This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft File: MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft (raw, json) Hash identifier: p5aRlJzDDDSY1/9c7EY/TajL2fZ/k4RDs2HNq0imk+4= Subject key identifier: 5E:6D:E6:1F:53:10:A8:27:74:8E:B0:2C:EB:9D:67:51:76:8A:01:6A Authority key identifier: 31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9 Certificate issuer: /CN=3195f73419e822329794cf17fba7e93f375374a9 Certificate serial: 019C420FB455472FCB7CD9254737E3EF1AE5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft Manifest number: 13B6 Signing time: Mon 09 Feb 2026 11:00:51 +0000 Manifest this update: Mon 09 Feb 2026 11:00:51 +0000 Manifest next update: Tue 10 Feb 2026 11:00:51 +0000 Files and hashes: 1: LxGPVJPyHWs5hHWhFZXK4a7O2-M.roa (hash: DEIc9UcHZJ6CJFEO4vc1601YJk4dflrb/oBYiYPKpTI=) 2: MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl (hash: yK1qY1k4oT0EfI1qS4FSAThcIoLMla8Mt5vDaf5goGQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:b4:55:47:2f:cb:7c:d9:25:47:37:e3:ef:1a:e5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3195f73419e822329794cf17fba7e93f375374a9 Validity Not Before: Feb 9 11:00:51 2026 GMT Not After : Feb 10 11:00:51 2026 GMT Subject: CN=5e6de61f5310a827748eb02ceb9d6751768a016a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4c:cd:b1:44:c9:f0:8f:5b:a6:37:19:a9:13: 76:6a:31:a5:58:b6:34:02:cb:e0:1a:f6:06:c0:19: 49:3a:e7:3d:7b:d0:99:a5:4b:5a:ef:c3:c1:3e:68: fa:3a:5f:7d:51:cc:82:ad:2f:1f:37:11:86:d6:6a: 19:86:bb:5e:35:54:b1:58:b9:7b:8a:b4:28:97:ef: 48:21:ed:b6:d7:1c:ab:67:24:e0:3e:be:fd:ba:70: db:21:47:e9:56:3a:65:f5:3b:f8:23:b9:10:6f:5d: 5f:27:c8:8a:3c:c7:e4:b7:39:9b:33:de:b1:a2:29: 38:7c:8f:f7:17:8e:eb:85:a9:bd:39:20:38:fe:08: c9:bb:f0:e6:50:0d:47:3e:cc:9a:a7:54:79:df:cf: f9:9a:e7:91:e7:ed:0a:1f:c4:09:27:13:f1:93:88: f0:dc:e2:c0:c1:f3:df:79:a8:cc:c3:f7:0e:fc:19: ec:f2:09:bf:9a:63:13:30:70:21:74:a4:45:f0:04: 0a:8e:ad:c6:3b:57:6f:19:38:40:5e:96:99:f4:fe: 03:5f:fb:41:ff:94:8b:72:7a:27:c5:fd:e0:03:af: 75:eb:f9:c1:66:25:98:e9:4f:f6:d6:1f:6b:87:17: d9:e7:7d:75:df:15:8b:df:b6:b4:34:2f:e5:36:6c: 70:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:6D:E6:1F:53:10:A8:27:74:8E:B0:2C:EB:9D:67:51:76:8A:01:6A X509v3 Authority Key Identifier: keyid:31:95:F7:34:19:E8:22:32:97:94:CF:17:FB:A7:E9:3F:37:53:74:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZX3NBnoIjKXlM8X-6fpPzdTdKk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/5a448a-5e7a-47e0-87da-cdcfbb100447/1/MZX3NBnoIjKXlM8X-6fpPzdTdKk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:09:6c:20:ae:b4:cd:9f:83:df:93:43:ef:f4:f4:84:2a:ba: 83:e9:d6:04:2a:94:7e:fb:a2:09:24:0f:07:7c:08:26:b3:ec: ca:5b:f7:4f:a7:40:a8:a9:1b:4a:e3:d7:11:81:57:3e:ca:a3: 34:19:1b:ef:f3:15:3c:94:0a:70:98:0b:69:c1:75:b7:96:b3: 52:2e:aa:e3:bd:1e:a3:d8:fb:16:15:0b:61:23:99:d7:dd:65: 5f:fc:9e:42:07:2e:e4:ae:5b:df:56:e8:d3:5c:ce:3f:c3:13: 85:5b:50:73:81:8a:e7:16:d8:cd:0f:5e:b0:a5:76:b4:2a:db: cc:0e:3c:eb:04:0b:e4:bb:92:fc:09:24:ae:84:59:69:c9:6d: 85:67:78:c0:ab:93:d0:15:06:29:96:0f:1a:82:a3:bb:7d:ac: b2:5d:bf:71:b7:91:49:74:f7:0f:2b:71:8f:59:52:87:a2:20: 7f:30:81:27:a9:89:70:fa:63:ba:54:6c:97:a0:20:81:a4:e1: bc:75:6e:e2:86:9b:a4:eb:10:dc:48:77:91:88:03:5c:f4:7e: 6b:7d:50:f0:a5:e5:08:c0:3c:77:a3:ea:52:61:56:83:c1:8d: 65:11:0a:7f:b3:67:f0:5f:8d:95:78:84:82:73:9b:ce:82:ab: 20:2e:22:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD7RVRy/LfNklRzfj7xrlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxOTVmNzM0MTllODIyMzI5Nzk0Y2YxN2ZiYTdlOTNmMzc1 Mzc0YTkwHhcNMjYwMjA5MTEwMDUxWhcNMjYwMjEwMTEwMDUxWjAzMTEwLwYDVQQD Eyg1ZTZkZTYxZjUzMTBhODI3NzQ4ZWIwMmNlYjlkNjc1MTc2OGEwMTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr0zNsUTJ8I9bpjcZqRN2ajGlWLY0 AsvgGvYGwBlJOuc9e9CZpUta78PBPmj6Ol99UcyCrS8fNxGG1moZhrteNVSxWLl7 irQol+9IIe221xyrZyTgPr79unDbIUfpVjpl9Tv4I7kQb11fJ8iKPMfktzmbM96x oik4fI/3F47rham9OSA4/gjJu/DmUA1HPsyap1R538/5mueR5+0KH8QJJxPxk4jw 3OLAwfPfeajMw/cO/Bns8gm/mmMTMHAhdKRF8AQKjq3GO1dvGThAXpaZ9P4DX/tB /5SLcnonxf3gA6916/nBZiWY6U/21h9rhxfZ53113xWL37a0NC/lNmxwHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFF5t5h9TEKgndI6wLOudZ1F2igFqMB8GA1UdIwQY MBaAFDGV9zQZ6CIyl5TPF/un6T83U3SpMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEt Y2RjZmJiMTAwNDQ3LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81YTQ0OGEtNWU3YS00N2UwLTg3ZGEtY2RjZmJiMTAwNDQ3 LzEvTVpYM05Cbm9JaktYbE04WC02ZnBQemRUZEtrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjQlsIK60 zZ+D35ND7/T0hCq6g+nWBCqUfvuiCSQPB3wIJrPsylv3T6dAqKkbSuPXEYFXPsqj NBkb7/MVPJQKcJgLacF1t5azUi6q470eo9j7FhULYSOZ191lX/yeQgcu5K5b31bo 01zOP8MThVtQc4GK5xbYzQ9esKV2tCrbzA486wQL5LuS/AkkroRZaclthWd4wKuT 0BUGKZYPGoKju32ssl2/cbeRSXT3Dytxj1lSh6IgfzCBJ6mJcPpjulRsl6AggaTh vHVu4oabpOsQ3Eh3kYgDXPR+a31Q8KXlCMA8d6PqUmFWg8GNZREKf7Nn8F+NlXiE gnObzoKrIC4iIw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:52 2026 by rpki-client