This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft File: pzh53iWUz91MnkIlVWKBsgjZRhQ.mft (raw, json) Hash identifier: obbsm3iLtKAceg9LiEkepPfQ10zKzXU0+mU+pzh/91U= Subject key identifier: 9E:42:48:7A:13:16:E2:3B:19:35:A4:5A:F6:86:D1:91:D4:AE:38:99 Authority key identifier: A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14 Certificate issuer: /CN=a73879de2594cfdd4c9e4225556281b208d94614 Certificate serial: 019C43FDB588732D798051F67185C2704A53 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft Manifest number: 0ACD Signing time: Mon 09 Feb 2026 20:00:26 +0000 Manifest this update: Mon 09 Feb 2026 20:00:26 +0000 Manifest next update: Tue 10 Feb 2026 20:00:26 +0000 Files and hashes: 1: FLcD5GM3w38Bkf6-ofdUUggipDY.roa (hash: j629CGaUVrsk4spu3DmpUrCgmxrvYlncEchc9Bf2lnA=) 2: pzh53iWUz91MnkIlVWKBsgjZRhQ.crl (hash: QiqyPCcKt6CWfrh+2rAJk8rQtHI/5bXwF+dMp+EgIB4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:b5:88:73:2d:79:80:51:f6:71:85:c2:70:4a:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a73879de2594cfdd4c9e4225556281b208d94614 Validity Not Before: Feb 9 20:00:26 2026 GMT Not After : Feb 10 20:00:26 2026 GMT Subject: CN=9e42487a1316e23b1935a45af686d191d4ae3899 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5e:d5:e3:8f:d6:01:09:07:34:aa:2a:9f:90: e6:91:41:80:aa:a4:04:36:d6:b8:9d:fb:18:d2:dd: 1c:de:77:69:3f:65:8d:02:d5:d3:d8:af:bb:40:f9: dc:cf:58:0c:ee:f9:6a:e8:6d:40:3c:8b:e4:9a:19: 3b:f7:bd:86:55:97:bd:7c:45:86:b2:f3:57:fe:40: ab:be:29:28:fd:9c:ea:55:ae:f4:f8:31:b5:8b:18: e6:cc:37:99:7d:fb:a5:d4:98:58:a2:b5:86:4a:8e: 6c:1e:47:82:d5:78:a7:bb:ba:a3:19:9d:9f:0e:fc: 0d:4a:05:f2:2b:f0:f6:f2:12:1b:e0:8a:20:4a:ba: 2d:10:e9:d0:48:3d:69:05:d2:38:e0:b3:1a:4b:57: ce:4e:7c:64:c5:7c:30:d0:ef:54:98:41:37:1e:e4: 78:b7:c4:ea:65:6c:b5:35:6a:2d:6d:d2:ac:0b:ec: 6e:42:10:82:17:7e:41:c8:81:77:29:d6:fb:93:a8: 8e:3a:94:46:f9:bb:cf:9c:22:d9:2c:7b:b3:c1:80: c8:17:1e:4e:a0:aa:bc:57:2c:52:ac:46:5c:20:3b: ca:ed:42:2e:96:27:f0:5b:6b:a4:b2:d8:21:60:e0: 05:b4:1e:8d:60:b5:9c:a9:f8:8d:03:3e:54:97:ce: d8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:42:48:7A:13:16:E2:3B:19:35:A4:5A:F6:86:D1:91:D4:AE:38:99 X509v3 Authority Key Identifier: keyid:A7:38:79:DE:25:94:CF:DD:4C:9E:42:25:55:62:81:B2:08:D9:46:14 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzh53iWUz91MnkIlVWKBsgjZRhQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/95/dbf185-b087-4b44-8f81-9f7d97c63152/1/pzh53iWUz91MnkIlVWKBsgjZRhQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:53:6e:0c:60:74:7e:9e:3a:57:c9:08:de:8f:77:1e:ec:3b: 0e:a8:3e:7b:09:1f:d5:e6:06:38:92:00:99:59:41:2d:88:c7: b1:6f:94:11:9f:a4:80:19:69:f4:f7:34:87:27:7b:b7:82:ee: fe:6a:40:01:b2:5b:b4:c4:1f:33:30:e6:59:13:b7:9c:47:ce: ce:21:f9:07:ab:24:2c:a9:e3:26:b9:c2:0a:d2:1b:94:c0:6e: fb:44:40:41:10:4b:19:f8:2c:ed:75:7d:18:d0:7e:03:d1:4d: 5e:b8:12:c4:c0:5a:06:51:2a:12:78:c6:17:d5:de:54:be:0b: f6:ed:a5:0d:11:30:4a:25:42:97:c1:be:48:67:03:dc:57:fc: ef:65:31:d6:20:37:bc:75:bd:4f:cb:b1:ea:bb:5e:e8:10:25: 79:5f:8d:bf:20:ab:c4:a6:11:b2:2e:81:be:a6:4d:f5:71:5e: 75:64:db:9d:22:ba:06:34:11:13:67:2b:db:6a:73:e4:3b:04: 59:b0:78:29:57:6e:85:83:b6:6c:33:88:19:76:1a:4b:65:2d: 48:52:5b:05:ca:d9:58:7e:ea:a0:29:35:b2:c2:33:bf:ee:73: 0d:f9:89:ab:c3:2c:ea:d6:91:bf:f2:91:fe:22:7c:37:ca:3e: 66:6c:b8:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/bWIcy15gFH2cYXCcEpTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3Mzg3OWRlMjU5NGNmZGQ0YzllNDIyNTU1NjI4MWIyMDhk OTQ2MTQwHhcNMjYwMjA5MjAwMDI2WhcNMjYwMjEwMjAwMDI2WjAzMTEwLwYDVQQD Eyg5ZTQyNDg3YTEzMTZlMjNiMTkzNWE0NWFmNjg2ZDE5MWQ0YWUzODk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3V7V44/WAQkHNKoqn5DmkUGAqqQE Nta4nfsY0t0c3ndpP2WNAtXT2K+7QPncz1gM7vlq6G1APIvkmhk7972GVZe9fEWG svNX/kCrviko/ZzqVa70+DG1ixjmzDeZfful1JhYorWGSo5sHkeC1Xinu7qjGZ2f DvwNSgXyK/D28hIb4IogSrotEOnQSD1pBdI44LMaS1fOTnxkxXww0O9UmEE3HuR4 t8TqZWy1NWotbdKsC+xuQhCCF35ByIF3Kdb7k6iOOpRG+bvPnCLZLHuzwYDIFx5O oKq8VyxSrEZcIDvK7UIulifwW2ukstghYOAFtB6NYLWcqfiNAz5Ul87YFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ5CSHoTFuI7GTWkWvaG0ZHUrjiZMB8GA1UdIwQY MBaAFKc4ed4llM/dTJ5CJVVigbII2UYUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85NS9kYmYxODUtYjA4Ny00YjQ0LThmODEt OWY3ZDk3YzYzMTUyLzEvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85NS9kYmYxODUtYjA4Ny00YjQ0LThmODEtOWY3ZDk3YzYzMTUy LzEvcHpoNTNpV1V6OTFNbmtJbFZXS0JzZ2paUmhRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE1NuDGB0 fp46V8kI3o93Huw7Dqg+ewkf1eYGOJIAmVlBLYjHsW+UEZ+kgBlp9Pc0hyd7t4Lu /mpAAbJbtMQfMzDmWRO3nEfOziH5B6skLKnjJrnCCtIblMBu+0RAQRBLGfgs7XV9 GNB+A9FNXrgSxMBaBlEqEnjGF9XeVL4L9u2lDREwSiVCl8G+SGcD3Ff872Ux1iA3 vHW9T8ux6rte6BAleV+NvyCrxKYRsi6BvqZN9XFedWTbnSK6BjQRE2cr22pz5DsE WbB4KVduhYO2bDOIGXYaS2UtSFJbBcrZWH7qoCk1ssIzv+5zDfmJq8Ms6taRv/KR /iJ8N8o+Zmy4xQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:18 2026 by rpki-client