This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft File: fzErCdH2kPJXAL1dzwfJGAxelmM.mft (raw, json) Hash identifier: Pe7qXrOFn1IzJai9n8rKwQGtsGY9C1pAWJs2XUoVWdU= Subject key identifier: 22:96:0D:ED:BD:F4:DC:EE:3A:C9:CF:F2:1E:3E:5F:56:CC:3F:C5:01 Authority key identifier: 7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63 Certificate issuer: /CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663 Certificate serial: 019C43903F02D0AA78C4FEDE4C0D81FDCDF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft Manifest number: 0139 Signing time: Mon 09 Feb 2026 18:00:52 +0000 Manifest this update: Mon 09 Feb 2026 18:00:52 +0000 Manifest next update: Tue 10 Feb 2026 18:00:52 +0000 Files and hashes: 1: BCFG1E3vkLJzX3xYHBAXCR2M-Dk.roa (hash: kLXCiyzJI0lL3gfuo31f6jHCm4NoCsgw/6nrJV+kat0=) 2: fzErCdH2kPJXAL1dzwfJGAxelmM.crl (hash: PPJsN+YDNjJ9rdMyByXIXxKoG8cTPNGzt5n/+dSi4Oo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:3f:02:d0:aa:78:c4:fe:de:4c:0d:81:fd:cd:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f312b09d1f690f25700bd5dcf07c9180c5e9663 Validity Not Before: Feb 9 18:00:52 2026 GMT Not After : Feb 10 18:00:52 2026 GMT Subject: CN=22960dedbdf4dcee3ac9cff21e3e5f56cc3fc501 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:fe:19:67:9a:0e:1e:1b:e0:08:a8:a2:30:09: 71:f8:a0:a6:6c:17:64:26:66:4a:d6:38:20:53:b3: 64:ad:0a:ac:d8:4b:99:43:ba:5a:7f:aa:be:6e:38: 11:77:93:cf:6c:21:29:da:fd:a1:96:a5:45:1a:63: 31:2d:75:99:f1:76:45:63:6d:d9:80:40:06:4f:a1: af:8f:c7:c6:c2:ef:e2:c7:52:fd:93:99:18:38:07: 6d:5a:1b:2f:0e:f8:6f:d9:5a:33:2f:93:81:19:a0: 9d:f7:c1:a4:2b:54:31:b6:03:59:b2:5e:45:06:f9: 5f:ea:b2:72:39:64:15:cc:d2:04:cb:c4:84:2b:78: 19:9d:26:ff:5b:20:56:49:9c:58:3e:44:c2:27:16: 5f:59:67:fb:fb:6f:66:5d:be:a7:f4:4c:f3:4c:83: 56:b8:81:fc:6c:c9:eb:55:35:01:76:05:41:87:86: 70:aa:2c:d2:02:5f:91:5e:f1:18:88:8a:1a:6c:7a: de:e0:75:ea:48:44:29:75:27:7c:14:62:6a:7c:c6: 14:ab:af:e9:ea:9d:ad:7e:70:ae:85:36:9a:7e:33: 27:b3:a0:93:9e:37:f0:d4:40:56:a7:09:a7:26:5f: 91:56:ad:f5:29:1e:e4:5a:84:ea:97:a8:37:bc:5c: 58:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:96:0D:ED:BD:F4:DC:EE:3A:C9:CF:F2:1E:3E:5F:56:CC:3F:C5:01 X509v3 Authority Key Identifier: keyid:7F:31:2B:09:D1:F6:90:F2:57:00:BD:5D:CF:07:C9:18:0C:5E:96:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fzErCdH2kPJXAL1dzwfJGAxelmM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/29dac9-9a15-4661-af78-1522e2964fce/1/fzErCdH2kPJXAL1dzwfJGAxelmM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 37:3e:34:bc:f7:12:55:c6:dc:76:8b:6c:28:1a:6f:b6:cd:12: 04:75:fa:a0:4f:d7:bd:16:6f:5c:ff:72:ec:f6:40:f4:6b:98: c6:db:07:c9:77:4d:8d:41:70:db:61:72:f8:9b:66:e3:be:b4: 86:08:e6:7b:a2:d5:62:d4:0d:6f:57:f7:89:97:d3:ef:0e:9e: 7a:ae:93:55:e4:6d:cb:1a:e8:32:f9:6d:6a:26:80:89:71:1d: 9b:d0:10:39:c3:7b:84:05:9f:57:ce:cd:38:76:2b:89:f0:d9: 95:13:d4:39:d8:8b:0c:5d:2d:60:58:14:74:7d:24:2e:b1:4a: bd:89:f5:c0:35:df:4e:f9:52:c1:64:29:d4:83:97:7a:d8:32: 66:45:37:d1:58:94:cf:b0:4d:7b:3d:f9:dc:b0:ad:5b:fe:79: ff:82:85:c4:ab:4a:5c:3a:29:c0:02:3d:59:09:ab:2e:04:b3: f7:41:b2:94:6a:43:a7:27:31:dd:4d:8b:5c:b0:d3:65:61:1d: d6:31:a3:31:df:96:55:e9:15:bb:53:c9:cc:dd:8b:2a:9d:48: 73:c7:80:d6:ca:0c:d5:05:e9:58:2b:55:eb:77:e1:1d:e9:2b: 9d:c3:d5:05:6d:c5:d0:a7:4e:d6:ae:69:90:06:b7:79:9a:21: 24:af:bd:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkD8C0Kp4xP7eTA2B/c3yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdmMzEyYjA5ZDFmNjkwZjI1NzAwYmQ1ZGNmMDdjOTE4MGM1 ZTk2NjMwHhcNMjYwMjA5MTgwMDUyWhcNMjYwMjEwMTgwMDUyWjAzMTEwLwYDVQQD EygyMjk2MGRlZGJkZjRkY2VlM2FjOWNmZjIxZTNlNWY1NmNjM2ZjNTAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6f4ZZ5oOHhvgCKiiMAlx+KCmbBdk JmZK1jggU7NkrQqs2EuZQ7paf6q+bjgRd5PPbCEp2v2hlqVFGmMxLXWZ8XZFY23Z gEAGT6Gvj8fGwu/ix1L9k5kYOAdtWhsvDvhv2VozL5OBGaCd98GkK1QxtgNZsl5F Bvlf6rJyOWQVzNIEy8SEK3gZnSb/WyBWSZxYPkTCJxZfWWf7+29mXb6n9EzzTINW uIH8bMnrVTUBdgVBh4ZwqizSAl+RXvEYiIoabHre4HXqSEQpdSd8FGJqfMYUq6/p 6p2tfnCuhTaafjMns6CTnjfw1EBWpwmnJl+RVq31KR7kWoTql6g3vFxYFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCKWDe299NzuOsnP8h4+X1bMP8UBMB8GA1UdIwQY MBaAFH8xKwnR9pDyVwC9Xc8HyRgMXpZjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgt MTUyMmUyOTY0ZmNlLzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYy8yOWRhYzktOWExNS00NjYxLWFmNzgtMTUyMmUyOTY0ZmNl LzEvZnpFckNkSDJrUEpYQUwxZHp3ZkpHQXhlbG1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANz40vPcS VcbcdotsKBpvts0SBHX6oE/XvRZvXP9y7PZA9GuYxtsHyXdNjUFw22Fy+Jtm4760 hgjme6LVYtQNb1f3iZfT7w6eeq6TVeRtyxroMvltaiaAiXEdm9AQOcN7hAWfV87N OHYrifDZlRPUOdiLDF0tYFgUdH0kLrFKvYn1wDXfTvlSwWQp1IOXetgyZkU30ViU z7BNez353LCtW/55/4KFxKtKXDopwAI9WQmrLgSz90GylGpDpycx3U2LXLDTZWEd 1jGjMd+WVekVu1PJzN2LKp1Ic8eA1soM1QXpWCtV63fhHekrncPVBW3F0KdO1q5p kAa3eZohJK+9dg== -----END CERTIFICATE-----Generated at Mon Feb 9 23:53:02 2026 by rpki-client