This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft File: zK1o9-irrfRHJiM0OjJWFQciQYk.mft (raw, json) Hash identifier: u5eVtLK+IK9SrzeP6q9FEcCBVC1oB5hRf+dsVKQcubk= Subject key identifier: 69:C4:6F:56:5F:B9:40:C1:98:C3:48:33:77:C9:10:5A:1E:75:4F:B9 Authority key identifier: CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89 Certificate issuer: /CN=ccad68f7e8abadf4472623343a32561507224189 Certificate serial: 019C41D8C5A6F7FBAA8E573EA35E0630F687 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft Manifest number: 0980 Signing time: Mon 09 Feb 2026 10:00:51 +0000 Manifest this update: Mon 09 Feb 2026 10:00:51 +0000 Manifest next update: Tue 10 Feb 2026 10:00:51 +0000 Files and hashes: 1: wEZZX0o5N8nlP47tu1RwoQ2y0AY.roa (hash: ddJPky6VMI6qp8TK3QriFAzhCSzbyfK/JMSPvgj4FCE=) 2: zK1o9-irrfRHJiM0OjJWFQciQYk.crl (hash: vpVfJO/hyP81aSRc1gLO8RYeX0PeZH7iGmUKbloyAvw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:c5:a6:f7:fb:aa:8e:57:3e:a3:5e:06:30:f6:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ccad68f7e8abadf4472623343a32561507224189 Validity Not Before: Feb 9 10:00:51 2026 GMT Not After : Feb 10 10:00:51 2026 GMT Subject: CN=69c46f565fb940c198c3483377c9105a1e754fb9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:2d:b9:f5:71:ca:35:09:57:ea:c4:da:a6:4c: dc:88:69:22:98:5b:e6:5b:6c:08:08:23:f3:42:24: b1:52:68:26:73:d3:d7:8c:7f:a6:6d:9c:d5:f4:51: bd:02:15:84:e7:60:e0:ad:b3:e8:9a:e5:48:11:34: db:5a:ad:7e:ff:22:06:a3:f4:76:e2:88:98:56:64: 6a:ac:f2:2f:ea:31:de:c5:b5:ae:51:eb:a9:46:3a: a1:7e:c2:94:a5:09:a1:2b:55:3b:51:76:81:ae:ca: 01:70:35:b0:57:8e:c3:f7:be:d5:d3:ee:1b:af:55: ee:4e:4c:f8:13:e9:8b:32:25:eb:98:82:3e:f8:d1: e7:b8:52:0d:5f:a8:d2:de:5b:f1:50:06:74:77:e9: 51:b2:e9:1f:70:9f:49:10:01:90:63:34:a3:57:49: c7:b6:fe:26:ea:4d:b0:f4:63:c2:ec:b0:f6:24:b2: ab:0f:46:78:1c:a2:48:b7:b6:bd:91:1a:c8:0b:c2: 6f:59:07:d8:aa:b0:de:74:be:58:8d:d3:88:c8:09: 5f:f9:c9:8d:76:31:4b:c2:84:ad:e8:b1:21:14:9c: 89:78:62:07:da:39:07:52:d7:68:c2:69:fa:39:d6: 43:ad:d9:96:bf:e0:3b:e6:bf:e1:d9:04:90:bc:a0: 29:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C4:6F:56:5F:B9:40:C1:98:C3:48:33:77:C9:10:5A:1E:75:4F:B9 X509v3 Authority Key Identifier: keyid:CC:AD:68:F7:E8:AB:AD:F4:47:26:23:34:3A:32:56:15:07:22:41:89 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zK1o9-irrfRHJiM0OjJWFQciQYk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/4bba08-be36-47eb-ab2c-6359f92e1d2f/1/zK1o9-irrfRHJiM0OjJWFQciQYk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:9a:f7:15:5b:b6:b7:4e:cd:c3:95:9b:25:5d:48:33:70:44: b5:9f:1c:5c:97:1f:75:88:e8:c7:c4:ed:54:c6:4d:71:43:fb: 6c:39:d3:8c:2e:ee:6c:5f:3b:6a:92:f8:db:ad:99:15:a1:1b: 7b:26:5c:17:2c:80:36:30:0c:82:88:ea:ef:4c:3e:b1:68:48: 19:58:72:58:38:1e:b5:8d:22:91:e6:dd:f8:3d:2b:72:e8:2f: 0c:42:c1:fe:00:c5:c6:b4:27:d1:eb:90:dc:dd:6a:96:14:b9: d0:5a:c5:95:c1:03:8b:1b:a4:6b:7d:55:fe:36:69:6e:d7:32: ef:c7:31:5c:14:fe:f3:3a:ba:3b:73:4e:1f:32:3c:1c:ef:d4: 08:6c:8c:09:88:9a:0b:f8:e5:11:25:a9:3a:19:29:2e:4b:b2: d1:f1:eb:99:78:09:81:8d:43:1c:84:f9:5d:0d:16:55:f6:23: 04:34:c6:dc:8f:c0:75:21:d2:44:97:30:47:57:29:7e:6f:6d: 6c:06:9d:81:21:74:27:56:5b:7e:e3:3a:e2:aa:10:d9:e0:ff: a8:17:f8:10:9c:c5:db:be:35:8a:e7:7b:fe:a0:71:98:22:fa: aa:d5:d8:4a:95:16:b4:68:87:6c:f0:1f:c5:3b:3a:a4:02:6a: ed:03:93:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2MWm9/uqjlc+o14GMPaHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjYWQ2OGY3ZThhYmFkZjQ0NzI2MjMzNDNhMzI1NjE1MDcy MjQxODkwHhcNMjYwMjA5MTAwMDUxWhcNMjYwMjEwMTAwMDUxWjAzMTEwLwYDVQQD Eyg2OWM0NmY1NjVmYjk0MGMxOThjMzQ4MzM3N2M5MTA1YTFlNzU0ZmI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApy259XHKNQlX6sTapkzciGkimFvm W2wICCPzQiSxUmgmc9PXjH+mbZzV9FG9AhWE52DgrbPomuVIETTbWq1+/yIGo/R2 4oiYVmRqrPIv6jHexbWuUeupRjqhfsKUpQmhK1U7UXaBrsoBcDWwV47D977V0+4b r1XuTkz4E+mLMiXrmII++NHnuFINX6jS3lvxUAZ0d+lRsukfcJ9JEAGQYzSjV0nH tv4m6k2w9GPC7LD2JLKrD0Z4HKJIt7a9kRrIC8JvWQfYqrDedL5YjdOIyAlf+cmN djFLwoSt6LEhFJyJeGIH2jkHUtdowmn6OdZDrdmWv+A75r/h2QSQvKAp2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnEb1ZfuUDBmMNIM3fJEFoedU+5MB8GA1UdIwQY MBaAFMytaPfoq630RyYjNDoyVhUHIkGJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMt NjM1OWY5MmUxZDJmLzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS80YmJhMDgtYmUzNi00N2ViLWFiMmMtNjM1OWY5MmUxZDJm LzEveksxbzktaXJyZlJISmlNME9qSldGUWNpUVlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOZr3FVu2 t07Nw5WbJV1IM3BEtZ8cXJcfdYjox8TtVMZNcUP7bDnTjC7ubF87apL4262ZFaEb eyZcFyyANjAMgojq70w+sWhIGVhyWDgetY0ikebd+D0rcugvDELB/gDFxrQn0euQ 3N1qlhS50FrFlcEDixuka31V/jZpbtcy78cxXBT+8zq6O3NOHzI8HO/UCGyMCYia C/jlESWpOhkpLkuy0fHrmXgJgY1DHIT5XQ0WVfYjBDTG3I/AdSHSRJcwR1cpfm9t bAadgSF0J1ZbfuM64qoQ2eD/qBf4EJzF2741iud7/qBxmCL6qtXYSpUWtGiHbPAf xTs6pAJq7QOTpQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:09 2026 by rpki-client