This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/a5bc8a-049d-4314-9b1a-29755a7c94fd/1/z4duDnrrYE0WMdSaAl4XitJ0qBI.mft File: z4duDnrrYE0WMdSaAl4XitJ0qBI.mft (raw, json) Hash identifier: eMvhDIqk8L7wC7w6Wbi1G0zANLW67FGnDL10e2jok84= Subject key identifier: E2:88:CD:7A:22:9B:FA:C6:16:E3:50:6C:DC:05:6D:96:CE:7D:94:FE Authority key identifier: CF:87:6E:0E:7A:EB:60:4D:16:31:D4:9A:02:5E:17:8A:D2:74:A8:12 Certificate issuer: /CN=cf876e0e7aeb604d1631d49a025e178ad274a812 Certificate serial: 019C421034CF41EAE63DB467CB14CDDFFEC4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z4duDnrrYE0WMdSaAl4XitJ0qBI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/a5bc8a-049d-4314-9b1a-29755a7c94fd/1/z4duDnrrYE0WMdSaAl4XitJ0qBI.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 11:01:24 +0000 Manifest this update: Mon 09 Feb 2026 11:01:24 +0000 Manifest next update: Tue 10 Feb 2026 11:01:24 +0000 Files and hashes: 1: z4duDnrrYE0WMdSaAl4XitJ0qBI.crl (hash: k27aiJKGo2hmzoP/tzhG9aFIK7M7458KuhGHY096VFs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/27/a5bc8a-049d-4314-9b1a-29755a7c94fd/1/z4duDnrrYE0WMdSaAl4XitJ0qBI.crl rsync://rpki.ripe.net/repository/DEFAULT/27/a5bc8a-049d-4314-9b1a-29755a7c94fd/1/z4duDnrrYE0WMdSaAl4XitJ0qBI.mft rsync://rpki.ripe.net/repository/DEFAULT/z4duDnrrYE0WMdSaAl4XitJ0qBI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:34:cf:41:ea:e6:3d:b4:67:cb:14:cd:df:fe:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf876e0e7aeb604d1631d49a025e178ad274a812 Validity Not Before: Feb 9 11:01:24 2026 GMT Not After : Feb 10 11:01:24 2026 GMT Subject: CN=e288cd7a229bfac616e3506cdc056d96ce7d94fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:c5:15:fb:bb:0e:eb:09:b2:a9:92:9c:93:97: 89:40:19:59:7b:6b:36:64:8e:1c:3f:cd:9f:8d:aa: ba:a2:70:8e:a3:14:96:41:34:1f:30:8c:39:86:97: 9b:c7:03:cf:e8:35:65:b9:d5:22:0e:5d:46:45:c5: 6e:d8:6a:3c:36:a9:fd:c7:c0:4d:f7:15:d3:97:bc: 15:eb:eb:fc:db:0d:ce:a8:cc:a1:3c:42:f3:6d:9d: 47:c6:42:c8:e1:a0:83:95:c1:6e:ef:d8:df:f4:90: ae:ea:1f:45:2e:46:47:6a:a1:8d:a8:71:f7:b9:3c: 7e:44:e4:6e:38:e4:aa:05:41:b5:a1:0d:d4:4d:3d: a0:90:3c:49:dc:ca:5b:eb:b0:e0:41:84:57:d7:27: a6:71:67:4c:9c:f5:b9:b9:fc:7f:4e:1f:82:30:25: 30:48:18:ba:dd:5f:18:ca:9f:7e:e0:e8:36:21:84: 00:03:c0:cf:37:bd:88:32:e5:e7:64:6b:09:e6:c1: 29:af:b7:a4:d2:92:87:6e:cd:f7:a2:cc:20:df:37: 15:92:1e:b1:31:14:a7:c1:15:ae:6b:b6:62:1c:e8: e5:56:b2:5c:7e:b7:1f:33:25:51:f6:49:a9:19:9c: 82:47:c3:d7:b7:41:6b:4e:0d:d4:e1:28:ed:18:03: 41:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:88:CD:7A:22:9B:FA:C6:16:E3:50:6C:DC:05:6D:96:CE:7D:94:FE X509v3 Authority Key Identifier: keyid:CF:87:6E:0E:7A:EB:60:4D:16:31:D4:9A:02:5E:17:8A:D2:74:A8:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z4duDnrrYE0WMdSaAl4XitJ0qBI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a5bc8a-049d-4314-9b1a-29755a7c94fd/1/z4duDnrrYE0WMdSaAl4XitJ0qBI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/27/a5bc8a-049d-4314-9b1a-29755a7c94fd/1/z4duDnrrYE0WMdSaAl4XitJ0qBI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bd:3a:b5:19:77:ca:ee:77:7b:b4:3d:96:6f:9d:20:01:77:74: 9d:f0:ae:2b:96:46:e2:1a:e8:43:5f:f3:a6:36:73:2a:5d:cd: 4c:2c:7b:b2:e9:e7:c1:d5:f4:91:d5:18:24:ee:d2:3e:c3:19: d0:5e:c5:bf:93:61:e0:9a:a5:e3:a9:12:c7:25:6a:5f:58:79: 73:59:9e:8c:bb:ce:83:98:e2:1f:27:1d:80:dc:49:72:c3:7b: aa:a9:63:00:01:7b:cf:04:a1:ba:40:a5:61:c5:49:43:f5:49: 00:a4:fd:6e:c8:65:13:34:a9:27:c2:89:ee:0b:1e:b1:aa:1c: 07:36:08:f1:0d:e8:ec:08:7d:23:50:1e:ec:b0:01:e1:84:89: 93:3a:49:93:f8:e2:83:27:d2:74:b4:a2:a6:62:69:45:ab:1e: 77:34:1e:6a:f1:5e:63:92:d8:d4:ba:3f:14:49:23:1c:f6:36: 1f:25:d6:ca:7b:c3:88:4b:ff:ef:d8:ce:a8:8a:05:06:24:c6: 9e:db:97:88:55:b7:b7:59:19:48:87:0e:0b:b5:8e:b0:67:ac: 1a:fe:f2:1c:dc:3e:cd:a0:c4:70:e9:65:21:08:8a:b6:f2:ed: b4:e8:c0:58:84:f4:13:d0:14:8e:17:eb:eb:0a:d9:46:34:fc: ba:69:48:fa -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDTPQermPbRnyxTN3/7EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmODc2ZTBlN2FlYjYwNGQxNjMxZDQ5YTAyNWUxNzhhZDI3 NGE4MTIwHhcNMjYwMjA5MTEwMTI0WhcNMjYwMjEwMTEwMTI0WjAzMTEwLwYDVQQD EyhlMjg4Y2Q3YTIyOWJmYWM2MTZlMzUwNmNkYzA1NmQ5NmNlN2Q5NGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3sUV+7sO6wmyqZKck5eJQBlZe2s2 ZI4cP82fjaq6onCOoxSWQTQfMIw5hpebxwPP6DVludUiDl1GRcVu2Go8Nqn9x8BN 9xXTl7wV6+v82w3OqMyhPELzbZ1HxkLI4aCDlcFu79jf9JCu6h9FLkZHaqGNqHH3 uTx+RORuOOSqBUG1oQ3UTT2gkDxJ3Mpb67DgQYRX1yemcWdMnPW5ufx/Th+CMCUw SBi63V8Yyp9+4Og2IYQAA8DPN72IMuXnZGsJ5sEpr7ek0pKHbs33oswg3zcVkh6x MRSnwRWua7ZiHOjlVrJcfrcfMyVR9kmpGZyCR8PXt0FrTg3U4SjtGANBwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOKIzXoim/rGFuNQbNwFbZbOfZT+MB8GA1UdIwQY MBaAFM+Hbg5662BNFjHUmgJeF4rSdKgSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejRkdURucnJZRTBXTWRTYUFsNFhpdEowcUJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNy9hNWJjOGEtMDQ5ZC00MzE0LTliMWEt Mjk3NTVhN2M5NGZkLzEvejRkdURucnJZRTBXTWRTYUFsNFhpdEowcUJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNy9hNWJjOGEtMDQ5ZC00MzE0LTliMWEtMjk3NTVhN2M5NGZk LzEvejRkdURucnJZRTBXTWRTYUFsNFhpdEowcUJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAvTq1GXfK 7nd7tD2Wb50gAXd0nfCuK5ZG4hroQ1/zpjZzKl3NTCx7sunnwdX0kdUYJO7SPsMZ 0F7Fv5Nh4Jql46kSxyVqX1h5c1mejLvOg5jiHycdgNxJcsN7qqljAAF7zwShukCl YcVJQ/VJAKT9bshlEzSpJ8KJ7gsesaocBzYI8Q3o7Ah9I1Ae7LAB4YSJkzpJk/ji gyfSdLSipmJpRasedzQeavFeY5LY1Lo/FEkjHPY2HyXWynvDiEv/79jOqIoFBiTG ntuXiFW3t1kZSIcOC7WOsGesGv7yHNw+zaDEcOllIQiKtvLttOjAWIT0E9AUjhfr 6wrZRjT8umlI+g== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:50 2026 by rpki-client