This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft File: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft (raw, json) Hash identifier: oeH50furXW/NLv+Lb8jveVybPKKhHLWcDQ16dZbIhaE= Subject key identifier: 31:2D:54:0E:54:C6:F0:3F:DA:49:27:DA:B6:78:E9:7B:2B:23:B7:4D Authority key identifier: CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0 Certificate issuer: /CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0 Certificate serial: 019C424631B32800FBB77853756086AF3563 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft Manifest number: 12E5 Signing time: Mon 09 Feb 2026 12:00:22 +0000 Manifest this update: Mon 09 Feb 2026 12:00:22 +0000 Manifest next update: Tue 10 Feb 2026 12:00:22 +0000 Files and hashes: 1: kvrpde2NkZn_MY5z8yP0kUJPKB0.roa (hash: nyyXOBMDEJmgos3/uP4abipU5IsMQkBb228KURVxjm8=) 2: z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl (hash: /l5Ys/aYb7ILaKmPsno9dbIxQXGIMMVp5fF4rgQY2bI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:31:b3:28:00:fb:b7:78:53:75:60:86:af:35:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfba043e1c4b52447a8e367bbc1307519fa5fae0 Validity Not Before: Feb 9 12:00:22 2026 GMT Not After : Feb 10 12:00:22 2026 GMT Subject: CN=312d540e54c6f03fda4927dab678e97b2b23b74d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:85:6e:b4:a1:dd:07:55:84:db:bb:ea:bf:fd: 9b:25:08:1b:f9:b3:e6:90:69:4b:f2:20:68:10:ba: 87:dd:68:7f:7d:41:77:fa:42:39:df:0d:99:fa:a7: 93:5c:7e:10:68:f9:68:8d:b2:a9:c4:d3:8f:a0:6d: 8d:61:4a:78:a9:74:95:ea:79:f1:6f:4f:51:5f:5d: 25:f3:9c:3c:f2:85:48:e0:fb:54:03:ea:5f:2c:7a: 54:1c:94:76:8d:f5:a2:cf:ff:42:b9:f8:eb:94:76: f8:67:da:05:42:ca:ae:61:7a:e8:34:47:60:f0:0f: cc:b2:3b:27:f9:53:4e:35:bd:b1:26:70:1a:77:29: 5a:21:d2:87:05:01:83:c8:ca:3c:9c:d8:d1:fa:5a: b9:6e:31:af:08:79:c6:7e:9b:78:00:72:40:40:e7: 22:77:7c:d8:c4:31:2f:32:87:ef:de:df:c6:0f:0e: db:2c:24:f2:c4:e4:87:5c:a2:37:dd:b6:8e:af:1e: d8:3f:9e:a3:f3:ba:77:6c:79:6b:40:d8:fc:9f:7c: 36:7c:4c:9e:63:d2:e5:10:25:c9:44:48:53:99:ff: d0:b9:7e:cc:b4:45:31:4c:0f:d3:ed:19:93:92:4f: 29:b9:27:21:7e:40:77:f9:5e:1d:b0:24:f1:fa:92: 20:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:2D:54:0E:54:C6:F0:3F:DA:49:27:DA:B6:78:E9:7B:2B:23:B7:4D X509v3 Authority Key Identifier: keyid:CF:BA:04:3E:1C:4B:52:44:7A:8E:36:7B:BC:13:07:51:9F:A5:FA:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/20/3f33d8-cceb-4506-a2ef-c0ca80a05e2a/1/z7oEPhxLUkR6jjZ7vBMHUZ-l-uA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:6f:c9:7a:8c:ce:e0:a6:c8:92:9a:76:a4:b4:60:58:cd:82: 25:86:2d:d4:e2:d8:d4:94:15:e6:e1:50:87:c2:62:c2:30:56: df:37:a5:9b:7e:cc:45:59:47:10:fb:64:ac:ff:3b:a0:2c:9b: eb:6e:3f:21:a7:8d:65:b9:df:7a:ff:1c:6b:6a:8f:3d:81:4d: 5b:27:66:ab:4e:62:0d:71:05:ba:87:cc:a5:46:e9:44:e5:8b: c0:f3:90:2a:70:7f:0b:70:6a:06:31:9f:52:68:38:3e:83:58: 1a:16:1b:1c:b6:b0:7e:3b:02:7e:b8:67:03:9f:b6:ed:03:5a: b6:0a:8f:7b:57:73:d5:66:8c:b1:a4:2a:06:51:9c:66:42:18: 8c:8c:08:06:c6:52:fa:74:6e:7d:8d:15:8b:12:6e:49:cb:34: 3b:0c:c0:4c:4f:58:4e:70:69:55:6c:11:c9:19:df:68:15:9e: 96:84:64:c6:e8:c3:89:81:7a:48:32:95:de:51:78:84:5c:63: 0a:90:4b:05:22:f0:1b:ab:09:f3:7c:b5:e8:c5:ef:18:81:8f: 4f:60:5d:a9:3e:3f:8b:d1:a7:60:f2:c5:0a:2d:8d:33:69:c4: 92:68:e3:20:e3:ef:bd:98:61:6a:5b:f6:58:5b:4d:ae:20:62: 0f:24:29:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjGzKAD7t3hTdWCGrzVjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmYmEwNDNlMWM0YjUyNDQ3YThlMzY3YmJjMTMwNzUxOWZh NWZhZTAwHhcNMjYwMjA5MTIwMDIyWhcNMjYwMjEwMTIwMDIyWjAzMTEwLwYDVQQD EygzMTJkNTQwZTU0YzZmMDNmZGE0OTI3ZGFiNjc4ZTk3YjJiMjNiNzRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3IVutKHdB1WE27vqv/2bJQgb+bPm kGlL8iBoELqH3Wh/fUF3+kI53w2Z+qeTXH4QaPlojbKpxNOPoG2NYUp4qXSV6nnx b09RX10l85w88oVI4PtUA+pfLHpUHJR2jfWiz/9CufjrlHb4Z9oFQsquYXroNEdg 8A/Msjsn+VNONb2xJnAadylaIdKHBQGDyMo8nNjR+lq5bjGvCHnGfpt4AHJAQOci d3zYxDEvMofv3t/GDw7bLCTyxOSHXKI33baOrx7YP56j87p3bHlrQNj8n3w2fEye Y9LlECXJREhTmf/QuX7MtEUxTA/T7RmTkk8puSchfkB3+V4dsCTx+pIguQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDEtVA5UxvA/2kkn2rZ46XsrI7dNMB8GA1UdIwQY MBaAFM+6BD4cS1JEeo42e7wTB1GfpfrgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejdvRVBoeExVa1I2ampaN3ZCTUhVWi1sLXVBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMC8zZjMzZDgtY2NlYi00NTA2LWEyZWYt YzBjYTgwYTA1ZTJhLzEvejdvRVBoeExVa1I2ampaN3ZCTUhVWi1sLXVBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMC8zZjMzZDgtY2NlYi00NTA2LWEyZWYtYzBjYTgwYTA1ZTJh LzEvejdvRVBoeExVa1I2ampaN3ZCTUhVWi1sLXVBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAi2/JeozO 4KbIkpp2pLRgWM2CJYYt1OLY1JQV5uFQh8JiwjBW3zelm37MRVlHEPtkrP87oCyb 624/IaeNZbnfev8ca2qPPYFNWydmq05iDXEFuofMpUbpROWLwPOQKnB/C3BqBjGf Umg4PoNYGhYbHLawfjsCfrhnA5+27QNatgqPe1dz1WaMsaQqBlGcZkIYjIwIBsZS +nRufY0VixJuScs0OwzATE9YTnBpVWwRyRnfaBWeloRkxujDiYF6SDKV3lF4hFxj CpBLBSLwG6sJ83y16MXvGIGPT2BdqT4/i9GnYPLFCi2NM2nEkmjjIOPvvZhhalv2 WFtNriBiDyQpww== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:30 2026 by rpki-client