This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft File: BFYL6jkur2kgircF70Bc94aEF2s.mft (raw, json) Hash identifier: fAILbHxM001JQbOVY1XQbpN2e3pQiNknEaB5bP7Wcvo= Subject key identifier: E0:CC:0D:78:EC:6F:B3:91:D4:18:6D:E3:AB:82:00:8A:BF:BF:4E:04 Authority key identifier: 04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B Certificate issuer: /CN=04560bea392eaf69208ab705ef405cf78684176b Certificate serial: 019BF2E2330027CB95731895CA99E1FD204D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft Manifest number: 17EC Signing time: Sun 25 Jan 2026 02:01:09 +0000 Manifest this update: Sun 25 Jan 2026 02:01:09 +0000 Manifest next update: Mon 26 Jan 2026 02:01:09 +0000 Files and hashes: 1: BFYL6jkur2kgircF70Bc94aEF2s.crl (hash: HxXa8zrjQuXZnXq/3w75Yxyno8cYlzAWWCWmV2yPGO8=) 2: PYDaQdvsTgkqrbuj3tZOVTtUmUA.roa (hash: H/8+GgNdJOZH+P5jx7Yl7IzwfogX3Vj/jZBL/Jyz7y8=) 3: fFg7BMRzleH625x9WdiXPcleSgg.roa (hash: VJ0RLkXcuNA4Y8CWLeS6/R5pD7ua0+mj6mlNZsFqI9E=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f2:e2:33:00:27:cb:95:73:18:95:ca:99:e1:fd:20:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=04560bea392eaf69208ab705ef405cf78684176b Validity Not Before: Jan 25 02:01:09 2026 GMT Not After : Jan 26 02:01:09 2026 GMT Subject: CN=e0cc0d78ec6fb391d4186de3ab82008abfbf4e04 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a7:06:b1:e2:5e:05:7e:16:6e:d1:6d:06:46: e3:13:08:1c:54:be:73:12:77:61:c5:1f:e3:d9:e4: f7:a7:20:55:a8:1b:3d:8f:7f:50:5e:d9:e6:aa:39: 5f:64:bc:69:09:07:f8:9c:a0:a8:a3:85:9e:3a:7b: f5:53:7f:65:63:83:fd:61:59:ac:da:48:42:46:3a: 65:3d:39:b8:a7:e7:b1:59:08:e8:9d:a3:e9:1d:4f: fd:92:aa:72:c2:cf:99:38:56:79:ae:10:18:57:8b: 44:ea:a9:74:09:ae:e6:d6:7c:b6:a0:ca:9b:a1:66: fd:27:c8:19:fc:6d:eb:82:f2:a7:f0:ac:61:6c:6a: 3a:41:05:e5:34:bc:d0:f4:d7:59:87:95:a9:15:97: f9:79:d0:26:ad:10:fa:1f:0b:08:35:c9:36:95:73: 9b:c2:95:84:ee:bb:76:d4:78:85:db:28:58:d5:96: 37:c2:d3:39:6f:0d:5c:73:c7:ee:fa:b5:58:a7:4d: 62:9a:33:90:05:db:51:51:48:d6:9c:f8:9c:b3:69: 8c:00:16:51:fc:46:6c:b9:85:85:d9:ac:08:a4:3d: 6e:e9:f2:3b:10:23:22:2f:7b:8a:3a:40:49:ce:b7: e4:2f:5d:ab:de:89:8c:25:6f:54:1b:d0:40:b0:1c: c3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:CC:0D:78:EC:6F:B3:91:D4:18:6D:E3:AB:82:00:8A:BF:BF:4E:04 X509v3 Authority Key Identifier: keyid:04:56:0B:EA:39:2E:AF:69:20:8A:B7:05:EF:40:5C:F7:86:84:17:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BFYL6jkur2kgircF70Bc94aEF2s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/ce4a4e-b1a3-45f4-a27c-e1aca01062ff/1/BFYL6jkur2kgircF70Bc94aEF2s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:2c:fe:41:a5:a0:ea:5c:fc:7c:56:e3:46:65:6d:43:db:70: f6:0c:6d:bc:5e:4a:67:bb:a0:b9:51:0b:c8:36:c2:00:19:34: 8a:af:64:99:d9:7b:f2:72:57:31:c6:db:7a:71:83:d5:d0:94: 89:39:8b:cd:3d:21:7f:ef:cb:5b:7b:20:96:e6:f5:e5:dd:c7: 56:93:4e:ca:b3:fb:d8:e3:64:c2:13:ed:cf:b6:b5:9f:57:9c: a7:8d:ba:67:3b:c7:58:86:20:74:b1:91:ce:fa:2b:2c:eb:49: 94:77:a6:65:d9:39:66:c8:c4:5f:0d:29:5e:ff:1c:10:74:cf: b4:ff:81:87:50:8e:43:a2:63:81:0c:0e:24:a0:ec:8b:73:1c: d0:5e:79:04:e9:75:d9:6b:07:33:10:3c:24:08:71:8d:a7:91: 8b:0b:74:02:89:cd:8e:16:90:a3:32:02:b1:0f:01:fb:87:94: de:ba:2d:d6:f2:bc:86:e1:85:74:60:94:7f:87:1c:05:3c:60: d1:a4:23:e6:6b:0c:36:04:7f:e6:85:ff:ce:7f:3a:fb:8f:57: 0e:11:ad:36:c8:fc:52:9f:94:19:bc:b3:24:7f:ba:10:85:cf: 46:1d:87:30:53:a2:74:ba:a3:e5:8a:e8:ba:5a:5e:5e:b9:4f: b6:79:dd:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvy4jMAJ8uVcxiVypnh/SBNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA0NTYwYmVhMzkyZWFmNjkyMDhhYjcwNWVmNDA1Y2Y3ODY4 NDE3NmIwHhcNMjYwMTI1MDIwMTA5WhcNMjYwMTI2MDIwMTA5WjAzMTEwLwYDVQQD EyhlMGNjMGQ3OGVjNmZiMzkxZDQxODZkZTNhYjgyMDA4YWJmYmY0ZTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnacGseJeBX4WbtFtBkbjEwgcVL5z EndhxR/j2eT3pyBVqBs9j39QXtnmqjlfZLxpCQf4nKCoo4WeOnv1U39lY4P9YVms 2khCRjplPTm4p+exWQjonaPpHU/9kqpyws+ZOFZ5rhAYV4tE6ql0Ca7m1ny2oMqb oWb9J8gZ/G3rgvKn8KxhbGo6QQXlNLzQ9NdZh5WpFZf5edAmrRD6HwsINck2lXOb wpWE7rt21HiF2yhY1ZY3wtM5bw1cc8fu+rVYp01imjOQBdtRUUjWnPics2mMABZR /EZsuYWF2awIpD1u6fI7ECMiL3uKOkBJzrfkL12r3omMJW9UG9BAsBzD3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFODMDXjsb7OR1Bht46uCAIq/v04EMB8GA1UdIwQY MBaAFARWC+o5Lq9pIIq3Be9AXPeGhBdrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi9jZTRhNGUtYjFhMy00NWY0LWEyN2Mt ZTFhY2EwMTA2MmZmLzEvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi9jZTRhNGUtYjFhMy00NWY0LWEyN2MtZTFhY2EwMTA2MmZm LzEvQkZZTDZqa3VyMmtnaXJjRjcwQmM5NGFFRjJzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABiz+QaWg 6lz8fFbjRmVtQ9tw9gxtvF5KZ7uguVELyDbCABk0iq9kmdl78nJXMcbbenGD1dCU iTmLzT0hf+/LW3sglub15d3HVpNOyrP72ONkwhPtz7a1n1ecp426ZzvHWIYgdLGR zvorLOtJlHemZdk5ZsjEXw0pXv8cEHTPtP+Bh1COQ6JjgQwOJKDsi3Mc0F55BOl1 2WsHMxA8JAhxjaeRiwt0AonNjhaQozICsQ8B+4eU3rot1vK8huGFdGCUf4ccBTxg 0aQj5msMNgR/5oX/zn86+49XDhGtNsj8Up+UGbyzJH+6EIXPRh2HMFOidLqj5Yro ulpeXrlPtnndbg== -----END CERTIFICATE-----Generated at Sun Jan 25 07:28:22 2026 by rpki-client