This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft File: ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft (raw, json) Hash identifier: F6GWzC55wsB3V5D5CZ9mL2mPkwjSiATPCWWJGUEHfHk= Subject key identifier: 42:9A:24:DF:29:12:8A:2F:81:7D:12:94:07:04:2C:27:C1:44:FE:18 Authority key identifier: 66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A Certificate issuer: /CN=66a1d1a017802e5c57da5978544fc537403da73a Certificate serial: 019C427D16A850F8BED144632FBDFCBC6763 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft Manifest number: 0B28 Signing time: Mon 09 Feb 2026 13:00:19 +0000 Manifest this update: Mon 09 Feb 2026 13:00:19 +0000 Manifest next update: Tue 10 Feb 2026 13:00:19 +0000 Files and hashes: 1: 3YnZtmegxXoZvb9K7_HalTViL0w.roa (hash: B1b4mNLvcXEYUbcOc3EYX+Xry/YHoo7ZiUdGbEg4AFc=) 2: ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl (hash: VRXBuITF4FJdgoKn1umAscJgR5vdOgs1RzD/sJJXaOc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:16:a8:50:f8:be:d1:44:63:2f:bd:fc:bc:67:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66a1d1a017802e5c57da5978544fc537403da73a Validity Not Before: Feb 9 13:00:19 2026 GMT Not After : Feb 10 13:00:19 2026 GMT Subject: CN=429a24df29128a2f817d129407042c27c144fe18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:67:9b:ce:70:c5:35:3d:32:73:d4:99:27:76: 54:00:10:52:07:d5:a4:c2:ac:b3:ba:de:c1:26:ab: bd:49:a0:dd:c0:cd:90:d5:a8:16:8b:45:b8:97:fc: 49:95:57:d7:9f:82:45:f7:1b:d5:9a:c0:bc:f7:6d: 0d:d8:f6:3e:bc:dd:c1:98:96:38:11:62:1d:8b:b7: ab:87:98:1b:7c:94:3d:15:ba:ab:a9:6c:f0:ed:8b: 09:52:df:76:83:28:5f:e2:1d:9e:70:bc:2a:38:7a: a8:37:4c:77:f9:39:b4:cc:6e:e7:1f:62:93:51:27: da:57:06:d3:cd:07:58:08:ed:f8:3b:66:18:38:4b: e6:eb:02:2f:b2:58:1a:f8:26:0b:67:a9:cc:2e:c4: 06:f1:34:c3:47:23:a0:e5:7d:4a:ce:be:db:b5:73: 36:61:fe:1e:c2:7e:7a:3f:a1:a7:02:c6:5b:db:50: 64:1a:c4:86:99:35:a6:7d:5e:ab:32:73:6c:42:7b: 9f:6f:88:57:72:d2:75:b3:09:70:9c:22:8d:b0:b2: 98:f2:cd:b5:e1:46:f0:16:95:54:6b:69:57:dd:9c: 5a:dd:f9:5c:2e:64:f7:0c:d6:f6:01:35:56:4a:bd: 7a:6a:e9:75:9c:52:6e:a5:d5:37:be:4e:63:26:a6: 84:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9A:24:DF:29:12:8A:2F:81:7D:12:94:07:04:2C:27:C1:44:FE:18 X509v3 Authority Key Identifier: keyid:66:A1:D1:A0:17:80:2E:5C:57:DA:59:78:54:4F:C5:37:40:3D:A7:3A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZqHRoBeALlxX2ll4VE_FN0A9pzo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/35/91548b-bab5-454c-b60b-19f2a1d16033/1/ZqHRoBeALlxX2ll4VE_FN0A9pzo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:f0:a4:d2:d9:88:ac:a7:59:88:d0:80:4a:48:c7:44:b7:f4: d1:31:f0:78:ae:ab:ef:82:60:f5:96:7f:89:02:ee:03:2c:35: 36:0c:5a:b5:f3:40:68:5a:6b:b2:ce:3a:b2:aa:a1:42:d3:72: be:3e:86:0e:2f:be:71:16:a1:ce:94:b2:3b:40:19:30:d1:45: 0e:eb:a7:1c:fc:27:03:e3:68:a7:96:7c:86:49:44:42:40:a9: bf:00:ea:2f:b6:d2:46:83:be:eb:cc:1a:4e:25:72:b1:c6:be: a3:24:ae:d4:97:06:d4:1b:af:8b:7f:42:72:f9:77:86:a5:fb: 67:40:85:08:4d:2d:86:91:ef:9f:14:3d:1a:19:c5:47:41:f4: 14:47:18:62:b1:24:56:90:e8:0b:c0:4d:63:47:7d:02:c3:09: cc:aa:05:5e:f0:35:b5:bb:5d:9a:2b:0c:76:5e:1a:51:42:35: a6:b0:74:05:15:b1:aa:4e:eb:11:c5:a5:bb:ac:70:0f:96:27: 97:18:bf:a0:27:89:19:2e:c2:2b:7b:dc:47:da:bd:35:10:d9: 84:61:22:5b:c9:aa:70:11:fb:94:eb:b1:68:5b:81:cd:24:dc: b9:ca:41:32:94:eb:cc:17:ac:09:e7:92:92:19:b1:43:ba:52: f5:bd:b8:b4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfRaoUPi+0URjL738vGdjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2YTFkMWEwMTc4MDJlNWM1N2RhNTk3ODU0NGZjNTM3NDAz ZGE3M2EwHhcNMjYwMjA5MTMwMDE5WhcNMjYwMjEwMTMwMDE5WjAzMTEwLwYDVQQD Eyg0MjlhMjRkZjI5MTI4YTJmODE3ZDEyOTQwNzA0MmMyN2MxNDRmZTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2ebznDFNT0yc9SZJ3ZUABBSB9Wk wqyzut7BJqu9SaDdwM2Q1agWi0W4l/xJlVfXn4JF9xvVmsC8920N2PY+vN3BmJY4 EWIdi7erh5gbfJQ9FbqrqWzw7YsJUt92gyhf4h2ecLwqOHqoN0x3+Tm0zG7nH2KT USfaVwbTzQdYCO34O2YYOEvm6wIvslga+CYLZ6nMLsQG8TTDRyOg5X1Kzr7btXM2 Yf4ewn56P6GnAsZb21BkGsSGmTWmfV6rMnNsQnufb4hXctJ1swlwnCKNsLKY8s21 4UbwFpVUa2lX3Zxa3flcLmT3DNb2ATVWSr16aul1nFJupdU3vk5jJqaEiwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEKaJN8pEoovgX0SlAcELCfBRP4YMB8GA1UdIwQY MBaAFGah0aAXgC5cV9pZeFRPxTdAPac6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNS85MTU0OGItYmFiNS00NTRjLWI2MGIt MTlmMmExZDE2MDMzLzEvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNS85MTU0OGItYmFiNS00NTRjLWI2MGItMTlmMmExZDE2MDMz LzEvWnFIUm9CZUFMbHhYMmxsNFZFX0ZOMEE5cHpvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAfCk0tmI rKdZiNCASkjHRLf00THweK6r74Jg9ZZ/iQLuAyw1NgxatfNAaFprss46sqqhQtNy vj6GDi++cRahzpSyO0AZMNFFDuunHPwnA+Nop5Z8hklEQkCpvwDqL7bSRoO+68wa TiVysca+oySu1JcG1Buvi39Ccvl3hqX7Z0CFCE0thpHvnxQ9GhnFR0H0FEcYYrEk VpDoC8BNY0d9AsMJzKoFXvA1tbtdmisMdl4aUUI1prB0BRWxqk7rEcWlu6xwD5Yn lxi/oCeJGS7CK3vcR9q9NRDZhGEiW8mqcBH7lOuxaFuBzSTcucpBMpTrzBesCeeS khmxQ7pS9b24tA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:11 2026 by rpki-client