This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft File: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft (raw, json) Hash identifier: CTs95jfviuMfZjcYDorPyhfxZ8N0Yr1wl2DP31auMvk= Subject key identifier: BD:91:48:5F:F2:65:C8:A8:F5:5C:54:4D:C7:53:23:47:CE:C2:B1:C2 Authority key identifier: CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E Certificate issuer: /CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e Certificate serial: 019C43FDB67DC7B2852BBF4D6BC8D9DF5794 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft Manifest number: 05D1 Signing time: Mon 09 Feb 2026 20:00:26 +0000 Manifest this update: Mon 09 Feb 2026 20:00:26 +0000 Manifest next update: Tue 10 Feb 2026 20:00:26 +0000 Files and hashes: 1: uqno00iVqXEbyw4Jce9I4NCSd6U.roa (hash: LOvolmVlOGfS5/Lu0OZEEESsBkxydv7fTijwns2OR4M=) 2: zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl (hash: p6uVC/iXf17BiftTtZoaZ8+9wJ2rd3n7gLSw3xUncsw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:b6:7d:c7:b2:85:2b:bf:4d:6b:c8:d9:df:57:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce4ddafc2cf5658d02e56828c2c91353529ede8e Validity Not Before: Feb 9 20:00:26 2026 GMT Not After : Feb 10 20:00:26 2026 GMT Subject: CN=bd91485ff265c8a8f55c544dc7532347cec2b1c2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:17:fb:05:fc:43:34:5a:b3:88:7c:71:67:e8: aa:a0:5f:2f:d2:8b:6d:7c:95:b5:cd:a0:fa:0c:9a: ac:55:06:d7:c2:7c:78:af:24:c6:5f:f4:e9:e6:26: 95:7d:2a:80:8e:49:98:4f:52:a3:ea:68:d7:88:12: f6:da:ae:da:42:69:ac:30:e9:85:aa:9d:b6:57:1a: b9:2e:75:a7:25:ad:dd:11:e8:f0:8f:99:fc:a8:ac: df:b1:dc:40:58:78:d1:d3:4c:e5:37:93:d9:8a:b6: 69:e7:b5:65:b3:62:85:e0:8b:77:73:f7:d6:8f:e7: 37:27:74:4c:cc:a4:89:74:7a:ac:91:82:60:fb:6c: 6d:19:05:bc:40:02:a4:0e:a1:1a:a4:9a:62:3d:c4: 05:23:2d:b5:5f:3b:aa:28:72:20:c6:14:ce:8b:62: f0:cc:08:46:4c:8c:f4:55:11:7c:76:6d:d6:04:d7: f9:59:f1:52:20:8a:31:f2:a2:2f:03:1f:68:cb:95: 56:74:ce:75:11:2f:08:12:5f:4a:0d:dd:20:e3:97: d6:97:54:de:6f:ec:2c:a5:e3:09:4f:09:e5:2a:12: 65:90:02:13:87:9d:54:06:cd:22:0e:ad:a6:32:53: be:1f:57:43:30:83:37:41:f0:26:dc:b9:9d:7d:78: 78:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:91:48:5F:F2:65:C8:A8:F5:5C:54:4D:C7:53:23:47:CE:C2:B1:C2 X509v3 Authority Key Identifier: keyid:CE:4D:DA:FC:2C:F5:65:8D:02:E5:68:28:C2:C9:13:53:52:9E:DE:8E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/2397fb-0dd0-41c3-bc6e-ba87439b7da9/1/zk3a_Cz1ZY0C5WgowskTU1Ke3o4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:41:b1:66:44:ea:89:cb:03:12:55:d4:a3:e2:80:54:cc:61: cd:da:84:05:bf:4f:00:cb:ac:85:d5:5e:67:6e:20:fc:59:54: 24:5e:9f:b8:42:5f:90:7f:ed:55:9f:d9:7c:13:72:f8:d2:95: 8a:0e:4e:1b:eb:7e:2f:d7:56:92:08:81:dc:65:0d:f8:71:3a: d3:21:ed:49:0a:ec:5e:4c:01:c3:1c:cb:76:2d:02:97:d6:bf: cf:23:dc:20:da:01:7c:57:b4:41:7a:c7:1c:64:c5:c2:60:a0: 59:26:fb:f9:a1:56:c3:83:2f:31:19:44:b8:16:1a:75:b7:2d: ea:70:66:a8:00:fe:9b:1d:cd:0a:e5:f5:5d:dd:6d:2d:88:09: 8a:74:c7:75:c1:00:51:32:96:8c:45:70:e5:70:f2:bc:6b:86: 3e:a9:16:fa:57:10:d9:84:29:41:df:e5:6d:c6:5f:5d:d2:80: 55:09:43:aa:59:7f:d2:89:a9:bd:30:04:20:0e:20:64:36:c3: 83:b4:3f:a4:ec:3a:a3:ba:e0:a8:40:2d:ca:05:5b:df:69:8f: f1:97:7c:2d:f7:74:98:80:77:99:34:bc:af:fa:44:d4:c1:f8: 43:af:7f:e7:e5:4f:be:c1:2a:fb:7b:75:fd:42:a0:34:e6:bf: 28:a1:71:62 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/bZ9x7KFK79Na8jZ31eUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNGRkYWZjMmNmNTY1OGQwMmU1NjgyOGMyYzkxMzUzNTI5 ZWRlOGUwHhcNMjYwMjA5MjAwMDI2WhcNMjYwMjEwMjAwMDI2WjAzMTEwLwYDVQQD EyhiZDkxNDg1ZmYyNjVjOGE4ZjU1YzU0NGRjNzUzMjM0N2NlYzJiMWMyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzRf7BfxDNFqziHxxZ+iqoF8v0ott fJW1zaD6DJqsVQbXwnx4ryTGX/Tp5iaVfSqAjkmYT1Kj6mjXiBL22q7aQmmsMOmF qp22Vxq5LnWnJa3dEejwj5n8qKzfsdxAWHjR00zlN5PZirZp57Vls2KF4It3c/fW j+c3J3RMzKSJdHqskYJg+2xtGQW8QAKkDqEapJpiPcQFIy21XzuqKHIgxhTOi2Lw zAhGTIz0VRF8dm3WBNf5WfFSIIox8qIvAx9oy5VWdM51ES8IEl9KDd0g45fWl1Te b+wspeMJTwnlKhJlkAITh51UBs0iDq2mMlO+H1dDMIM3QfAm3LmdfXh4zQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL2RSF/yZcio9VxUTcdTI0fOwrHCMB8GA1UdIwQY MBaAFM5N2vws9WWNAuVoKMLJE1NSnt6OMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemszYV9DejFaWTBDNVdnb3dza1RVMUtlM280LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8yMzk3ZmItMGRkMC00MWMzLWJjNmUt YmE4NzQzOWI3ZGE5LzEvemszYV9DejFaWTBDNVdnb3dza1RVMUtlM280Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8yMzk3ZmItMGRkMC00MWMzLWJjNmUtYmE4NzQzOWI3ZGE5 LzEvemszYV9DejFaWTBDNVdnb3dza1RVMUtlM280LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHUGxZkTq icsDElXUo+KAVMxhzdqEBb9PAMushdVeZ24g/FlUJF6fuEJfkH/tVZ/ZfBNy+NKV ig5OG+t+L9dWkgiB3GUN+HE60yHtSQrsXkwBwxzLdi0Cl9a/zyPcINoBfFe0QXrH HGTFwmCgWSb7+aFWw4MvMRlEuBYadbct6nBmqAD+mx3NCuX1Xd1tLYgJinTHdcEA UTKWjEVw5XDyvGuGPqkW+lcQ2YQpQd/lbcZfXdKAVQlDqll/0ompvTAEIA4gZDbD g7Q/pOw6o7rgqEAtygVb32mP8Zd8Lfd0mIB3mTS8r/pE1MH4Q69/5+VPvsEq+3t1 /UKgNOa/KKFxYg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:45:25 2026 by rpki-client