This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft File: ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft (raw, json) Hash identifier: A+1IosF9fbeipOPA7r8GA0rTWaCbccZR+CQZ3UWYOQg= Subject key identifier: C5:8F:6B:41:FD:93:95:C0:C7:25:1A:49:35:56:42:53:FA:E1:19:99 Authority key identifier: CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4 Certificate issuer: /CN=ced410ea6867ef63f959bad6b21b691cadff87d4 Certificate serial: 019C42B49F24DE0D2A4EAFFE0B500798DB9F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 14:00:59 +0000 Manifest this update: Mon 09 Feb 2026 14:00:59 +0000 Manifest next update: Tue 10 Feb 2026 14:00:59 +0000 Files and hashes: 1: HwU_8edYuJ4rCmR5x6ykFn1t0do.roa (hash: 01KdeA2Gl7MQNNjhhKHuUHDnBDM56k334jcMgundfH4=) 2: ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl (hash: FB+V3xzb/1qo1vwulEIc9KPQ1+Zv2Q8DSEp2n9QFoM8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:9f:24:de:0d:2a:4e:af:fe:0b:50:07:98:db:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ced410ea6867ef63f959bad6b21b691cadff87d4 Validity Not Before: Feb 9 14:00:59 2026 GMT Not After : Feb 10 14:00:59 2026 GMT Subject: CN=c58f6b41fd9395c0c7251a4935564253fae11999 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e5:4b:92:d7:05:ed:dc:d0:43:49:da:76:00: 7e:c7:30:39:5b:cb:c4:20:b2:e6:27:a8:11:c7:b5: fd:25:29:10:a3:b3:f0:12:30:6e:6a:81:d1:58:5f: 02:94:92:36:a2:cf:d9:cf:59:14:6e:0c:f7:9e:a7: 20:43:18:ae:81:e1:36:17:b5:bf:3d:30:fe:d2:ba: ce:10:59:c4:61:86:d3:fc:7d:70:19:57:d7:6f:9c: d7:ce:1a:86:f7:ce:5d:e7:b6:41:71:b8:9d:54:e8: 98:9a:a6:a6:5e:f7:a0:db:c8:f8:d1:fe:4f:83:86: d2:83:a4:9a:42:5d:7e:f0:b7:35:69:55:51:d6:11: a8:a3:17:94:4b:cc:09:3e:22:a6:dd:45:82:fb:d4: 9a:09:ef:a4:57:4d:d1:e1:88:26:83:fa:8f:29:57: fd:65:ef:3b:62:1e:3b:c1:5e:e5:21:a8:60:e4:75: c7:6c:20:9e:aa:33:27:21:6b:ba:18:ab:b7:2f:8d: 8e:01:d9:52:8a:24:a8:b4:b5:fb:78:f8:49:71:b7: f5:1e:21:98:7a:5b:22:9a:71:ce:72:a0:29:af:02: fa:ba:e9:ad:b3:c9:af:35:05:75:5d:85:6d:75:97: aa:6e:5e:8a:eb:eb:66:79:c0:90:8a:8b:42:c1:c7: a1:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:8F:6B:41:FD:93:95:C0:C7:25:1A:49:35:56:42:53:FA:E1:19:99 X509v3 Authority Key Identifier: keyid:CE:D4:10:EA:68:67:EF:63:F9:59:BA:D6:B2:1B:69:1C:AD:FF:87:D4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ztQQ6mhn72P5WbrWshtpHK3_h9Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/12fc41-89dd-4a21-aa34-76525841dc28/1/ztQQ6mhn72P5WbrWshtpHK3_h9Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:11:07:e5:11:a9:f5:6b:99:55:b3:c8:e5:0f:3e:fc:5c:8a: d0:58:86:23:b2:97:bd:f0:ad:62:ce:3d:33:f0:00:7d:7d:a5: 7e:52:7c:cc:22:57:27:1b:fd:e3:44:64:45:18:1c:d7:47:88: b1:11:5e:49:26:80:b1:0b:d2:94:40:4a:4b:22:bb:45:ed:05: 84:bf:82:fa:2c:ae:a3:c8:2b:43:39:41:7a:e4:e5:22:74:d8: 75:be:e2:54:6a:ed:26:01:dc:21:84:cc:5d:7a:12:8a:9c:1b: e8:5b:97:5c:df:47:22:d7:ca:04:e5:b8:23:55:fa:1d:bb:00: 3a:bc:57:a9:72:db:d8:a2:ff:48:cc:20:10:49:7b:31:10:55: b9:3d:2a:26:a6:2f:d4:5b:da:4d:09:6f:95:15:1c:5e:8e:e2: 7b:8d:70:de:76:e1:4a:11:6e:03:bd:5a:98:07:bb:d0:43:29: c1:b8:00:cd:3a:61:c6:55:e8:67:35:eb:9f:a7:62:1f:84:b9: cd:82:ea:36:fb:8f:50:a3:b5:09:7c:2c:e1:48:ec:99:05:76: ec:d9:e7:29:95:5e:23:f2:e9:a4:36:ec:a2:de:e6:ce:fc:ee: 68:00:1d:3b:56:1a:24:78:e0:d6:1d:89:93:1a:81:52:d5:dc: 7a:34:0f:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtJ8k3g0qTq/+C1AHmNufMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlZDQxMGVhNjg2N2VmNjNmOTU5YmFkNmIyMWI2OTFjYWRm Zjg3ZDQwHhcNMjYwMjA5MTQwMDU5WhcNMjYwMjEwMTQwMDU5WjAzMTEwLwYDVQQD EyhjNThmNmI0MWZkOTM5NWMwYzcyNTFhNDkzNTU2NDI1M2ZhZTExOTk5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuVLktcF7dzQQ0nadgB+xzA5W8vE ILLmJ6gRx7X9JSkQo7PwEjBuaoHRWF8ClJI2os/Zz1kUbgz3nqcgQxiugeE2F7W/ PTD+0rrOEFnEYYbT/H1wGVfXb5zXzhqG985d57ZBcbidVOiYmqamXveg28j40f5P g4bSg6SaQl1+8Lc1aVVR1hGooxeUS8wJPiKm3UWC+9SaCe+kV03R4Ygmg/qPKVf9 Ze87Yh47wV7lIahg5HXHbCCeqjMnIWu6GKu3L42OAdlSiiSotLX7ePhJcbf1HiGY elsimnHOcqAprwL6uumts8mvNQV1XYVtdZeqbl6K6+tmecCQiotCwcehXQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMWPa0H9k5XAxyUaSTVWQlP64RmZMB8GA1UdIwQY MBaAFM7UEOpoZ+9j+Vm61rIbaRyt/4fUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenRRUTZtaG43MlA1V2JyV3NodHBISzNfaDlRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy8xMmZjNDEtODlkZC00YTIxLWFhMzQt NzY1MjU4NDFkYzI4LzEvenRRUTZtaG43MlA1V2JyV3NodHBISzNfaDlRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy8xMmZjNDEtODlkZC00YTIxLWFhMzQtNzY1MjU4NDFkYzI4 LzEvenRRUTZtaG43MlA1V2JyV3NodHBISzNfaDlRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAExEH5RGp 9WuZVbPI5Q8+/FyK0FiGI7KXvfCtYs49M/AAfX2lflJ8zCJXJxv940RkRRgc10eI sRFeSSaAsQvSlEBKSyK7Re0FhL+C+iyuo8grQzlBeuTlInTYdb7iVGrtJgHcIYTM XXoSipwb6FuXXN9HItfKBOW4I1X6HbsAOrxXqXLb2KL/SMwgEEl7MRBVuT0qJqYv 1FvaTQlvlRUcXo7ie41w3nbhShFuA71amAe70EMpwbgAzTphxlXoZzXrn6diH4S5 zYLqNvuPUKO1CXws4UjsmQV27NnnKZVeI/LppDbsot7mzvzuaAAdO1YaJHjg1h2J kxqBUtXcejQPJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:45 2026 by rpki-client