This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft File: 2Znl1k5EsXM8YXNzN86CtKaUOkY.mft (raw, json) Hash identifier: EueuYod7n1ZFxePp7pu5cJ6MHFUzznlowp+KkqnkLg4= Subject key identifier: 87:7D:04:5C:1D:6E:0D:F2:8D:B4:F2:F6:9A:46:80:08:BA:73:B4:EF Authority key identifier: D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46 Certificate issuer: /CN=d999e5d64e44b1733c61737337ce82b4a6943a46 Certificate serial: 019C41D863CB25C0189202884C408183860E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft Manifest number: 064E Signing time: Mon 09 Feb 2026 10:00:26 +0000 Manifest this update: Mon 09 Feb 2026 10:00:26 +0000 Manifest next update: Tue 10 Feb 2026 10:00:26 +0000 Files and hashes: 1: 2Znl1k5EsXM8YXNzN86CtKaUOkY.crl (hash: Zzp1lf/8mCsxtENjLIGthALrY5EJXPRjCyqQpjmKK+U=) 2: ucSPBgYBUYo8QSuoI_Y0Icy9e18.roa (hash: HWPghkFxbvF44RC0pt0Q9i6IdWhnoDgfcFXVwwuNG8M=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:63:cb:25:c0:18:92:02:88:4c:40:81:83:86:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d999e5d64e44b1733c61737337ce82b4a6943a46 Validity Not Before: Feb 9 10:00:26 2026 GMT Not After : Feb 10 10:00:26 2026 GMT Subject: CN=877d045c1d6e0df28db4f2f69a468008ba73b4ef Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:54:ea:6e:68:46:fa:fc:bd:32:23:c4:36:b1: e6:ac:02:37:71:a3:ae:af:5d:76:a9:60:55:dc:8f: 47:f3:36:78:e6:6f:dd:3f:61:1e:b9:e7:04:b3:38: 0b:fa:40:4b:ff:98:dc:15:3b:e9:43:9d:2e:cb:64: e5:c3:95:37:aa:91:29:9f:21:62:a6:07:6d:c1:15: ea:05:fc:8d:d9:48:ad:66:4a:6e:63:99:aa:23:d3: a1:7c:c3:9b:8f:42:4b:af:7c:e6:31:b5:d5:8f:5d: ea:4c:e3:cc:39:23:e3:50:48:0c:05:75:21:02:54: 65:42:ea:8b:b9:d3:b1:44:ca:21:ea:a6:d5:2c:73: 00:48:37:09:e1:36:e7:05:b6:7c:7e:0b:ab:39:8c: 7b:ed:a4:97:a5:40:b7:a1:c9:ef:57:a9:fb:cc:cf: 3f:14:82:cd:52:8c:ca:b1:e1:85:f0:10:b4:65:54: ab:1a:9e:89:dd:2a:b9:31:71:22:c1:ec:f0:e5:bf: 2f:a1:a4:59:c7:29:68:dd:a3:ae:f7:22:42:e6:5b: 4f:29:fe:6e:5e:d9:96:24:e7:9a:7e:d0:0f:90:01: ed:09:d9:71:9d:1f:47:7c:75:ab:ba:e6:b3:81:79: f4:b9:30:82:5f:34:78:25:6c:b6:ac:85:55:7f:eb: 0b:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:7D:04:5C:1D:6E:0D:F2:8D:B4:F2:F6:9A:46:80:08:BA:73:B4:EF X509v3 Authority Key Identifier: keyid:D9:99:E5:D6:4E:44:B1:73:3C:61:73:73:37:CE:82:B4:A6:94:3A:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2Znl1k5EsXM8YXNzN86CtKaUOkY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/70/f01f99-bc01-4b39-9362-9f47c7410d41/1/2Znl1k5EsXM8YXNzN86CtKaUOkY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:e1:0f:e8:7c:dc:cb:82:6d:86:a0:38:6b:08:29:40:50:be: ce:f7:48:08:6a:78:09:1a:88:0f:0f:9b:93:ad:c6:ce:ba:04: cc:ac:7c:3d:b8:4a:ba:07:e3:6b:81:96:eb:a9:8b:38:14:f7: 76:97:69:ed:a2:62:4a:c4:0b:67:c4:e4:58:f1:72:79:73:d4: bc:e5:b7:c1:a8:f4:42:b5:08:4f:d2:df:15:f4:f5:cd:e5:e3: 8c:15:a8:68:cc:3f:f0:18:47:99:e7:42:ee:8e:3e:c6:80:12: 53:cb:48:e8:37:e8:35:6f:eb:38:24:d0:ac:61:e3:60:50:da: 69:3e:1e:10:83:a5:85:1f:d7:ad:08:4c:5e:ad:7d:ad:04:4b: aa:b8:90:6e:53:d6:e7:9a:b5:9e:67:b8:d7:29:1b:51:69:7b: 03:f7:63:eb:10:1f:a6:4c:ee:f9:12:4a:c7:bd:ef:fc:58:83: d5:bb:83:81:9f:b4:01:ca:95:8c:a9:81:42:ff:42:6b:13:68: 43:a4:01:ba:b2:35:b9:27:fb:0c:f9:28:a2:86:9d:58:09:08: dc:09:f4:a1:a8:fe:02:2a:ff:16:82:b1:52:ac:99:50:63:08: 09:bd:b4:bc:1c:7d:b9:da:a2:a8:77:f6:cb:ab:28:e3:94:dd: 9c:9c:78:da -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2GPLJcAYkgKITECBg4YOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQ5OTllNWQ2NGU0NGIxNzMzYzYxNzM3MzM3Y2U4MmI0YTY5 NDNhNDYwHhcNMjYwMjA5MTAwMDI2WhcNMjYwMjEwMTAwMDI2WjAzMTEwLwYDVQQD Eyg4NzdkMDQ1YzFkNmUwZGYyOGRiNGYyZjY5YTQ2ODAwOGJhNzNiNGVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmVTqbmhG+vy9MiPENrHmrAI3caOu r112qWBV3I9H8zZ45m/dP2EeuecEszgL+kBL/5jcFTvpQ50uy2Tlw5U3qpEpnyFi pgdtwRXqBfyN2UitZkpuY5mqI9OhfMObj0JLr3zmMbXVj13qTOPMOSPjUEgMBXUh AlRlQuqLudOxRMoh6qbVLHMASDcJ4TbnBbZ8fgurOYx77aSXpUC3ocnvV6n7zM8/ FILNUozKseGF8BC0ZVSrGp6J3Sq5MXEiwezw5b8voaRZxylo3aOu9yJC5ltPKf5u XtmWJOeaftAPkAHtCdlxnR9HfHWruuazgXn0uTCCXzR4JWy2rIVVf+sLYwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFId9BFwdbg3yjbTy9ppGgAi6c7TvMB8GA1UdIwQY MBaAFNmZ5dZORLFzPGFzczfOgrSmlDpGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMlpubDFrNUVzWE04WVhOek44NkN0S2FVT2tZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MC9mMDFmOTktYmMwMS00YjM5LTkzNjIt OWY0N2M3NDEwZDQxLzEvMlpubDFrNUVzWE04WVhOek44NkN0S2FVT2tZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MC9mMDFmOTktYmMwMS00YjM5LTkzNjItOWY0N2M3NDEwZDQx LzEvMlpubDFrNUVzWE04WVhOek44NkN0S2FVT2tZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATuEP6Hzc y4JthqA4awgpQFC+zvdICGp4CRqIDw+bk63GzroEzKx8PbhKugfja4GW66mLOBT3 dpdp7aJiSsQLZ8TkWPFyeXPUvOW3waj0QrUIT9LfFfT1zeXjjBWoaMw/8BhHmedC 7o4+xoASU8tI6DfoNW/rOCTQrGHjYFDaaT4eEIOlhR/XrQhMXq19rQRLqriQblPW 55q1nme41ykbUWl7A/dj6xAfpkzu+RJKx73v/FiD1buDgZ+0AcqVjKmBQv9CaxNo Q6QBurI1uSf7DPkoooadWAkI3An0oaj+Air/FoKxUqyZUGMICb20vBx9udqiqHf2 y6so45TdnJx42g== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:56 2026 by rpki-client