This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft File: zEHDryzVmGV10bz2Xsnod2Zu3jY.mft (raw, json) Hash identifier: gaAnymMEJ4vww3kXLZyGNWTHZsRmHBk7TvPMbJXxxeU= Subject key identifier: 97:C5:2E:2F:FB:5E:31:38:C6:3B:28:13:8A:2B:D7:F2:59:73:52:CA Authority key identifier: CC:41:C3:AF:2C:D5:98:65:75:D1:BC:F6:5E:C9:E8:77:66:6E:DE:36 Certificate issuer: /CN=cc41c3af2cd5986575d1bcf65ec9e877666ede36 Certificate serial: 019C41343B8BC3273651742CE95E2B0B5266 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft Manifest number: 14A0 Signing time: Mon 09 Feb 2026 07:01:07 +0000 Manifest this update: Mon 09 Feb 2026 07:01:07 +0000 Manifest next update: Tue 10 Feb 2026 07:01:07 +0000 Files and hashes: 1: zEHDryzVmGV10bz2Xsnod2Zu3jY.crl (hash: NzQK3k+2y1862cchN9xeH29b5Cl5XTUWuJPMvmeFojQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.crl rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:3b:8b:c3:27:36:51:74:2c:e9:5e:2b:0b:52:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc41c3af2cd5986575d1bcf65ec9e877666ede36 Validity Not Before: Feb 9 07:01:07 2026 GMT Not After : Feb 10 07:01:07 2026 GMT Subject: CN=97c52e2ffb5e3138c63b28138a2bd7f2597352ca Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:f1:10:62:7e:c8:dd:45:6f:f5:c6:14:f5:a7: a2:2b:0f:b0:c3:0a:59:e9:11:8b:44:5c:48:40:60: 26:a2:f3:ef:d7:e3:a9:7e:6a:41:40:ea:64:76:49: a4:13:0e:7b:75:94:8a:dd:00:4b:a8:95:86:19:b2: 3d:22:18:6e:4e:e8:f7:c2:4a:dc:d6:99:a8:67:25: 03:f4:d4:6a:d4:94:88:f5:c2:fb:8b:e2:f0:64:57: bc:c9:29:36:4d:94:91:7a:dd:a9:85:37:ee:f5:13: 2f:5b:1d:8b:d2:e1:3a:21:3f:1a:79:f2:3a:1e:f4: 87:c4:87:9b:6f:61:82:e5:52:12:99:89:92:a0:e3: ba:49:08:a8:86:90:17:5b:18:c8:82:f6:42:0d:e4: 6c:8e:81:46:b3:80:03:a3:de:34:ed:e6:15:f9:26: fc:80:0b:92:a5:d3:4a:d1:c9:11:ef:6d:ab:c6:09: 2d:ed:80:ae:f2:62:44:50:33:a7:be:6d:ad:5d:92: 37:ea:de:e3:05:3f:b9:62:54:f4:d0:d6:27:a1:bd: 1e:2e:91:33:c7:01:b0:ae:c4:61:f1:ec:d9:4a:ec: 38:14:b9:61:bc:ec:dc:83:31:51:0a:2b:91:78:ac: 4e:e7:69:06:73:8f:dc:72:d2:02:4c:16:00:1f:33: 24:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:C5:2E:2F:FB:5E:31:38:C6:3B:28:13:8A:2B:D7:F2:59:73:52:CA X509v3 Authority Key Identifier: keyid:CC:41:C3:AF:2C:D5:98:65:75:D1:BC:F6:5E:C9:E8:77:66:6E:DE:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zEHDryzVmGV10bz2Xsnod2Zu3jY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/9a6e51-4a8f-40d3-b0fa-4c6522453c9a/1/zEHDryzVmGV10bz2Xsnod2Zu3jY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c3:ce:37:75:d7:b6:9f:8d:47:94:66:a0:09:be:eb:eb:e6: f9:03:8f:a0:6c:3c:55:27:e0:e8:e7:50:b7:2d:99:fb:59:ba: 54:32:67:d5:52:eb:a1:ef:99:fb:5c:21:61:50:2c:72:b3:69: 86:7b:f0:e6:b4:29:80:b4:f1:ca:b6:6f:46:96:24:53:9c:a4: 53:53:c0:1d:2a:94:b0:08:cb:84:e2:48:c5:02:5a:64:df:e2: b8:85:a7:05:f0:46:a9:06:f2:8a:1a:72:49:e0:27:ef:bb:83: ec:c6:60:ec:44:3d:9b:c5:7b:90:87:00:16:7c:0a:48:47:d1: 91:1f:04:6b:13:63:20:dc:87:81:16:8e:ea:45:2a:45:02:82: 60:51:8b:b0:e9:f7:72:2b:96:e4:ad:36:99:79:67:b8:7e:a9: 81:ec:16:54:eb:be:47:95:37:d1:c4:38:8d:63:a4:cb:a4:a9: 26:5c:ca:ed:a2:59:c6:e6:3d:a4:ef:92:94:ca:4a:03:2e:e2: e9:53:f3:4d:58:9e:85:e9:51:f6:fd:9c:3f:4d:3e:bc:5f:64: 50:2f:eb:2a:30:56:6b:cf:5b:3e:5c:cd:80:bb:2a:08:34:ce: cd:e1:c1:4f:5c:f0:eb:79:7f:45:eb:e1:10:94:3a:60:76:d4: 8d:d9:a7:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNDuLwyc2UXQs6V4rC1JmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjNDFjM2FmMmNkNTk4NjU3NWQxYmNmNjVlYzllODc3NjY2 ZWRlMzYwHhcNMjYwMjA5MDcwMTA3WhcNMjYwMjEwMDcwMTA3WjAzMTEwLwYDVQQD Eyg5N2M1MmUyZmZiNWUzMTM4YzYzYjI4MTM4YTJiZDdmMjU5NzM1MmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqPEQYn7I3UVv9cYU9aeiKw+wwwpZ 6RGLRFxIQGAmovPv1+OpfmpBQOpkdkmkEw57dZSK3QBLqJWGGbI9IhhuTuj3wkrc 1pmoZyUD9NRq1JSI9cL7i+LwZFe8ySk2TZSRet2phTfu9RMvWx2L0uE6IT8aefI6 HvSHxIebb2GC5VISmYmSoOO6SQiohpAXWxjIgvZCDeRsjoFGs4ADo9407eYV+Sb8 gAuSpdNK0ckR722rxgkt7YCu8mJEUDOnvm2tXZI36t7jBT+5YlT00NYnob0eLpEz xwGwrsRh8ezZSuw4FLlhvOzcgzFRCiuReKxO52kGc4/cctICTBYAHzMk+QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJfFLi/7XjE4xjsoE4or1/JZc1LKMB8GA1UdIwQY MBaAFMxBw68s1ZhlddG89l7J6Hdmbt42MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekVIRHJ5elZtR1YxMGJ6Mlhzbm9kMlp1M2pZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi85YTZlNTEtNGE4Zi00MGQzLWIwZmEt NGM2NTIyNDUzYzlhLzEvekVIRHJ5elZtR1YxMGJ6Mlhzbm9kMlp1M2pZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi85YTZlNTEtNGE4Zi00MGQzLWIwZmEtNGM2NTIyNDUzYzlh LzEvekVIRHJ5elZtR1YxMGJ6Mlhzbm9kMlp1M2pZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX8PON3XX tp+NR5RmoAm+6+vm+QOPoGw8VSfg6OdQty2Z+1m6VDJn1VLroe+Z+1whYVAscrNp hnvw5rQpgLTxyrZvRpYkU5ykU1PAHSqUsAjLhOJIxQJaZN/iuIWnBfBGqQbyihpy SeAn77uD7MZg7EQ9m8V7kIcAFnwKSEfRkR8EaxNjINyHgRaO6kUqRQKCYFGLsOn3 ciuW5K02mXlnuH6pgewWVOu+R5U30cQ4jWOky6SpJlzK7aJZxuY9pO+SlMpKAy7i 6VPzTViehelR9v2cP00+vF9kUC/rKjBWa89bPlzNgLsqCDTOzeHBT1zw63l/Revh EJQ6YHbUjdmnNg== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:11 2026 by rpki-client