This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft File: ZAqiwHn96HpUUV0B3iG8LoXeExo.mft (raw, json) Hash identifier: SPsXGfVN/1eu0Ynb3DxiujgMC+Zaw09syOAxgRKm4lQ= Subject key identifier: 95:36:C9:38:E4:C5:ED:E7:CC:43:5C:1E:50:D6:1B:0A:6E:82:9D:B5 Authority key identifier: 64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A Certificate issuer: /CN=640aa2c079fde87a54515d01de21bc2e85de131a Certificate serial: 019C420FA41E7128D3A3DE6AD41322BFAC23 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 11:00:47 +0000 Manifest this update: Mon 09 Feb 2026 11:00:47 +0000 Manifest next update: Tue 10 Feb 2026 11:00:47 +0000 Files and hashes: 1: ZAqiwHn96HpUUV0B3iG8LoXeExo.crl (hash: nWAEnhcNYh3M5INtHy7zks3BOY4NzbXcmQACpOw9Szs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:a4:1e:71:28:d3:a3:de:6a:d4:13:22:bf:ac:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=640aa2c079fde87a54515d01de21bc2e85de131a Validity Not Before: Feb 9 11:00:47 2026 GMT Not After : Feb 10 11:00:47 2026 GMT Subject: CN=9536c938e4c5ede7cc435c1e50d61b0a6e829db5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:8d:37:b4:fd:c7:34:c7:59:14:d5:ed:bb:20: df:4e:98:25:68:7c:5e:9f:63:a3:77:ad:8b:5f:03: 86:98:10:80:21:c1:d2:4d:05:fa:15:a1:be:15:dc: d6:a0:f3:83:22:50:5f:0a:41:fa:ea:32:ba:ff:1e: 3b:56:b2:63:a2:31:f8:04:a7:27:29:07:56:a5:1d: ab:14:1e:4e:c1:9d:38:7b:0c:cc:b9:52:27:e0:b7: 3d:99:0f:9f:ee:0e:27:9a:9b:9c:c2:c9:ad:ea:b1: 99:ec:79:c2:8b:ef:7e:c9:f2:62:e9:72:64:62:79: c0:00:b0:c6:9e:1e:af:07:6e:6a:24:70:75:43:a6: 40:45:3c:a0:d9:ae:d6:6d:f1:cf:b4:5f:88:b9:9d: 7e:bf:0e:0f:02:6a:4d:27:b0:fc:51:28:70:2f:ee: de:93:a1:45:aa:0c:40:25:07:5f:b0:71:e1:4f:d4: 27:d5:4f:b9:a5:c4:9f:bc:f3:15:05:9f:30:ca:10: 21:d9:76:d9:8e:02:13:43:3b:ed:5f:3d:8a:aa:7d: d5:f2:30:cb:67:3d:b7:1f:97:c5:79:f0:54:d1:45: 25:ed:07:f6:af:24:2e:a8:83:91:19:e9:05:e3:86: 40:01:01:26:39:26:56:f0:26:c7:3d:0f:32:40:d9: 56:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:36:C9:38:E4:C5:ED:E7:CC:43:5C:1E:50:D6:1B:0A:6E:82:9D:B5 X509v3 Authority Key Identifier: keyid:64:0A:A2:C0:79:FD:E8:7A:54:51:5D:01:DE:21:BC:2E:85:DE:13:1A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZAqiwHn96HpUUV0B3iG8LoXeExo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8e/57784b-107a-42d9-a21d-3a98966f5e31/1/ZAqiwHn96HpUUV0B3iG8LoXeExo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:61:0e:c4:4d:3d:e7:02:fb:8e:2c:cd:67:ec:de:a0:65:11: 55:15:df:60:f6:4c:ee:e8:b3:8d:e8:f7:aa:99:42:c7:9b:82: b8:6f:56:37:61:79:10:84:a1:32:aa:a4:eb:50:6a:2a:2a:67: 84:ea:9e:32:70:6e:1a:2c:a9:87:3e:16:c0:d1:8e:1b:bf:17: 61:db:14:db:e6:63:c5:f5:d8:04:9d:4c:54:4e:86:a4:50:db: 99:78:34:f9:ef:42:f8:89:8c:92:c0:19:6d:39:01:6d:f6:fd: bc:30:12:e6:dd:7e:17:d7:4b:f8:07:e2:a4:7e:d0:43:f2:32: d4:9a:4a:97:ed:da:27:60:1e:9a:80:de:1b:cd:ec:7a:55:3a: 76:21:8b:ca:8d:0f:7e:de:e9:c8:d1:c9:a2:4d:98:bb:5f:e3: 57:46:44:e7:e1:6f:8e:b9:2e:71:ea:b7:2c:4d:1d:8e:64:b5: e9:67:29:73:de:da:26:93:5e:d7:09:e4:1b:72:d2:c9:70:4d: 72:12:a1:96:8b:39:8e:e6:08:02:fa:05:96:37:29:c8:09:13: b7:41:2b:c5:a9:fa:e0:37:27:bd:ef:41:79:85:b5:37:08:a7: 6c:24:c6:72:88:b9:e9:d0:f6:83:65:59:16:8d:57:08:4c:cd: 89:c3:08:51 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD6QecSjTo95q1BMiv6wjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0MGFhMmMwNzlmZGU4N2E1NDUxNWQwMWRlMjFiYzJlODVk ZTEzMWEwHhcNMjYwMjA5MTEwMDQ3WhcNMjYwMjEwMTEwMDQ3WjAzMTEwLwYDVQQD Eyg5NTM2YzkzOGU0YzVlZGU3Y2M0MzVjMWU1MGQ2MWIwYTZlODI5ZGI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx403tP3HNMdZFNXtuyDfTpglaHxe n2Ojd62LXwOGmBCAIcHSTQX6FaG+FdzWoPODIlBfCkH66jK6/x47VrJjojH4BKcn KQdWpR2rFB5OwZ04ewzMuVIn4Lc9mQ+f7g4nmpucwsmt6rGZ7HnCi+9+yfJi6XJk YnnAALDGnh6vB25qJHB1Q6ZARTyg2a7WbfHPtF+IuZ1+vw4PAmpNJ7D8UShwL+7e k6FFqgxAJQdfsHHhT9Qn1U+5pcSfvPMVBZ8wyhAh2XbZjgITQzvtXz2Kqn3V8jDL Zz23H5fFefBU0UUl7Qf2ryQuqIORGekF44ZAAQEmOSZW8CbHPQ8yQNlWDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJU2yTjkxe3nzENcHlDWGwpugp21MB8GA1UdIwQY MBaAFGQKosB5/eh6VFFdAd4hvC6F3hMaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84ZS81Nzc4NGItMTA3YS00MmQ5LWEyMWQt M2E5ODk2NmY1ZTMxLzEvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84ZS81Nzc4NGItMTA3YS00MmQ5LWEyMWQtM2E5ODk2NmY1ZTMx LzEvWkFxaXdIbjk2SHBVVVYwQjNpRzhMb1hlRXhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALmEOxE09 5wL7jizNZ+zeoGURVRXfYPZM7uizjej3qplCx5uCuG9WN2F5EIShMqqk61BqKipn hOqeMnBuGiyphz4WwNGOG78XYdsU2+ZjxfXYBJ1MVE6GpFDbmXg0+e9C+ImMksAZ bTkBbfb9vDAS5t1+F9dL+AfipH7QQ/Iy1JpKl+3aJ2AemoDeG83selU6diGLyo0P ft7pyNHJok2Yu1/jV0ZE5+Fvjrkuceq3LE0djmS16Wcpc97aJpNe1wnkG3LSyXBN chKhlos5juYIAvoFljcpyAkTt0Erxan64Dcnve9BeYW1NwinbCTGcoi56dD2g2VZ Fo1XCEzNicMIUQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:44 2026 by rpki-client