This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft File: zS0OOdePxiAiVaW0rbVFg9ne3c4.mft (raw, json) Hash identifier: z2NzhDgj2NaOBWYBFc6IUOhqOyQlAPDN4434jPy4ghA= Subject key identifier: 1B:74:2F:CE:E2:FB:3E:8E:B2:B6:97:A0:D3:71:D7:20:18:5F:0B:3F Authority key identifier: CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE Certificate issuer: /CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce Certificate serial: 019C43228B3AC605BE4A89D629ADDB947197 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft Manifest number: 0B34 Signing time: Mon 09 Feb 2026 16:01:03 +0000 Manifest this update: Mon 09 Feb 2026 16:01:03 +0000 Manifest next update: Tue 10 Feb 2026 16:01:03 +0000 Files and hashes: 1: BzcIlfSqWBkxCx6sQahLAYgQl9U.roa (hash: iEU6LtcxUGPF+befnk/JbzTRId/51aZ7BTsMTWVBJf8=) 2: zS0OOdePxiAiVaW0rbVFg9ne3c4.crl (hash: OcEwEPLNE/V6NeIIYKu3y9cLAH1XotErgP4WVY6/B7s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:8b:3a:c6:05:be:4a:89:d6:29:ad:db:94:71:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd2d0e39d78fc6202255a5b4adb54583d9deddce Validity Not Before: Feb 9 16:01:03 2026 GMT Not After : Feb 10 16:01:03 2026 GMT Subject: CN=1b742fcee2fb3e8eb2b697a0d371d720185f0b3f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:ce:12:be:d2:d3:25:cb:8a:ec:c0:76:85:88: 14:18:e7:27:ef:dd:23:b2:42:06:6d:4f:14:18:e9: b0:be:14:c2:4a:bd:51:e0:2a:d5:6f:9c:aa:e7:1c: f6:7e:79:25:98:bb:bc:2d:8b:7f:2e:34:87:09:e1: 59:29:5e:74:0f:7d:73:2c:3d:81:7e:85:81:33:84: d2:9a:04:f4:59:cc:e7:75:70:25:0c:0c:a0:e6:f6: d0:c6:8d:99:d0:6a:3e:1b:66:28:45:25:2a:cb:ab: f6:c4:28:31:94:a9:4c:e3:bf:dc:78:c4:8b:47:59: dd:bc:52:34:31:ca:34:98:56:ff:0f:bd:e9:26:75: 77:5e:83:71:20:53:7d:2d:63:69:c9:7a:4d:3d:55: d6:73:62:f1:75:6a:f9:4c:db:7b:93:b9:6d:31:78: 93:c6:4d:89:83:3b:4e:bc:2b:3f:51:a2:dc:8b:57: 39:06:ac:90:4c:85:a4:5e:60:ee:33:6f:e0:b7:a4: 56:63:a0:18:00:d5:f6:14:5b:de:8a:91:69:76:17: b3:10:19:90:99:3f:17:32:81:0f:7f:bb:e8:30:97: 29:62:1a:0a:ce:3b:8c:16:52:42:e4:3c:f6:fc:33: c3:69:a3:e4:8b:5a:23:04:9a:da:ba:4b:42:65:bc: ef:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:74:2F:CE:E2:FB:3E:8E:B2:B6:97:A0:D3:71:D7:20:18:5F:0B:3F X509v3 Authority Key Identifier: keyid:CD:2D:0E:39:D7:8F:C6:20:22:55:A5:B4:AD:B5:45:83:D9:DE:DD:CE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zS0OOdePxiAiVaW0rbVFg9ne3c4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/05/51885b-5693-4892-a1d4-1a19792a1d26/1/zS0OOdePxiAiVaW0rbVFg9ne3c4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:8d:80:53:5f:10:8f:51:7f:53:eb:8f:c7:ad:0a:2a:ee:12: 1f:8b:b0:4e:6e:ad:97:66:57:3c:fe:6a:73:00:85:96:9d:61: 3d:c8:12:6f:ca:05:8a:d0:5f:18:0f:15:90:c9:9b:6c:ce:e3: f3:e9:3a:76:61:d8:75:b0:da:07:f3:19:32:bc:b9:f9:5d:a3: 3a:d0:ec:f1:5e:79:dc:fe:7f:ba:ff:b2:af:29:b8:8f:23:80: 49:2f:15:99:2c:f0:f5:d3:43:27:f6:be:a9:40:1e:af:cf:9e: 06:e9:45:b8:57:4a:1d:bb:fe:58:cf:2d:da:e8:c8:5c:c9:ae: 89:cc:d0:95:86:8f:f4:28:84:93:f1:1b:c9:c2:f5:4d:1c:63: bc:40:5d:e1:25:57:42:64:14:94:be:c0:79:31:80:3e:24:73: eb:b8:22:91:25:86:1d:70:8f:d9:c8:a5:c3:6e:7f:d4:ef:b9: d6:1f:c8:38:72:9b:87:d7:2d:9c:3f:51:0e:c1:57:b1:56:96: ca:32:42:12:5b:5d:79:3f:7c:a4:b6:7c:cf:cf:79:d0:1e:f8: 13:ae:6a:3f:e2:25:4c:6b:91:c5:bf:cc:32:2f:57:08:54:50: 57:5a:a3:bc:bc:f8:3d:3f:97:8b:c6:8f:3e:8c:0b:90:c0:c7: 3b:f9:be:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIos6xgW+SonWKa3blHGXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMmQwZTM5ZDc4ZmM2MjAyMjU1YTViNGFkYjU0NTgzZDlk ZWRkY2UwHhcNMjYwMjA5MTYwMTAzWhcNMjYwMjEwMTYwMTAzWjAzMTEwLwYDVQQD EygxYjc0MmZjZWUyZmIzZThlYjJiNjk3YTBkMzcxZDcyMDE4NWYwYjNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4M4SvtLTJcuK7MB2hYgUGOcn790j skIGbU8UGOmwvhTCSr1R4CrVb5yq5xz2fnklmLu8LYt/LjSHCeFZKV50D31zLD2B foWBM4TSmgT0WczndXAlDAyg5vbQxo2Z0Go+G2YoRSUqy6v2xCgxlKlM47/ceMSL R1ndvFI0Mco0mFb/D73pJnV3XoNxIFN9LWNpyXpNPVXWc2LxdWr5TNt7k7ltMXiT xk2JgztOvCs/UaLci1c5BqyQTIWkXmDuM2/gt6RWY6AYANX2FFveipFpdhezEBmQ mT8XMoEPf7voMJcpYhoKzjuMFlJC5Dz2/DPDaaPki1ojBJrauktCZbzvbQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBt0L87i+z6OsraXoNNx1yAYXws/MB8GA1UdIwQY MBaAFM0tDjnXj8YgIlWltK21RYPZ3t3OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNS81MTg4NWItNTY5My00ODkyLWExZDQt MWExOTc5MmExZDI2LzEvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNS81MTg4NWItNTY5My00ODkyLWExZDQtMWExOTc5MmExZDI2 LzEvelMwT09kZVB4aUFpVmFXMHJiVkZnOW5lM2M0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh42AU18Q j1F/U+uPx60KKu4SH4uwTm6tl2ZXPP5qcwCFlp1hPcgSb8oFitBfGA8VkMmbbM7j 8+k6dmHYdbDaB/MZMry5+V2jOtDs8V553P5/uv+yrym4jyOASS8VmSzw9dNDJ/a+ qUAer8+eBulFuFdKHbv+WM8t2ujIXMmuiczQlYaP9CiEk/EbycL1TRxjvEBd4SVX QmQUlL7AeTGAPiRz67gikSWGHXCP2cilw25/1O+51h/IOHKbh9ctnD9RDsFXsVaW yjJCEltdeT98pLZ8z8950B74E65qP+IlTGuRxb/MMi9XCFRQV1qjvLz4PT+Xi8aP PowLkMDHO/m+4A== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:09 2026 by rpki-client