This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.mft File: VzBZUuVZXOl-QzVLLv3cewc72ck.mft (raw, json) Hash identifier: ieXvXxu93Qcdm/GVgZvq4wtXf7/QruYBjekePujHZ10= Subject key identifier: 88:6E:06:F0:F6:4C:50:2C:DC:2A:89:5F:41:D4:3A:05:A9:90:37:09 Authority key identifier: 57:30:59:52:E5:59:5C:E9:7E:43:35:4B:2E:FD:DC:7B:07:3B:D9:C9 Certificate issuer: /CN=57305952e5595ce97e43354b2efddc7b073bd9c9 Certificate serial: 019C4435083565545D12C67789BC38FC4073 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/VzBZUuVZXOl-QzVLLv3cewc72ck.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.mft Manifest number: 012A Signing time: Mon 09 Feb 2026 21:00:51 +0000 Manifest this update: Mon 09 Feb 2026 21:00:51 +0000 Manifest next update: Tue 10 Feb 2026 21:00:51 +0000 Files and hashes: 1: VzBZUuVZXOl-QzVLLv3cewc72ck.crl (hash: RxoPm7PJuB9TZVJbk5u0+TvzwvVMV4aKxlQbAY1w740=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.crl rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.mft rsync://rpki.ripe.net/repository/DEFAULT/VzBZUuVZXOl-QzVLLv3cewc72ck.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:00:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:08:35:65:54:5d:12:c6:77:89:bc:38:fc:40:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=57305952e5595ce97e43354b2efddc7b073bd9c9 Validity Not Before: Feb 9 21:00:51 2026 GMT Not After : Feb 10 21:00:51 2026 GMT Subject: CN=886e06f0f64c502cdc2a895f41d43a05a9903709 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:06:75:81:03:18:d3:03:dc:78:1e:67:a2:cb: 00:f7:4f:14:e7:3f:65:1f:32:33:c7:03:9d:a7:0c: 75:24:a5:c4:17:0e:40:b1:a7:e3:65:d7:15:b3:dc: 89:26:8c:ed:30:93:ec:75:21:50:f4:1c:4f:6c:5c: 86:7a:d9:42:65:8f:fc:7e:af:ff:e5:cb:f7:c7:0b: 94:bf:80:68:e7:c5:a3:ff:39:79:b4:48:89:f5:4e: 8e:82:57:bb:f6:37:45:9c:92:05:50:cc:b2:14:91: 27:0a:68:27:b1:c9:a1:cf:f6:26:5f:ee:39:33:e8: e4:a0:51:e2:ff:a1:61:14:33:9d:5c:79:a4:cb:8e: 68:0a:20:76:85:cb:6d:82:c8:ca:82:a1:88:60:5d: f0:7a:4c:8e:35:63:f6:6e:d1:2e:30:ed:03:6f:3c: 64:22:33:bd:ca:88:f3:5d:d2:22:98:30:3d:0a:71: 42:b4:ef:06:a8:64:b9:d5:09:1a:24:29:7a:ab:39: 66:37:3d:4b:94:dd:cf:b9:e5:55:12:ef:7d:57:07: 10:92:c9:1b:6b:ce:db:d6:e4:52:a3:7d:9b:54:fc: 1b:4b:be:97:2f:99:f8:3c:e9:c8:20:3f:85:e9:61: dd:30:a5:65:ed:98:46:19:55:e4:47:66:0b:60:c6: 47:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:6E:06:F0:F6:4C:50:2C:DC:2A:89:5F:41:D4:3A:05:A9:90:37:09 X509v3 Authority Key Identifier: keyid:57:30:59:52:E5:59:5C:E9:7E:43:35:4B:2E:FD:DC:7B:07:3B:D9:C9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/VzBZUuVZXOl-QzVLLv3cewc72ck.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b9:0a:27:d8:87:5f:90:ad:a8:78:c5:6d:e7:12:cd:23:e5: 5a:6c:a9:a0:f2:03:50:56:c6:48:56:29:73:bd:c4:86:96:06: 9d:a9:a1:39:3a:3f:01:53:ab:25:a5:5a:39:41:80:a2:1e:d6: 33:6c:af:bb:95:53:cd:a8:90:08:2e:2f:7d:43:81:b6:35:55: 1e:4d:0b:36:a9:69:9d:66:b4:a6:e5:3a:6f:2d:63:4a:c3:4d: d2:c5:23:0b:79:b9:b8:c8:b2:ab:c4:16:99:0f:22:db:73:d6: 69:9b:68:56:f4:9b:dd:9f:5d:4c:5d:db:25:b2:7c:67:b3:eb: ec:55:b4:aa:af:87:80:a3:a2:fa:25:86:e2:19:86:28:2b:fa: f7:a9:84:a1:57:7d:36:d6:7e:7f:07:e9:bd:5c:a5:0c:dc:42: da:e9:9a:0c:b5:78:02:9a:9d:fb:e4:1c:15:13:23:50:ee:06: 84:e6:d1:f5:b7:58:5f:65:da:b2:a7:88:e2:11:0a:ff:18:65: af:26:69:3f:07:51:15:6f:46:83:d1:bf:a8:92:4b:c5:1f:22: ff:08:e3:d3:af:3f:6b:e5:a5:57:10:a7:a6:22:5d:02:60:f7: 58:aa:0a:b5:88:d3:86:a9:63:90:83:9e:c7:06:89:d8:cb:3f: 45:b1:36:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENQg1ZVRdEsZ3ibw4/EBzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDU3MzA1OTUyZTU1OTVjZTk3ZTQzMzU0YjJlZmRkYzdiMDcz YmQ5YzkwHhcNMjYwMjA5MjEwMDUxWhcNMjYwMjEwMjEwMDUxWjAzMTEwLwYDVQQD Eyg4ODZlMDZmMGY2NGM1MDJjZGMyYTg5NWY0MWQ0M2EwNWE5OTAzNzA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgZ1gQMY0wPceB5nossA908U5z9l HzIzxwOdpwx1JKXEFw5AsafjZdcVs9yJJoztMJPsdSFQ9BxPbFyGetlCZY/8fq// 5cv3xwuUv4Bo58Wj/zl5tEiJ9U6Ogle79jdFnJIFUMyyFJEnCmgnscmhz/YmX+45 M+jkoFHi/6FhFDOdXHmky45oCiB2hcttgsjKgqGIYF3wekyONWP2btEuMO0Dbzxk IjO9yojzXdIimDA9CnFCtO8GqGS51QkaJCl6qzlmNz1LlN3PueVVEu99VwcQkskb a87b1uRSo32bVPwbS76XL5n4POnIID+F6WHdMKVl7ZhGGVXkR2YLYMZHhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIhuBvD2TFAs3CqJX0HUOgWpkDcJMB8GA1UdIwQY MBaAFFcwWVLlWVzpfkM1Sy793HsHO9nJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVnpCWlV1VlpYT2wtUXpWTEx2M2Nld2M3MmNrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNC9iOTQ1YzAtNGUyOS00YTE1LWJkZjYt MmYzYmUwNjI4NThkLzEvVnpCWlV1VlpYT2wtUXpWTEx2M2Nld2M3MmNrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNC9iOTQ1YzAtNGUyOS00YTE1LWJkZjYtMmYzYmUwNjI4NThk LzEvVnpCWlV1VlpYT2wtUXpWTEx2M2Nld2M3MmNrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX7kKJ9iH X5CtqHjFbecSzSPlWmypoPIDUFbGSFYpc73EhpYGnamhOTo/AVOrJaVaOUGAoh7W M2yvu5VTzaiQCC4vfUOBtjVVHk0LNqlpnWa0puU6by1jSsNN0sUjC3m5uMiyq8QW mQ8i23PWaZtoVvSb3Z9dTF3bJbJ8Z7Pr7FW0qq+HgKOi+iWG4hmGKCv696mEoVd9 NtZ+fwfpvVylDNxC2umaDLV4Apqd++QcFRMjUO4GhObR9bdYX2XasqeI4hEK/xhl ryZpPwdRFW9Gg9G/qJJLxR8i/wjj068/a+WlVxCnpiJdAmD3WKoKtYjThqljkIOe xwaJ2Ms/RbE2Og== -----END CERTIFICATE-----Generated at Tue Feb 10 06:09:58 2026 by rpki-client