This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft File: gCNZN6302riSXVgEWjNxgWyYBTE.mft (raw, json) Hash identifier: ce9TZbaIlLd0oemaZYWg4dCkpqNjZUlIEneSSdEBeBM= Subject key identifier: 2C:B7:FC:71:AD:C3:5E:62:C6:25:D7:2A:29:22:54:88:09:18:01:0B Authority key identifier: 80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31 Certificate issuer: /CN=80235937adf4dab8925d58045a3371816c980531 Certificate serial: 019C40FCB5FE305A73D43DC1C217CB2CF9B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft Manifest number: 09F4 Signing time: Mon 09 Feb 2026 06:00:29 +0000 Manifest this update: Mon 09 Feb 2026 06:00:29 +0000 Manifest next update: Tue 10 Feb 2026 06:00:29 +0000 Files and hashes: 1: gCNZN6302riSXVgEWjNxgWyYBTE.crl (hash: vDlmjZKeGH46gNzsbl9WnNQmIsFq5mZUW/8KN0zMFFg=) 2: ni8xOmyPG8GcK3Z8TZmDGUp0yPU.roa (hash: iTNz2JkVG0lyLMF9W3w/Ic91Eg7OidyUS/S/a+cGNtM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:40:fc:b5:fe:30:5a:73:d4:3d:c1:c2:17:cb:2c:f9:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=80235937adf4dab8925d58045a3371816c980531 Validity Not Before: Feb 9 06:00:29 2026 GMT Not After : Feb 10 06:00:29 2026 GMT Subject: CN=2cb7fc71adc35e62c625d72a292254880918010b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:22:11:dd:42:f8:15:57:de:70:c8:b4:29:2b: 18:a2:b4:6d:c2:b9:38:68:9a:29:81:ca:8b:18:b4: 7e:f5:d5:b4:37:5c:30:57:cf:33:b8:6c:90:34:3a: 33:e8:f9:b7:90:07:00:90:05:98:30:b1:48:ba:25: 21:fc:4f:17:31:68:0b:92:71:41:e1:da:41:66:eb: da:fd:bf:ed:50:34:6c:5f:48:a8:b9:e8:51:0d:5a: 59:07:6a:ed:8c:7e:23:64:9f:00:17:db:d3:e8:bb: e4:a1:cb:0d:c7:fe:1d:25:ef:90:9f:9b:7e:c7:37: 33:0d:90:52:0d:95:ff:b7:3a:e1:a3:d2:17:c8:1a: d4:6a:7c:f1:45:e6:50:6d:9a:c3:e2:de:bc:bb:73: d5:a4:29:55:9c:a9:94:dd:93:58:a4:46:50:84:51: 8a:59:d6:85:cb:57:67:e7:88:3a:f4:a8:69:6c:ba: 3c:e1:1f:1a:60:82:02:20:b9:40:5c:41:a7:9a:69: c8:f7:6d:0f:e0:dc:9e:ba:1c:c1:6c:ee:e6:1b:62: c8:62:0c:4c:59:a5:7c:a7:be:47:81:f9:f5:8e:9a: 53:74:d1:70:96:a0:4f:dd:6e:4e:86:39:cb:b6:a0: b7:07:ce:4b:bf:52:f7:94:da:c9:5f:be:ff:c6:18: c0:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:B7:FC:71:AD:C3:5E:62:C6:25:D7:2A:29:22:54:88:09:18:01:0B X509v3 Authority Key Identifier: keyid:80:23:59:37:AD:F4:DA:B8:92:5D:58:04:5A:33:71:81:6C:98:05:31 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/gCNZN6302riSXVgEWjNxgWyYBTE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/f62382-99dd-47d4-8de4-1fe6912f8e7e/1/gCNZN6302riSXVgEWjNxgWyYBTE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:4b:80:c2:18:df:43:e3:90:bf:fc:71:e6:98:3b:24:a4:8b: ca:8c:d9:af:cb:35:f1:b0:d5:ae:ff:c6:a6:8e:31:9d:8e:3c: 1d:8d:9b:2e:6b:ec:01:c5:bc:0c:34:7f:32:4e:91:c8:25:f5: 65:47:f5:e6:ff:63:66:d6:17:6f:e9:87:3e:bc:76:b1:33:f6: 43:74:24:2d:a9:62:9d:6c:a2:77:87:15:28:b8:d0:91:77:30: 55:65:a8:97:29:79:f1:64:83:8e:e9:98:2f:28:9d:d4:d9:9e: 9a:84:c4:7e:be:ae:e9:a6:9f:35:63:b9:ec:9c:80:5c:c2:68: 34:93:c3:18:74:3e:51:4c:ed:63:bb:26:e9:f3:a2:a2:fe:5d: d8:9a:6e:ac:ec:fa:fe:67:bc:91:65:01:e7:67:95:7d:9f:f8: df:9d:06:c6:80:be:3d:7c:e5:51:2d:07:3a:c7:94:69:62:34: 43:2c:0f:d0:8e:c3:b3:3b:ab:4d:f7:cf:30:ad:94:d2:47:17: eb:c7:e7:c5:34:ce:72:86:84:a9:ec:ed:33:4f:69:c0:c5:06: b5:00:f0:67:41:1b:a2:9f:86:7f:fc:ba:ca:49:4d:62:73:7f: 5b:4a:f8:15:8d:86:06:05:01:2b:25:bb:39:5c:d2:d9:9c:92: dc:47:72:f0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxA/LX+MFpz1D3BwhfLLPm1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDgwMjM1OTM3YWRmNGRhYjg5MjVkNTgwNDVhMzM3MTgxNmM5 ODA1MzEwHhcNMjYwMjA5MDYwMDI5WhcNMjYwMjEwMDYwMDI5WjAzMTEwLwYDVQQD EygyY2I3ZmM3MWFkYzM1ZTYyYzYyNWQ3MmEyOTIyNTQ4ODA5MTgwMTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlSIR3UL4FVfecMi0KSsYorRtwrk4 aJopgcqLGLR+9dW0N1wwV88zuGyQNDoz6Pm3kAcAkAWYMLFIuiUh/E8XMWgLknFB 4dpBZuva/b/tUDRsX0iouehRDVpZB2rtjH4jZJ8AF9vT6LvkocsNx/4dJe+Qn5t+ xzczDZBSDZX/tzrho9IXyBrUanzxReZQbZrD4t68u3PVpClVnKmU3ZNYpEZQhFGK WdaFy1dn54g69KhpbLo84R8aYIICILlAXEGnmmnI920P4NyeuhzBbO7mG2LIYgxM WaV8p75Hgfn1jppTdNFwlqBP3W5OhjnLtqC3B85Lv1L3lNrJX77/xhjAawIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCy3/HGtw15ixiXXKikiVIgJGAELMB8GA1UdIwQY MBaAFIAjWTet9Nq4kl1YBFozcYFsmAUxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZ0NOWk42MzAycmlTWFZnRVdqTnhnV3lZQlRFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS9mNjIzODItOTlkZC00N2Q0LThkZTQt MWZlNjkxMmY4ZTdlLzEvZ0NOWk42MzAycmlTWFZnRVdqTnhnV3lZQlRFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS9mNjIzODItOTlkZC00N2Q0LThkZTQtMWZlNjkxMmY4ZTdl LzEvZ0NOWk42MzAycmlTWFZnRVdqTnhnV3lZQlRFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABEuAwhjf Q+OQv/xx5pg7JKSLyozZr8s18bDVrv/Gpo4xnY48HY2bLmvsAcW8DDR/Mk6RyCX1 ZUf15v9jZtYXb+mHPrx2sTP2Q3QkLalinWyid4cVKLjQkXcwVWWolyl58WSDjumY Lyid1NmemoTEfr6u6aafNWO57JyAXMJoNJPDGHQ+UUztY7sm6fOiov5d2JpurOz6 /me8kWUB52eVfZ/4350GxoC+PXzlUS0HOseUaWI0QywP0I7DszurTffPMK2U0kcX 68fnxTTOcoaEqeztM09pwMUGtQDwZ0Ebop+Gf/y6yklNYnN/W0r4FY2GBgUBKyW7 OVzS2ZyS3Edy8A== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:09 2026 by rpki-client