This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft File: MZ7ds2aRntdfRmDPsOC25fxAFhM.mft (raw, json) Hash identifier: NvEGR0PG51OZLx9MXQb6KHAgq8fdyCE79cFhy72Bsg4= Subject key identifier: B5:20:C0:4A:26:54:60:38:C9:44:AC:6A:98:9B:9F:90:A0:9A:CB:DB Authority key identifier: 31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13 Certificate issuer: /CN=319eddb366919ed75f4660cfb0e0b6e5fc401613 Certificate serial: 019C44D9B48D35A344E922B90BA09EFA2EFA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft Manifest number: 0EE3 Signing time: Tue 10 Feb 2026 00:00:44 +0000 Manifest this update: Tue 10 Feb 2026 00:00:44 +0000 Manifest next update: Wed 11 Feb 2026 00:00:44 +0000 Files and hashes: 1: MZ7ds2aRntdfRmDPsOC25fxAFhM.crl (hash: 0404FJA8Oku5CoxcrNe1yS8ZXO45Cq2UjgGW8AONSsU=) 2: _0u7vnHZdg310nUrSqnTSu55Or4.roa (hash: xOaMS4kje5xsRAQ6hRbBK0m2M3+HpCRiKnXrVnEapA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 11 Feb 2026 00:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:d9:b4:8d:35:a3:44:e9:22:b9:0b:a0:9e:fa:2e:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=319eddb366919ed75f4660cfb0e0b6e5fc401613 Validity Not Before: Feb 10 00:00:44 2026 GMT Not After : Feb 11 00:00:44 2026 GMT Subject: CN=b520c04a26546038c944ac6a989b9f90a09acbdb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:8c:a2:11:87:08:63:9f:fe:74:d2:81:ff:e0: 7f:08:f6:97:29:02:60:e0:84:d4:c2:c4:18:94:96: 22:60:85:ed:69:bd:eb:f6:90:ea:2c:6d:40:76:70: 4f:e6:32:a1:02:b5:a7:a6:b1:30:dc:b8:eb:da:ba: 09:a5:6e:4f:a5:80:8e:b6:6b:65:55:81:74:78:80: 66:79:91:a1:cf:c4:69:43:e6:31:16:49:6f:33:c4: d1:49:fd:4e:33:bb:87:63:51:cd:71:d1:4e:ec:52: fd:99:8a:31:2b:72:8b:13:22:34:4c:71:fd:2e:e7: 2a:4a:79:f2:e0:f4:31:28:aa:c5:99:bc:ce:e1:9e: 40:3a:48:48:6f:50:25:50:19:95:63:3b:77:62:85: d1:d2:ab:4d:82:00:98:61:5d:be:b8:c4:68:80:1f: ad:c4:b4:48:1c:fb:41:47:c6:6b:dc:3b:28:64:9a: 87:a9:5c:51:55:4a:2b:2e:52:7b:74:3e:a7:a8:c2: 23:db:25:e3:91:56:71:bc:28:ee:04:a9:d8:84:4a: d2:22:7e:ae:69:0e:7c:3e:69:64:5b:76:9d:c0:fe: 50:c4:1b:e8:ef:fe:f6:8f:d7:97:ac:6c:d6:be:b1: 85:59:91:05:f7:56:e6:e8:44:99:dc:2b:2c:bc:21: 79:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:20:C0:4A:26:54:60:38:C9:44:AC:6A:98:9B:9F:90:A0:9A:CB:DB X509v3 Authority Key Identifier: keyid:31:9E:DD:B3:66:91:9E:D7:5F:46:60:CF:B0:E0:B6:E5:FC:40:16:13 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/MZ7ds2aRntdfRmDPsOC25fxAFhM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/9a36cc-6dca-4a2a-bf6f-d47bd7d0192f/1/MZ7ds2aRntdfRmDPsOC25fxAFhM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:16:36:4d:be:aa:7b:80:0d:4d:b2:0a:e8:61:55:2f:d3:c5: 50:9e:64:03:da:1e:cd:b7:e3:26:59:91:dd:c1:5c:cf:27:ad: 39:dc:01:1b:1e:2b:fa:2e:0f:1e:e5:f1:4f:42:21:b3:56:d6: cd:f2:64:e1:6c:95:17:75:07:75:37:d2:fa:27:65:03:a7:cc: b8:e8:8d:b5:3c:1d:29:1b:e1:c9:a1:62:4f:76:51:7a:99:1a: e4:e7:55:82:b4:f3:a7:64:e0:43:e5:4a:39:c9:df:9c:67:f7: 05:4e:c1:ce:6c:a2:7d:ad:25:cb:c5:cc:53:c8:c2:5b:bf:35: 8c:4c:c0:e7:09:11:97:a8:3b:f3:e9:f0:93:a8:1d:50:0d:8c: d3:7f:58:28:00:8d:4f:fb:16:1c:29:6c:31:0a:af:05:63:46: f1:c6:6a:f0:89:7a:8d:7b:17:49:1e:77:fb:b3:e5:d1:d6:99: ef:89:9e:1d:83:ce:84:a1:de:a8:d4:de:40:96:c4:7d:86:c3: 50:96:d9:eb:9b:c4:48:d0:31:17:b9:c1:f6:27:05:44:ff:8a: ba:94:0a:66:e3:e0:83:70:de:3e:02:89:8b:9a:66:74:0b:04: d7:9d:4f:d7:9c:19:2b:ab:95:3a:57:e0:f3:c1:87:5a:8c:48: b5:fa:18:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxE2bSNNaNE6SK5C6Ce+i76MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMxOWVkZGIzNjY5MTllZDc1ZjQ2NjBjZmIwZTBiNmU1ZmM0 MDE2MTMwHhcNMjYwMjEwMDAwMDQ0WhcNMjYwMjExMDAwMDQ0WjAzMTEwLwYDVQQD EyhiNTIwYzA0YTI2NTQ2MDM4Yzk0NGFjNmE5ODliOWY5MGEwOWFjYmRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsYyiEYcIY5/+dNKB/+B/CPaXKQJg 4ITUwsQYlJYiYIXtab3r9pDqLG1AdnBP5jKhArWnprEw3Ljr2roJpW5PpYCOtmtl VYF0eIBmeZGhz8RpQ+YxFklvM8TRSf1OM7uHY1HNcdFO7FL9mYoxK3KLEyI0THH9 LucqSnny4PQxKKrFmbzO4Z5AOkhIb1AlUBmVYzt3YoXR0qtNggCYYV2+uMRogB+t xLRIHPtBR8Zr3DsoZJqHqVxRVUorLlJ7dD6nqMIj2yXjkVZxvCjuBKnYhErSIn6u aQ58PmlkW3adwP5QxBvo7/72j9eXrGzWvrGFWZEF91bm6ESZ3CssvCF59QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLUgwEomVGA4yUSsapibn5CgmsvbMB8GA1UdIwQY MBaAFDGe3bNmkZ7XX0Zgz7DgtuX8QBYTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTVo3ZHMyYVJudGRmUm1EUHNPQzI1ZnhBRmhNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS85YTM2Y2MtNmRjYS00YTJhLWJmNmYt ZDQ3YmQ3ZDAxOTJmLzEvTVo3ZHMyYVJudGRmUm1EUHNPQzI1ZnhBRmhNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS85YTM2Y2MtNmRjYS00YTJhLWJmNmYtZDQ3YmQ3ZDAxOTJm LzEvTVo3ZHMyYVJudGRmUm1EUHNPQzI1ZnhBRmhNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHBY2Tb6q e4ANTbIK6GFVL9PFUJ5kA9oezbfjJlmR3cFczyetOdwBGx4r+i4PHuXxT0Ihs1bW zfJk4WyVF3UHdTfS+idlA6fMuOiNtTwdKRvhyaFiT3ZRepka5OdVgrTzp2TgQ+VK OcnfnGf3BU7Bzmyifa0ly8XMU8jCW781jEzA5wkRl6g78+nwk6gdUA2M039YKACN T/sWHClsMQqvBWNG8cZq8Il6jXsXSR53+7Pl0daZ74meHYPOhKHeqNTeQJbEfYbD UJbZ65vESNAxF7nB9icFRP+KupQKZuPgg3DePgKJi5pmdAsE151P15wZK6uVOlfg 88GHWoxItfoY3g== -----END CERTIFICATE-----Generated at Tue Feb 10 08:39:58 2026 by rpki-client