This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft File: ZTwsX-3AjoxdH2VGksPkVkDIou0.mft (raw, json) Hash identifier: DRiC9ZFPyhysUK/YsoJ49f2nOvldFTGgK3yPNQuAFWs= Subject key identifier: 2B:51:D1:EE:D9:F4:6A:D5:80:1F:FC:60:B5:62:94:57:B9:37:67:F0 Authority key identifier: 65:3C:2C:5F:ED:C0:8E:8C:5D:1F:65:46:92:C3:E4:56:40:C8:A2:ED Certificate issuer: /CN=653c2c5fedc08e8c5d1f654692c3e45640c8a2ed Certificate serial: 019C4133913E831BDF29D170C985B7C81729 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft Manifest number: 0D12 Signing time: Mon 09 Feb 2026 07:00:24 +0000 Manifest this update: Mon 09 Feb 2026 07:00:24 +0000 Manifest next update: Tue 10 Feb 2026 07:00:24 +0000 Files and hashes: 1: ZTwsX-3AjoxdH2VGksPkVkDIou0.crl (hash: KWygicuiNbtWXfWpmi17Ja6ao4ZGC0bz/hYBM/7VEq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.crl rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:91:3e:83:1b:df:29:d1:70:c9:85:b7:c8:17:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=653c2c5fedc08e8c5d1f654692c3e45640c8a2ed Validity Not Before: Feb 9 07:00:24 2026 GMT Not After : Feb 10 07:00:24 2026 GMT Subject: CN=2b51d1eed9f46ad5801ffc60b5629457b93767f0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:6d:94:aa:7d:c0:24:ce:12:27:2d:57:10:cc: 84:b4:70:49:44:d2:d8:69:96:54:26:2a:79:5b:5d: 08:dc:c5:2c:f0:a4:dd:2b:a4:69:1c:65:6f:15:dc: 5d:91:cd:68:eb:e9:95:59:b2:c1:8b:4e:f4:10:61: b7:d5:15:91:b5:6a:9b:5d:74:fe:62:b3:81:39:51: f0:8d:da:47:7f:41:d9:04:e6:7a:61:af:71:8a:3b: 35:6e:57:09:6b:51:12:2b:fb:87:ea:d7:db:54:1e: 76:17:f3:28:f0:15:ce:29:42:62:18:28:d9:f1:97: 9f:1e:f5:a1:02:72:32:70:38:a4:42:eb:3b:4c:a9: fa:92:53:c5:aa:99:c9:84:4e:c2:b9:17:f0:d5:e3: 61:d8:c1:31:48:d1:99:9f:f4:d4:84:46:f2:00:d9: ca:24:bf:c2:55:aa:c1:de:d4:c8:96:4c:17:1f:62: 0a:22:6a:b5:94:da:19:65:96:3f:e5:cf:86:06:91: 5e:6d:8d:9f:c1:0c:d2:78:ed:aa:e5:c9:5a:4b:ef: be:e0:3e:10:10:6a:b1:bb:d1:6b:d3:60:cb:df:2b: ae:32:f0:59:1a:99:fe:ab:90:51:d6:7a:c8:1d:54: 22:4e:6a:34:62:95:f9:0a:56:c5:16:22:3c:53:e5: 91:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:51:D1:EE:D9:F4:6A:D5:80:1F:FC:60:B5:62:94:57:B9:37:67:F0 X509v3 Authority Key Identifier: keyid:65:3C:2C:5F:ED:C0:8E:8C:5D:1F:65:46:92:C3:E4:56:40:C8:A2:ED X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZTwsX-3AjoxdH2VGksPkVkDIou0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/f152e0-a7fb-4afc-9c70-1ccb54f372aa/1/ZTwsX-3AjoxdH2VGksPkVkDIou0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0a:d8:ca:b0:38:a2:aa:48:33:cf:68:4b:04:0f:8c:d1:61:ec: 1f:3a:6b:b3:96:d1:18:0d:bc:f1:b0:c8:46:1d:e4:4b:8e:66: 5f:31:dd:c9:7d:e0:9f:75:45:38:b9:fa:9c:d8:f2:ac:d3:c3: d8:1f:0b:c6:31:3a:4e:a7:cc:25:e5:60:80:b4:d1:5d:40:3f: 72:49:06:8b:97:d1:b6:d0:50:38:05:20:90:3d:f0:d9:3e:7c: b6:c3:11:c3:1c:ac:5e:1f:d0:22:43:c9:e7:4a:d3:26:15:8b: 73:a6:0a:7b:cd:4f:b2:98:74:23:30:b1:c4:92:19:21:6a:ff: c4:ac:01:70:a1:28:61:ef:0c:f9:d1:11:f6:7f:cf:6a:38:fd: 4e:86:37:fc:27:fb:16:09:b3:04:b8:52:1d:b0:ad:71:bb:a1: 3a:4a:48:cd:ff:7e:66:1e:9e:32:60:37:45:45:b7:ce:c4:29: a8:9d:d4:f9:d5:9e:de:07:af:45:33:7d:5e:e6:e0:e6:84:f4: 5e:21:be:26:4c:c3:c0:6d:fd:cd:79:0b:3d:d0:18:40:5b:8e: 5b:72:35:2c:50:86:e4:61:45:02:95:cc:8a:49:c7:4a:0d:55: 6a:28:c5:04:0a:bf:2d:5b:6e:cf:8d:f2:81:18:14:f3:a8:af: 92:e3:15:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM5E+gxvfKdFwyYW3yBcpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1M2MyYzVmZWRjMDhlOGM1ZDFmNjU0NjkyYzNlNDU2NDBj OGEyZWQwHhcNMjYwMjA5MDcwMDI0WhcNMjYwMjEwMDcwMDI0WjAzMTEwLwYDVQQD EygyYjUxZDFlZWQ5ZjQ2YWQ1ODAxZmZjNjBiNTYyOTQ1N2I5Mzc2N2YwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwW2Uqn3AJM4SJy1XEMyEtHBJRNLY aZZUJip5W10I3MUs8KTdK6RpHGVvFdxdkc1o6+mVWbLBi070EGG31RWRtWqbXXT+ YrOBOVHwjdpHf0HZBOZ6Ya9xijs1blcJa1ESK/uH6tfbVB52F/Mo8BXOKUJiGCjZ 8ZefHvWhAnIycDikQus7TKn6klPFqpnJhE7CuRfw1eNh2MExSNGZn/TUhEbyANnK JL/CVarB3tTIlkwXH2IKImq1lNoZZZY/5c+GBpFebY2fwQzSeO2q5claS+++4D4Q EGqxu9Fr02DL3yuuMvBZGpn+q5BR1nrIHVQiTmo0YpX5ClbFFiI8U+WR0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCtR0e7Z9GrVgB/8YLVilFe5N2fwMB8GA1UdIwQY MBaAFGU8LF/twI6MXR9lRpLD5FZAyKLtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlR3c1gtM0Fqb3hkSDJWR2tzUGtWa0RJb3UwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi9mMTUyZTAtYTdmYi00YWZjLTljNzAt MWNjYjU0ZjM3MmFhLzEvWlR3c1gtM0Fqb3hkSDJWR2tzUGtWa0RJb3UwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi9mMTUyZTAtYTdmYi00YWZjLTljNzAtMWNjYjU0ZjM3MmFh LzEvWlR3c1gtM0Fqb3hkSDJWR2tzUGtWa0RJb3UwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACtjKsDii qkgzz2hLBA+M0WHsHzprs5bRGA288bDIRh3kS45mXzHdyX3gn3VFOLn6nNjyrNPD 2B8LxjE6TqfMJeVggLTRXUA/ckkGi5fRttBQOAUgkD3w2T58tsMRwxysXh/QIkPJ 50rTJhWLc6YKe81Psph0IzCxxJIZIWr/xKwBcKEoYe8M+dER9n/Pajj9ToY3/Cf7 FgmzBLhSHbCtcbuhOkpIzf9+Zh6eMmA3RUW3zsQpqJ3U+dWe3gevRTN9Xubg5oT0 XiG+JkzDwG39zXkLPdAYQFuOW3I1LFCG5GFFApXMiknHSg1VaijFBAq/LVtuz43y gRgU86ivkuMVjw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:45 2026 by rpki-client