This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft File: ZKDbECcDCCx8pVSrtbInYAGNVj8.mft (raw, json) Hash identifier: o1xjurpZAYt8IveqzNtLGgkmNh0BNPDvYtSAYUZhz0U= Subject key identifier: D1:20:B2:AB:70:AE:6D:87:75:58:E2:95:15:05:73:A5:73:C3:95:F1 Authority key identifier: 64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F Certificate issuer: /CN=64a0db102703082c7ca554abb5b22760018d563f Certificate serial: 019C4390D2D39898D68BC3CD9978B311E267 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 18:01:30 +0000 Manifest this update: Mon 09 Feb 2026 18:01:30 +0000 Manifest next update: Tue 10 Feb 2026 18:01:30 +0000 Files and hashes: 1: VgL36YzjuUmby5Rqnxhdy5ZXUmI.roa (hash: N2wjkHViAzy8sVFwdBfW/Di47+eur/Hn5UR1A1vtI2w=) 2: ZKDbECcDCCx8pVSrtbInYAGNVj8.crl (hash: XqzPVIF30UuVXnAmLz9KIkoe5sFDlZEexFvjCmyWwsg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:d2:d3:98:98:d6:8b:c3:cd:99:78:b3:11:e2:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64a0db102703082c7ca554abb5b22760018d563f Validity Not Before: Feb 9 18:01:30 2026 GMT Not After : Feb 10 18:01:30 2026 GMT Subject: CN=d120b2ab70ae6d877558e295150573a573c395f1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:88:84:7f:19:59:59:c6:20:94:0f:3e:60:f2: ba:2e:45:6a:1f:00:d4:e1:33:52:bb:fa:e0:c4:b0: 29:0d:1a:6a:3a:89:3f:2d:14:81:8d:0d:0f:53:ac: 4e:e6:30:37:c6:f1:99:7e:36:c2:0a:98:91:38:78: a3:1d:2c:ef:5d:07:53:60:dd:a8:1b:cc:77:ca:33: c9:58:24:ac:8f:f4:86:89:e9:e2:71:70:ce:41:19: 2d:9b:8f:18:0e:8b:0a:80:b2:6c:e8:19:f2:3c:a6: b7:d2:e4:a1:25:2a:82:70:54:03:c0:7e:a2:7e:a6: f9:6d:8b:0e:b6:2f:2e:19:ec:ac:0c:49:e6:ca:7b: 76:7b:06:93:37:ab:d4:bb:b4:66:a1:f1:f2:6e:e5: af:13:bc:a0:ea:90:2a:92:55:5c:19:98:90:41:89: 44:6e:17:57:50:0c:cf:03:50:16:66:45:da:76:3e: 31:bb:cf:7a:55:9f:fe:ec:61:ff:1d:79:41:23:ee: a9:52:4f:9f:d4:81:be:0a:41:9f:36:6d:b5:02:58: 36:86:09:44:a5:cc:de:57:4c:a8:3b:08:2e:df:14: d4:cb:22:25:6c:79:15:eb:b7:7d:60:a7:09:8b:0a: e7:10:b6:34:d1:af:77:99:c3:c0:0a:3a:af:e3:85: 50:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:20:B2:AB:70:AE:6D:87:75:58:E2:95:15:05:73:A5:73:C3:95:F1 X509v3 Authority Key Identifier: keyid:64:A0:DB:10:27:03:08:2C:7C:A5:54:AB:B5:B2:27:60:01:8D:56:3F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKDbECcDCCx8pVSrtbInYAGNVj8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/f9a00a-84ee-47a0-9ea1-f179db5f04b6/1/ZKDbECcDCCx8pVSrtbInYAGNVj8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a5:00:58:ea:1e:56:88:70:ab:18:b1:24:e3:26:75:13:a7:0f: 58:67:43:50:90:d2:ec:ab:8f:9f:df:82:f4:fd:0d:9c:09:5e: 4d:fb:50:5c:b5:aa:86:5f:1c:9c:30:d5:74:12:f4:43:9f:f5: 7a:ed:1a:4a:c6:e6:a9:e5:94:6a:84:a4:1e:59:ff:05:e7:80: 72:1b:eb:e0:4e:71:55:bc:2c:6a:28:28:56:e9:8c:b7:89:9e: 09:83:6f:0f:94:28:f1:48:b3:c6:bc:b5:d0:1d:f5:42:db:8f: ee:eb:56:f5:5d:1c:6b:a9:1f:af:6d:13:ca:88:23:6a:bb:02: ef:15:b7:42:f5:35:59:d8:8d:8b:06:a3:6c:0a:09:c8:d0:64: ba:f9:e8:f2:12:b5:4b:0f:be:1b:0b:0d:4c:0a:9a:04:1a:69: e5:c1:22:fa:62:a2:a1:c3:34:77:2d:18:0e:f8:86:12:30:01: c3:28:77:8f:22:01:a7:59:c8:34:d8:d8:30:4c:e8:0c:7c:f6: c5:de:6d:5b:c9:50:97:ef:b5:29:aa:ae:39:61:c5:07:a2:8a: cb:8a:55:29:9f:d4:10:04:2c:ec:ea:5f:4a:44:b3:b0:0a:b5: b1:13:9e:32:59:51:ed:63:16:16:83:0b:1a:3f:d6:ef:04:4b: 22:95:3b:55 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkNLTmJjWi8PNmXizEeJnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YTBkYjEwMjcwMzA4MmM3Y2E1NTRhYmI1YjIyNzYwMDE4 ZDU2M2YwHhcNMjYwMjA5MTgwMTMwWhcNMjYwMjEwMTgwMTMwWjAzMTEwLwYDVQQD EyhkMTIwYjJhYjcwYWU2ZDg3NzU1OGUyOTUxNTA1NzNhNTczYzM5NWYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoIiEfxlZWcYglA8+YPK6LkVqHwDU 4TNSu/rgxLApDRpqOok/LRSBjQ0PU6xO5jA3xvGZfjbCCpiROHijHSzvXQdTYN2o G8x3yjPJWCSsj/SGienicXDOQRktm48YDosKgLJs6BnyPKa30uShJSqCcFQDwH6i fqb5bYsOti8uGeysDEnmynt2ewaTN6vUu7RmofHybuWvE7yg6pAqklVcGZiQQYlE bhdXUAzPA1AWZkXadj4xu896VZ/+7GH/HXlBI+6pUk+f1IG+CkGfNm21Alg2hglE pczeV0yoOwgu3xTUyyIlbHkV67d9YKcJiwrnELY00a93mcPACjqv44VQRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNEgsqtwrm2HdVjilRUFc6Vzw5XxMB8GA1UdIwQY MBaAFGSg2xAnAwgsfKVUq7WyJ2ABjVY/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWktEYkVDY0RDQ3g4cFZTcnRiSW5ZQUdOVmo4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wZC9mOWEwMGEtODRlZS00N2EwLTllYTEt ZjE3OWRiNWYwNGI2LzEvWktEYkVDY0RDQ3g4cFZTcnRiSW5ZQUdOVmo4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wZC9mOWEwMGEtODRlZS00N2EwLTllYTEtZjE3OWRiNWYwNGI2 LzEvWktEYkVDY0RDQ3g4cFZTcnRiSW5ZQUdOVmo4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApQBY6h5W iHCrGLEk4yZ1E6cPWGdDUJDS7KuPn9+C9P0NnAleTftQXLWqhl8cnDDVdBL0Q5/1 eu0aSsbmqeWUaoSkHln/BeeAchvr4E5xVbwsaigoVumMt4meCYNvD5Qo8Uizxry1 0B31QtuP7utW9V0ca6kfr20TyogjarsC7xW3QvU1WdiNiwajbAoJyNBkuvno8hK1 Sw++GwsNTAqaBBpp5cEi+mKiocM0dy0YDviGEjABwyh3jyIBp1nINNjYMEzoDHz2 xd5tW8lQl++1KaquOWHFB6KKy4pVKZ/UEAQs7OpfSkSzsAq1sROeMllR7WMWFoML Gj/W7wRLIpU7VQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:06 2026 by rpki-client