This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft File: ZCOaUQhPGytcaEZDysFGIXx5-NE.mft (raw, json) Hash identifier: kkJXudjhfSW9CvbemBtpztxh3JlZEyFZZ/klBZ6dD/I= Subject key identifier: 79:2F:34:11:75:40:0C:B5:ED:30:D0:B4:E1:54:B9:62:5A:B9:38:48 Authority key identifier: 64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1 Certificate issuer: /CN=64239a51084f1b2b5c684643cac146217c79f8d1 Certificate serial: 019C424626F5F50E05EA765EC74A107D485B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft Manifest number: 0B4B Signing time: Mon 09 Feb 2026 12:00:19 +0000 Manifest this update: Mon 09 Feb 2026 12:00:19 +0000 Manifest next update: Tue 10 Feb 2026 12:00:19 +0000 Files and hashes: 1: 4ImyGgFKvZr9G9AC8qgE9m3Cntc.roa (hash: YciKFVkaY1et6p1gervIPcpyQE7yFFy/esyiuxYNcNY=) 2: ZCOaUQhPGytcaEZDysFGIXx5-NE.crl (hash: qa+K4ianC6WmUWV2UD8gjLDo+0hs5hDkfWn4s7YZRLs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:26:f5:f5:0e:05:ea:76:5e:c7:4a:10:7d:48:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64239a51084f1b2b5c684643cac146217c79f8d1 Validity Not Before: Feb 9 12:00:19 2026 GMT Not After : Feb 10 12:00:19 2026 GMT Subject: CN=792f341175400cb5ed30d0b4e154b9625ab93848 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:fe:f1:c5:71:1c:8c:f2:c1:ed:31:92:69:7b: 0d:b8:fd:a0:ac:56:8b:24:a6:35:85:1f:dc:c6:47: ba:c7:83:7c:d9:b1:b2:ef:a8:c9:28:72:78:0c:d2: d0:b3:9b:13:3a:8f:33:6b:02:8f:84:1b:12:36:c4: 8b:40:79:82:6f:90:4a:b5:13:c0:c9:64:8a:03:84: 48:d2:20:c8:2c:f6:97:2b:c4:57:ac:f6:11:f1:64: 22:68:a2:c3:03:7c:ef:b2:ba:3c:52:b1:ad:32:46: 77:41:29:3b:1b:44:49:8a:f7:f4:1c:23:69:38:fe: de:2e:32:57:86:d2:bb:ff:e3:eb:49:a7:33:b2:93: 09:ab:81:de:c7:55:11:52:85:f3:7b:2b:1e:a3:96: ac:f0:66:bf:68:a0:25:1a:6c:62:21:e7:df:17:a2: cb:93:bb:9d:38:3a:8e:ae:33:14:ca:17:6c:7e:a4: 89:92:bc:b2:f6:f3:1e:c4:77:6b:8a:0b:bb:42:83: 06:9a:7e:94:c7:36:06:2c:73:0c:b3:09:1e:a3:b4: 8b:43:fb:40:2d:1b:ed:96:e2:1e:bc:42:2f:44:b0: 5d:87:52:cc:5c:d8:1f:7e:7a:3a:98:f2:6c:8b:bb: db:da:a2:15:92:f5:05:cd:b0:a2:54:e6:37:41:ed: 62:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:2F:34:11:75:40:0C:B5:ED:30:D0:B4:E1:54:B9:62:5A:B9:38:48 X509v3 Authority Key Identifier: keyid:64:23:9A:51:08:4F:1B:2B:5C:68:46:43:CA:C1:46:21:7C:79:F8:D1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZCOaUQhPGytcaEZDysFGIXx5-NE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5f/31dc10-5663-4555-a806-4e9305caf1a3/1/ZCOaUQhPGytcaEZDysFGIXx5-NE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:73:56:6b:b6:1f:48:91:d7:5e:40:ee:00:f2:3a:10:d8:33: 69:38:35:bd:ce:46:3c:d1:8e:b3:bb:52:3d:77:b7:91:4e:31: a5:07:7d:c3:12:62:27:2a:72:91:0b:95:8d:10:69:bd:10:b5: 9d:a3:b2:64:35:7b:af:6b:3b:3d:c5:c0:d1:74:80:d2:0d:40: 21:cb:7d:20:0e:03:97:9d:73:b6:36:79:a4:75:a5:89:fb:b1: 97:f8:48:5f:fd:bc:3d:21:d0:b4:8b:bf:b8:cc:42:3c:3a:ca: 70:d3:b4:58:07:40:c6:10:85:30:db:3a:e6:97:8d:b6:e9:7d: 59:b3:ac:c7:7a:50:f7:69:4e:63:9d:6a:b4:bd:eb:c0:ad:60: b2:44:41:f3:d3:c1:34:16:7e:fc:bd:3e:dd:14:f9:9e:f7:d1: a6:06:5b:14:fc:05:db:c1:35:c6:a5:03:81:60:9b:de:c8:c2: 20:55:79:51:60:9e:0c:1a:53:31:e0:cd:3a:2d:f9:03:36:27: b9:ac:ec:62:21:c8:fc:ce:44:9f:f0:c9:9f:de:ca:a7:4f:79: 48:aa:1a:93:f9:46:a1:fb:76:12:57:6f:59:67:3d:b5:87:a6: 5a:98:04:11:02:25:35:7c:62:34:9e:9b:54:88:08:08:25:77: d5:e1:a7:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRib19Q4F6nZex0oQfUhbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MjM5YTUxMDg0ZjFiMmI1YzY4NDY0M2NhYzE0NjIxN2M3 OWY4ZDEwHhcNMjYwMjA5MTIwMDE5WhcNMjYwMjEwMTIwMDE5WjAzMTEwLwYDVQQD Eyg3OTJmMzQxMTc1NDAwY2I1ZWQzMGQwYjRlMTU0Yjk2MjVhYjkzODQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4f7xxXEcjPLB7TGSaXsNuP2grFaL JKY1hR/cxke6x4N82bGy76jJKHJ4DNLQs5sTOo8zawKPhBsSNsSLQHmCb5BKtRPA yWSKA4RI0iDILPaXK8RXrPYR8WQiaKLDA3zvsro8UrGtMkZ3QSk7G0RJivf0HCNp OP7eLjJXhtK7/+PrSaczspMJq4Hex1URUoXzeyseo5as8Ga/aKAlGmxiIeffF6LL k7udODqOrjMUyhdsfqSJkryy9vMexHdrigu7QoMGmn6UxzYGLHMMswkeo7SLQ/tA LRvtluIevEIvRLBdh1LMXNgffno6mPJsi7vb2qIVkvUFzbCiVOY3Qe1irQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHkvNBF1QAy17TDQtOFUuWJauThIMB8GA1UdIwQY MBaAFGQjmlEITxsrXGhGQ8rBRiF8efjRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Zi8zMWRjMTAtNTY2My00NTU1LWE4MDYt NGU5MzA1Y2FmMWEzLzEvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Zi8zMWRjMTAtNTY2My00NTU1LWE4MDYtNGU5MzA1Y2FmMWEz LzEvWkNPYVVRaFBHeXRjYUVaRHlzRkdJWHg1LU5FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArnNWa7Yf SJHXXkDuAPI6ENgzaTg1vc5GPNGOs7tSPXe3kU4xpQd9wxJiJypykQuVjRBpvRC1 naOyZDV7r2s7PcXA0XSA0g1AIct9IA4Dl51ztjZ5pHWlifuxl/hIX/28PSHQtIu/ uMxCPDrKcNO0WAdAxhCFMNs65peNtul9WbOsx3pQ92lOY51qtL3rwK1gskRB89PB NBZ+/L0+3RT5nvfRpgZbFPwF28E1xqUDgWCb3sjCIFV5UWCeDBpTMeDNOi35AzYn uazsYiHI/M5En/DJn97Kp095SKoak/lGoft2EldvWWc9tYemWpgEEQIlNXxiNJ6b VIgICCV31eGnEw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:56 2026 by rpki-client