This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft File: ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft (raw, json) Hash identifier: saSmSAU7JB2Qohk22lXqca3tRP26z3TiZi1B296uP10= Subject key identifier: F9:72:0A:1B:C0:CC:56:13:C0:F9:67:8C:C0:84:14:BB:DC:40:0D:29 Authority key identifier: 66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61 Certificate issuer: /CN=660899133329faa5b5716b1c95fbaf93021fbc61 Certificate serial: 019BFCC0CA0CE03C79DF8BC92FC059AC2857 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft Manifest number: 0ED0 Signing time: Tue 27 Jan 2026 00:00:51 +0000 Manifest this update: Tue 27 Jan 2026 00:00:51 +0000 Manifest next update: Wed 28 Jan 2026 00:00:51 +0000 Files and hashes: 1: ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl (hash: LsjwRWCWE4qyqSpvdHx8aQXfMkiMlqb1u89wJNwaQ1E=) 2: kO3ikc55etvofjUz54lkxBw2Zts.roa (hash: FQtm/UjIvg0izBKVwcfTdDDZlcQWbE25eid7tWcMESM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:c0:ca:0c:e0:3c:79:df:8b:c9:2f:c0:59:ac:28:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=660899133329faa5b5716b1c95fbaf93021fbc61 Validity Not Before: Jan 27 00:00:51 2026 GMT Not After : Jan 28 00:00:51 2026 GMT Subject: CN=f9720a1bc0cc5613c0f9678cc08414bbdc400d29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:64:c7:52:cc:5f:e4:b1:34:29:66:9f:07:93: 22:c8:e3:92:9f:67:e4:18:f8:c5:9b:11:04:dd:be: 7f:e5:5c:4b:31:07:8e:bc:e0:9a:54:07:87:c9:96: ae:7b:af:b2:ec:1a:6f:73:82:fd:49:af:d6:4e:a4: 95:92:32:a3:08:b5:94:20:c2:39:54:90:8d:7b:19: 90:3a:00:54:dc:6f:3c:98:d0:65:59:80:67:9d:36: f8:63:a9:85:07:e5:be:1c:6f:22:fc:1a:fb:88:f3: e0:b6:30:83:1d:22:43:f9:4d:3f:03:03:03:5a:b1: 0d:bf:8a:03:38:9e:3a:2d:b3:43:0b:a7:f7:44:00: 62:4e:58:e3:5b:ed:7e:75:bd:e9:08:a4:f4:c3:3a: 27:6a:f6:b2:87:d4:d3:28:f8:95:49:6c:04:84:9c: 02:1f:e4:f2:d9:34:81:5d:97:3c:33:00:26:81:cc: 45:e7:32:53:13:57:4a:e0:f5:d6:bc:03:cf:8b:8e: ed:f0:01:a8:fd:42:95:5e:08:fb:ec:a6:04:68:00: b6:44:1e:be:9c:6c:09:7d:02:0f:3f:23:7c:55:e0: 3b:f4:66:41:9a:1b:93:47:a7:fe:ac:4a:a0:22:dd: e2:ea:b7:34:78:d5:8b:2f:a3:61:5c:b8:a7:d1:54: ca:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:72:0A:1B:C0:CC:56:13:C0:F9:67:8C:C0:84:14:BB:DC:40:0D:29 X509v3 Authority Key Identifier: keyid:66:08:99:13:33:29:FA:A5:B5:71:6B:1C:95:FB:AF:93:02:1F:BC:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZgiZEzMp-qW1cWsclfuvkwIfvGE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/41/bd75b1-174b-417c-8750-eb8a453bc56e/1/ZgiZEzMp-qW1cWsclfuvkwIfvGE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:68:d3:63:ae:3f:d1:7d:16:b1:c6:fb:31:37:81:9e:1e:57: a7:7d:48:b8:3f:8a:ea:05:97:41:a3:56:1a:4e:0c:c8:6f:6f: ac:95:ea:48:66:42:de:65:b9:3b:76:56:1d:28:ef:d8:7d:8f: 21:a1:19:b7:2f:8d:c0:58:59:b4:a8:37:0e:04:13:21:e3:4e: 42:d2:d9:9c:e9:c5:04:33:f5:04:93:f1:27:ce:b4:e5:2c:cd: 8b:82:3c:27:92:ee:bc:53:8c:32:fe:7e:4a:f3:3c:72:6a:d0: bf:89:e7:af:8f:f0:4c:07:91:9d:d3:02:4b:93:07:25:81:22: d6:e9:7a:c6:41:b9:7b:0b:bd:b9:05:5c:a9:44:c1:26:4c:5d: bb:fd:09:61:34:03:2c:d5:f4:82:55:f3:c1:30:98:14:78:88: 4c:3d:f2:8d:0a:38:87:41:b5:df:15:3f:05:60:75:d1:49:2b: 28:e6:81:a7:2a:24:35:c0:d8:37:a0:78:21:cf:8e:50:f0:ee: 05:05:b3:82:33:a8:ac:c7:ca:a3:24:12:ea:5f:dc:96:9d:b1: e5:28:83:d4:b8:e3:d3:d6:1b:05:f3:89:24:11:c6:9d:ee:21: 84:96:49:8a:94:c6:85:ee:26:55:63:4f:cb:2b:63:8b:e5:74: 51:1f:a0:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8wMoM4Dx534vJL8BZrChXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY2MDg5OTEzMzMyOWZhYTViNTcxNmIxYzk1ZmJhZjkzMDIx ZmJjNjEwHhcNMjYwMTI3MDAwMDUxWhcNMjYwMTI4MDAwMDUxWjAzMTEwLwYDVQQD EyhmOTcyMGExYmMwY2M1NjEzYzBmOTY3OGNjMDg0MTRiYmRjNDAwZDI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApmTHUsxf5LE0KWafB5MiyOOSn2fk GPjFmxEE3b5/5VxLMQeOvOCaVAeHyZaue6+y7Bpvc4L9Sa/WTqSVkjKjCLWUIMI5 VJCNexmQOgBU3G88mNBlWYBnnTb4Y6mFB+W+HG8i/Br7iPPgtjCDHSJD+U0/AwMD WrENv4oDOJ46LbNDC6f3RABiTljjW+1+db3pCKT0wzonavayh9TTKPiVSWwEhJwC H+Ty2TSBXZc8MwAmgcxF5zJTE1dK4PXWvAPPi47t8AGo/UKVXgj77KYEaAC2RB6+ nGwJfQIPPyN8VeA79GZBmhuTR6f+rEqgIt3i6rc0eNWLL6NhXLin0VTKswIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPlyChvAzFYTwPlnjMCEFLvcQA0pMB8GA1UdIwQY MBaAFGYImRMzKfqltXFrHJX7r5MCH7xhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80MS9iZDc1YjEtMTc0Yi00MTdjLTg3NTAt ZWI4YTQ1M2JjNTZlLzEvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80MS9iZDc1YjEtMTc0Yi00MTdjLTg3NTAtZWI4YTQ1M2JjNTZl LzEvWmdpWkV6TXAtcVcxY1dzY2xmdXZrd0lmdkdFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfGjTY64/ 0X0Wscb7MTeBnh5Xp31IuD+K6gWXQaNWGk4MyG9vrJXqSGZC3mW5O3ZWHSjv2H2P IaEZty+NwFhZtKg3DgQTIeNOQtLZnOnFBDP1BJPxJ8605SzNi4I8J5LuvFOMMv5+ SvM8cmrQv4nnr4/wTAeRndMCS5MHJYEi1ul6xkG5ewu9uQVcqUTBJkxdu/0JYTQD LNX0glXzwTCYFHiITD3yjQo4h0G13xU/BWB10UkrKOaBpyokNcDYN6B4Ic+OUPDu BQWzgjOorMfKoyQS6l/clp2x5SiD1Ljj09YbBfOJJBHGne4hhJZJipTGhe4mVWNP yytji+V0UR+gmw== -----END CERTIFICATE-----Generated at Tue Jan 27 08:29:38 2026 by rpki-client