq5vyuB2qb56b87Zqf/DXu21wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIEai65Ojt+A6HOtnuc001rdR9HLMB8GA1UdIwQY MBaAFG3xyHJMu9A0ureg2t8KtLmf9m//MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAt ZjkyNGQ2ZjZhNTk1LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9lMDc4MWYtNmU2NC00NmFhLThhZjAtZjkyNGQ2ZjZhNTk1 LzEvYmZISWNreTcwRFM2dDZEYTN3cTB1Wl8yYl84LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAN/CfiFfR XqYfhWiPBxY6ftrxITPkfXEtIjds7GiOgZTrwZ45ePSoFRhatSIraVCeI5gA9tRL TTRM2KuXM/trghMGWsXhAMUmKDb6Qe9EASlRqNKHciDunuVxU4KwXdrxR/Zy0ayS qweV16J2mo5QWYVsICvW/Gx+9FalG0hgrtU8B2V5j5HlPGQRyRgb48CkMQ8U60fT Pu7MMUcqD82slTV5v7qV73EaNlAE5Rgm115qt60kQr0NntUqyWsGj8W1XeCn2o1X /+Patc7P8HHW5PAIEcDcsTJLjX10KBxIrmm+pkeMe+5dBQs+gAMxawjDgktl9Fyi pdyDZNQDWZ6j7A== -----END CERTIFICATE-----Generated at Mon Jan 26 04:44:43 2026 by rpki-client