This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft File: ZD2vEi46h6yqb9tiw1olKhmaWNk.mft (raw, json) Hash identifier: Llso2s7fZPxr2g9d6u0bxoxtqDnqUDpLTQDq1C/njzI= Subject key identifier: 70:BB:A2:35:8F:EC:8A:08:C5:9C:C5:BA:43:6D:F6:1E:32:F1:5C:C3 Authority key identifier: 64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9 Certificate issuer: /CN=643daf122e3a87acaa6fdb62c35a252a199a58d9 Certificate serial: 019C43C72F9FE84CFF6E6549E10FEA501953 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft Manifest number: 0F94 Signing time: Mon 09 Feb 2026 19:00:53 +0000 Manifest this update: Mon 09 Feb 2026 19:00:53 +0000 Manifest next update: Tue 10 Feb 2026 19:00:53 +0000 Files and hashes: 1: E02kulG3cuFET7qCfIGELuqcrIw.roa (hash: PQPtlTXvYqFKCXRfSmjkrshxIArKKipQAXnmpgfBnic=) 2: ZD2vEi46h6yqb9tiw1olKhmaWNk.crl (hash: 8vJCTnDd5CRJBgeeoo1BN6kWTmzaV8RGDjPHAL+s2I4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.crl rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:2f:9f:e8:4c:ff:6e:65:49:e1:0f:ea:50:19:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=643daf122e3a87acaa6fdb62c35a252a199a58d9 Validity Not Before: Feb 9 19:00:53 2026 GMT Not After : Feb 10 19:00:53 2026 GMT Subject: CN=70bba2358fec8a08c59cc5ba436df61e32f15cc3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:af:fc:63:56:8c:4f:0b:97:b1:29:08:0b:65: 59:10:ba:f3:d7:67:92:d2:31:d1:b8:38:8b:17:bb: 85:ec:98:93:1d:a6:e0:76:3b:9a:bb:5d:13:e1:d1: 8d:92:1e:ef:e5:aa:79:0b:43:4d:eb:ba:b9:cd:e8: b9:54:28:1e:9f:e5:e7:41:2b:8c:62:5d:d4:b1:30: 48:65:b3:16:ba:b0:2e:e6:65:d8:e5:ea:2f:c8:5d: 78:27:b1:bb:16:60:fc:a9:4f:4d:a3:f7:03:3d:10: 25:5f:b5:6f:d6:84:2f:28:66:c4:0f:19:28:87:2c: fa:a5:e7:fb:93:00:5e:83:8e:64:d2:63:37:b8:20: bb:77:98:11:d1:23:9c:1d:db:41:4c:86:51:f2:cb: 87:9c:33:68:9d:9a:5b:ab:87:14:7a:50:1b:b6:27: 91:18:c3:30:b5:e0:be:ba:ff:f5:83:ff:87:c0:18: d9:b1:db:b4:6b:97:20:75:73:a8:94:72:84:20:f9: 2f:eb:54:4d:5a:68:49:d8:e0:28:89:58:e9:da:68: e5:b9:70:66:fd:18:d7:d3:82:46:99:1d:dc:8e:c1: b9:e2:01:ff:b7:62:9c:05:e5:a4:58:74:cc:da:2b: 57:e3:2e:5c:57:75:50:23:3b:e5:41:b4:ce:f0:5d: 8e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:BB:A2:35:8F:EC:8A:08:C5:9C:C5:BA:43:6D:F6:1E:32:F1:5C:C3 X509v3 Authority Key Identifier: keyid:64:3D:AF:12:2E:3A:87:AC:AA:6F:DB:62:C3:5A:25:2A:19:9A:58:D9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZD2vEi46h6yqb9tiw1olKhmaWNk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/ed3d4a-704f-4aa4-821f-dcd5e9478084/1/ZD2vEi46h6yqb9tiw1olKhmaWNk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:04:8b:c2:10:b9:82:84:ee:14:b2:ba:86:84:34:61:ce:9b: 54:91:d1:25:5a:c6:e6:52:93:c0:fc:15:74:9b:ea:b2:17:89: 39:ff:a0:d7:62:03:43:4f:81:95:41:2d:a8:9f:e8:55:2e:98: ed:21:b5:b8:e0:5b:43:8d:d7:66:d8:d4:b1:b0:7e:0d:a0:d0: fc:af:25:fc:af:38:f7:ae:5e:15:91:93:6b:a1:13:2f:62:7a: e8:29:02:4b:9a:a9:54:bd:80:92:c3:fc:9c:0f:39:76:b0:61: 71:f1:3f:4f:11:7e:63:50:b7:88:78:21:cb:4f:dd:3e:c1:bf: 84:3d:f4:5d:eb:01:81:6e:84:24:fa:bc:ea:d9:d5:39:89:25: 1f:d3:ce:93:87:5e:40:6c:56:cd:a9:1a:e2:39:93:eb:35:11: b6:a3:62:f8:39:83:e4:5e:93:fe:2a:60:c2:28:56:dd:08:07: b7:b4:5d:d7:cc:1d:ae:76:cb:1c:fd:40:29:3a:3b:0e:7a:ed: a3:f8:d6:6e:8e:39:62:9b:04:23:e6:a4:4b:ac:bb:d8:89:f4: f1:26:45:f4:93:00:67:9b:26:62:3e:23:27:6c:8a:2c:40:36: b3:df:a5:4d:47:ce:90:7d:0d:67:d1:91:69:66:6a:88:ca:24: 89:b7:b9:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxy+f6Ez/bmVJ4Q/qUBlTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0M2RhZjEyMmUzYTg3YWNhYTZmZGI2MmMzNWEyNTJhMTk5 YTU4ZDkwHhcNMjYwMjA5MTkwMDUzWhcNMjYwMjEwMTkwMDUzWjAzMTEwLwYDVQQD Eyg3MGJiYTIzNThmZWM4YTA4YzU5Y2M1YmE0MzZkZjYxZTMyZjE1Y2MzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr6/8Y1aMTwuXsSkIC2VZELrz12eS 0jHRuDiLF7uF7JiTHabgdjuau10T4dGNkh7v5ap5C0NN67q5zei5VCgen+XnQSuM Yl3UsTBIZbMWurAu5mXY5eovyF14J7G7FmD8qU9No/cDPRAlX7Vv1oQvKGbEDxko hyz6pef7kwBeg45k0mM3uCC7d5gR0SOcHdtBTIZR8suHnDNonZpbq4cUelAbtieR GMMwteC+uv/1g/+HwBjZsdu0a5cgdXOolHKEIPkv61RNWmhJ2OAoiVjp2mjluXBm /RjX04JGmR3cjsG54gH/t2KcBeWkWHTM2itX4y5cV3VQIzvlQbTO8F2OAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHC7ojWP7IoIxZzFukNt9h4y8VzDMB8GA1UdIwQY MBaAFGQ9rxIuOoesqm/bYsNaJSoZmljZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkQydkVpNDZoNnlxYjl0aXcxb2xLaG1hV05rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9lZDNkNGEtNzA0Zi00YWE0LTgyMWYt ZGNkNWU5NDc4MDg0LzEvWkQydkVpNDZoNnlxYjl0aXcxb2xLaG1hV05rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9lZDNkNGEtNzA0Zi00YWE0LTgyMWYtZGNkNWU5NDc4MDg0 LzEvWkQydkVpNDZoNnlxYjl0aXcxb2xLaG1hV05rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYgSLwhC5 goTuFLK6hoQ0Yc6bVJHRJVrG5lKTwPwVdJvqsheJOf+g12IDQ0+BlUEtqJ/oVS6Y 7SG1uOBbQ43XZtjUsbB+DaDQ/K8l/K84965eFZGTa6ETL2J66CkCS5qpVL2AksP8 nA85drBhcfE/TxF+Y1C3iHghy0/dPsG/hD30XesBgW6EJPq86tnVOYklH9POk4de QGxWzaka4jmT6zURtqNi+DmD5F6T/ipgwihW3QgHt7Rd18wdrnbLHP1AKTo7Dnrt o/jWbo45YpsEI+akS6y72In08SZF9JMAZ5smYj4jJ2yKLEA2s9+lTUfOkH0NZ9GR aWZqiMokibe5SA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:29 2026 by rpki-client