This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft File: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft (raw, json) Hash identifier: nh/tnDXd8Kkli8jlBibBekAMopA6dBLw/c0E4OX6ZZ0= Subject key identifier: 81:17:4B:E3:4F:02:1E:D4:90:6D:6D:96:1E:63:1D:69:3A:23:9D:84 Authority key identifier: CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6 Certificate issuer: /CN=cddd902a1271270027e4577778ea35883b4515f6 Certificate serial: 019C4390346042164FCFC5256EEFBDC99A15 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft Manifest number: 1817 Signing time: Mon 09 Feb 2026 18:00:49 +0000 Manifest this update: Mon 09 Feb 2026 18:00:49 +0000 Manifest next update: Tue 10 Feb 2026 18:00:49 +0000 Files and hashes: 1: dCjH0v3m8tCVY_tkggWdXHZn358.roa (hash: a8K+Ic68j3/hayz7h7GvBE1rHXDfwuhE74wsEmkFkNk=) 2: zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl (hash: vxkHUadd7QyCh09zcN8I1EZkuJruXuEkF6dIPEMkNAw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:34:60:42:16:4f:cf:c5:25:6e:ef:bd:c9:9a:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cddd902a1271270027e4577778ea35883b4515f6 Validity Not Before: Feb 9 18:00:49 2026 GMT Not After : Feb 10 18:00:49 2026 GMT Subject: CN=81174be34f021ed4906d6d961e631d693a239d84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:28:5d:2c:32:cf:3b:83:cc:85:28:17:ee:79: f3:1e:12:04:f1:0b:cd:47:ef:53:05:d1:09:f9:9b: 82:b0:d1:0f:7c:d9:f9:e5:91:86:e6:71:2c:8c:28: 06:f2:e3:72:85:7b:89:ba:05:d8:d6:b7:3a:3e:53: ca:c5:3a:df:0b:7e:95:6d:66:2d:1d:91:8d:39:a3: ae:10:6f:18:af:2b:fa:c2:ea:60:98:65:25:28:32: 44:c1:e7:5b:c7:3c:a4:26:63:3d:c8:75:f0:96:b1: 56:d6:33:ad:78:51:98:24:48:5b:8c:e8:16:2d:07: c4:0d:9e:b2:be:57:f6:ee:19:84:4c:ab:e7:5a:14: 29:fd:89:49:79:ea:ca:97:f4:fa:b9:0b:64:36:43: 23:ce:f9:7f:35:05:ff:1a:02:f3:55:55:e3:db:e0: 25:ff:cd:21:e6:8c:e0:ca:3f:6f:97:43:2c:f4:43: 56:76:5b:a0:c9:b3:a6:63:cc:41:06:4b:f7:91:fb: 78:d2:dd:70:82:5d:15:9b:38:b6:b1:d9:ca:30:8b: f1:f4:98:de:d9:aa:28:61:7b:24:3d:2b:34:31:fd: be:8a:4a:55:9f:a6:ce:19:44:c6:d2:fd:b8:e5:c8: 81:4b:6f:c2:01:c8:43:58:dd:06:79:74:69:2a:ff: b3:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:17:4B:E3:4F:02:1E:D4:90:6D:6D:96:1E:63:1D:69:3A:23:9D:84 X509v3 Authority Key Identifier: keyid:CD:DD:90:2A:12:71:27:00:27:E4:57:77:78:EA:35:88:3B:45:15:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/7a1eb4-290a-4686-8bba-dc7542138952/1/zd2QKhJxJwAn5Fd3eOo1iDtFFfY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:8a:25:ea:1c:52:0f:70:7d:b7:c2:84:13:6e:21:56:7f:11: 9a:2f:2f:b9:47:21:04:c1:86:e5:df:e0:0c:00:3e:27:f9:4b: 12:01:67:56:37:72:8c:66:f2:63:28:43:06:c7:cc:f6:15:fa: 23:51:19:6f:a1:9f:a2:41:ee:9f:71:22:d8:a7:34:a3:c9:47: 6c:20:14:58:0d:2a:1e:05:67:f6:a2:67:27:60:e3:77:b0:8b: 4b:fb:82:68:45:91:ed:98:e5:e8:17:64:83:66:f1:dc:d2:d6: 15:d1:24:8d:33:37:d7:c0:26:61:c7:02:51:e8:8d:01:de:23: 47:70:75:17:1e:62:22:90:c3:b8:bf:0a:39:b7:40:06:d4:ac: 52:98:d5:f7:f7:56:b0:df:83:0d:06:2e:c3:05:6e:a6:08:03: 2b:7e:af:5e:ed:5a:e6:bb:b1:03:f2:48:2a:e6:14:38:63:06: 5c:bb:9a:5d:05:1f:2d:ee:fc:43:ce:dc:9c:12:c4:7f:7d:18: 78:f9:39:f8:62:19:8e:ba:7e:1c:d3:b3:70:cf:3b:09:c6:e0: 26:73:09:e0:76:94:e6:ea:98:03:ea:e3:0c:31:19:b9:1b:0c: a9:eb:72:b9:be:31:f9:e0:6a:f1:a5:83:02:87:15:53:2a:f6: 02:c3:eb:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkDRgQhZPz8Ulbu+9yZoVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkZGQ5MDJhMTI3MTI3MDAyN2U0NTc3Nzc4ZWEzNTg4M2I0 NTE1ZjYwHhcNMjYwMjA5MTgwMDQ5WhcNMjYwMjEwMTgwMDQ5WjAzMTEwLwYDVQQD Eyg4MTE3NGJlMzRmMDIxZWQ0OTA2ZDZkOTYxZTYzMWQ2OTNhMjM5ZDg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzChdLDLPO4PMhSgX7nnzHhIE8QvN R+9TBdEJ+ZuCsNEPfNn55ZGG5nEsjCgG8uNyhXuJugXY1rc6PlPKxTrfC36VbWYt HZGNOaOuEG8Yryv6wupgmGUlKDJEwedbxzykJmM9yHXwlrFW1jOteFGYJEhbjOgW LQfEDZ6yvlf27hmETKvnWhQp/YlJeerKl/T6uQtkNkMjzvl/NQX/GgLzVVXj2+Al /80h5ozgyj9vl0Ms9ENWdlugybOmY8xBBkv3kft40t1wgl0Vmzi2sdnKMIvx9Jje 2aooYXskPSs0Mf2+ikpVn6bOGUTG0v245ciBS2/CAchDWN0GeXRpKv+z0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIEXS+NPAh7UkG1tlh5jHWk6I52EMB8GA1UdIwQY MBaAFM3dkCoScScAJ+RXd3jqNYg7RRX2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS83YTFlYjQtMjkwYS00Njg2LThiYmEt ZGM3NTQyMTM4OTUyLzEvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS83YTFlYjQtMjkwYS00Njg2LThiYmEtZGM3NTQyMTM4OTUy LzEvemQyUUtoSnhKd0FuNUZkM2VPbzFpRHRGRmZZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiIol6hxS D3B9t8KEE24hVn8Rmi8vuUchBMGG5d/gDAA+J/lLEgFnVjdyjGbyYyhDBsfM9hX6 I1EZb6GfokHun3Ei2Kc0o8lHbCAUWA0qHgVn9qJnJ2Djd7CLS/uCaEWR7Zjl6Bdk g2bx3NLWFdEkjTM318AmYccCUeiNAd4jR3B1Fx5iIpDDuL8KObdABtSsUpjV9/dW sN+DDQYuwwVupggDK36vXu1a5ruxA/JIKuYUOGMGXLuaXQUfLe78Q87cnBLEf30Y ePk5+GIZjrp+HNOzcM87CcbgJnMJ4HaU5uqYA+rjDDEZuRsMqetyub4x+eBq8aWD AocVUyr2AsPruQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:23 2026 by rpki-client