This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft File: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft (raw, json) Hash identifier: 5BQHfOtRzB5ZRVIfwi0/LIxf9co3f8wmR5imJutm+7I= Subject key identifier: 1B:EB:AB:55:79:93:BD:36:B0:F3:C4:AF:0E:A9:4E:32:0F:B2:7B:66 Authority key identifier: CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D Certificate issuer: /CN=ce1f59ae34548132892fcc89b1595f9b0360198d Certificate serial: 019C41A190489F1B5EA37E79B7DF7C5AC784 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft Manifest number: 120B Signing time: Mon 09 Feb 2026 09:00:33 +0000 Manifest this update: Mon 09 Feb 2026 09:00:33 +0000 Manifest next update: Tue 10 Feb 2026 09:00:33 +0000 Files and hashes: 1: 0fMGliU2DY90o-COL7gfsd6xbVw.roa (hash: pyD2slLDpEMFdPN9pfMsq689iSsZ/8LJ4vMycIuRMpg=) 2: zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl (hash: t94yEgaJn/NhSANBU2y3dL0WYJQqyyQmP/bWUR9q03U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:90:48:9f:1b:5e:a3:7e:79:b7:df:7c:5a:c7:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce1f59ae34548132892fcc89b1595f9b0360198d Validity Not Before: Feb 9 09:00:33 2026 GMT Not After : Feb 10 09:00:33 2026 GMT Subject: CN=1bebab557993bd36b0f3c4af0ea94e320fb27b66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:41:eb:7e:30:37:e2:ec:29:40:db:6c:8a:a3: 13:c3:22:14:65:47:05:85:65:45:2b:c1:fa:42:3e: 29:e1:f0:3c:45:9f:45:b0:98:2d:c1:58:d8:06:8c: 71:fb:ad:76:7d:7c:15:f6:80:17:03:b4:06:57:8b: 1e:2e:ed:c9:49:a3:1e:bc:b8:a4:0e:a3:b4:32:18: a3:92:a2:cd:84:e8:db:47:f7:17:96:0f:ae:43:e8: 3d:33:b5:75:33:8c:9a:4a:85:32:fd:bb:35:02:f7: 0b:46:b5:20:5d:2c:7b:4e:14:46:9c:71:21:24:21: 3e:d2:fa:4e:eb:20:32:33:96:22:a2:a5:59:b7:69: b4:6b:f1:5e:8a:5b:ba:31:31:aa:50:db:18:d4:f2: 67:e9:fb:6b:7e:70:88:49:a6:75:75:5c:6a:20:ef: 5f:72:f4:79:52:86:d9:a3:7a:df:8b:ec:c6:07:94: c4:7d:c1:47:27:fd:a8:8c:d6:b8:65:51:7a:c0:eb: 50:11:61:c0:d5:ff:2a:78:03:a6:c2:63:7e:19:82: 27:4c:e3:36:5e:88:85:00:b6:dd:74:ec:36:43:e8: 87:41:9d:01:dc:ee:23:c4:d0:12:a3:ef:79:51:0c: 46:74:02:b7:f9:2f:91:bc:94:17:d6:29:46:43:ef: fa:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:EB:AB:55:79:93:BD:36:B0:F3:C4:AF:0E:A9:4E:32:0F:B2:7B:66 X509v3 Authority Key Identifier: keyid:CE:1F:59:AE:34:54:81:32:89:2F:CC:89:B1:59:5F:9B:03:60:19:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4fa2d8-d71d-49b1-8eb0-a3589da16c85/1/zh9ZrjRUgTKJL8yJsVlfmwNgGY0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:79:14:48:1d:c7:43:b8:59:5e:62:cf:49:96:de:94:04:7b: 2f:97:3c:ea:e1:8c:9f:c4:e3:67:88:a9:19:b5:b3:74:f7:50: a1:89:96:3d:54:b7:da:89:1a:4b:54:87:02:b9:95:72:a6:2e: 66:eb:1f:c8:b3:b1:bf:8c:01:a9:eb:c0:dd:49:e8:40:1a:7d: 34:12:b7:13:0e:d5:a7:92:e9:27:9c:fe:38:29:5f:8c:21:c7: b6:2a:23:56:0e:15:bb:22:82:0f:73:02:dd:ab:83:66:60:01: a4:72:c8:45:ac:c3:a9:2a:d1:be:d5:ff:90:c4:bc:84:35:1b: 89:ec:df:00:85:bc:f2:3e:36:01:85:72:7d:05:d8:3f:00:5c: f9:f7:8a:d2:8e:e9:3a:5b:45:13:03:d1:e6:32:7c:b8:7f:64: 53:df:dd:b3:16:93:f5:ac:c6:39:8d:52:f4:10:2c:75:29:e6: 51:91:7d:b6:6a:68:7d:5c:a0:db:27:66:7b:ea:b5:f3:37:db: 7e:bd:e8:2a:3c:c6:f7:a3:17:b5:44:de:ed:9e:b8:ac:23:d1: 4d:62:5a:66:6b:b2:c5:17:7f:96:b3:f3:c3:09:02:6d:f0:79: 1f:d8:f1:94:b7:1c:07:6b:06:4f:4c:51:72:65:11:e9:fc:6d: e2:86:df:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoZBInxteo355t998WseEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlMWY1OWFlMzQ1NDgxMzI4OTJmY2M4OWIxNTk1ZjliMDM2 MDE5OGQwHhcNMjYwMjA5MDkwMDMzWhcNMjYwMjEwMDkwMDMzWjAzMTEwLwYDVQQD EygxYmViYWI1NTc5OTNiZDM2YjBmM2M0YWYwZWE5NGUzMjBmYjI3YjY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmEHrfjA34uwpQNtsiqMTwyIUZUcF hWVFK8H6Qj4p4fA8RZ9FsJgtwVjYBoxx+612fXwV9oAXA7QGV4seLu3JSaMevLik DqO0MhijkqLNhOjbR/cXlg+uQ+g9M7V1M4yaSoUy/bs1AvcLRrUgXSx7ThRGnHEh JCE+0vpO6yAyM5YioqVZt2m0a/Feilu6MTGqUNsY1PJn6ftrfnCISaZ1dVxqIO9f cvR5UobZo3rfi+zGB5TEfcFHJ/2ojNa4ZVF6wOtQEWHA1f8qeAOmwmN+GYInTOM2 XoiFALbddOw2Q+iHQZ0B3O4jxNASo+95UQxGdAK3+S+RvJQX1ilGQ+/6HQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBvrq1V5k702sPPErw6pTjIPsntmMB8GA1UdIwQY MBaAFM4fWa40VIEyiS/MibFZX5sDYBmNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemg5WnJqUlVnVEtKTDh5SnNWbGZtd05nR1kwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Ni80ZmEyZDgtZDcxZC00OWIxLThlYjAt YTM1ODlkYTE2Yzg1LzEvemg5WnJqUlVnVEtKTDh5SnNWbGZtd05nR1kwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Ni80ZmEyZDgtZDcxZC00OWIxLThlYjAtYTM1ODlkYTE2Yzg1 LzEvemg5WnJqUlVnVEtKTDh5SnNWbGZtd05nR1kwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqnkUSB3H Q7hZXmLPSZbelAR7L5c86uGMn8TjZ4ipGbWzdPdQoYmWPVS32okaS1SHArmVcqYu ZusfyLOxv4wBqevA3UnoQBp9NBK3Ew7Vp5LpJ5z+OClfjCHHtiojVg4VuyKCD3MC 3auDZmABpHLIRazDqSrRvtX/kMS8hDUbiezfAIW88j42AYVyfQXYPwBc+feK0o7p OltFEwPR5jJ8uH9kU9/dsxaT9azGOY1S9BAsdSnmUZF9tmpofVyg2ydme+q18zfb fr3oKjzG96MXtUTe7Z64rCPRTWJaZmuyxRd/lrPzwwkCbfB5H9jxlLccB2sGT0xR cmUR6fxt4obf7A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:25 2026 by rpki-client