This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft File: ZLMdzWu1MIApxCcyMFFPcmsbhro.mft (raw, json) Hash identifier: 5YAFtsgh0Fuz9/2+alaIKEa9igMjkN7B8e3r91q7rY0= Subject key identifier: 85:1A:ED:5B:44:0B:B4:75:A7:0B:BF:DF:91:9B:2B:2B:D3:5E:D8:E8 Authority key identifier: 64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA Certificate issuer: /CN=64b31dcd6bb5308029c4273230514f726b1b86ba Certificate serial: 019C420F494D679DDBDD651DA6490145FDE4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft Manifest number: 1726 Signing time: Mon 09 Feb 2026 11:00:23 +0000 Manifest this update: Mon 09 Feb 2026 11:00:23 +0000 Manifest next update: Tue 10 Feb 2026 11:00:23 +0000 Files and hashes: 1: ZLMdzWu1MIApxCcyMFFPcmsbhro.crl (hash: vrJ6zQISqPKTyy6J/gxOPqXxHAGq3PxoizaBvl0BG1Q=) 2: kdynGbVCfrX7taXPDAQYXxgdJOc.roa (hash: LcVr7TXvsztqYmXz4cnlZ4MErzCnE6APP7PbSjuF4fc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:49:4d:67:9d:db:dd:65:1d:a6:49:01:45:fd:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64b31dcd6bb5308029c4273230514f726b1b86ba Validity Not Before: Feb 9 11:00:23 2026 GMT Not After : Feb 10 11:00:23 2026 GMT Subject: CN=851aed5b440bb475a70bbfdf919b2b2bd35ed8e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:a0:0e:66:e5:b5:93:f8:04:67:31:95:32:de: e9:4d:4b:06:f9:f7:aa:24:ad:89:1e:69:bd:05:cd: 76:8c:1b:64:93:3c:a7:8b:b3:62:c7:6d:a0:05:3f: cf:0e:0c:35:bd:8d:11:9f:fd:59:f6:19:21:fe:27: 36:24:85:7d:33:7d:c8:ca:16:a3:85:0c:2c:82:6f: 41:b7:53:d9:b3:85:70:3f:a2:0f:a1:17:c2:95:1c: 8d:ad:82:04:e6:26:1f:d8:16:ce:8a:c9:b4:24:ff: 44:51:b6:ee:95:ae:e0:a3:7a:16:4b:61:59:3c:d9: b0:d1:fb:b6:ec:3d:b9:fd:41:33:bd:bb:97:e6:ac: fd:72:72:27:3a:c2:30:38:5a:18:db:1a:e9:f9:ab: 68:d4:41:2a:84:72:9b:f8:35:28:80:fa:f4:9b:80: 25:29:0b:19:21:bc:5f:69:3f:cf:57:bd:6a:2b:c8: 2a:3c:dd:f0:90:32:cf:de:de:84:17:d1:69:52:12: 49:26:e0:45:39:9f:b9:d5:7f:50:10:28:07:b8:eb: de:d0:e9:e8:79:dc:f9:19:86:54:89:94:cd:bf:79: c7:c8:ef:7c:92:01:c4:05:bf:be:eb:ce:de:f2:c2: 88:f3:13:df:e8:85:e5:d8:c3:6f:0f:e0:52:35:5b: 53:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:1A:ED:5B:44:0B:B4:75:A7:0B:BF:DF:91:9B:2B:2B:D3:5E:D8:E8 X509v3 Authority Key Identifier: keyid:64:B3:1D:CD:6B:B5:30:80:29:C4:27:32:30:51:4F:72:6B:1B:86:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZLMdzWu1MIApxCcyMFFPcmsbhro.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/67/980d6e-8a99-4260-8064-44ab689e1d4d/1/ZLMdzWu1MIApxCcyMFFPcmsbhro.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:0f:6e:83:89:6d:a0:f3:13:06:2d:aa:5d:5c:65:e9:a6:67: 62:f1:8b:fb:3d:9d:b7:15:ef:2b:fe:18:01:9b:96:99:d4:aa: ee:66:97:2c:e8:c5:bd:2f:71:bf:02:dd:33:bd:22:c5:40:13: db:2c:a6:e5:38:3b:5b:a6:38:9f:89:64:40:59:ad:f0:f8:d8: ab:70:45:30:8d:30:f3:d2:94:fc:76:a3:42:8f:cb:8a:03:08: 7b:11:34:fc:ca:70:e6:32:43:0d:d8:48:9a:45:63:03:b1:8d: 31:0e:38:2e:84:dd:73:05:44:2a:81:54:de:2d:b8:8f:ff:0c: e2:ff:cc:0e:8f:c1:a3:d4:bf:84:4d:fa:e5:e2:bd:46:54:00: eb:97:20:8d:67:9c:99:67:96:df:d9:92:d4:51:5e:0b:40:ed: 25:ce:cc:bf:a5:f1:be:7c:3d:c2:45:40:9d:46:27:0d:40:14: b6:2b:5d:ab:2b:c7:28:df:7e:ec:53:50:52:72:89:f7:03:2e: f1:51:34:74:bd:f3:91:85:b4:eb:5c:b3:6c:64:a7:69:ee:f7: 7b:8c:c5:e6:9e:b6:c5:99:d4:88:c7:a0:f8:c3:7c:36:aa:be: 2a:0b:12:94:74:cb:9c:9d:ae:ea:9e:68:87:24:25:91:7b:7d: 6b:ea:f8:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD0lNZ53b3WUdpkkBRf3kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YjMxZGNkNmJiNTMwODAyOWM0MjczMjMwNTE0ZjcyNmIx Yjg2YmEwHhcNMjYwMjA5MTEwMDIzWhcNMjYwMjEwMTEwMDIzWjAzMTEwLwYDVQQD Eyg4NTFhZWQ1YjQ0MGJiNDc1YTcwYmJmZGY5MTliMmIyYmQzNWVkOGU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsKAOZuW1k/gEZzGVMt7pTUsG+feq JK2JHmm9Bc12jBtkkzyni7Nix22gBT/PDgw1vY0Rn/1Z9hkh/ic2JIV9M33Iyhaj hQwsgm9Bt1PZs4VwP6IPoRfClRyNrYIE5iYf2BbOism0JP9EUbbula7go3oWS2FZ PNmw0fu27D25/UEzvbuX5qz9cnInOsIwOFoY2xrp+ato1EEqhHKb+DUogPr0m4Al KQsZIbxfaT/PV71qK8gqPN3wkDLP3t6EF9FpUhJJJuBFOZ+51X9QECgHuOve0Ono edz5GYZUiZTNv3nHyO98kgHEBb++687e8sKI8xPf6IXl2MNvD+BSNVtTcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIUa7VtEC7R1pwu/35GbKyvTXtjoMB8GA1UdIwQY MBaAFGSzHc1rtTCAKcQnMjBRT3JrG4a6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkxNZHpXdTFNSUFweENjeU1GRlBjbXNiaHJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Ny85ODBkNmUtOGE5OS00MjYwLTgwNjQt NDRhYjY4OWUxZDRkLzEvWkxNZHpXdTFNSUFweENjeU1GRlBjbXNiaHJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Ny85ODBkNmUtOGE5OS00MjYwLTgwNjQtNDRhYjY4OWUxZDRk LzEvWkxNZHpXdTFNSUFweENjeU1GRlBjbXNiaHJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdA9ug4lt oPMTBi2qXVxl6aZnYvGL+z2dtxXvK/4YAZuWmdSq7maXLOjFvS9xvwLdM70ixUAT 2yym5Tg7W6Y4n4lkQFmt8PjYq3BFMI0w89KU/HajQo/LigMIexE0/Mpw5jJDDdhI mkVjA7GNMQ44LoTdcwVEKoFU3i24j/8M4v/MDo/Bo9S/hE365eK9RlQA65cgjWec mWeW39mS1FFeC0DtJc7Mv6Xxvnw9wkVAnUYnDUAUtitdqyvHKN9+7FNQUnKJ9wMu 8VE0dL3zkYW061yzbGSnae73e4zF5p62xZnUiMeg+MN8Nqq+KgsSlHTLnJ2u6p5o hyQlkXt9a+r45g== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:55 2026 by rpki-client