This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft File: zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft (raw, json) Hash identifier: +TlV/J2jhqlmmUe6l1YfGhfC9pwQaNK4TRBysVw6/wo= Subject key identifier: 52:8A:EF:13:DD:1A:44:90:6D:E3:6D:A5:35:52:E4:42:6B:37:4F:6C Authority key identifier: CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84 Certificate issuer: /CN=cc8df88054060df685bba9739123e8342d479e84 Certificate serial: 019C43C729ABFC5D6E72105FD4B8E60FDB1B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft Manifest number: 17AA Signing time: Mon 09 Feb 2026 19:00:51 +0000 Manifest this update: Mon 09 Feb 2026 19:00:51 +0000 Manifest next update: Tue 10 Feb 2026 19:00:51 +0000 Files and hashes: 1: nWemIk_PUFibWyxsMCHuSPNqyxE.roa (hash: LfDaK0qO1xTJjSEUv9R58HxO4b8gyazqBrXpwSZbnWE=) 2: zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl (hash: a3nHLDi3P/7L856X6GUjNpiYGJxfqWkb7TRx3YifgL0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:29:ab:fc:5d:6e:72:10:5f:d4:b8:e6:0f:db:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc8df88054060df685bba9739123e8342d479e84 Validity Not Before: Feb 9 19:00:51 2026 GMT Not After : Feb 10 19:00:51 2026 GMT Subject: CN=528aef13dd1a44906de36da53552e4426b374f6c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:eb:37:ea:17:fa:b6:84:e0:5f:da:35:ee:23: cd:c4:31:47:20:6a:2e:e6:72:e5:e0:fb:7f:6b:fe: 9e:51:53:b0:ce:11:94:5b:ea:72:cc:1e:86:22:3e: d3:09:11:43:60:92:c5:af:2a:9d:21:8f:f3:46:3d: 17:7e:bd:46:b8:03:af:29:51:80:be:1f:1e:21:17: 49:e4:35:2c:13:bb:2f:4a:f8:02:5d:97:13:0b:87: f1:14:cf:e7:f8:43:4a:a1:e5:b6:00:52:79:df:13: ef:a4:18:37:1d:4e:48:0f:bf:49:8f:66:83:06:bd: 65:86:22:32:c7:fd:65:37:cf:6f:e6:5f:bc:1a:e9: fa:8c:72:9d:b7:aa:95:22:76:7f:21:07:51:fc:ee: fe:70:b0:45:21:64:57:37:e3:00:9b:dc:05:22:53: 22:db:84:e1:1d:f9:9a:21:5c:f9:32:40:2f:d5:46: bb:37:e9:99:32:7c:fe:d1:ef:a3:fc:1e:3b:82:40: 07:aa:a4:ff:75:f6:b7:c9:a4:d9:04:72:e2:ff:7d: 1f:85:68:26:f4:b3:ad:9d:38:b6:24:ca:27:58:7d: f3:76:c3:85:64:e4:be:fa:8c:0e:5b:68:0e:ba:cd: 62:b5:63:50:77:7d:4f:47:64:dc:49:fc:63:ce:5d: ae:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:8A:EF:13:DD:1A:44:90:6D:E3:6D:A5:35:52:E4:42:6B:37:4F:6C X509v3 Authority Key Identifier: keyid:CC:8D:F8:80:54:06:0D:F6:85:BB:A9:73:91:23:E8:34:2D:47:9E:84 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zI34gFQGDfaFu6lzkSPoNC1HnoQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/81/db8d38-077f-4d77-9383-dc781cc2a258/1/zI34gFQGDfaFu6lzkSPoNC1HnoQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:27:89:ea:03:3d:b7:c9:3f:62:e8:33:34:3e:e0:30:2a:eb: c0:1a:6c:7c:75:b9:54:32:71:bb:aa:65:7f:75:35:fb:66:fe: f7:ce:cf:b2:7b:d0:b1:73:96:ee:6d:31:99:f9:6d:b2:38:b2: 5b:d5:89:f6:5b:27:ae:dd:fd:c4:7a:42:a3:28:ae:89:e8:0d: 67:5b:81:99:72:37:eb:a3:dd:74:fa:a1:f0:c9:bb:6a:fc:5a: 28:af:28:60:23:1f:09:7b:23:3a:a3:7d:6f:57:0e:a5:fe:b7: e7:4d:b9:08:cd:f2:14:75:d1:11:3d:f7:a9:05:67:b0:17:6b: ee:66:38:30:18:f4:7b:f5:5b:ca:02:66:09:d0:02:8e:0c:61: ae:9e:17:2c:7b:e6:d0:e6:6b:32:86:48:c2:5f:85:d1:03:29: 99:54:07:b2:93:36:76:14:59:1a:ce:1a:22:e4:71:91:a3:e4: 8b:47:e5:37:1f:e4:4f:5c:2a:c4:92:f5:41:88:2b:b0:79:5b: 4d:17:d0:05:ae:76:4e:2d:7b:86:ca:03:60:d7:76:c4:d2:40: 4c:81:e9:5b:aa:57:77:38:f9:79:08:11:42:f1:cc:6a:7e:ab: 13:02:a2:11:b1:78:61:d0:a4:77:76:65:ba:af:9a:00:c2:08: ba:03:a9:1e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxymr/F1uchBf1LjmD9sbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjOGRmODgwNTQwNjBkZjY4NWJiYTk3MzkxMjNlODM0MmQ0 NzllODQwHhcNMjYwMjA5MTkwMDUxWhcNMjYwMjEwMTkwMDUxWjAzMTEwLwYDVQQD Eyg1MjhhZWYxM2RkMWE0NDkwNmRlMzZkYTUzNTUyZTQ0MjZiMzc0ZjZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxOs36hf6toTgX9o17iPNxDFHIGou 5nLl4Pt/a/6eUVOwzhGUW+pyzB6GIj7TCRFDYJLFryqdIY/zRj0Xfr1GuAOvKVGA vh8eIRdJ5DUsE7svSvgCXZcTC4fxFM/n+ENKoeW2AFJ53xPvpBg3HU5ID79Jj2aD Br1lhiIyx/1lN89v5l+8Gun6jHKdt6qVInZ/IQdR/O7+cLBFIWRXN+MAm9wFIlMi 24ThHfmaIVz5MkAv1Ua7N+mZMnz+0e+j/B47gkAHqqT/dfa3yaTZBHLi/30fhWgm 9LOtnTi2JMonWH3zdsOFZOS++owOW2gOus1itWNQd31PR2TcSfxjzl2uQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFKK7xPdGkSQbeNtpTVS5EJrN09sMB8GA1UdIwQY MBaAFMyN+IBUBg32hbupc5Ej6DQtR56EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekkzNGdGUUdEZmFGdTZsemtTUG9OQzFIbm9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MS9kYjhkMzgtMDc3Zi00ZDc3LTkzODMt ZGM3ODFjYzJhMjU4LzEvekkzNGdGUUdEZmFGdTZsemtTUG9OQzFIbm9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84MS9kYjhkMzgtMDc3Zi00ZDc3LTkzODMtZGM3ODFjYzJhMjU4 LzEvekkzNGdGUUdEZmFGdTZsemtTUG9OQzFIbm9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYieJ6gM9 t8k/YugzND7gMCrrwBpsfHW5VDJxu6plf3U1+2b+987PsnvQsXOW7m0xmfltsjiy W9WJ9lsnrt39xHpCoyiuiegNZ1uBmXI366PddPqh8Mm7avxaKK8oYCMfCXsjOqN9 b1cOpf635025CM3yFHXRET33qQVnsBdr7mY4MBj0e/VbygJmCdACjgxhrp4XLHvm 0OZrMoZIwl+F0QMpmVQHspM2dhRZGs4aIuRxkaPki0flNx/kT1wqxJL1QYgrsHlb TRfQBa52Ti17hsoDYNd2xNJATIHpW6pXdzj5eQgRQvHMan6rEwKiEbF4YdCkd3Zl uq+aAMIIugOpHg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:11 2026 by rpki-client