This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft File: dZxU7z8HSxxmiPmXVM2KONmfbKw.mft (raw, json) Hash identifier: ZvizxiD4JLdhtk5/zMI1gPOjexgMk9w4FWBjIQ4Eu4o= Subject key identifier: 2B:43:36:76:90:86:D4:4B:D3:9E:3D:57:4C:F3:DA:FD:FF:91:FF:C6 Authority key identifier: 75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC Certificate issuer: /CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac Certificate serial: 019C43C75548C6487354E2B0038C5F46469E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft Manifest number: 0BB0 Signing time: Mon 09 Feb 2026 19:01:02 +0000 Manifest this update: Mon 09 Feb 2026 19:01:02 +0000 Manifest next update: Tue 10 Feb 2026 19:01:02 +0000 Files and hashes: 1: dZxU7z8HSxxmiPmXVM2KONmfbKw.crl (hash: MVG5RFvamZ7DdsNEVNW+ODFrAOzRoJUj355HigIP0SE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:55:48:c6:48:73:54:e2:b0:03:8c:5f:46:46:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=759c54ef3f074b1c6688f99754cd8a38d99f6cac Validity Not Before: Feb 9 19:01:02 2026 GMT Not After : Feb 10 19:01:02 2026 GMT Subject: CN=2b4336769086d44bd39e3d574cf3dafdff91ffc6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:6b:11:da:fb:ac:83:cb:10:25:78:e6:aa:06: 35:3f:00:47:a0:14:10:70:d7:46:74:77:4f:93:51: c5:76:34:45:3f:68:a2:d1:f9:5e:e4:7a:97:7e:b7: c9:d1:0b:57:96:31:00:84:40:d0:8b:11:1a:6d:de: c0:f7:fa:9f:4d:8e:c4:4a:9a:fa:41:c8:87:f3:05: b5:3a:ad:ee:52:0b:3f:8b:12:6e:2a:ea:10:9c:5c: a7:a4:ac:6e:b4:07:62:20:05:ae:c7:83:2e:4f:35: 3f:a1:0a:7f:ac:aa:06:e6:1a:33:b5:63:a0:59:1b: 9a:59:8d:78:7c:14:d9:40:ce:aa:ac:26:df:71:b9: b2:96:24:cf:62:74:a4:66:5d:1a:86:9e:00:dc:3e: d3:e4:c9:42:0b:22:22:a4:cb:32:85:f1:33:9c:7b: 9f:ae:eb:62:98:b1:63:17:94:8b:92:3c:3a:b5:98: 88:fe:e0:ae:ec:a4:62:00:6b:8a:07:0e:a2:c9:07: 16:6a:bd:3e:28:b9:ac:8c:51:d2:da:b2:73:c2:ed: f8:ad:d0:c7:1b:50:55:20:21:92:f9:36:2f:c5:11: 84:eb:fa:08:1c:8c:8f:19:7c:cf:c7:82:f2:61:26: 6e:15:ce:4f:88:42:7a:95:58:a2:89:d0:0a:d5:7f: 64:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:43:36:76:90:86:D4:4B:D3:9E:3D:57:4C:F3:DA:FD:FF:91:FF:C6 X509v3 Authority Key Identifier: keyid:75:9C:54:EF:3F:07:4B:1C:66:88:F9:97:54:CD:8A:38:D9:9F:6C:AC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZxU7z8HSxxmiPmXVM2KONmfbKw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5beaa0-4a31-4168-99b4-44d29657bab7/1/dZxU7z8HSxxmiPmXVM2KONmfbKw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:dd:95:23:b3:c7:af:00:26:6f:32:55:f5:5b:38:76:b7:ce: 33:1d:da:b7:cb:34:51:5a:9b:fa:08:9f:4b:90:ef:6c:83:d9: a9:f5:e0:7d:1e:74:44:94:03:69:19:01:08:ae:19:84:7a:36: aa:fc:bc:21:67:9c:ae:91:13:08:62:26:28:f9:cd:71:6c:b7: e4:26:21:dd:aa:a2:fc:7f:b8:70:3c:09:41:83:6b:c8:aa:7d: e6:aa:77:63:fd:f1:c3:c9:cd:f8:99:be:f2:a5:cd:6b:3e:c9: 69:b5:4e:1a:67:82:f4:e0:27:9d:b3:40:53:c4:51:25:6e:e8: 75:6b:2c:cb:d5:b9:5f:e7:23:e9:9c:5c:3e:5b:35:89:32:f8: 54:49:fa:fb:cd:4b:db:f7:5c:e0:dd:4c:ad:e1:0f:4a:71:9a: 5e:31:f2:57:09:d9:c6:04:fe:54:ce:02:79:d0:49:f7:05:ab: b9:c2:45:aa:65:24:a2:2c:2b:64:f9:9c:9a:4b:d0:06:33:dc: 59:c0:57:37:e1:da:b1:0a:71:e3:34:36:46:54:ca:a2:d1:32: 2f:2f:4d:ee:10:bb:b7:f6:ed:2b:88:8f:4d:87:0c:0c:07:69: 93:5d:0e:10:10:c2:bd:03:d5:6f:01:37:d7:d6:b8:ff:b9:cf: 5a:8d:2c:80 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx1VIxkhzVOKwA4xfRkaeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1OWM1NGVmM2YwNzRiMWM2Njg4Zjk5NzU0Y2Q4YTM4ZDk5 ZjZjYWMwHhcNMjYwMjA5MTkwMTAyWhcNMjYwMjEwMTkwMTAyWjAzMTEwLwYDVQQD EygyYjQzMzY3NjkwODZkNDRiZDM5ZTNkNTc0Y2YzZGFmZGZmOTFmZmM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5WsR2vusg8sQJXjmqgY1PwBHoBQQ cNdGdHdPk1HFdjRFP2ii0fle5HqXfrfJ0QtXljEAhEDQixEabd7A9/qfTY7ESpr6 QciH8wW1Oq3uUgs/ixJuKuoQnFynpKxutAdiIAWux4MuTzU/oQp/rKoG5hoztWOg WRuaWY14fBTZQM6qrCbfcbmyliTPYnSkZl0ahp4A3D7T5MlCCyIipMsyhfEznHuf rutimLFjF5SLkjw6tZiI/uCu7KRiAGuKBw6iyQcWar0+KLmsjFHS2rJzwu34rdDH G1BVICGS+TYvxRGE6/oIHIyPGXzPx4LyYSZuFc5PiEJ6lViiidAK1X9kfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCtDNnaQhtRL0549V0zz2v3/kf/GMB8GA1UdIwQY MBaAFHWcVO8/B0scZoj5l1TNijjZn2ysMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi81YmVhYTAtNGEzMS00MTY4LTk5YjQt NDRkMjk2NTdiYWI3LzEvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi81YmVhYTAtNGEzMS00MTY4LTk5YjQtNDRkMjk2NTdiYWI3 LzEvZFp4VTd6OEhTeHhtaVBtWFZNMktPTm1mYkt3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhN2VI7PH rwAmbzJV9Vs4drfOMx3at8s0UVqb+gifS5DvbIPZqfXgfR50RJQDaRkBCK4ZhHo2 qvy8IWecrpETCGImKPnNcWy35CYh3aqi/H+4cDwJQYNryKp95qp3Y/3xw8nN+Jm+ 8qXNaz7JabVOGmeC9OAnnbNAU8RRJW7odWssy9W5X+cj6ZxcPls1iTL4VEn6+81L 2/dc4N1MreEPSnGaXjHyVwnZxgT+VM4CedBJ9wWrucJFqmUkoiwrZPmcmkvQBjPc WcBXN+HasQpx4zQ2RlTKotEyLy9N7hC7t/btK4iPTYcMDAdpk10OEBDCvQPVbwE3 19a4/7nPWo0sgA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:30 2026 by rpki-client