This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft File: cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft (raw, json) Hash identifier: FAkqTpstFiB85L83kre2pYPM/U2VFhUBcMJSBFsxFmo= Subject key identifier: 37:FF:35:3C:70:5E:5D:94:F6:10:53:1B:B0:6B:39:02:A7:71:2F:A8 Authority key identifier: 71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1 Certificate issuer: /CN=7190f5d5f92a486362177a42b3d5efda20e220e1 Certificate serial: 019C43FE202779E2AD25E3E01E9A7943CE34 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft Manifest number: 1684 Signing time: Mon 09 Feb 2026 20:00:53 +0000 Manifest this update: Mon 09 Feb 2026 20:00:53 +0000 Manifest next update: Tue 10 Feb 2026 20:00:53 +0000 Files and hashes: 1: W0kDwuE8Wzw-iZxK0RP3iilB4OI.roa (hash: LAGYp6tmx7aAjzZBlxGzQ8k1I+/BB+mHmklMRyiCKgA=) 2: cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl (hash: r5QJVLAXsqofO8vfIKyIOtyAiEq/Kg1fk74Hpa+fU6U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:20:27:79:e2:ad:25:e3:e0:1e:9a:79:43:ce:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7190f5d5f92a486362177a42b3d5efda20e220e1 Validity Not Before: Feb 9 20:00:53 2026 GMT Not After : Feb 10 20:00:53 2026 GMT Subject: CN=37ff353c705e5d94f610531bb06b3902a7712fa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:21:0b:5a:a6:73:66:82:20:04:f2:ec:64:46: fb:44:a1:62:d8:10:2c:1b:40:c6:12:8c:5a:ca:3a: 79:30:c3:06:95:dd:96:a5:da:28:51:c9:14:e4:8e: 38:ec:9d:8f:7a:0a:db:43:45:50:50:d8:c4:c5:b6: 55:b8:6a:16:4e:a0:d7:93:7d:cb:34:41:cf:24:f1: d2:fc:d1:f6:ff:09:bf:6f:75:6f:44:a4:87:56:bd: f5:b1:e5:61:60:32:27:f1:59:d6:7a:c4:48:31:8c: ac:55:ec:4b:5e:f6:04:b9:09:c0:42:95:48:9b:11: 3b:7a:7d:ae:04:90:3c:38:4a:c8:4b:cb:c1:43:2b: ff:97:51:47:f5:9d:12:9f:c1:d0:0e:ea:05:d4:e1: e7:ea:8a:df:d8:22:a1:c9:82:85:0d:2b:9e:3b:9c: 6e:77:24:54:13:f2:ee:8b:3e:20:d4:4d:46:6a:e7: 9e:3a:79:80:f5:85:be:b8:ba:23:1a:eb:a8:b4:69: 77:2c:73:09:41:f3:0f:ab:d9:ef:77:59:76:1a:01: f5:f9:d8:19:26:bb:a7:b6:0e:23:58:09:aa:c9:7c: 00:c1:f8:cd:b6:e2:ea:92:40:76:8f:08:fd:d7:7c: 5e:ef:9c:78:d5:b3:96:18:2f:d7:90:a3:ca:11:a3: ec:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:FF:35:3C:70:5E:5D:94:F6:10:53:1B:B0:6B:39:02:A7:71:2F:A8 X509v3 Authority Key Identifier: keyid:71:90:F5:D5:F9:2A:48:63:62:17:7A:42:B3:D5:EF:DA:20:E2:20:E1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZD11fkqSGNiF3pCs9Xv2iDiIOE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b5/68a014-7dba-4430-8dde-01c827d6e0fe/1/cZD11fkqSGNiF3pCs9Xv2iDiIOE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:c0:45:09:66:cf:85:b0:29:f9:da:a1:db:66:9c:98:e0:97: ce:eb:78:95:35:33:f4:72:09:8d:e2:a6:98:47:2c:43:34:c4: 0b:f0:05:73:62:c8:1d:f7:28:76:9e:e7:7e:8d:df:a8:2b:a4: b8:1f:0f:1a:e4:e1:c5:94:0a:6f:9b:73:fc:19:e1:60:e3:8e: e3:a4:d6:56:b0:fa:19:b5:4f:f7:a4:02:5d:83:82:ed:71:bb: d9:fa:94:ec:9c:2e:54:ae:9a:0d:58:79:04:4f:6e:3c:e3:4a: 38:1a:82:9f:2e:d4:fe:51:4b:18:bb:78:3f:c8:de:10:15:bd: d8:f2:eb:b2:98:0f:6b:2c:8d:71:07:10:52:69:de:71:e4:c3: db:6b:a1:39:d7:01:20:e2:86:75:d4:90:45:20:4c:8e:39:ec: ef:77:5c:81:18:df:2f:64:a8:8f:b0:47:fd:2e:d4:ba:72:59: 9e:79:53:39:b9:59:fa:a2:40:33:9f:ff:b3:39:ef:22:80:dc: 6e:4a:36:15:df:4f:bb:41:70:bd:89:d0:47:ab:19:6e:07:ea: 65:4f:7d:b5:02:71:1f:08:32:0c:8f:1e:9f:7c:53:e1:41:43: 98:19:24:95:10:39:4e:63:ba:27:59:c9:48:4a:a7:ac:d5:22: 40:25:08:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/iAneeKtJePgHpp5Q840MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxOTBmNWQ1ZjkyYTQ4NjM2MjE3N2E0MmIzZDVlZmRhMjBl MjIwZTEwHhcNMjYwMjA5MjAwMDUzWhcNMjYwMjEwMjAwMDUzWjAzMTEwLwYDVQQD EygzN2ZmMzUzYzcwNWU1ZDk0ZjYxMDUzMWJiMDZiMzkwMmE3NzEyZmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5iELWqZzZoIgBPLsZEb7RKFi2BAs G0DGEoxayjp5MMMGld2WpdooUckU5I447J2PegrbQ0VQUNjExbZVuGoWTqDXk33L NEHPJPHS/NH2/wm/b3VvRKSHVr31seVhYDIn8VnWesRIMYysVexLXvYEuQnAQpVI mxE7en2uBJA8OErIS8vBQyv/l1FH9Z0Sn8HQDuoF1OHn6orf2CKhyYKFDSueO5xu dyRUE/Luiz4g1E1GaueeOnmA9YW+uLojGuuotGl3LHMJQfMPq9nvd1l2GgH1+dgZ Jruntg4jWAmqyXwAwfjNtuLqkkB2jwj913xe75x41bOWGC/XkKPKEaPs8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDf/NTxwXl2U9hBTG7BrOQKncS+oMB8GA1UdIwQY MBaAFHGQ9dX5KkhjYhd6QrPV79og4iDhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUt MDFjODI3ZDZlMGZlLzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNS82OGEwMTQtN2RiYS00NDMwLThkZGUtMDFjODI3ZDZlMGZl LzEvY1pEMTFma3FTR05pRjNwQ3M5WHYyaURpSU9FLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAesBFCWbP hbAp+dqh22acmOCXzut4lTUz9HIJjeKmmEcsQzTEC/AFc2LIHfcodp7nfo3fqCuk uB8PGuThxZQKb5tz/BnhYOOO46TWVrD6GbVP96QCXYOC7XG72fqU7JwuVK6aDVh5 BE9uPONKOBqCny7U/lFLGLt4P8jeEBW92PLrspgPayyNcQcQUmneceTD22uhOdcB IOKGddSQRSBMjjns73dcgRjfL2Soj7BH/S7UunJZnnlTOblZ+qJAM5//sznvIoDc bko2Fd9Pu0FwvYnQR6sZbgfqZU99tQJxHwgyDI8en3xT4UFDmBkklRA5TmO6J1nJ SEqnrNUiQCUIhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:12 2026 by rpki-client