This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft File: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft (raw, json) Hash identifier: nKD2HFRj0q3o5sIknmnVZv4AItOEFQD5prGMV3dsSwQ= Subject key identifier: 25:CD:AC:DA:98:73:F9:26:82:09:2A:A6:A4:C8:D5:BC:1D:54:B6:8E Authority key identifier: 67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C Certificate issuer: /CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c Certificate serial: 019C43FE8C6B10EF39C737532EFA4AFDE228 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft Manifest number: 0F05 Signing time: Mon 09 Feb 2026 20:01:21 +0000 Manifest this update: Mon 09 Feb 2026 20:01:21 +0000 Manifest next update: Tue 10 Feb 2026 20:01:21 +0000 Files and hashes: 1: B2wOUgohqeye9MfPxQxtz9YTAls.roa (hash: 1bpwvIgjEWlAzlHrAhdbiAA3AdkV/y3b10LOBBviIzw=) 2: Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl (hash: 0o3XX1R8XCCUVAHGp0Xi2HCX8h2tYGG4b9WV+1kdf/8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:8c:6b:10:ef:39:c7:37:53:2e:fa:4a:fd:e2:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67d045c13c03dcb373d2a7d85d1e01b6e0ac7e1c Validity Not Before: Feb 9 20:01:21 2026 GMT Not After : Feb 10 20:01:21 2026 GMT Subject: CN=25cdacda9873f92682092aa6a4c8d5bc1d54b68e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:94:d7:21:dd:f9:df:3e:82:a1:45:7b:43:14: 56:ca:f6:37:a6:d3:d5:15:17:c7:0e:ed:1e:d0:5a: 41:c2:60:74:1e:50:90:32:fe:39:19:3e:27:1a:52: 67:7a:42:50:e4:71:b7:15:04:ef:5d:ec:16:3e:3c: b0:fb:64:dd:5b:30:65:3c:e3:64:49:dc:82:45:4d: dc:02:45:7d:70:a8:08:62:04:dc:42:a7:45:30:72: 03:55:71:a7:9e:6c:ec:7d:a3:d5:14:0a:9b:03:25: 5b:84:e7:1a:5e:b8:82:4a:6d:d0:a6:e2:cd:aa:65: eb:bd:05:47:af:53:eb:61:9a:a6:f7:59:59:bf:85: d9:73:14:cb:80:ab:e0:6f:e5:10:ce:cc:5d:41:5b: ec:1b:b2:d2:1e:d3:1c:53:57:18:08:df:f5:88:25: 82:71:65:58:25:5f:90:ec:b7:c1:f8:c4:3d:cc:3c: c1:6b:af:19:02:4e:64:bd:ec:15:c6:17:28:3e:0e: 81:e2:f6:eb:4a:a0:c6:de:86:18:73:db:90:af:5d: f3:bf:4d:07:01:36:b3:79:57:7f:ad:94:59:e5:d4: 4f:2f:99:fc:2e:5a:8d:12:8c:8a:11:64:0e:fb:a5: 14:4c:fc:7f:18:08:1b:94:58:0b:9f:11:b5:b2:07: cb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:CD:AC:DA:98:73:F9:26:82:09:2A:A6:A4:C8:D5:BC:1D:54:B6:8E X509v3 Authority Key Identifier: keyid:67:D0:45:C1:3C:03:DC:B3:73:D2:A7:D8:5D:1E:01:B6:E0:AC:7E:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/2e4f3f-5526-4520-8313-16ff723af335/1/Z9BFwTwD3LNz0qfYXR4BtuCsfhw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:10:b8:04:19:c4:cd:6d:3f:c2:e2:d1:73:b1:44:e3:23:81: ea:c5:a1:88:fa:de:2b:0b:e6:e3:cf:ee:46:4b:6b:25:52:be: ab:fc:bd:63:b9:84:eb:f8:ab:ce:5f:08:cf:7e:cd:24:02:c8: 9c:96:84:c3:2d:26:20:49:a6:15:c9:51:06:ef:56:08:5d:f9: 86:3f:6a:31:53:ff:35:94:8a:9b:0f:3d:0e:a2:0a:b3:f2:5e: 7f:a2:8d:8b:62:75:96:24:f5:e4:28:75:44:d2:9f:80:77:dd: ff:94:38:e3:8e:ef:87:72:6e:1b:45:05:39:ea:cc:9a:dd:b5: a6:7b:04:73:c0:11:cc:2a:53:68:c8:86:6c:b8:0c:02:0b:b2: b2:d5:a6:3d:47:c6:c8:5c:d5:74:f3:55:8a:29:59:58:09:b9: f2:c0:ba:75:34:32:62:16:bc:b8:5b:6f:0f:8d:dd:f4:3c:48: 95:ce:c6:c5:c0:40:aa:bb:9d:97:cb:81:fa:dc:7c:60:e7:7c: 32:2f:c1:43:4a:0d:66:01:2c:43:92:a9:af:8e:14:1b:97:8d: 59:90:38:33:b3:4d:a5:87:7f:09:29:71:fb:f0:79:6b:4b:44: c9:e3:13:0d:38:2a:b2:16:03:39:b2:47:0f:f2:10:9a:c9:e9: f8:69:b9:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/oxrEO85xzdTLvpK/eIoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZDA0NWMxM2MwM2RjYjM3M2QyYTdkODVkMWUwMWI2ZTBh YzdlMWMwHhcNMjYwMjA5MjAwMTIxWhcNMjYwMjEwMjAwMTIxWjAzMTEwLwYDVQQD EygyNWNkYWNkYTk4NzNmOTI2ODIwOTJhYTZhNGM4ZDViYzFkNTRiNjhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtZTXId353z6CoUV7QxRWyvY3ptPV FRfHDu0e0FpBwmB0HlCQMv45GT4nGlJnekJQ5HG3FQTvXewWPjyw+2TdWzBlPONk SdyCRU3cAkV9cKgIYgTcQqdFMHIDVXGnnmzsfaPVFAqbAyVbhOcaXriCSm3QpuLN qmXrvQVHr1PrYZqm91lZv4XZcxTLgKvgb+UQzsxdQVvsG7LSHtMcU1cYCN/1iCWC cWVYJV+Q7LfB+MQ9zDzBa68ZAk5kvewVxhcoPg6B4vbrSqDG3oYYc9uQr13zv00H ATazeVd/rZRZ5dRPL5n8LlqNEoyKEWQO+6UUTPx/GAgblFgLnxG1sgfL0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCXNrNqYc/kmggkqpqTI1bwdVLaOMB8GA1UdIwQY MBaAFGfQRcE8A9yzc9Kn2F0eAbbgrH4cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC8yZTRmM2YtNTUyNi00NTIwLTgzMTMt MTZmZjcyM2FmMzM1LzEvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC8yZTRmM2YtNTUyNi00NTIwLTgzMTMtMTZmZjcyM2FmMzM1 LzEvWjlCRndUd0QzTE56MHFmWVhSNEJ0dUNzZmh3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALRC4BBnE zW0/wuLRc7FE4yOB6sWhiPreKwvm48/uRktrJVK+q/y9Y7mE6/irzl8Iz37NJALI nJaEwy0mIEmmFclRBu9WCF35hj9qMVP/NZSKmw89DqIKs/Jef6KNi2J1liT15Ch1 RNKfgHfd/5Q4447vh3JuG0UFOerMmt21pnsEc8ARzCpTaMiGbLgMAguystWmPUfG yFzVdPNViilZWAm58sC6dTQyYha8uFtvD43d9DxIlc7GxcBAqrudl8uB+tx8YOd8 Mi/BQ0oNZgEsQ5Kpr44UG5eNWZA4M7NNpYd/CSlx+/B5a0tEyeMTDTgqshYDObJH D/IQmsnp+Gm5KQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:36:56 2026 by rpki-client