This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft File: zfDoJMYqWSimUCFO8z6Md-fB_40.mft (raw, json) Hash identifier: RPL4zRCwUXIQfavgejZX30/ne70iD/rkkgEUHLzINok= Subject key identifier: 38:24:4A:6A:8D:0D:D8:C2:F5:5B:C4:21:14:BF:E3:5E:86:53:EB:7B Authority key identifier: CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D Certificate issuer: /CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d Certificate serial: 019C43226E6F614B1075CB1132F13D2E0797 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft Manifest number: 11B1 Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: zfDoJMYqWSimUCFO8z6Md-fB_40.crl (hash: 74u4WQUR3pNv7yqPYr0jIo1SlQkfG8UKpSBFROFwakY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6e:6f:61:4b:10:75:cb:11:32:f1:3d:2e:07:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cdf0e824c62a5928a650214ef33e8c77e7c1ff8d Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=38244a6a8d0dd8c2f55bc42114bfe35e8653eb7b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c2:37:e7:30:46:22:7e:3f:30:44:cf:b5:c0: 7d:98:26:c8:f1:b4:cd:24:c4:de:4d:e9:9e:3a:db: 62:e2:6e:37:7f:e9:83:10:72:4a:a4:4a:e0:bc:7e: 64:9d:80:80:a9:cf:df:cb:2e:c3:0a:a4:39:22:6c: 76:59:d2:8d:f9:d4:45:b6:4f:98:d6:a1:3e:cd:c5: de:0b:94:7e:b6:3f:d0:40:d9:f9:34:11:13:ae:d1: 7b:02:aa:d7:ea:32:63:4e:1e:c7:e6:c3:ce:37:41: a3:60:57:59:a5:fe:ad:f6:53:a2:37:9b:10:93:c9: f4:49:10:f7:17:69:42:27:5b:dc:e4:44:ba:f3:59: 76:ca:b5:42:d9:46:ba:d4:75:87:cc:fd:91:74:c1: e2:fb:0f:03:86:60:5a:e1:c9:c9:71:13:6c:d2:77: db:65:74:68:ec:f9:4c:2f:28:65:d5:e6:32:ed:09: 82:66:81:97:73:8f:e6:99:af:d1:f0:22:04:37:d5: aa:c2:80:c8:f1:48:0a:8c:5b:4f:49:32:fc:34:10: 91:86:95:05:62:08:99:c1:35:a6:7e:e8:b6:29:9e: f8:f2:91:c7:8b:93:b2:25:ff:57:6d:8a:ed:d1:b8: 9d:14:12:ba:4a:a1:5e:7e:f4:1e:db:fd:45:ba:71: 4b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:24:4A:6A:8D:0D:D8:C2:F5:5B:C4:21:14:BF:E3:5E:86:53:EB:7B X509v3 Authority Key Identifier: keyid:CD:F0:E8:24:C6:2A:59:28:A6:50:21:4E:F3:3E:8C:77:E7:C1:FF:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zfDoJMYqWSimUCFO8z6Md-fB_40.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/224967-cd1b-46f9-a46e-2583af237e2c/1/zfDoJMYqWSimUCFO8z6Md-fB_40.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:4b:31:d5:0e:f8:34:04:64:38:8c:77:5f:e5:39:ca:b9:47: d2:f7:f6:7f:fb:24:84:3f:52:d7:5f:0a:60:90:eb:bd:95:d6: 6e:8a:9d:74:eb:3a:cb:dc:8d:a4:53:8a:82:78:41:bc:16:55: c5:19:df:9b:99:ee:14:c7:9b:da:35:c3:8e:0b:41:ff:6b:c9: 24:4a:f1:7d:cd:d7:3a:89:1a:89:38:e5:8b:fa:b5:39:df:bd: 29:4c:51:90:df:a0:9f:1e:a9:10:0a:dd:74:a1:c0:3c:14:7e: bb:8c:d4:5f:d6:1d:c8:b5:a0:f8:43:8f:12:06:a8:ab:65:2e: 9f:2a:e6:78:f2:7f:25:71:33:28:e9:39:96:42:b6:0d:82:3b: 9a:6e:3d:6a:d3:1b:77:f7:da:5d:e5:14:86:6b:e0:97:b3:7c: 7f:c5:7f:64:87:ec:b8:51:dc:74:73:98:ce:a9:52:ec:4d:c5: 12:2a:13:a8:0a:c3:d4:df:d7:fb:68:ab:92:5c:09:98:53:ac: eb:b9:35:90:b6:7e:31:2e:c3:84:4d:be:c9:59:41:8b:aa:06: 22:31:54:23:27:7f:f7:6d:67:45:41:3b:99:c6:16:49:20:aa: 44:ad:d0:ec:b0:7a:1d:43:17:1d:19:fe:80:c2:65:a4:de:fe: 50:a2:bc:2d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm5vYUsQdcsRMvE9LgeXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkZjBlODI0YzYyYTU5MjhhNjUwMjE0ZWYzM2U4Yzc3ZTdj MWZmOGQwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD EygzODI0NGE2YThkMGRkOGMyZjU1YmM0MjExNGJmZTM1ZTg2NTNlYjdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcI35zBGIn4/METPtcB9mCbI8bTN JMTeTemeOtti4m43f+mDEHJKpErgvH5knYCAqc/fyy7DCqQ5Imx2WdKN+dRFtk+Y 1qE+zcXeC5R+tj/QQNn5NBETrtF7AqrX6jJjTh7H5sPON0GjYFdZpf6t9lOiN5sQ k8n0SRD3F2lCJ1vc5ES681l2yrVC2Ua61HWHzP2RdMHi+w8DhmBa4cnJcRNs0nfb ZXRo7PlMLyhl1eYy7QmCZoGXc4/mma/R8CIEN9WqwoDI8UgKjFtPSTL8NBCRhpUF YgiZwTWmfui2KZ748pHHi5OyJf9XbYrt0bidFBK6SqFefvQe2/1FunFL3wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgkSmqNDdjC9VvEIRS/416GU+t7MB8GA1UdIwQY MBaAFM3w6CTGKlkoplAhTvM+jHfnwf+NMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemZEb0pNWXFXU2ltVUNGTzh6Nk1kLWZCXzQwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi8yMjQ5NjctY2QxYi00NmY5LWE0NmUt MjU4M2FmMjM3ZTJjLzEvemZEb0pNWXFXU2ltVUNGTzh6Nk1kLWZCXzQwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi8yMjQ5NjctY2QxYi00NmY5LWE0NmUtMjU4M2FmMjM3ZTJj LzEvemZEb0pNWXFXU2ltVUNGTzh6Nk1kLWZCXzQwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjUsx1Q74 NARkOIx3X+U5yrlH0vf2f/skhD9S118KYJDrvZXWboqddOs6y9yNpFOKgnhBvBZV xRnfm5nuFMeb2jXDjgtB/2vJJErxfc3XOokaiTjli/q1Od+9KUxRkN+gnx6pEArd dKHAPBR+u4zUX9YdyLWg+EOPEgaoq2UunyrmePJ/JXEzKOk5lkK2DYI7mm49atMb d/faXeUUhmvgl7N8f8V/ZIfsuFHcdHOYzqlS7E3FEioTqArD1N/X+2irklwJmFOs 67k1kLZ+MS7DhE2+yVlBi6oGIjFUIyd/921nRUE7mcYWSSCqRK3Q7LB6HUMXHRn+ gMJlpN7+UKK8LQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:32 2026 by rpki-client