This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft File: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft (raw, json) Hash identifier: j9XYkocyXa2XaNN5Qfq0b16ZEt5o8muiA4K/OUNJSyU= Subject key identifier: 1C:52:63:AC:5C:7A:78:EA:F7:CA:AB:6B:3D:54:B2:A1:AC:B1:96:70 Authority key identifier: 66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04 Certificate issuer: /CN=6694f5b0fab5fed2df9535e2a9c029f187d55404 Certificate serial: 019C42EB0037B11473580445A9CC9D552CE8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft Manifest number: 0930 Signing time: Mon 09 Feb 2026 15:00:23 +0000 Manifest this update: Mon 09 Feb 2026 15:00:23 +0000 Manifest next update: Tue 10 Feb 2026 15:00:23 +0000 Files and hashes: 1: PKBAlxhxjbQl3V5bDnuBzljib9Q.roa (hash: eWzoIIDioxxQX7PyiTO6rBCtAXhu7H8TtLvFoqesiBg=) 2: ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl (hash: ZkuqM673nz/FyNtHO9FyovmpyHWA1KiMW5ToXXKnAwU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:00:37:b1:14:73:58:04:45:a9:cc:9d:55:2c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6694f5b0fab5fed2df9535e2a9c029f187d55404 Validity Not Before: Feb 9 15:00:23 2026 GMT Not After : Feb 10 15:00:23 2026 GMT Subject: CN=1c5263ac5c7a78eaf7caab6b3d54b2a1acb19670 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:ee:10:21:fa:f7:79:51:32:ac:79:03:c5:78: fb:38:34:f2:16:01:1b:44:86:1b:7a:50:b2:68:31: d9:c4:2b:d3:5b:aa:22:cd:66:64:5b:c3:c4:95:31: 08:d8:94:76:3a:57:b4:71:b5:b3:d6:12:eb:fa:73: ad:50:d3:30:3f:97:9c:ef:92:c3:4c:e4:14:a8:81: 2d:89:04:17:36:c7:3c:ec:46:6b:f5:86:7a:44:cb: e7:32:b1:07:9a:1c:09:d4:53:0a:f5:68:ea:d5:2c: 58:76:0b:bd:9d:db:ce:f8:a7:c1:31:79:6f:44:ed: 04:be:61:1c:ff:cd:ef:c9:8b:ee:6c:9d:9f:87:c2: f5:4e:2f:b1:cb:cd:a4:eb:3c:e2:cd:9c:39:d1:d2: 70:81:47:45:56:bd:77:d9:f4:4d:82:e2:5d:d8:2a: 2e:f8:f5:34:f4:f7:58:db:44:9d:4f:f9:24:c4:2a: d3:2f:e2:cb:9e:3f:d3:f2:bf:a8:2d:3b:98:14:db: 19:51:c8:aa:9e:4d:b3:7b:7b:c1:85:c1:61:12:0b: 30:86:b5:5d:69:99:8a:a3:5c:89:61:e3:44:0f:de: 87:2c:51:cf:4c:4c:f8:14:b9:60:81:4c:ab:8d:0d: 5e:d4:22:10:b7:3d:b6:60:1d:9d:8b:47:93:42:92: e4:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:52:63:AC:5C:7A:78:EA:F7:CA:AB:6B:3D:54:B2:A1:AC:B1:96:70 X509v3 Authority Key Identifier: keyid:66:94:F5:B0:FA:B5:FE:D2:DF:95:35:E2:A9:C0:29:F1:87:D5:54:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/5bf30d-69eb-41a4-a90d-21b9f12d22f3/1/ZpT1sPq1_tLflTXiqcAp8YfVVAQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:f5:cc:cb:84:e6:57:50:c9:b1:51:61:a1:29:e6:f4:82:73: 71:fb:78:94:e7:b7:ec:5a:36:e3:80:89:c4:c1:bc:12:9f:aa: ab:87:79:46:68:03:f6:7a:31:b8:f3:17:45:dd:b3:fd:f6:a4: a9:67:aa:55:ee:ec:9e:93:7a:a4:33:80:73:89:2e:02:98:e3: 5a:dc:84:84:95:8f:bc:82:41:68:65:98:c2:4b:84:b9:ad:83: 3f:a5:c7:db:f0:b9:78:4b:86:21:76:3c:eb:c6:a6:44:91:8d: f9:f5:50:c5:04:40:68:8d:9b:7e:2d:ef:cf:73:4d:60:90:9b: b6:e1:70:5a:db:b9:cf:77:d2:f6:25:bc:5a:fc:e2:34:64:97: 75:eb:e9:29:76:13:cd:70:42:2b:da:d5:30:84:96:db:56:f4: 23:b7:93:54:46:84:e2:ad:b2:0d:05:96:16:9f:94:5c:e2:01: fe:99:27:d9:04:9a:4e:e2:a3:a3:48:f5:c1:3d:82:65:00:9d: 3c:74:09:8d:40:c9:ce:e9:4f:85:9f:73:c7:3e:94:4a:28:ec: 87:95:a5:b5:bd:cc:97:11:7f:91:31:cc:8c:6a:64:79:1a:be: a4:06:73:c9:49:2d:45:e5:34:91:fa:a4:7e:32:87:b4:08:83: 60:fc:80:a2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6wA3sRRzWARFqcydVSzoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2OTRmNWIwZmFiNWZlZDJkZjk1MzVlMmE5YzAyOWYxODdk NTU0MDQwHhcNMjYwMjA5MTUwMDIzWhcNMjYwMjEwMTUwMDIzWjAzMTEwLwYDVQQD EygxYzUyNjNhYzVjN2E3OGVhZjdjYWFiNmIzZDU0YjJhMWFjYjE5NjcwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6O4QIfr3eVEyrHkDxXj7ODTyFgEb RIYbelCyaDHZxCvTW6oizWZkW8PElTEI2JR2Ole0cbWz1hLr+nOtUNMwP5ec75LD TOQUqIEtiQQXNsc87EZr9YZ6RMvnMrEHmhwJ1FMK9Wjq1SxYdgu9ndvO+KfBMXlv RO0EvmEc/83vyYvubJ2fh8L1Ti+xy82k6zzizZw50dJwgUdFVr132fRNguJd2Cou +PU09PdY20SdT/kkxCrTL+LLnj/T8r+oLTuYFNsZUciqnk2ze3vBhcFhEgswhrVd aZmKo1yJYeNED96HLFHPTEz4FLlggUyrjQ1e1CIQtz22YB2di0eTQpLkiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBxSY6xcenjq98qraz1UsqGssZZwMB8GA1UdIwQY MBaAFGaU9bD6tf7S35U14qnAKfGH1VQEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi81YmYzMGQtNjllYi00MWE0LWE5MGQt MjFiOWYxMmQyMmYzLzEvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi81YmYzMGQtNjllYi00MWE0LWE5MGQtMjFiOWYxMmQyMmYz LzEvWnBUMXNQcTFfdExmbFRYaXFjQXA4WWZWVkFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVvXMy4Tm V1DJsVFhoSnm9IJzcft4lOe37Fo244CJxMG8Ep+qq4d5RmgD9noxuPMXRd2z/fak qWeqVe7snpN6pDOAc4kuApjjWtyEhJWPvIJBaGWYwkuEua2DP6XH2/C5eEuGIXY8 68amRJGN+fVQxQRAaI2bfi3vz3NNYJCbtuFwWtu5z3fS9iW8WvziNGSXdevpKXYT zXBCK9rVMISW21b0I7eTVEaE4q2yDQWWFp+UXOIB/pkn2QSaTuKjo0j1wT2CZQCd PHQJjUDJzulPhZ9zxz6USijsh5Wltb3MlxF/kTHMjGpkeRq+pAZzyUktReU0kfqk fjKHtAiDYPyAog== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:20 2026 by rpki-client