This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft File: bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft (raw, json) Hash identifier: rbJ+DQSokA5vjb+O4v9FaxKKWhROIEmlduIFQ5QpN0g= Subject key identifier: F1:DD:C8:4F:83:BB:C8:D0:C3:29:D1:DD:78:B1:00:16:1D:0A:19:D1 Authority key identifier: 6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F Certificate issuer: /CN=6df293212d25d4863e386b9c480ddc9be738124f Certificate serial: 019BF72D4CD3BB509A79E957E9D6EDA0440B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft Manifest number: 177C Signing time: Sun 25 Jan 2026 22:01:39 +0000 Manifest this update: Sun 25 Jan 2026 22:01:39 +0000 Manifest next update: Mon 26 Jan 2026 22:01:39 +0000 Files and hashes: 1: bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl (hash: LFcHYR78epxLDszAFa4aYTurCjHob6rySY+LRj7q/eM=) 2: q4MMxbvpWnkqIJJ1G1vh9k5IaD0.roa (hash: atJClVpeASPtSX6kEGrHIIjj/e8dWQQKfuBLHQmvtvQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 16:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f7:2d:4c:d3:bb:50:9a:79:e9:57:e9:d6:ed:a0:44:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6df293212d25d4863e386b9c480ddc9be738124f Validity Not Before: Jan 25 22:01:39 2026 GMT Not After : Jan 26 22:01:39 2026 GMT Subject: CN=f1ddc84f83bbc8d0c329d1dd78b100161d0a19d1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:64:db:c0:ea:7a:92:16:1d:2a:d5:7a:82:fd: ac:81:76:72:ac:2b:81:48:34:17:80:85:3b:7e:ee: 31:78:39:9b:a8:6a:56:9f:8b:91:7f:a4:03:f8:d8: 62:a5:c0:3b:a6:4d:96:f0:45:5a:c9:f9:dd:fb:09: 58:79:e1:b3:13:e3:6a:2d:50:09:09:bc:92:d2:c5: 47:ee:3c:c9:da:5d:65:e8:b1:9c:dc:fc:6a:12:32: 1e:35:c3:86:14:81:f7:71:c2:14:44:bb:05:cc:69: 90:d7:e8:31:5e:7e:a6:93:41:01:a7:86:dd:ff:fa: 66:8e:94:3c:88:ce:ac:39:7b:fc:70:3c:4b:76:60: e3:ca:c9:71:96:b4:40:ac:50:c3:45:f4:29:35:a7: 0c:cf:13:42:2f:59:f3:b2:b3:00:e7:0d:c4:a8:9e: fa:be:43:00:3a:67:72:c7:4c:9e:d6:5f:9b:cc:9d: 1b:28:34:f9:e8:43:7d:d4:64:6c:e4:3e:3f:0e:f0: 6d:37:7e:45:07:ae:0b:7c:7f:93:6f:c2:29:21:d2: ac:1c:28:12:26:da:87:15:70:0b:8c:4c:bf:62:08: dc:bd:9c:c9:8c:94:82:41:c9:0b:cb:2a:a1:20:15: b0:37:d1:e8:77:c7:c2:57:a1:3b:0e:1c:ac:57:4e: a3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:DD:C8:4F:83:BB:C8:D0:C3:29:D1:DD:78:B1:00:16:1D:0A:19:D1 X509v3 Authority Key Identifier: keyid:6D:F2:93:21:2D:25:D4:86:3E:38:6B:9C:48:0D:DC:9B:E7:38:12:4F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bfKTIS0l1IY-OGucSA3cm-c4Ek8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9e/aecb8a-d763-4642-8036-f400402b536c/1/bfKTIS0l1IY-OGucSA3cm-c4Ek8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 76:65:43:a4:7b:13:6f:38:95:be:6b:98:e7:fc:e8:4c:c0:71: 76:cd:34:25:e1:bb:87:37:d7:72:37:25:94:74:0b:7c:5b:e6: d2:fd:a0:ab:bc:7b:41:b8:fb:5e:6d:e0:94:bb:ee:6a:79:0a: b5:26:73:7d:9c:e9:8e:46:80:aa:5a:28:a1:ed:4f:8f:86:e6: 58:1c:10:10:f5:3f:20:e7:2c:e3:b0:af:9b:94:28:d6:6e:1a: 28:f0:74:3c:ff:f8:f2:76:7b:e4:42:91:91:60:5a:ad:6a:7c: 93:c0:27:3c:6a:64:25:96:7d:55:7c:68:fe:2c:d8:eb:0e:72: 00:17:d4:1e:d4:20:81:7d:34:1a:1c:a4:74:41:a0:ab:16:39: be:b3:72:f0:3f:af:d0:67:ae:1a:90:b1:44:f1:fb:bc:95:ea: e8:8d:c5:15:43:c3:af:e6:2d:5c:65:fe:e4:de:23:ce:78:cb: 20:ae:93:09:32:f9:5f:57:16:6c:31:cb:1b:ff:45:23:14:3b: 80:d3:92:55:6c:2f:aa:20:21:04:5b:e7:1c:84:57:f7:2e:b4: 60:bc:93:df:bf:03:f1:20:ad:0b:04:98:48:c3:a0:ba:16:46: f1:24:6d:5a:67:5f:67:d3:63:79:1c:92:eb:a8:75:a6:92:7c: 41:13:d9:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv3LUzTu1CaeelX6dbtoEQLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZkZjI5MzIxMmQyNWQ0ODYzZTM4NmI5YzQ4MGRkYzliZTcz ODEyNGYwHhcNMjYwMTI1MjIwMTM5WhcNMjYwMTI2MjIwMTM5WjAzMTEwLwYDVQQD EyhmMWRkYzg0ZjgzYmJjOGQwYzMyOWQxZGQ3OGIxMDAxNjFkMGExOWQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoWTbwOp6khYdKtV6gv2sgXZyrCuB SDQXgIU7fu4xeDmbqGpWn4uRf6QD+NhipcA7pk2W8EVayfnd+wlYeeGzE+NqLVAJ CbyS0sVH7jzJ2l1l6LGc3PxqEjIeNcOGFIH3ccIURLsFzGmQ1+gxXn6mk0EBp4bd //pmjpQ8iM6sOXv8cDxLdmDjyslxlrRArFDDRfQpNacMzxNCL1nzsrMA5w3EqJ76 vkMAOmdyx0ye1l+bzJ0bKDT56EN91GRs5D4/DvBtN35FB64LfH+Tb8IpIdKsHCgS JtqHFXALjEy/YgjcvZzJjJSCQckLyyqhIBWwN9Hod8fCV6E7DhysV06jKQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPHdyE+Du8jQwynR3XixABYdChnRMB8GA1UdIwQY MBaAFG3ykyEtJdSGPjhrnEgN3JvnOBJPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYmZLVElTMGwxSVktT0d1Y1NBM2NtLWM0RWs4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85ZS9hZWNiOGEtZDc2My00NjQyLTgwMzYt ZjQwMDQwMmI1MzZjLzEvYmZLVElTMGwxSVktT0d1Y1NBM2NtLWM0RWs4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85ZS9hZWNiOGEtZDc2My00NjQyLTgwMzYtZjQwMDQwMmI1MzZj LzEvYmZLVElTMGwxSVktT0d1Y1NBM2NtLWM0RWs4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdmVDpHsT bziVvmuY5/zoTMBxds00JeG7hzfXcjcllHQLfFvm0v2gq7x7Qbj7Xm3glLvuankK tSZzfZzpjkaAqloooe1Pj4bmWBwQEPU/IOcs47Cvm5Qo1m4aKPB0PP/48nZ75EKR kWBarWp8k8AnPGpkJZZ9VXxo/izY6w5yABfUHtQggX00GhykdEGgqxY5vrNy8D+v 0GeuGpCxRPH7vJXq6I3FFUPDr+YtXGX+5N4jznjLIK6TCTL5X1cWbDHLG/9FIxQ7 gNOSVWwvqiAhBFvnHIRX9y60YLyT378D8SCtCwSYSMOguhZG8SRtWmdfZ9NjeRyS 66h1ppJ8QRPZ4Q== -----END CERTIFICATE-----Generated at Mon Jan 26 01:47:32 2026 by rpki-client