This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1c/09dddf-f83f-4650-a347-44a307545d74/1/zTX2_1Z73pM5T_8oL61BfaC1NhQ.mft File: zTX2_1Z73pM5T_8oL61BfaC1NhQ.mft (raw, json) Hash identifier: DUSQfEVVQJG7tzQTYrQJIF7ksvUgAHttf/hVwW77kr4= Subject key identifier: F9:28:25:43:EC:9D:57:41:6D:F3:3C:4C:75:DB:44:46:23:AD:5A:33 Authority key identifier: CD:35:F6:FF:56:7B:DE:93:39:4F:FF:28:2F:AD:41:7D:A0:B5:36:14 Certificate issuer: /CN=cd35f6ff567bde93394fff282fad417da0b53614 Certificate serial: 019C427D959C908BBE7A71295EEB20C9D9BD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zTX2_1Z73pM5T_8oL61BfaC1NhQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1c/09dddf-f83f-4650-a347-44a307545d74/1/zTX2_1Z73pM5T_8oL61BfaC1NhQ.mft Manifest number: 0EE7 Signing time: Mon 09 Feb 2026 13:00:52 +0000 Manifest this update: Mon 09 Feb 2026 13:00:52 +0000 Manifest next update: Tue 10 Feb 2026 13:00:52 +0000 Files and hashes: 1: zTX2_1Z73pM5T_8oL61BfaC1NhQ.crl (hash: zew3TkdH+TOVdQuJLgfv4/bdcOjumsoYJhdNXWP3k3k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1c/09dddf-f83f-4650-a347-44a307545d74/1/zTX2_1Z73pM5T_8oL61BfaC1NhQ.crl rsync://rpki.ripe.net/repository/DEFAULT/1c/09dddf-f83f-4650-a347-44a307545d74/1/zTX2_1Z73pM5T_8oL61BfaC1NhQ.mft rsync://rpki.ripe.net/repository/DEFAULT/zTX2_1Z73pM5T_8oL61BfaC1NhQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:95:9c:90:8b:be:7a:71:29:5e:eb:20:c9:d9:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd35f6ff567bde93394fff282fad417da0b53614 Validity Not Before: Feb 9 13:00:52 2026 GMT Not After : Feb 10 13:00:52 2026 GMT Subject: CN=f9282543ec9d57416df33c4c75db444623ad5a33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:b5:b9:83:7a:c4:77:62:c6:7e:d3:51:29:87: 92:fe:fc:eb:88:b1:4f:bf:2d:f6:7c:c8:3e:37:3f: 60:1d:4a:de:32:5e:2f:25:4e:a7:c2:9b:03:cf:4f: b3:c4:09:b0:1f:46:09:06:8f:5d:5c:f0:34:81:58: 5a:a1:2a:e8:8b:c7:28:83:fa:61:9a:86:39:5b:42: 52:49:81:e9:29:33:53:50:9f:f4:e2:59:0e:47:96: a1:d1:2e:45:a4:1e:31:3f:79:fe:33:02:d7:c4:b7: 99:f5:fc:d6:57:da:4d:3e:00:35:ad:ae:d1:bc:6d: 92:c8:ac:e1:e7:00:74:97:52:2a:ff:d9:d8:28:5f: 36:c7:7d:1e:f0:e1:b0:5e:88:1f:b0:78:7f:5c:50: 94:da:c1:f4:ee:67:06:16:45:8c:08:9f:93:d2:bb: 0d:49:c5:a2:c7:04:39:cc:97:be:65:39:a0:37:2d: 46:df:0a:1f:db:09:da:e7:09:a1:04:cd:40:f4:bf: 1e:98:05:15:d4:6a:d0:09:be:53:04:84:0c:a7:60: a1:09:91:8a:39:86:60:8a:b8:1a:04:34:33:8e:d5: c5:e0:f6:e7:2e:f9:2f:87:5e:81:6b:ed:f6:d0:57: 45:66:51:eb:ae:b6:07:44:32:6d:48:b7:06:07:7f: 26:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:28:25:43:EC:9D:57:41:6D:F3:3C:4C:75:DB:44:46:23:AD:5A:33 X509v3 Authority Key Identifier: keyid:CD:35:F6:FF:56:7B:DE:93:39:4F:FF:28:2F:AD:41:7D:A0:B5:36:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zTX2_1Z73pM5T_8oL61BfaC1NhQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/09dddf-f83f-4650-a347-44a307545d74/1/zTX2_1Z73pM5T_8oL61BfaC1NhQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/09dddf-f83f-4650-a347-44a307545d74/1/zTX2_1Z73pM5T_8oL61BfaC1NhQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5b:3d:93:13:ed:30:b3:be:67:68:d1:e8:0f:5a:88:67:45:3c: 70:8c:21:82:11:c6:51:34:ca:6d:c6:33:38:99:21:f5:e1:77: 8b:63:75:e1:5c:32:96:bb:70:72:49:b9:20:84:d1:c5:01:58: 37:7b:70:b4:fb:65:8e:eb:70:53:93:be:a5:b5:85:b2:28:75: 43:47:e9:77:ba:ba:55:9a:d0:00:cd:c6:dc:81:1a:d5:c1:b0: 2e:1b:b0:2b:d1:41:17:45:a9:23:c9:aa:e2:ed:37:ee:c7:67: a2:13:52:0c:34:cf:53:37:77:cb:ef:24:d6:99:c4:f2:3f:d1: e7:6c:c9:80:ec:31:4e:72:2a:a8:26:ca:07:cc:d1:43:cf:cc: b0:15:6c:6c:bb:b2:bc:7b:5f:2e:86:26:9b:77:06:80:20:5d: 3e:5a:e4:75:44:11:91:19:f6:31:ab:ae:0b:82:7c:b2:9b:2d: 63:2b:bc:e5:e3:3a:d0:1b:c5:3d:d6:f9:4c:55:d1:27:2d:b9: 62:a0:75:3f:ac:e2:4f:1e:bf:bc:54:02:01:52:33:a4:1a:ad: e8:d3:b4:c5:ae:e6:b8:30:aa:71:cf:3c:82:83:1a:ea:e1:83: 61:2b:27:e0:ec:11:11:ea:0a:41:de:c6:19:b7:69:5a:67:9f: bb:a4:a2:c2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfZWckIu+enEpXusgydm9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkMzVmNmZmNTY3YmRlOTMzOTRmZmYyODJmYWQ0MTdkYTBi NTM2MTQwHhcNMjYwMjA5MTMwMDUyWhcNMjYwMjEwMTMwMDUyWjAzMTEwLwYDVQQD EyhmOTI4MjU0M2VjOWQ1NzQxNmRmMzNjNGM3NWRiNDQ0NjIzYWQ1YTMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi7W5g3rEd2LGftNRKYeS/vzriLFP vy32fMg+Nz9gHUreMl4vJU6nwpsDz0+zxAmwH0YJBo9dXPA0gVhaoSroi8cog/ph moY5W0JSSYHpKTNTUJ/04lkOR5ah0S5FpB4xP3n+MwLXxLeZ9fzWV9pNPgA1ra7R vG2SyKzh5wB0l1Iq/9nYKF82x30e8OGwXogfsHh/XFCU2sH07mcGFkWMCJ+T0rsN ScWixwQ5zJe+ZTmgNy1G3wof2wna5wmhBM1A9L8emAUV1GrQCb5TBIQMp2ChCZGK OYZgirgaBDQzjtXF4PbnLvkvh16Ba+320FdFZlHrrrYHRDJtSLcGB38mawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPkoJUPsnVdBbfM8THXbREYjrVozMB8GA1UdIwQY MBaAFM019v9We96TOU//KC+tQX2gtTYUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelRYMl8xWjczcE01VF84b0w2MUJmYUMxTmhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYy8wOWRkZGYtZjgzZi00NjUwLWEzNDct NDRhMzA3NTQ1ZDc0LzEvelRYMl8xWjczcE01VF84b0w2MUJmYUMxTmhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYy8wOWRkZGYtZjgzZi00NjUwLWEzNDctNDRhMzA3NTQ1ZDc0 LzEvelRYMl8xWjczcE01VF84b0w2MUJmYUMxTmhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWz2TE+0w s75naNHoD1qIZ0U8cIwhghHGUTTKbcYzOJkh9eF3i2N14Vwylrtwckm5IITRxQFY N3twtPtljutwU5O+pbWFsih1Q0fpd7q6VZrQAM3G3IEa1cGwLhuwK9FBF0WpI8mq 4u037sdnohNSDDTPUzd3y+8k1pnE8j/R52zJgOwxTnIqqCbKB8zRQ8/MsBVsbLuy vHtfLoYmm3cGgCBdPlrkdUQRkRn2MauuC4J8spstYyu85eM60BvFPdb5TFXRJy25 YqB1P6ziTx6/vFQCAVIzpBqt6NO0xa7muDCqcc88goMa6uGDYSsn4OwREeoKQd7G GbdpWmefu6Siwg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:09 2026 by rpki-client