This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft File: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft (raw, json) Hash identifier: o64Kj5p+WFmloOaBjXxcTXciCArL0mLYBCjxpdvunYw= Subject key identifier: 6C:2E:BA:B7:D2:1E:25:85:0A:F8:F0:D1:EE:E2:09:E0:34:FC:F1:3E Authority key identifier: 65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB Certificate issuer: /CN=65226ee5ea0406592df975c6f4c84f10f14d15cb Certificate serial: 019C439085DB97E64B325C80F37025435C87 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft Manifest number: 1751 Signing time: Mon 09 Feb 2026 18:01:10 +0000 Manifest this update: Mon 09 Feb 2026 18:01:10 +0000 Manifest next update: Tue 10 Feb 2026 18:01:10 +0000 Files and hashes: 1: USooHDGW_QeqYRyqa6kck-Wwdw8.roa (hash: VauOA3CJ0j4kbwlbCKNmu8qN0LtwGSRo+52ifzBfLcs=) 2: ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl (hash: 41j3UMo/ZlS2Jj+Q6y72JMDR/OPXr6GN0EC5y8VD6UM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:85:db:97:e6:4b:32:5c:80:f3:70:25:43:5c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65226ee5ea0406592df975c6f4c84f10f14d15cb Validity Not Before: Feb 9 18:01:10 2026 GMT Not After : Feb 10 18:01:10 2026 GMT Subject: CN=6c2ebab7d21e25850af8f0d1eee209e034fcf13e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:69:b5:95:ea:ab:ae:b9:41:06:c1:3d:d9:b5: ed:83:1a:c4:20:a7:bc:23:a3:6a:96:71:c4:ae:16: 71:f3:19:c1:06:b8:93:0a:09:1b:ac:37:d4:88:4a: 9b:d8:d1:b1:0a:ca:37:ec:5f:e3:a2:61:24:96:2b: 2f:3e:76:20:f1:ae:af:f5:02:c1:f2:24:e0:9d:73: 69:eb:42:29:32:a1:9b:5c:e9:5f:6a:04:17:cc:53: 43:ba:7d:62:61:8e:cd:e9:41:e0:3f:be:78:fc:9b: b0:01:8a:f3:bf:04:76:aa:b7:29:dc:b6:3c:4c:54: 79:f8:1c:31:e5:c8:5d:c6:f3:f7:7a:68:a0:c8:a5: 00:9f:74:07:cc:2e:4d:f5:9a:14:59:8f:3a:2d:da: 00:9c:f8:e5:70:15:76:ec:7d:b8:46:9b:6d:86:b8: 54:85:d1:63:e5:92:50:2e:37:65:0a:11:49:e5:98: 75:a2:f8:d8:d9:ce:a7:8d:b8:bb:42:0b:fa:33:da: 8f:6d:a9:95:19:c1:ff:6d:ab:de:3d:53:a7:ad:f1: 8b:5e:d1:76:3e:7d:91:99:0c:59:22:17:48:1f:76: 7a:1e:b5:ca:dc:3c:3c:08:b5:6e:ff:58:5c:89:9b: 32:04:9b:9e:8a:5d:82:75:22:1a:98:4d:01:61:94: ee:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:2E:BA:B7:D2:1E:25:85:0A:F8:F0:D1:EE:E2:09:E0:34:FC:F1:3E X509v3 Authority Key Identifier: keyid:65:22:6E:E5:EA:04:06:59:2D:F9:75:C6:F4:C8:4F:10:F1:4D:15:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9b/594fa8-d315-4a38-a631-dec02488c37c/1/ZSJu5eoEBlkt-XXG9MhPEPFNFcs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:85:67:76:55:3e:55:d7:fb:18:bd:b7:80:1f:1c:fd:48:69: 19:40:21:fe:60:00:16:7d:a2:ce:89:13:99:0c:96:9f:7e:00: 9c:d1:f2:89:93:ac:56:d4:9b:c8:93:1a:12:ba:3d:1b:49:ea: 5a:80:a2:7f:39:59:9f:a4:a1:17:0c:06:7a:fd:bc:a1:9a:91: 6c:ec:9e:85:25:26:da:0b:45:cf:80:cf:31:e9:df:a6:0b:1b: eb:fd:5d:2b:9e:eb:6c:d1:3a:14:76:7c:01:7b:3f:70:f9:af: 35:3b:c0:37:88:ae:39:82:a3:7b:6d:94:d2:c6:9c:44:9e:58: 41:f7:04:2e:62:20:f3:80:96:18:7f:15:40:d1:ef:cf:8d:3f: cf:c0:41:c9:9c:d1:63:a8:6b:bd:7e:1f:6a:08:ed:90:38:a0: aa:0b:81:9a:cd:6e:f7:28:e6:b3:41:1f:48:6e:cb:b8:6d:f7: 1e:5c:6f:d2:fc:ee:4d:8b:21:71:c5:d1:f9:8f:2d:99:7d:0c: 40:a3:7f:f1:ee:63:32:55:af:2a:3d:b5:1d:3b:3b:27:b7:8b: 4e:a8:75:c0:03:5b:19:c7:1a:b6:4a:b7:1e:37:df:48:00:2a: bd:9d:44:64:19:65:b8:ed:51:ba:1d:bc:9a:3f:fe:48:03:4e: 86:59:f7:50 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkIXbl+ZLMlyA83AlQ1yHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY1MjI2ZWU1ZWEwNDA2NTkyZGY5NzVjNmY0Yzg0ZjEwZjE0 ZDE1Y2IwHhcNMjYwMjA5MTgwMTEwWhcNMjYwMjEwMTgwMTEwWjAzMTEwLwYDVQQD Eyg2YzJlYmFiN2QyMWUyNTg1MGFmOGYwZDFlZWUyMDllMDM0ZmNmMTNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuGm1leqrrrlBBsE92bXtgxrEIKe8 I6NqlnHErhZx8xnBBriTCgkbrDfUiEqb2NGxCso37F/jomEklisvPnYg8a6v9QLB 8iTgnXNp60IpMqGbXOlfagQXzFNDun1iYY7N6UHgP754/JuwAYrzvwR2qrcp3LY8 TFR5+Bwx5chdxvP3emigyKUAn3QHzC5N9ZoUWY86LdoAnPjlcBV27H24RptthrhU hdFj5ZJQLjdlChFJ5Zh1ovjY2c6njbi7Qgv6M9qPbamVGcH/bavePVOnrfGLXtF2 Pn2RmQxZIhdIH3Z6HrXK3Dw8CLVu/1hciZsyBJueil2CdSIamE0BYZTukwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGwuurfSHiWFCvjw0e7iCeA0/PE+MB8GA1UdIwQY MBaAFGUibuXqBAZZLfl1xvTITxDxTRXLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWlNKdTVlb0VCbGt0LVhYRzlNaFBFUEZORmNzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Yi81OTRmYTgtZDMxNS00YTM4LWE2MzEt ZGVjMDI0ODhjMzdjLzEvWlNKdTVlb0VCbGt0LVhYRzlNaFBFUEZORmNzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Yi81OTRmYTgtZDMxNS00YTM4LWE2MzEtZGVjMDI0ODhjMzdj LzEvWlNKdTVlb0VCbGt0LVhYRzlNaFBFUEZORmNzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaoVndlU+ Vdf7GL23gB8c/UhpGUAh/mAAFn2izokTmQyWn34AnNHyiZOsVtSbyJMaEro9G0nq WoCifzlZn6ShFwwGev28oZqRbOyehSUm2gtFz4DPMenfpgsb6/1dK57rbNE6FHZ8 AXs/cPmvNTvAN4iuOYKje22U0sacRJ5YQfcELmIg84CWGH8VQNHvz40/z8BByZzR Y6hrvX4fagjtkDigqguBms1u9yjms0EfSG7LuG33Hlxv0vzuTYshccXR+Y8tmX0M QKN/8e5jMlWvKj21HTs7J7eLTqh1wANbGccatkq3HjffSAAqvZ1EZBlluO1Ruh28 mj/+SANOhln3UA== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:24 2026 by rpki-client