This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft File: zy7ueKAITYMd4aJQAYPhZIlRbM8.mft (raw, json) Hash identifier: muYNnju4ZSTl+nYmwVJPpZDCFwv8PChchgoYgPPv3Vg= Subject key identifier: D6:3E:E0:FD:BD:74:DB:DB:F0:7D:A2:55:AC:18:F4:03:9A:BB:C0:95 Authority key identifier: CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF Certificate issuer: /CN=cf2eee78a0084d831de1a2500183e16489516ccf Certificate serial: 019C2D76187B1B0B1754CB7A5288E375FCBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft Manifest number: 1109 Signing time: Thu 05 Feb 2026 11:00:40 +0000 Manifest this update: Thu 05 Feb 2026 11:00:40 +0000 Manifest next update: Fri 06 Feb 2026 11:00:40 +0000 Files and hashes: 1: 2hflLbfqAWKpFyYGnXBTWiWqwxs.roa (hash: lI9Xhzw78sH7hBtTcjJSosgoG/UbF5gG44NR4ynAOeo=) 2: zy7ueKAITYMd4aJQAYPhZIlRbM8.crl (hash: pQAS7sxvYQI8yu4akzqTHCEN3fX0XJ0n5uj7bDHEDhI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 06 Feb 2026 11:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2d:76:18:7b:1b:0b:17:54:cb:7a:52:88:e3:75:fc:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf2eee78a0084d831de1a2500183e16489516ccf Validity Not Before: Feb 5 11:00:40 2026 GMT Not After : Feb 6 11:00:40 2026 GMT Subject: CN=d63ee0fdbd74dbdbf07da255ac18f4039abbc095 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9e:5c:fb:4c:d9:a2:6f:7d:64:56:da:5b:96: f5:57:47:17:51:ff:f9:64:1a:db:2d:37:56:74:fb: f9:4c:8a:8e:b2:11:c9:45:7a:b2:de:48:c5:47:af: 68:d6:32:19:87:9c:11:0c:49:f2:f6:08:72:65:22: 1b:0f:89:42:a8:85:29:61:f3:9c:8c:7c:16:79:47: 44:40:ff:7a:0d:b2:78:39:36:e3:8d:37:b6:da:0e: 99:8e:62:f1:8d:e1:4c:7c:14:a4:cb:c5:4c:4c:a3: 97:2f:e8:8c:08:47:04:7a:48:fd:b8:7a:0f:27:71: 47:bf:dc:04:2c:cf:73:cb:6e:1a:04:2d:69:cd:25: f9:3b:b7:b2:fd:39:4c:46:4a:cd:c8:c7:0c:e5:99: f1:b4:56:88:31:0c:36:df:28:29:d4:d0:a1:e4:a9: eb:4a:bf:6f:b7:a9:cb:5e:fc:72:85:bb:d7:8c:10: 00:ff:84:62:94:fc:d3:b7:a3:e2:85:f3:d7:a2:c1: 04:b1:5c:0b:9c:1e:ab:32:c4:49:79:8e:f4:3b:32: 27:50:7c:ae:1b:98:63:e3:b0:93:c0:54:2c:3f:36: eb:7f:77:8b:79:ec:33:3a:62:d5:36:ac:77:f1:56: cf:a3:9a:8b:27:93:e1:07:c9:96:b9:91:32:15:bb: 3a:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:3E:E0:FD:BD:74:DB:DB:F0:7D:A2:55:AC:18:F4:03:9A:BB:C0:95 X509v3 Authority Key Identifier: keyid:CF:2E:EE:78:A0:08:4D:83:1D:E1:A2:50:01:83:E1:64:89:51:6C:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zy7ueKAITYMd4aJQAYPhZIlRbM8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/19/d7e660-6912-4380-ab4f-718b9c40fd25/1/zy7ueKAITYMd4aJQAYPhZIlRbM8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 11:3d:d3:a5:ef:3b:5e:98:d3:3b:2b:a3:f5:79:90:77:d7:1b: 21:53:34:ca:46:de:0d:79:5a:a5:85:37:ac:57:be:a5:a6:fd: 99:56:dc:c0:fe:61:89:98:d3:61:7a:19:72:0d:95:04:8f:93: 06:5d:2c:03:0a:8d:f2:e3:b9:d1:62:12:8f:25:94:12:4d:5c: ab:2a:7d:e3:d2:2a:91:44:24:0b:ef:f2:c4:63:aa:ee:2d:52: e3:3a:b1:f8:f0:7f:8a:95:50:14:95:9b:3d:6b:3d:3a:cc:1e: a8:be:40:22:06:7b:7f:4b:65:d0:c9:2e:f1:b2:f5:f3:64:dd: 9a:22:b7:17:b7:7e:62:2d:4b:5b:4a:cf:53:7d:84:b2:ab:35: c4:f9:8e:68:19:c9:6e:fe:bb:28:0f:0e:08:b7:9d:f2:16:66: a8:2e:75:e8:39:2b:88:75:ce:ac:e0:2f:3f:a4:a5:30:02:40: c4:e1:63:e3:36:89:10:91:90:90:c9:4b:55:bf:6c:65:06:26: a3:8f:a9:97:2e:85:e9:db:f1:b6:32:5f:90:eb:fb:06:b0:29: 87:01:49:cb:1f:a4:74:95:c2:a4:4d:b1:ef:95:22:27:28:b5: 2c:9f:55:87:d6:c2:be:b1:f4:08:9d:e3:d9:74:c4:97:61:8d: 4f:1f:46:02 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwtdhh7GwsXVMt6Uojjdfy/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMmVlZTc4YTAwODRkODMxZGUxYTI1MDAxODNlMTY0ODk1 MTZjY2YwHhcNMjYwMjA1MTEwMDQwWhcNMjYwMjA2MTEwMDQwWjAzMTEwLwYDVQQD EyhkNjNlZTBmZGJkNzRkYmRiZjA3ZGEyNTVhYzE4ZjQwMzlhYmJjMDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz55c+0zZom99ZFbaW5b1V0cXUf/5 ZBrbLTdWdPv5TIqOshHJRXqy3kjFR69o1jIZh5wRDEny9ghyZSIbD4lCqIUpYfOc jHwWeUdEQP96DbJ4OTbjjTe22g6ZjmLxjeFMfBSky8VMTKOXL+iMCEcEekj9uHoP J3FHv9wELM9zy24aBC1pzSX5O7ey/TlMRkrNyMcM5ZnxtFaIMQw23ygp1NCh5Knr Sr9vt6nLXvxyhbvXjBAA/4RilPzTt6PihfPXosEEsVwLnB6rMsRJeY70OzInUHyu G5hj47CTwFQsPzbrf3eLeewzOmLVNqx38VbPo5qLJ5PhB8mWuZEyFbs6/wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNY+4P29dNvb8H2iVawY9AOau8CVMB8GA1UdIwQY MBaAFM8u7nigCE2DHeGiUAGD4WSJUWzPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenk3dWVLQUlUWU1kNGFKUUFZUGhaSWxSYk04LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xOS9kN2U2NjAtNjkxMi00MzgwLWFiNGYt NzE4YjljNDBmZDI1LzEvenk3dWVLQUlUWU1kNGFKUUFZUGhaSWxSYk04Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xOS9kN2U2NjAtNjkxMi00MzgwLWFiNGYtNzE4YjljNDBmZDI1 LzEvenk3dWVLQUlUWU1kNGFKUUFZUGhaSWxSYk04LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAET3Tpe87 XpjTOyuj9XmQd9cbIVM0ykbeDXlapYU3rFe+pab9mVbcwP5hiZjTYXoZcg2VBI+T Bl0sAwqN8uO50WISjyWUEk1cqyp949IqkUQkC+/yxGOq7i1S4zqx+PB/ipVQFJWb PWs9OsweqL5AIgZ7f0tl0Mku8bL182TdmiK3F7d+Yi1LW0rPU32Esqs1xPmOaBnJ bv67KA8OCLed8hZmqC516DkriHXOrOAvP6SlMAJAxOFj4zaJEJGQkMlLVb9sZQYm o4+ply6F6dvxtjJfkOv7BrAphwFJyx+kdJXCpE2x75UiJyi1LJ9Vh9bCvrH0CJ3j 2XTEl2GNTx9GAg== -----END CERTIFICATE-----Generated at Thu Feb 5 15:06:47 2026 by rpki-client