This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft File: zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft (raw, json) Hash identifier: 0a2vBoUWl9pDtpGqSN4RRgcvqkj9893buHkgIVSyCVk= Subject key identifier: 8E:50:DA:A7:DD:D4:EB:07:58:76:2F:D6:A8:4E:C5:8A:64:17:8C:B7 Authority key identifier: CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96 Certificate issuer: /CN=cdba6d5704fd290d0e073376eda688717564d196 Certificate serial: 019C41348D05A47FBA93DA9E87D404CF9CD0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft Manifest number: 0EB6 Signing time: Mon 09 Feb 2026 07:01:28 +0000 Manifest this update: Mon 09 Feb 2026 07:01:28 +0000 Manifest next update: Tue 10 Feb 2026 07:01:28 +0000 Files and hashes: 1: w3WwugLLFUcrItCxeJKoofI3afc.roa (hash: EnJ2zpdE5VsVYk/C8ci9QDlsMzJ01oLKtWbpS2SqvN8=) 2: zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl (hash: BtNiNJ8gHufnFqWIQAIgjiXZc73+rgzASK11XlcvE+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:8d:05:a4:7f:ba:93:da:9e:87:d4:04:cf:9c:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdba6d5704fd290d0e073376eda688717564d196 Validity Not Before: Feb 9 07:01:28 2026 GMT Not After : Feb 10 07:01:28 2026 GMT Subject: CN=8e50daa7ddd4eb0758762fd6a84ec58a64178cb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:da:1e:cc:90:4c:6f:0c:f9:47:f2:00:27:74: 60:a9:e7:22:bf:56:00:43:0a:41:8f:fe:e2:f5:ef: 7a:bf:e7:70:89:df:fa:09:e1:45:ba:13:2d:48:fd: e1:a2:21:34:b1:a0:8f:15:11:4a:98:42:13:30:31: 1f:ab:5e:a6:a5:6f:c2:51:04:70:89:29:7f:50:a1: a6:01:0c:3f:61:d5:e8:07:bb:cb:6f:10:1f:4e:e8: 3a:5d:02:db:32:bc:b8:1b:a1:52:7f:15:08:99:20: e9:b9:84:b7:77:05:98:ee:a9:c3:46:0f:d1:9a:b1: 11:b2:f4:10:6b:60:89:5e:ee:92:93:53:90:82:3d: 24:f6:c5:36:0c:99:a3:3a:09:1a:11:98:af:dd:e7: 0a:a3:21:45:ce:63:92:71:f8:3e:6d:f4:6a:cb:54: 09:7b:17:c8:85:aa:87:30:4e:d3:d8:ad:00:43:22: 6c:0f:54:b8:80:da:80:4d:16:dc:51:7a:e4:98:92: 78:b4:aa:2d:71:1e:62:9c:be:fd:c7:15:8f:d1:b9: 95:3e:20:2a:49:32:39:d1:4a:6a:96:65:cd:4d:37: d4:7a:32:c2:68:a1:7c:6e:a9:6d:70:34:35:d1:1b: 95:18:78:6a:9e:39:04:0d:c8:4e:02:38:9b:e9:80: 84:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:50:DA:A7:DD:D4:EB:07:58:76:2F:D6:A8:4E:C5:8A:64:17:8C:B7 X509v3 Authority Key Identifier: keyid:CD:BA:6D:57:04:FD:29:0D:0E:07:33:76:ED:A6:88:71:75:64:D1:96 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zbptVwT9KQ0OBzN27aaIcXVk0ZY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1d/d3280b-53f7-4394-8559-a461169f1dc2/1/zbptVwT9KQ0OBzN27aaIcXVk0ZY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:5a:e2:91:69:75:9a:0f:8e:fb:79:f0:a3:24:d1:40:64:62: 8e:51:b0:cf:bb:22:94:cb:4f:d4:0a:f8:6e:3b:2e:df:32:07: 0b:7f:2a:b3:d3:28:6e:af:5e:6d:14:b9:7c:73:8d:ca:85:0f: 7e:77:2d:2f:b5:62:99:16:f3:e3:97:79:d7:4a:c2:e4:ea:35: 72:f9:83:9c:ce:a4:ef:e2:77:a2:c2:10:d5:8c:8e:f5:07:0e: 30:12:e6:18:67:0a:1a:7e:cb:d8:f0:2b:b0:31:13:57:47:e5: 3e:ab:a7:ef:46:37:e8:c2:0f:ca:14:08:46:f5:28:7c:9f:de: 46:84:40:20:24:3c:a5:20:71:14:70:e8:a1:ce:4a:d4:88:56: f2:d6:62:ef:c6:0f:8e:10:fb:03:b5:02:43:ff:bb:5d:6c:a6: af:1a:13:fb:3b:3b:bc:75:30:e2:b7:a4:d1:30:6c:95:2a:3d: e4:e5:e8:92:fe:d8:54:60:cf:a4:99:00:f4:48:c7:e3:4a:f6: c8:5b:6f:80:74:ea:7c:0e:d7:4d:f6:fb:f5:fa:f9:cd:05:1f: ee:a8:91:07:a4:a5:59:30:1e:58:d1:69:88:b6:49:d5:48:4b: 60:f4:6a:9b:ca:dc:a4:ff:4e:49:44:ca:d0:eb:a4:4e:2c:99: d1:ee:20:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNI0FpH+6k9qeh9QEz5zQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkYmE2ZDU3MDRmZDI5MGQwZTA3MzM3NmVkYTY4ODcxNzU2 NGQxOTYwHhcNMjYwMjA5MDcwMTI4WhcNMjYwMjEwMDcwMTI4WjAzMTEwLwYDVQQD Eyg4ZTUwZGFhN2RkZDRlYjA3NTg3NjJmZDZhODRlYzU4YTY0MTc4Y2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqtoezJBMbwz5R/IAJ3Rgqeciv1YA QwpBj/7i9e96v+dwid/6CeFFuhMtSP3hoiE0saCPFRFKmEITMDEfq16mpW/CUQRw iSl/UKGmAQw/YdXoB7vLbxAfTug6XQLbMry4G6FSfxUImSDpuYS3dwWY7qnDRg/R mrERsvQQa2CJXu6Sk1OQgj0k9sU2DJmjOgkaEZiv3ecKoyFFzmOScfg+bfRqy1QJ exfIhaqHME7T2K0AQyJsD1S4gNqATRbcUXrkmJJ4tKotcR5inL79xxWP0bmVPiAq STI50UpqlmXNTTfUejLCaKF8bqltcDQ10RuVGHhqnjkEDchOAjib6YCECQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFI5Q2qfd1OsHWHYv1qhOxYpkF4y3MB8GA1UdIwQY MBaAFM26bVcE/SkNDgczdu2miHF1ZNGWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZC9kMzI4MGItNTNmNy00Mzk0LTg1NTkt YTQ2MTE2OWYxZGMyLzEvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZC9kMzI4MGItNTNmNy00Mzk0LTg1NTktYTQ2MTE2OWYxZGMy LzEvemJwdFZ3VDlLUTBPQnpOMjdhYUljWFZrMFpZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAalrikWl1 mg+O+3nwoyTRQGRijlGwz7silMtP1Ar4bjsu3zIHC38qs9Mobq9ebRS5fHONyoUP fnctL7VimRbz45d510rC5Oo1cvmDnM6k7+J3osIQ1YyO9QcOMBLmGGcKGn7L2PAr sDETV0flPqun70Y36MIPyhQIRvUofJ/eRoRAICQ8pSBxFHDooc5K1IhW8tZi78YP jhD7A7UCQ/+7XWymrxoT+zs7vHUw4rek0TBslSo95OXokv7YVGDPpJkA9EjH40r2 yFtvgHTqfA7XTfb79fr5zQUf7qiRB6SlWTAeWNFpiLZJ1UhLYPRqm8rcpP9OSUTK 0OukTiyZ0e4gwA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:27 2026 by rpki-client