This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft File: czHb7QiXzOhcFINxtHzIB4Ll5ys.mft (raw, json) Hash identifier: iUoZt/ymZ0TXsgOgOsi8TJgFvWLQQd/AnOlV/rTOuAk= Subject key identifier: CD:18:BE:F4:78:ED:20:A6:D4:EA:1F:36:16:E4:CA:A8:CD:2D:55:CB Authority key identifier: 73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B Certificate issuer: /CN=7331dbed0897cce85c148371b47cc80782e5e72b Certificate serial: 019C397A04FFC20B1FAED83974BB65FE1BCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft Manifest number: 06FC Signing time: Sat 07 Feb 2026 19:00:23 +0000 Manifest this update: Sat 07 Feb 2026 19:00:23 +0000 Manifest next update: Sun 08 Feb 2026 19:00:23 +0000 Files and hashes: 1: T0Q1-_qD3Ki2609r9NZI0IvfjS4.roa (hash: +nPlRWGkeYoja770vj9LfCl9js/SDYPB/SeIBGkWDVM=) 2: czHb7QiXzOhcFINxtHzIB4Ll5ys.crl (hash: qiJD+Rk7oC06aPVu+ZMsq1c2YRire4Srn4SobNIawfk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 08 Feb 2026 19:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:39:7a:04:ff:c2:0b:1f:ae:d8:39:74:bb:65:fe:1b:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7331dbed0897cce85c148371b47cc80782e5e72b Validity Not Before: Feb 7 19:00:23 2026 GMT Not After : Feb 8 19:00:23 2026 GMT Subject: CN=cd18bef478ed20a6d4ea1f3616e4caa8cd2d55cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:91:9e:7d:46:c3:5a:a1:12:e5:e5:b3:85: 2e:c3:16:d1:d2:d5:ef:c1:32:40:f0:93:1d:f6:7c: 01:96:12:2d:f2:df:f5:a9:26:95:79:13:42:ca:32: d4:52:5f:82:4b:b3:c1:3b:cc:76:9d:11:c9:42:7a: ed:a7:b3:80:96:3a:29:bf:c4:62:3b:3e:79:5c:31: 44:2e:eb:e4:e1:72:3d:39:be:27:6c:11:0c:93:63: 92:8f:bd:ab:03:99:54:19:4f:32:5a:40:bc:0d:5a: ad:5e:7f:e3:8b:d8:f8:26:4b:16:ee:7c:b9:23:30: 7e:09:4b:31:87:07:85:f7:6f:66:d9:55:df:0b:20: 8c:01:97:a4:5e:55:1b:40:73:05:c2:8b:3e:20:65: 11:20:6d:75:c4:56:18:d7:a7:45:a6:f6:85:ba:ee: fb:59:48:a1:9c:73:be:bb:45:fa:65:67:5e:b7:57: c9:3b:42:1f:b9:49:fe:1e:6d:3d:b1:67:7b:c4:4a: 39:0a:a2:0a:55:c5:3f:1d:32:7c:32:3b:89:1c:09: b6:1f:ce:7b:5e:19:0c:55:f1:42:df:f8:8a:c6:89: d0:cd:f3:55:8f:c3:d1:db:6d:18:13:8f:8e:d5:bf: 7a:8f:75:d5:e7:ad:17:70:9e:09:75:91:97:eb:e1: cd:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:18:BE:F4:78:ED:20:A6:D4:EA:1F:36:16:E4:CA:A8:CD:2D:55:CB X509v3 Authority Key Identifier: keyid:73:31:DB:ED:08:97:CC:E8:5C:14:83:71:B4:7C:C8:07:82:E5:E7:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czHb7QiXzOhcFINxtHzIB4Ll5ys.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c5f0c3-22e5-4801-90fb-0465072e41a3/1/czHb7QiXzOhcFINxtHzIB4Ll5ys.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:8e:28:be:01:70:2d:ff:52:94:53:98:87:56:3d:b1:db:61: 13:2a:e6:90:19:83:fd:c8:5e:89:ae:36:fd:de:b9:c3:34:d6: 75:dd:8f:a8:9e:89:d6:19:bf:c0:a6:d8:88:57:88:23:b1:14: 1b:15:c8:d9:57:01:cc:45:ef:55:ee:42:68:ef:e0:99:23:5b: 9d:66:38:52:46:36:bb:51:f4:76:7a:d7:31:d9:5c:5c:f4:e8: b6:c1:c1:9a:90:dd:4e:16:77:f0:9f:6e:98:e9:48:47:eb:d2: b1:5e:9c:6e:ba:9a:03:f2:f5:31:cc:1d:9f:75:34:0a:fe:59: 25:cf:29:a0:b4:18:b4:38:7a:22:d0:ed:b6:d7:a4:e8:03:4f: e0:8b:51:b7:ef:50:d0:3d:f4:3b:d4:eb:31:a0:a6:ac:8b:a6: 08:17:24:9f:5c:e6:8c:52:a9:2d:20:16:1b:c1:44:78:f4:01: c5:13:c4:40:50:05:e6:d9:3f:ba:95:38:16:e4:95:e5:eb:62: 9b:6c:06:48:63:de:84:04:bb:72:6f:9a:12:5e:07:a5:46:5f: a8:48:02:a8:b8:8b:69:6b:87:c0:41:74:e4:53:6b:c2:6b:75: ea:17:03:9d:82:95:f8:4c:c3:c1:d7:be:c6:5c:8b:f8:94:fc: 52:d4:73:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZw5egT/wgsfrtg5dLtl/hvKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczMzFkYmVkMDg5N2NjZTg1YzE0ODM3MWI0N2NjODA3ODJl NWU3MmIwHhcNMjYwMjA3MTkwMDIzWhcNMjYwMjA4MTkwMDIzWjAzMTEwLwYDVQQD EyhjZDE4YmVmNDc4ZWQyMGE2ZDRlYTFmMzYxNmU0Y2FhOGNkMmQ1NWNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtFWRnn1Gw1qhEuXls4UuwxbR0tXv wTJA8JMd9nwBlhIt8t/1qSaVeRNCyjLUUl+CS7PBO8x2nRHJQnrtp7OAljopv8Ri Oz55XDFELuvk4XI9Ob4nbBEMk2OSj72rA5lUGU8yWkC8DVqtXn/ji9j4JksW7ny5 IzB+CUsxhweF929m2VXfCyCMAZekXlUbQHMFwos+IGURIG11xFYY16dFpvaFuu77 WUihnHO+u0X6ZWdet1fJO0IfuUn+Hm09sWd7xEo5CqIKVcU/HTJ8MjuJHAm2H857 XhkMVfFC3/iKxonQzfNVj8PR220YE4+O1b96j3XV560XcJ4JdZGX6+HNGQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM0YvvR47SCm1OofNhbkyqjNLVXLMB8GA1UdIwQY MBaAFHMx2+0Il8zoXBSDcbR8yAeC5ecrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3pIYjdRaVh6T2hjRklOeHRIeklCNExsNXlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85YS9jNWYwYzMtMjJlNS00ODAxLTkwZmIt MDQ2NTA3MmU0MWEzLzEvY3pIYjdRaVh6T2hjRklOeHRIeklCNExsNXlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85YS9jNWYwYzMtMjJlNS00ODAxLTkwZmItMDQ2NTA3MmU0MWEz LzEvY3pIYjdRaVh6T2hjRklOeHRIeklCNExsNXlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg44ovgFw Lf9SlFOYh1Y9sdthEyrmkBmD/cheia42/d65wzTWdd2PqJ6J1hm/wKbYiFeII7EU GxXI2VcBzEXvVe5CaO/gmSNbnWY4UkY2u1H0dnrXMdlcXPTotsHBmpDdThZ38J9u mOlIR+vSsV6cbrqaA/L1Mcwdn3U0Cv5ZJc8poLQYtDh6ItDtttek6ANP4ItRt+9Q 0D30O9TrMaCmrIumCBckn1zmjFKpLSAWG8FEePQBxRPEQFAF5tk/upU4FuSV5eti m2wGSGPehAS7cm+aEl4HpUZfqEgCqLiLaWuHwEF05FNrwmt16hcDnYKV+EzDwde+ xlyL+JT8UtRzuw== -----END CERTIFICATE-----Generated at Sun Feb 8 04:52:10 2026 by rpki-client