This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft File: Z42bouOWhCO-_F7tBXGbMABX18s.mft (raw, json) Hash identifier: MtQyET+hRO4lhi8JN5id+2ljYP7UbhM8tp2SeYP8J/c= Subject key identifier: C0:2A:39:97:46:3D:C5:51:04:9E:71:50:BC:13:A6:E1:0C:AE:7C:4F Authority key identifier: 67:8D:9B:A2:E3:96:84:23:BE:FC:5E:ED:05:71:9B:30:00:57:D7:CB Certificate issuer: /CN=678d9ba2e3968423befc5eed05719b300057d7cb Certificate serial: 019C4321E5FF908474F51BA302925F2638B4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z42bouOWhCO-_F7tBXGbMABX18s.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft Manifest number: 0506 Signing time: Mon 09 Feb 2026 16:00:20 +0000 Manifest this update: Mon 09 Feb 2026 16:00:20 +0000 Manifest next update: Tue 10 Feb 2026 16:00:20 +0000 Files and hashes: 1: Z42bouOWhCO-_F7tBXGbMABX18s.crl (hash: pUo2arwwGw++vcSZ2AKuGSVIa40pOhokNmlaFtCOS48=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.crl rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft rsync://rpki.ripe.net/repository/DEFAULT/Z42bouOWhCO-_F7tBXGbMABX18s.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e5:ff:90:84:74:f5:1b:a3:02:92:5f:26:38:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=678d9ba2e3968423befc5eed05719b300057d7cb Validity Not Before: Feb 9 16:00:20 2026 GMT Not After : Feb 10 16:00:20 2026 GMT Subject: CN=c02a3997463dc551049e7150bc13a6e10cae7c4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:a5:f9:3a:8e:0b:35:40:25:06:70:e5:31:f5: 5d:f8:e2:7f:82:48:d8:9a:75:37:e5:86:89:92:fc: 25:80:b9:b0:2f:c7:96:cf:04:13:b0:de:5f:bd:13: 04:2c:f7:c1:42:8d:b9:16:b2:1a:fa:39:a8:f3:19: d2:f7:61:0c:5f:52:d3:9d:35:23:c0:45:2b:85:29: 6c:9f:2d:f4:99:b3:e7:98:ee:af:3d:98:ca:c9:6b: de:28:a1:62:86:52:d4:cd:56:b8:0a:d6:eb:16:7b: 88:7a:6f:6c:13:1a:9f:17:ce:42:73:52:9a:b9:13: 22:10:79:27:aa:97:0e:4f:a3:67:ef:0c:48:70:17: d0:ef:de:9b:00:3b:2c:a2:c2:25:b6:57:6c:20:23: 63:01:c7:42:23:21:7f:55:d8:19:3e:70:54:90:61: f0:a8:67:b7:82:88:be:4c:97:4b:3b:1c:52:e9:8e: b5:7a:38:3b:e9:54:9c:34:5e:0a:f4:46:b2:16:11: 5a:d1:8d:58:05:cb:87:62:dd:06:52:f9:3d:a2:7c: c5:da:81:ad:37:d2:86:de:1b:42:cd:ea:22:a4:dd: 6e:99:7e:37:7a:8b:65:f9:81:a5:ea:d1:ac:e0:3f: d7:0c:2d:d6:ea:30:02:30:a0:05:10:a4:4c:bb:8e: 81:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:2A:39:97:46:3D:C5:51:04:9E:71:50:BC:13:A6:E1:0C:AE:7C:4F X509v3 Authority Key Identifier: keyid:67:8D:9B:A2:E3:96:84:23:BE:FC:5E:ED:05:71:9B:30:00:57:D7:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z42bouOWhCO-_F7tBXGbMABX18s.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b7/d15b7f-708f-4155-8d31-c80a723d34f7/1/Z42bouOWhCO-_F7tBXGbMABX18s.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:b7:2b:ed:d4:50:65:94:45:65:96:29:34:2c:5c:c5:2a:f5: 74:6d:c1:5f:a0:29:1b:21:27:4c:a9:29:af:63:1f:3d:a1:0d: fb:27:bd:94:6d:f4:be:35:cf:63:25:55:4c:49:60:4d:3c:cf: 95:c2:88:bb:12:0c:83:c4:91:01:2d:39:cc:bd:35:38:c8:87: 04:86:84:56:e3:32:36:9f:c4:22:ea:de:89:7f:69:e1:d1:84: 81:8a:8c:88:a3:2e:a3:25:2d:37:22:2a:19:56:3e:d6:42:c1: 63:85:b3:1f:9f:68:07:35:70:53:fd:81:c1:be:4e:e3:a9:4b: a3:f8:67:14:3f:94:74:14:78:f3:e2:71:96:f6:61:e9:c3:f7: a2:2c:dc:e5:a1:5b:3d:69:23:fb:cc:0b:dd:6c:76:24:c0:b5: dd:51:ea:0b:32:93:83:46:01:b8:e8:e3:69:c0:99:35:e0:01: 3f:83:3a:fe:be:93:c7:4b:1a:83:14:b5:cb:4d:5e:01:74:cd: 56:a6:cc:1a:11:15:ab:14:a8:a5:0f:ad:68:ff:16:d7:8a:6d: 0c:46:6e:07:6c:0d:65:75:2f:72:9b:38:e0:db:f0:c2:d4:1d: 74:3a:d0:c3:39:da:69:79:0b:c0:6e:19:34:b3:50:7a:0b:03: 31:b8:46:4d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIeX/kIR09RujApJfJji0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3OGQ5YmEyZTM5Njg0MjNiZWZjNWVlZDA1NzE5YjMwMDA1 N2Q3Y2IwHhcNMjYwMjA5MTYwMDIwWhcNMjYwMjEwMTYwMDIwWjAzMTEwLwYDVQQD EyhjMDJhMzk5NzQ2M2RjNTUxMDQ5ZTcxNTBiYzEzYTZlMTBjYWU3YzRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5aX5Oo4LNUAlBnDlMfVd+OJ/gkjY mnU35YaJkvwlgLmwL8eWzwQTsN5fvRMELPfBQo25FrIa+jmo8xnS92EMX1LTnTUj wEUrhSlsny30mbPnmO6vPZjKyWveKKFihlLUzVa4CtbrFnuIem9sExqfF85Cc1Ka uRMiEHknqpcOT6Nn7wxIcBfQ796bADssosIltldsICNjAcdCIyF/VdgZPnBUkGHw qGe3goi+TJdLOxxS6Y61ejg76VScNF4K9EayFhFa0Y1YBcuHYt0GUvk9onzF2oGt N9KG3htCzeoipN1umX43eotl+YGl6tGs4D/XDC3W6jACMKAFEKRMu46BqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMAqOZdGPcVRBJ5xULwTpuEMrnxPMB8GA1UdIwQY MBaAFGeNm6LjloQjvvxe7QVxmzAAV9fLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjQyYm91T1doQ08tX0Y3dEJYR2JNQUJYMThzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iNy9kMTViN2YtNzA4Zi00MTU1LThkMzEt YzgwYTcyM2QzNGY3LzEvWjQyYm91T1doQ08tX0Y3dEJYR2JNQUJYMThzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iNy9kMTViN2YtNzA4Zi00MTU1LThkMzEtYzgwYTcyM2QzNGY3 LzEvWjQyYm91T1doQ08tX0Y3dEJYR2JNQUJYMThzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7cr7dRQ ZZRFZZYpNCxcxSr1dG3BX6ApGyEnTKkpr2MfPaEN+ye9lG30vjXPYyVVTElgTTzP lcKIuxIMg8SRAS05zL01OMiHBIaEVuMyNp/EIureiX9p4dGEgYqMiKMuoyUtNyIq GVY+1kLBY4WzH59oBzVwU/2Bwb5O46lLo/hnFD+UdBR48+JxlvZh6cP3oizc5aFb PWkj+8wL3Wx2JMC13VHqCzKTg0YBuOjjacCZNeABP4M6/r6Tx0sagxS1y01eAXTN VqbMGhEVqxSopQ+taP8W14ptDEZuB2wNZXUvcps44NvwwtQddDrQwznaaXkLwG4Z NLNQegsDMbhGTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:59 2026 by rpki-client