This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft File: z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft (raw, json) Hash identifier: PJy499FpRv5gmysuIsNSRKO0nsbGLbdy18aYvkWo/hs= Subject key identifier: A4:FE:BD:E8:1F:BE:10:0A:2C:97:B3:5D:9E:BA:87:0D:84:0B:5B:F8 Authority key identifier: CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11 Certificate issuer: /CN=cf66224bcfb8b82deaabac8c4ca250371b974611 Certificate serial: 019C4659C4C569D7B1DE376284DFE35CCC98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft Manifest number: 1813 Signing time: Tue 10 Feb 2026 07:00:13 +0000 Manifest this update: Tue 10 Feb 2026 07:00:13 +0000 Manifest next update: Wed 11 Feb 2026 07:00:13 +0000 Files and hashes: 1: BVCNuyEI8Escb23UOBkojnAQ3uU.roa (hash: TpAVxATDxHC3mnDA/ZCfMM4mNI1Q7807T0lCqaxfnlA=) 2: z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl (hash: OkThPuSfaGQBUupgmcuaMZD3jJ+ZoJjhyfI4V07cpaE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 07:00:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:46:59:c4:c5:69:d7:b1:de:37:62:84:df:e3:5c:cc:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf66224bcfb8b82deaabac8c4ca250371b974611 Validity Not Before: Feb 10 07:00:13 2026 GMT Not After : Feb 11 07:00:13 2026 GMT Subject: CN=a4febde81fbe100a2c97b35d9eba870d840b5bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2d:7e:d3:89:3a:43:6d:f4:da:56:a3:a5:7f: b6:f9:54:10:10:71:b2:7c:6c:dc:6b:d1:58:d9:fb: 38:36:74:e8:07:9a:e5:f0:23:48:83:43:07:f4:df: a2:df:38:26:d7:c6:0f:4f:ec:c5:b2:f1:0d:41:db: 9c:47:e7:4a:ed:b9:0d:ec:62:42:30:31:e6:c2:20: 7e:5c:3b:16:ce:e5:ec:e1:7b:98:30:54:1a:5f:50: 10:f4:07:c9:0d:b8:41:f2:bf:ec:53:16:bd:fc:04: e8:2b:93:a2:db:f0:2c:0e:6b:2f:c5:1c:c1:0a:03: 91:1e:c0:59:e9:00:99:5c:58:83:2c:42:f1:86:73: 14:ed:79:db:7f:f2:dc:ad:a4:be:8b:e2:47:b2:86: 4f:bc:f1:cc:0b:7b:d9:6c:05:92:cc:dd:99:9a:c2: ca:bf:eb:0d:1c:4b:34:c2:a6:95:81:9e:85:7b:3a: 7e:bc:9e:32:eb:87:4c:d3:76:fa:fb:94:85:ea:f5: 74:e1:34:d3:a2:b6:64:c0:2a:32:68:cd:63:8c:ad: 3b:87:33:07:a8:44:2c:87:72:b9:15:33:24:c7:dc: 5d:eb:0b:64:90:fc:b2:81:06:9f:24:f3:4a:7f:69: bf:57:34:82:ce:ac:c5:77:d4:de:41:d1:12:80:32: 58:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:FE:BD:E8:1F:BE:10:0A:2C:97:B3:5D:9E:BA:87:0D:84:0B:5B:F8 X509v3 Authority Key Identifier: keyid:CF:66:22:4B:CF:B8:B8:2D:EA:AB:AC:8C:4C:A2:50:37:1B:97:46:11 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z2YiS8-4uC3qq6yMTKJQNxuXRhE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/196b71-587e-4099-bdb2-b954c50fdbb0/1/z2YiS8-4uC3qq6yMTKJQNxuXRhE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:87:46:77:85:f1:a6:b7:06:8b:3e:d2:e4:3e:ae:fd:10:6e: e1:ed:5b:20:49:81:52:b6:03:fb:c6:af:9f:5a:42:2e:4a:dd: 2a:5d:ec:79:c5:18:be:a6:42:31:48:5a:87:89:3b:d1:6d:59: c1:da:20:6a:52:5e:0b:c6:b1:5d:f1:84:07:2f:03:72:8a:ea: 29:32:e4:6c:2f:ac:42:6a:bd:84:78:f0:e9:35:59:65:1b:52: ef:91:08:bf:52:d3:c2:1f:fd:86:bc:fb:2f:e2:86:35:ca:f4: 4b:f6:64:dd:ae:16:ec:46:8f:e8:3d:fb:43:82:e9:9a:ed:58: e2:69:3d:b2:ef:49:08:1b:73:73:a7:2e:d1:6b:a4:c9:8f:fc: 57:5c:05:c1:45:ba:5c:f6:d3:e9:52:da:c7:75:4b:b3:62:8b: b4:d5:09:d0:4c:8b:b6:f7:57:2c:fc:68:9a:a7:99:ae:af:5f: d8:79:87:a5:22:78:47:9c:90:fd:24:aa:bc:72:93:e7:db:a2: 3f:9d:e2:be:f8:e7:cc:96:7d:bf:72:24:8a:58:6c:e7:b7:38: 42:60:c0:a9:b6:6b:6a:70:37:a8:07:96:57:ac:09:a9:f0:c5: c0:3c:3c:e5:19:5f:30:d6:47:22:27:b1:78:3b:c4:ec:14:aa: 10:33:34:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxGWcTFadex3jdihN/jXMyYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNjYyMjRiY2ZiOGI4MmRlYWFiYWM4YzRjYTI1MDM3MWI5 NzQ2MTEwHhcNMjYwMjEwMDcwMDEzWhcNMjYwMjExMDcwMDEzWjAzMTEwLwYDVQQD EyhhNGZlYmRlODFmYmUxMDBhMmM5N2IzNWQ5ZWJhODcwZDg0MGI1YmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApS1+04k6Q2302lajpX+2+VQQEHGy fGzca9FY2fs4NnToB5rl8CNIg0MH9N+i3zgm18YPT+zFsvENQducR+dK7bkN7GJC MDHmwiB+XDsWzuXs4XuYMFQaX1AQ9AfJDbhB8r/sUxa9/AToK5Oi2/AsDmsvxRzB CgORHsBZ6QCZXFiDLELxhnMU7Xnbf/LcraS+i+JHsoZPvPHMC3vZbAWSzN2ZmsLK v+sNHEs0wqaVgZ6Fezp+vJ4y64dM03b6+5SF6vV04TTTorZkwCoyaM1jjK07hzMH qEQsh3K5FTMkx9xd6wtkkPyygQafJPNKf2m/VzSCzqzFd9TeQdESgDJYCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKT+vegfvhAKLJezXZ66hw2EC1v4MB8GA1UdIwQY MBaAFM9mIkvPuLgt6qusjEyiUDcbl0YRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjIt Yjk1NGM1MGZkYmIwLzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC8xOTZiNzEtNTg3ZS00MDk5LWJkYjItYjk1NGM1MGZkYmIw LzEvejJZaVM4LTR1QzNxcTZ5TVRLSlFOeHVYUmhFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdIdGd4Xx prcGiz7S5D6u/RBu4e1bIEmBUrYD+8avn1pCLkrdKl3secUYvqZCMUhah4k70W1Z wdogalJeC8axXfGEBy8DcorqKTLkbC+sQmq9hHjw6TVZZRtS75EIv1LTwh/9hrz7 L+KGNcr0S/Zk3a4W7EaP6D37Q4Lpmu1Y4mk9su9JCBtzc6cu0WukyY/8V1wFwUW6 XPbT6VLax3VLs2KLtNUJ0EyLtvdXLPxomqeZrq9f2HmHpSJ4R5yQ/SSqvHKT59ui P53ivvjnzJZ9v3Ikilhs57c4QmDAqbZranA3qAeWV6wJqfDFwDw85RlfMNZHIiex eDvE7BSqEDM0Cw== -----END CERTIFICATE-----Generated at Tue Feb 10 13:20:24 2026 by rpki-client