This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft File: zxNuAf-vhT27Klz8_l0bZ9IMILU.mft (raw, json) Hash identifier: 2ww1NFgsBuDTExs5klv/ZM0XKLmFSjXHOjgTVC8DXLI= Subject key identifier: A2:C6:FF:CC:85:15:F6:88:CB:13:3D:95:69:60:93:10:A9:89:21:87 Authority key identifier: CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5 Certificate issuer: /CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5 Certificate serial: 019C427D705CDE7B2714FCB4F2BD66D4690C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft Manifest number: 129A Signing time: Mon 09 Feb 2026 13:00:42 +0000 Manifest this update: Mon 09 Feb 2026 13:00:42 +0000 Manifest next update: Tue 10 Feb 2026 13:00:42 +0000 Files and hashes: 1: gCv9GsrB47w68fkCt0zJCC4RJMw.roa (hash: xbOO4Pn1uaeMtiQL/e3JD3h35YCVx46Ur2oVXzJ3jaY=) 2: zxNuAf-vhT27Klz8_l0bZ9IMILU.crl (hash: 34fahMhga7W1YihUtwXlVHU6bUCUeSR988H9/6xRIp8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:70:5c:de:7b:27:14:fc:b4:f2:bd:66:d4:69:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf136e01ffaf853dbb2a5cfcfe5d1b67d20c20b5 Validity Not Before: Feb 9 13:00:42 2026 GMT Not After : Feb 10 13:00:42 2026 GMT Subject: CN=a2c6ffcc8515f688cb133d9569609310a9892187 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:38:86:58:88:02:69:a1:97:ee:fc:ed:22: 29:c5:ff:a1:75:3e:36:b9:3d:98:4f:f1:ca:8a:71: 6f:c4:e4:32:05:1a:f6:62:aa:03:b7:b1:82:73:42: 03:59:b7:56:c9:a9:2e:f7:19:7d:b5:e8:51:7c:32: ac:43:e6:f7:a0:cd:28:98:f5:12:f4:3f:5c:50:dc: 91:c9:c9:2d:56:b7:8f:17:e8:02:d2:81:53:38:60: b0:ac:dc:9c:ed:60:57:2f:f2:d0:51:eb:4d:a7:72: 92:c7:95:e7:a6:c9:b7:51:b3:7f:9f:9e:00:8b:f7: 26:9d:9f:c3:16:52:e6:49:ac:ff:22:98:10:1b:5e: c6:de:ac:dd:8b:ea:c5:ad:64:1a:fb:2c:84:85:29: 87:5e:6b:3f:59:1e:37:39:4d:45:1d:13:4c:46:c2: 7f:d5:aa:3a:0a:24:ed:a7:b7:da:d1:49:75:86:05: 90:91:d8:d1:51:be:f8:8c:49:33:0c:d8:f8:da:6c: 29:3d:89:bf:4b:16:e4:27:e6:67:d7:87:99:12:34: 1a:be:ef:29:bf:a5:86:fe:67:f7:e4:b6:c2:d6:e5: c0:de:f8:be:20:24:5c:37:7d:3f:24:c8:c4:46:64: a0:7e:93:3c:96:90:45:3f:91:30:ae:2f:98:af:64: 97:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:C6:FF:CC:85:15:F6:88:CB:13:3D:95:69:60:93:10:A9:89:21:87 X509v3 Authority Key Identifier: keyid:CF:13:6E:01:FF:AF:85:3D:BB:2A:5C:FC:FE:5D:1B:67:D2:0C:20:B5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zxNuAf-vhT27Klz8_l0bZ9IMILU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/17/702564-50a5-4fad-a12f-65dba63b1a82/1/zxNuAf-vhT27Klz8_l0bZ9IMILU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:9a:b0:e3:c8:0b:f5:95:e0:77:ab:64:86:b9:79:2b:79:3c: 6c:c0:bc:b4:ac:bf:d1:27:0c:6a:66:0e:ca:f9:26:8a:ea:56: de:40:74:7c:4c:93:1c:65:c6:bd:45:18:22:81:0a:ca:80:b2: 67:fc:b3:76:be:54:4e:37:19:04:54:98:16:e8:40:64:ea:67: 0c:19:62:0e:c7:3a:94:a3:25:8a:31:5c:93:fb:28:31:3c:71: fb:db:80:c1:87:b3:36:6d:b6:13:38:cd:76:4f:51:ce:b8:80: 9d:42:2a:b9:ec:4b:33:97:c3:14:4a:d9:6c:69:90:5f:7b:b8: ba:67:74:d7:83:d8:78:df:01:be:8c:9a:6a:4d:eb:9c:ec:fb: ed:37:87:1e:16:44:27:d8:b7:40:8e:d3:79:f8:6b:32:50:d3: dc:35:68:78:77:a1:20:ce:81:41:b2:f4:96:4f:0d:e4:38:cc: 2a:47:94:68:18:0f:b7:a1:79:37:09:9d:63:c9:e2:fa:83:3e: 99:10:08:81:ff:94:67:b8:d9:2a:03:6b:55:ee:56:4b:2a:ea: d4:00:f3:c6:81:8e:21:72:7b:f1:b2:82:91:c8:d2:36:cf:6a: a0:c5:d2:d5:41:0e:48:c7:d7:6e:c4:7f:8a:4e:45:fe:e0:50: c1:a0:a5:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfXBc3nsnFPy08r1m1GkMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMTM2ZTAxZmZhZjg1M2RiYjJhNWNmY2ZlNWQxYjY3ZDIw YzIwYjUwHhcNMjYwMjA5MTMwMDQyWhcNMjYwMjEwMTMwMDQyWjAzMTEwLwYDVQQD EyhhMmM2ZmZjYzg1MTVmNjg4Y2IxMzNkOTU2OTYwOTMxMGE5ODkyMTg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz2M4hliIAmmhl+787SIpxf+hdT42 uT2YT/HKinFvxOQyBRr2YqoDt7GCc0IDWbdWyaku9xl9tehRfDKsQ+b3oM0omPUS 9D9cUNyRycktVrePF+gC0oFTOGCwrNyc7WBXL/LQUetNp3KSx5Xnpsm3UbN/n54A i/cmnZ/DFlLmSaz/IpgQG17G3qzdi+rFrWQa+yyEhSmHXms/WR43OU1FHRNMRsJ/ 1ao6CiTtp7fa0Ul1hgWQkdjRUb74jEkzDNj42mwpPYm/SxbkJ+Zn14eZEjQavu8p v6WG/mf35LbC1uXA3vi+ICRcN30/JMjERmSgfpM8lpBFP5Ewri+Yr2SXRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKLG/8yFFfaIyxM9lWlgkxCpiSGHMB8GA1UdIwQY MBaAFM8TbgH/r4U9uypc/P5dG2fSDCC1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenhOdUFmLXZoVDI3S2x6OF9sMGJaOUlNSUxVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNy83MDI1NjQtNTBhNS00ZmFkLWExMmYt NjVkYmE2M2IxYTgyLzEvenhOdUFmLXZoVDI3S2x6OF9sMGJaOUlNSUxVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNy83MDI1NjQtNTBhNS00ZmFkLWExMmYtNjVkYmE2M2IxYTgy LzEvenhOdUFmLXZoVDI3S2x6OF9sMGJaOUlNSUxVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWpqw48gL 9ZXgd6tkhrl5K3k8bMC8tKy/0ScMamYOyvkmiupW3kB0fEyTHGXGvUUYIoEKyoCy Z/yzdr5UTjcZBFSYFuhAZOpnDBliDsc6lKMlijFck/soMTxx+9uAwYezNm22EzjN dk9RzriAnUIquexLM5fDFErZbGmQX3u4umd014PYeN8Bvoyaak3rnOz77TeHHhZE J9i3QI7TefhrMlDT3DVoeHehIM6BQbL0lk8N5DjMKkeUaBgPt6F5NwmdY8ni+oM+ mRAIgf+UZ7jZKgNrVe5WSyrq1ADzxoGOIXJ78bKCkcjSNs9qoMXS1UEOSMfXbsR/ ik5F/uBQwaClWg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:52 2026 by rpki-client