This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft File: Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft (raw, json) Hash identifier: k0C2c2L/WgS+S9CuxhyhC5dTs7IcxlKrYW7KJ0bwQR0= Subject key identifier: 41:F8:8F:3F:29:A2:DD:CC:D1:4A:D9:93:7A:1C:18:50:9B:38:2E:12 Authority key identifier: 67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1 Certificate issuer: /CN=67d410e707b57971b14a54309f020bacbb4d21b1 Certificate serial: 019C4133F98363ED2CEF7C1051BDE0BB7BF9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft Manifest number: 03DA Signing time: Mon 09 Feb 2026 07:00:51 +0000 Manifest this update: Mon 09 Feb 2026 07:00:51 +0000 Manifest next update: Tue 10 Feb 2026 07:00:51 +0000 Files and hashes: 1: Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl (hash: 0c8dY+lZzzS3/Abeiym1xEnsvvz7/ZvMov+8v+SznEA=) 2: axtr1Yfq33sGPOPOJoi8LjJUh7Q.roa (hash: nE9lYWD+wgHpWX2b2+6stth4mhkUfCemKJyIsoT/t6A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:f9:83:63:ed:2c:ef:7c:10:51:bd:e0:bb:7b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67d410e707b57971b14a54309f020bacbb4d21b1 Validity Not Before: Feb 9 07:00:51 2026 GMT Not After : Feb 10 07:00:51 2026 GMT Subject: CN=41f88f3f29a2ddccd14ad9937a1c18509b382e12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9a:ae:47:84:12:65:9c:b6:db:a7:c5:e2:d6: db:a8:fe:14:56:57:2e:fb:2b:b3:2d:73:70:04:8d: a8:c0:09:28:17:82:1f:10:b1:06:58:22:14:83:80: b1:c7:19:2b:b6:41:83:7e:a0:6c:6e:c7:d7:b7:14: a4:1b:a7:78:4f:2c:bb:f8:24:8b:02:ca:6c:2c:22: 47:ec:a5:ff:83:b6:43:e7:ec:06:66:07:74:c2:df: 94:6b:5e:40:d4:07:2b:2f:d4:6c:2a:c6:a0:67:0c: 39:b3:23:aa:4b:50:1d:e8:c9:08:f6:23:d4:78:4f: d9:82:af:9b:94:4b:7b:2c:e0:6f:9f:dc:49:73:27: e8:db:3c:f9:a2:b6:0b:6d:b4:a4:6f:2b:19:9d:38: 2e:d0:91:48:28:26:c4:65:9f:1c:49:c1:02:c9:0d: c7:96:0e:8b:29:ec:10:4b:d4:bb:87:7f:5d:56:68: 93:3b:91:35:01:ea:9a:28:81:ba:61:a5:fe:d9:dc: ff:9b:31:2a:93:42:a1:12:70:0f:2f:9f:f4:cd:a3: 66:c0:c1:8a:e1:e3:a2:15:c7:1e:c3:eb:68:3a:33: 6c:8c:e7:60:fe:33:2d:b9:ae:c0:3e:c2:1f:56:dd: fe:8c:84:9c:b7:a1:ef:1b:45:4a:19:64:3e:29:96: 0d:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F8:8F:3F:29:A2:DD:CC:D1:4A:D9:93:7A:1C:18:50:9B:38:2E:12 X509v3 Authority Key Identifier: keyid:67:D4:10:E7:07:B5:79:71:B1:4A:54:30:9F:02:0B:AC:BB:4D:21:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z9QQ5we1eXGxSlQwnwILrLtNIbE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/486e7a-188d-44ad-b737-b09e76553852/1/Z9QQ5we1eXGxSlQwnwILrLtNIbE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:5e:ad:19:64:29:e7:44:21:6d:cb:55:98:b9:9b:e9:3a:c6: 8b:ab:bb:7c:4e:bf:2f:eb:7d:73:56:d1:e5:5d:c1:09:9c:e4: aa:ad:28:95:e2:51:32:1b:8b:95:d7:99:bf:29:0d:9e:a1:d1: 78:45:40:2f:89:c9:5b:1e:5c:95:ff:a8:73:06:80:be:b7:74: 40:ec:fb:a5:20:71:ba:17:66:d0:93:c3:c1:7b:9a:c9:05:59: ff:ee:1a:1f:38:ed:27:73:ee:8b:42:c6:8b:cb:fe:fe:42:32: 67:9a:7e:48:94:05:2b:59:08:30:8a:c2:de:5c:a8:f0:71:13: c6:57:63:bc:66:ca:27:c4:a5:fc:d0:77:e5:4e:70:0f:26:98: 3b:d0:45:05:85:81:a0:49:45:d0:3c:51:d4:ef:f0:ca:a3:eb: 32:3e:00:81:da:c0:00:4e:8a:cc:bd:8b:76:9d:85:fa:91:22: 9b:2b:46:6f:96:37:a7:89:e5:d1:8d:9f:2f:0b:d5:66:7e:f2: 56:20:9c:e7:9c:d9:9c:32:61:22:f2:db:fa:78:49:b3:d6:1e: 05:79:74:3b:dc:d9:3b:6d:28:8b:4b:35:5f:97:ee:1e:a9:5b: fa:42:e6:e7:65:40:8e:7a:6b:b3:a2:86:70:4a:59:99:17:b6: 03:c4:4b:9c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM/mDY+0s73wQUb3gu3v5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3ZDQxMGU3MDdiNTc5NzFiMTRhNTQzMDlmMDIwYmFjYmI0 ZDIxYjEwHhcNMjYwMjA5MDcwMDUxWhcNMjYwMjEwMDcwMDUxWjAzMTEwLwYDVQQD Eyg0MWY4OGYzZjI5YTJkZGNjZDE0YWQ5OTM3YTFjMTg1MDliMzgyZTEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwZquR4QSZZy226fF4tbbqP4UVlcu +yuzLXNwBI2owAkoF4IfELEGWCIUg4CxxxkrtkGDfqBsbsfXtxSkG6d4Tyy7+CSL AspsLCJH7KX/g7ZD5+wGZgd0wt+Ua15A1AcrL9RsKsagZww5syOqS1Ad6MkI9iPU eE/Zgq+blEt7LOBvn9xJcyfo2zz5orYLbbSkbysZnTgu0JFIKCbEZZ8cScECyQ3H lg6LKewQS9S7h39dVmiTO5E1AeqaKIG6YaX+2dz/mzEqk0KhEnAPL5/0zaNmwMGK 4eOiFccew+toOjNsjOdg/jMtua7APsIfVt3+jISct6HvG0VKGWQ+KZYNOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEH4jz8pot3M0UrZk3ocGFCbOC4SMB8GA1UdIwQY MBaAFGfUEOcHtXlxsUpUMJ8CC6y7TSGxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjlRUTV3ZTFlWEd4U2xRd253SUxyTHROSWJFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny80ODZlN2EtMTg4ZC00NGFkLWI3Mzct YjA5ZTc2NTUzODUyLzEvWjlRUTV3ZTFlWEd4U2xRd253SUxyTHROSWJFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny80ODZlN2EtMTg4ZC00NGFkLWI3MzctYjA5ZTc2NTUzODUy LzEvWjlRUTV3ZTFlWEd4U2xRd253SUxyTHROSWJFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJV6tGWQp 50QhbctVmLmb6TrGi6u7fE6/L+t9c1bR5V3BCZzkqq0oleJRMhuLldeZvykNnqHR eEVAL4nJWx5clf+ocwaAvrd0QOz7pSBxuhdm0JPDwXuayQVZ/+4aHzjtJ3Pui0LG i8v+/kIyZ5p+SJQFK1kIMIrC3lyo8HETxldjvGbKJ8Sl/NB35U5wDyaYO9BFBYWB oElF0DxR1O/wyqPrMj4AgdrAAE6KzL2Ldp2F+pEimytGb5Y3p4nl0Y2fLwvVZn7y ViCc55zZnDJhIvLb+nhJs9YeBXl0O9zZO20oi0s1X5fuHqlb+kLm52VAjnprs6KG cEpZmRe2A8RLnA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:01:56 2026 by rpki-client