This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft File: zzKCScw17CfMEOGLiCxsE4l8hJc.mft (raw, json) Hash identifier: Pjx23DWKvhKZ4MFDFKqKFXGuXLGNGxHoNdgT5Nfhmq4= Subject key identifier: 69:C6:63:74:22:C9:8B:B1:2D:6F:23:ED:AC:4D:94:69:B5:D2:C8:A5 Authority key identifier: CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97 Certificate issuer: /CN=cf328249cc35ec27cc10e18b882c6c13897c8497 Certificate serial: 019C1C14B778FAE9FE946F552B6F966A54DE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft Manifest number: 0F95 Signing time: Mon 02 Feb 2026 02:00:45 +0000 Manifest this update: Mon 02 Feb 2026 02:00:45 +0000 Manifest next update: Tue 03 Feb 2026 02:00:45 +0000 Files and hashes: 1: Gaonav40tTJpKCNRA2Pgw8c6CJI.asa (hash: qQGsDuLfuc8HGPjQosjqKzgl1S/2LQUHdjWbkc+kEYQ=) 2: zzKCScw17CfMEOGLiCxsE4l8hJc.crl (hash: HSXh4suDhCQ1l0QtQRfC5nbD8x6WFkMJMn8IuXmZIKA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1c:14:b7:78:fa:e9:fe:94:6f:55:2b:6f:96:6a:54:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf328249cc35ec27cc10e18b882c6c13897c8497 Validity Not Before: Feb 2 02:00:45 2026 GMT Not After : Feb 3 02:00:45 2026 GMT Subject: CN=69c6637422c98bb12d6f23edac4d9469b5d2c8a5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:18:95:d9:fb:80:4b:52:6d:47:46:80:9f:9c: 60:f2:49:61:57:2f:04:66:b8:17:0c:4c:ab:e0:ba: ff:05:68:d5:39:68:67:c5:1f:10:98:cc:68:ad:4f: d7:15:d5:93:f9:37:88:d1:a8:98:66:0e:a7:06:e6: 86:6d:9c:d5:95:c7:63:cd:ac:83:9e:7d:86:41:72: b1:f7:53:42:e2:41:aa:39:6c:e1:47:49:ab:d7:2d: a1:fe:16:f2:fc:16:f0:fe:53:99:6c:87:a7:e4:78: 34:d4:f9:db:a6:d4:4a:a8:26:f3:52:f5:76:90:1f: b3:37:46:a7:8c:0f:96:ef:61:ea:54:19:59:36:db: 48:61:55:10:3d:2c:f1:48:3a:dd:1b:c8:f5:04:d4: d2:3f:75:21:fc:df:2b:9f:72:30:e0:a2:90:ff:6c: fa:7b:ad:e1:32:b1:bd:ad:0d:27:4f:54:31:d8:10: 4b:75:29:03:38:4f:0e:44:9e:7b:a8:f6:27:9f:1a: d4:b4:5c:d7:ae:28:b1:34:4a:a7:5d:47:54:2a:8c: 10:8a:24:90:a9:05:c8:b2:5b:db:44:92:fc:6d:e2: f1:da:22:88:87:0b:7f:ca:a9:e8:ba:75:27:e5:72: b2:49:b5:01:83:c1:51:7b:85:9f:8e:96:eb:bc:ba: c6:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:C6:63:74:22:C9:8B:B1:2D:6F:23:ED:AC:4D:94:69:B5:D2:C8:A5 X509v3 Authority Key Identifier: keyid:CF:32:82:49:CC:35:EC:27:CC:10:E1:8B:88:2C:6C:13:89:7C:84:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zzKCScw17CfMEOGLiCxsE4l8hJc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/27d409-7659-453e-b36f-297d52f0c283/1/zzKCScw17CfMEOGLiCxsE4l8hJc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:a1:69:e2:4b:e9:b9:f9:3d:27:c2:93:ba:e5:9c:83:1a:e8: 09:b8:fe:b5:17:ac:23:5d:99:bd:d3:54:f6:9e:9a:ae:81:c2: 40:95:e4:2d:37:cf:3b:c4:d4:fb:e7:5e:6a:6c:e8:95:49:85: 31:49:f4:4d:d3:b0:51:62:d5:b8:f9:a5:61:d0:90:17:68:9d: 2c:91:92:88:2c:44:c0:35:3a:dd:e4:9f:0a:50:b8:fc:2a:52: 6c:b6:3a:bf:1c:08:6b:06:86:86:69:95:54:3c:93:49:b0:e5: 5d:c3:54:fe:5e:9b:33:4b:79:f6:2b:3c:8d:30:23:6f:e9:db: 8b:03:09:d1:f1:b8:09:6f:a7:67:7e:3b:2c:da:82:f9:76:e2: fc:57:db:88:82:bf:35:54:d5:8d:9c:12:19:05:06:a0:65:d4: 0f:14:3c:fb:6f:04:98:ba:bd:bd:ea:b1:dc:6a:6d:34:43:ac: 08:66:62:01:f2:b7:70:d0:e0:22:8b:64:6b:22:91:ed:3f:80: eb:f3:48:fb:05:63:fe:38:c4:d2:d5:99:88:64:5d:2f:14:f0: eb:6a:9f:92:84:c2:39:0e:7d:41:17:1b:35:5a:6c:96:16:5a: 61:6b:30:a1:6c:2f:2a:63:9f:a5:f9:cc:74:8f:4b:ed:41:51: f4:53:dc:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwcFLd4+un+lG9VK2+WalTeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmMzI4MjQ5Y2MzNWVjMjdjYzEwZTE4Yjg4MmM2YzEzODk3 Yzg0OTcwHhcNMjYwMjAyMDIwMDQ1WhcNMjYwMjAzMDIwMDQ1WjAzMTEwLwYDVQQD Eyg2OWM2NjM3NDIyYzk4YmIxMmQ2ZjIzZWRhYzRkOTQ2OWI1ZDJjOGE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArBiV2fuAS1JtR0aAn5xg8klhVy8E ZrgXDEyr4Lr/BWjVOWhnxR8QmMxorU/XFdWT+TeI0aiYZg6nBuaGbZzVlcdjzayD nn2GQXKx91NC4kGqOWzhR0mr1y2h/hby/Bbw/lOZbIen5Hg01PnbptRKqCbzUvV2 kB+zN0anjA+W72HqVBlZNttIYVUQPSzxSDrdG8j1BNTSP3Uh/N8rn3Iw4KKQ/2z6 e63hMrG9rQ0nT1Qx2BBLdSkDOE8ORJ57qPYnnxrUtFzXriixNEqnXUdUKowQiiSQ qQXIslvbRJL8beLx2iKIhwt/yqnounUn5XKySbUBg8FRe4WfjpbrvLrGvQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGnGY3QiyYuxLW8j7axNlGm10silMB8GA1UdIwQY MBaAFM8ygknMNewnzBDhi4gsbBOJfISXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenpLQ1NjdzE3Q2ZNRU9HTGlDeHNFNGw4aEpjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS8yN2Q0MDktNzY1OS00NTNlLWIzNmYt Mjk3ZDUyZjBjMjgzLzEvenpLQ1NjdzE3Q2ZNRU9HTGlDeHNFNGw4aEpjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS8yN2Q0MDktNzY1OS00NTNlLWIzNmYtMjk3ZDUyZjBjMjgz LzEvenpLQ1NjdzE3Q2ZNRU9HTGlDeHNFNGw4aEpjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlKFp4kvp ufk9J8KTuuWcgxroCbj+tResI12ZvdNU9p6aroHCQJXkLTfPO8TU++deamzolUmF MUn0TdOwUWLVuPmlYdCQF2idLJGSiCxEwDU63eSfClC4/CpSbLY6vxwIawaGhmmV VDyTSbDlXcNU/l6bM0t59is8jTAjb+nbiwMJ0fG4CW+nZ347LNqC+Xbi/FfbiIK/ NVTVjZwSGQUGoGXUDxQ8+28EmLq9veqx3GptNEOsCGZiAfK3cNDgIotkayKR7T+A 6/NI+wVj/jjE0tWZiGRdLxTw62qfkoTCOQ59QRcbNVpslhZaYWswoWwvKmOfpfnM dI9L7UFR9FPc4A== -----END CERTIFICATE-----Generated at Mon Feb 2 08:17:22 2026 by rpki-client