This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft File: pzfikBac_OajOKZrykXP5jXRVEY.mft (raw, json) Hash identifier: PJLx9/Uecyl9x+IoNyuDDbpd2RTYadO0lxexFuF0CoY= Subject key identifier: 23:D5:8C:0A:23:96:96:AB:10:00:32:9B:4F:97:53:24:A1:85:E6:A8 Authority key identifier: A7:37:E2:90:16:9C:FC:E6:A3:38:A6:6B:CA:45:CF:E6:35:D1:54:46 Certificate issuer: /CN=a737e290169cfce6a338a66bca45cfe635d15446 Certificate serial: 019C4390991C5E5E134176FAE0A32C1E6D0B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 18:01:15 +0000 Manifest this update: Mon 09 Feb 2026 18:01:15 +0000 Manifest next update: Tue 10 Feb 2026 18:01:15 +0000 Files and hashes: 1: pzfikBac_OajOKZrykXP5jXRVEY.crl (hash: OX1D0aILpqLL+T6hlImorZBe59ak5ifdMzvGnREyEkM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.crl rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:99:1c:5e:5e:13:41:76:fa:e0:a3:2c:1e:6d:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a737e290169cfce6a338a66bca45cfe635d15446 Validity Not Before: Feb 9 18:01:15 2026 GMT Not After : Feb 10 18:01:15 2026 GMT Subject: CN=23d58c0a239696ab1000329b4f975324a185e6a8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:39:3f:dc:20:e0:15:e4:5a:58:df:e3:4b:97: 1e:8f:8e:41:f8:96:b2:da:52:18:1d:ab:fc:72:e2: 14:8b:f1:a0:96:9c:a8:07:3e:87:5c:e2:46:03:0c: 99:08:94:0e:2e:97:ff:42:7d:22:50:c0:e5:8e:f4: 3e:2f:09:74:b0:00:09:91:6d:d4:10:9a:bb:c6:1a: a0:7f:05:c9:b8:f6:c2:f0:f6:a6:2d:26:cb:6f:8a: df:1b:d4:20:4e:da:ee:29:db:e3:bb:a9:6b:19:5d: 9a:5e:5d:f2:a4:28:0e:38:13:73:84:ea:9b:86:1a: b0:05:46:a4:19:b9:46:99:4e:71:45:55:a1:cf:9b: 5c:ad:61:b0:39:f1:cf:88:86:98:3e:e2:10:5d:76: c2:5e:1a:37:d4:14:57:b8:47:fb:13:76:66:98:8b: c3:0e:41:03:7d:79:d3:4d:1b:68:94:f9:b5:b2:a0: dc:d9:0e:ab:25:ef:7b:d9:8d:51:d3:73:25:44:20: a0:94:05:85:b6:35:f4:08:3e:d9:11:79:b0:14:5b: 8f:ad:ac:8b:e4:d2:d6:97:5d:39:16:f7:07:aa:c8: 80:df:96:e4:5a:7b:cb:66:4c:25:c4:78:65:41:b9: 0f:dc:c8:6d:5c:f4:1c:e8:6a:d2:97:7a:b5:64:c3: 29:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:D5:8C:0A:23:96:96:AB:10:00:32:9B:4F:97:53:24:A1:85:E6:A8 X509v3 Authority Key Identifier: keyid:A7:37:E2:90:16:9C:FC:E6:A3:38:A6:6B:CA:45:CF:E6:35:D1:54:46 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pzfikBac_OajOKZrykXP5jXRVEY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b6/afa9af-fe5e-4023-ac0f-76d267a2489d/1/pzfikBac_OajOKZrykXP5jXRVEY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:27:ec:6d:7a:53:b2:2a:37:c7:7f:72:d6:de:59:02:66:8b: 2a:41:59:5c:26:54:c6:d2:48:4f:75:b7:02:c0:01:83:96:4c: 2e:0d:56:17:e2:84:ad:45:3e:a6:d3:2f:29:d9:9b:4b:4b:03: a6:3a:bf:46:7e:72:1b:26:43:eb:93:e7:94:56:2d:f7:3e:f7: aa:a3:3e:2d:a8:b9:8f:c9:0b:48:09:42:8c:28:ad:96:5f:9e: 54:72:32:6f:8a:13:f7:4a:e8:28:f5:a1:97:18:7a:5f:db:40: b1:79:e3:76:8e:ca:c2:8d:18:59:2f:51:bd:75:49:06:f9:fd: 09:e5:2c:79:2e:87:f8:1f:9c:46:9a:03:31:f3:3f:41:97:08: 5f:c8:d5:53:a1:09:d7:47:e2:ff:6b:4d:20:a5:9f:91:f3:94: c1:6f:98:5d:31:0e:82:26:42:91:41:d6:1a:e1:b9:38:e9:28: 3c:2e:17:30:8e:9d:c5:2a:e5:36:69:f3:89:56:8e:7e:83:7b: 5c:84:6b:0b:65:8e:47:11:56:f0:1e:e3:48:1a:ae:9a:93:99: d4:f0:9b:5e:df:78:a1:ad:f6:ba:58:66:e0:5e:74:bc:77:e0: f8:e3:53:31:22:64:cf:0c:d8:44:99:5e:29:9c:32:e7:0f:38: 98:06:87:e6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJkcXl4TQXb64KMsHm0LMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3MzdlMjkwMTY5Y2ZjZTZhMzM4YTY2YmNhNDVjZmU2MzVk MTU0NDYwHhcNMjYwMjA5MTgwMTE1WhcNMjYwMjEwMTgwMTE1WjAzMTEwLwYDVQQD EygyM2Q1OGMwYTIzOTY5NmFiMTAwMDMyOWI0Zjk3NTMyNGExODVlNmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTk/3CDgFeRaWN/jS5cej45B+Jay 2lIYHav8cuIUi/GglpyoBz6HXOJGAwyZCJQOLpf/Qn0iUMDljvQ+Lwl0sAAJkW3U EJq7xhqgfwXJuPbC8PamLSbLb4rfG9QgTtruKdvju6lrGV2aXl3ypCgOOBNzhOqb hhqwBUakGblGmU5xRVWhz5tcrWGwOfHPiIaYPuIQXXbCXho31BRXuEf7E3ZmmIvD DkEDfXnTTRtolPm1sqDc2Q6rJe972Y1R03MlRCCglAWFtjX0CD7ZEXmwFFuPrayL 5NLWl105FvcHqsiA35bkWnvLZkwlxHhlQbkP3MhtXPQc6GrSl3q1ZMMpEQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCPVjAojlparEAAym0+XUyShheaoMB8GA1UdIwQY MBaAFKc34pAWnPzmozima8pFz+Y10VRGMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcHpmaWtCYWNfT2FqT0tacnlrWFA1alhSVkVZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNi9hZmE5YWYtZmU1ZS00MDIzLWFjMGYt NzZkMjY3YTI0ODlkLzEvcHpmaWtCYWNfT2FqT0tacnlrWFA1alhSVkVZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNi9hZmE5YWYtZmU1ZS00MDIzLWFjMGYtNzZkMjY3YTI0ODlk LzEvcHpmaWtCYWNfT2FqT0tacnlrWFA1alhSVkVZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXCfsbXpT sio3x39y1t5ZAmaLKkFZXCZUxtJIT3W3AsABg5ZMLg1WF+KErUU+ptMvKdmbS0sD pjq/Rn5yGyZD65PnlFYt9z73qqM+Lai5j8kLSAlCjCitll+eVHIyb4oT90roKPWh lxh6X9tAsXnjdo7Kwo0YWS9RvXVJBvn9CeUseS6H+B+cRpoDMfM/QZcIX8jVU6EJ 10fi/2tNIKWfkfOUwW+YXTEOgiZCkUHWGuG5OOkoPC4XMI6dxSrlNmnziVaOfoN7 XIRrC2WORxFW8B7jSBqumpOZ1PCbXt94oa32ulhm4F50vHfg+ONTMSJkzwzYRJle KZwy5w84mAaH5g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:05 2026 by rpki-client