This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft File: mZK1NCb7YU2aWm2D9ABWamYMndI.mft (raw, json) Hash identifier: aaocodGtT587pLVaPazxIAWeNg8Zkyj+0nvjG0+agic= Subject key identifier: BE:85:5F:83:71:A4:30:4B:90:0F:C7:A9:1A:A9:7E:DD:40:9A:94:51 Authority key identifier: 99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2 Certificate issuer: /CN=9992b53426fb614d9a5a6d83f400566a660c9dd2 Certificate serial: 019C41A2196F03C8EFD2EEF82F506C6990C8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft Manifest number: 13E3 Signing time: Mon 09 Feb 2026 09:01:08 +0000 Manifest this update: Mon 09 Feb 2026 09:01:08 +0000 Manifest next update: Tue 10 Feb 2026 09:01:08 +0000 Files and hashes: 1: LKFdqAxekSyGKQc0Md8_7Xelo-E.roa (hash: hzROPb2XKPcBYg2mXSPUmlxSomnvcQdFm4oNZy6YiVs=) 2: mZK1NCb7YU2aWm2D9ABWamYMndI.crl (hash: mUcaEPQTY574MioUF3PU6errFdnbjiNQe2EkIU26uRo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:19:6f:03:c8:ef:d2:ee:f8:2f:50:6c:69:90:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9992b53426fb614d9a5a6d83f400566a660c9dd2 Validity Not Before: Feb 9 09:01:08 2026 GMT Not After : Feb 10 09:01:08 2026 GMT Subject: CN=be855f8371a4304b900fc7a91aa97edd409a9451 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f7:4b:1e:f4:f0:44:06:a4:17:4f:41:b1:ea: 23:86:b1:d6:d6:66:2d:87:39:c9:c9:54:bc:3b:d3: 3d:47:db:3b:03:01:5a:2e:ba:58:ec:7e:4c:b6:9a: 57:31:5f:79:f8:94:a2:08:64:c2:f8:e0:b4:e5:95: be:6a:0e:6b:a6:55:0a:26:7b:94:22:3f:ce:95:ca: 13:df:6f:bd:e6:0a:86:ab:8f:17:c7:f0:67:84:10: e5:51:aa:51:34:63:7c:62:3f:f2:53:f3:e4:42:ce: 15:18:3b:8d:1a:7f:1d:d6:1f:d9:03:85:f6:ce:82: a1:01:b0:2c:4c:8d:b9:89:d2:6f:a0:ab:5b:a5:19: 41:64:b7:68:64:86:b3:d7:c6:61:e1:49:1f:a4:b8: 0c:9e:2d:17:4b:e5:41:38:87:12:d1:b0:6d:f8:14: ff:a3:53:ff:bc:98:ea:a5:ef:68:cb:3b:c8:9c:60: 10:b0:32:37:81:56:01:c0:05:04:dc:2f:88:a5:33: a5:7c:a8:be:f4:a3:3a:e5:da:47:68:d6:7a:b5:1b: 11:3a:27:73:16:92:5f:8e:1a:fe:6f:61:b6:32:22: 6c:ab:1f:2f:e9:6a:2d:90:3a:85:27:d7:ef:eb:ad: ac:c8:35:3b:5b:88:cf:b6:da:c9:d0:b9:a6:7a:9c: f3:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:85:5F:83:71:A4:30:4B:90:0F:C7:A9:1A:A9:7E:DD:40:9A:94:51 X509v3 Authority Key Identifier: keyid:99:92:B5:34:26:FB:61:4D:9A:5A:6D:83:F4:00:56:6A:66:0C:9D:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mZK1NCb7YU2aWm2D9ABWamYMndI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/90172a-969b-46da-8088-791a62d2d8ab/1/mZK1NCb7YU2aWm2D9ABWamYMndI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:68:0d:32:6c:05:4e:25:82:79:ad:dd:12:0a:af:00:57:d4: 98:79:73:e8:e3:25:b0:b7:00:56:08:ac:b6:a4:70:59:64:22: 28:e0:5e:b1:f2:4e:7f:45:96:6d:3c:14:93:e2:00:64:ba:f5: bd:0e:72:f3:25:20:6a:35:8a:20:37:f2:a8:f8:d0:0b:72:5a: 28:59:26:42:fb:a5:e1:e0:18:44:92:66:35:2d:b5:ba:1a:ef: c6:c3:d4:65:77:61:93:ca:c4:df:45:9a:e3:a2:aa:8f:2d:63: 09:6f:9c:ed:22:bf:02:c0:31:79:44:c0:4c:da:bc:a3:8f:b3: d8:c7:96:f7:55:9f:00:b3:a2:c4:42:85:37:61:5e:18:84:a1: 1b:6d:18:57:f9:93:bd:b5:92:a0:de:6c:1b:72:b9:0a:cf:96: 1f:9f:6e:dd:59:6d:ff:d2:bc:96:9a:1d:33:89:e7:92:7a:0c: 4b:a6:8b:80:3e:16:ec:df:06:f4:16:2c:81:49:08:9d:88:44: fd:80:ee:a5:86:91:35:96:dc:3c:85:c9:3b:47:4a:84:cc:14: d6:50:d9:e3:12:26:95:70:a0:ec:16:dd:77:e4:8c:f7:df:22: 2f:a9:a4:39:6d:85:8e:71:b8:f0:76:5a:a9:2d:b2:28:85:ad: 14:3c:c8:9d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBohlvA8jv0u74L1BsaZDIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk5OTJiNTM0MjZmYjYxNGQ5YTVhNmQ4M2Y0MDA1NjZhNjYw YzlkZDIwHhcNMjYwMjA5MDkwMTA4WhcNMjYwMjEwMDkwMTA4WjAzMTEwLwYDVQQD EyhiZTg1NWY4MzcxYTQzMDRiOTAwZmM3YTkxYWE5N2VkZDQwOWE5NDUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsfdLHvTwRAakF09BseojhrHW1mYt hznJyVS8O9M9R9s7AwFaLrpY7H5MtppXMV95+JSiCGTC+OC05ZW+ag5rplUKJnuU Ij/OlcoT32+95gqGq48Xx/BnhBDlUapRNGN8Yj/yU/PkQs4VGDuNGn8d1h/ZA4X2 zoKhAbAsTI25idJvoKtbpRlBZLdoZIaz18Zh4UkfpLgMni0XS+VBOIcS0bBt+BT/ o1P/vJjqpe9oyzvInGAQsDI3gVYBwAUE3C+IpTOlfKi+9KM65dpHaNZ6tRsROidz FpJfjhr+b2G2MiJsqx8v6WotkDqFJ9fv662syDU7W4jPttrJ0LmmepzzkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL6FX4NxpDBLkA/HqRqpft1AmpRRMB8GA1UdIwQY MBaAFJmStTQm+2FNmlptg/QAVmpmDJ3SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbVpLMU5DYjdZVTJhV20yRDlBQldhbVlNbmRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC85MDE3MmEtOTY5Yi00NmRhLTgwODgt NzkxYTYyZDJkOGFiLzEvbVpLMU5DYjdZVTJhV20yRDlBQldhbVlNbmRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC85MDE3MmEtOTY5Yi00NmRhLTgwODgtNzkxYTYyZDJkOGFi LzEvbVpLMU5DYjdZVTJhV20yRDlBQldhbVlNbmRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcmgNMmwF TiWCea3dEgqvAFfUmHlz6OMlsLcAVgistqRwWWQiKOBesfJOf0WWbTwUk+IAZLr1 vQ5y8yUgajWKIDfyqPjQC3JaKFkmQvul4eAYRJJmNS21uhrvxsPUZXdhk8rE30Wa 46Kqjy1jCW+c7SK/AsAxeUTATNq8o4+z2MeW91WfALOixEKFN2FeGIShG20YV/mT vbWSoN5sG3K5Cs+WH59u3Vlt/9K8lpodM4nnknoMS6aLgD4W7N8G9BYsgUkInYhE /YDupYaRNZbcPIXJO0dKhMwU1lDZ4xImlXCg7Bbdd+SM998iL6mkOW2FjnG48HZa qS2yKIWtFDzInQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:35 2026 by rpki-client