This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft File: dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft (raw, json) Hash identifier: VCHXkd3gcdi1znAdviWNOAFhNISjOV1qfETCSs812bU= Subject key identifier: 88:98:29:6E:C7:A7:2A:42:C3:D0:5E:A2:68:F0:81:CB:4A:0F:A6:71 Authority key identifier: 75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A Certificate issuer: /CN=75923ec546df371d09e68c6b06025ea31261234a Certificate serial: 019C43225D5D83F701799A2BA395B45DEBB5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 16:00:51 +0000 Manifest this update: Mon 09 Feb 2026 16:00:51 +0000 Manifest next update: Tue 10 Feb 2026 16:00:51 +0000 Files and hashes: 1: dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl (hash: tsCRramwQ3VNg0LsKmG0OQ2e8/kUYgHU3NU6JzdU9SI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:5d:5d:83:f7:01:79:9a:2b:a3:95:b4:5d:eb:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=75923ec546df371d09e68c6b06025ea31261234a Validity Not Before: Feb 9 16:00:51 2026 GMT Not After : Feb 10 16:00:51 2026 GMT Subject: CN=8898296ec7a72a42c3d05ea268f081cb4a0fa671 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e0:ba:3e:ce:bc:bc:c6:e5:a7:f1:95:9b:6d: 12:06:3a:18:db:d6:0a:cf:51:ca:46:e5:f6:9e:4b: 87:5b:33:a9:90:f6:11:75:55:e9:e9:a3:43:26:37: a4:a3:72:7f:ea:56:60:cf:c7:c6:37:e0:60:a9:15: 2c:7c:7e:81:02:4b:72:4b:5a:36:ab:f9:dd:cc:b6: f4:9d:fe:6a:be:a8:22:0c:ba:d8:c6:c4:78:ab:94: f5:ac:60:a0:77:f7:37:64:f4:dd:75:4c:e4:2b:a1: 8e:25:e4:5a:7e:94:6d:19:b0:75:02:f0:05:ed:64: 63:bb:c3:80:13:4f:73:18:71:f5:fe:b1:7b:48:8b: 11:b1:11:2f:6d:19:37:a4:cc:d3:8e:33:31:52:ca: 15:75:bc:37:11:27:e8:a5:74:c7:88:49:75:3a:27: a4:ec:61:61:39:f7:21:f5:0f:64:17:4e:6c:0a:50: 42:50:68:a1:b3:54:b0:29:85:82:4a:d6:5f:a2:03: 6a:52:8b:49:44:51:eb:28:a0:bd:d5:67:f8:65:d5: 6c:0a:a2:1e:e6:c8:97:1b:3e:aa:42:88:6b:96:53: 82:8a:23:cf:50:65:b0:1e:f6:a8:56:8f:9d:2b:3d: 0a:4b:04:3e:8c:b7:d6:39:9f:1e:a8:45:97:55:59: 79:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:98:29:6E:C7:A7:2A:42:C3:D0:5E:A2:68:F0:81:CB:4A:0F:A6:71 X509v3 Authority Key Identifier: keyid:75:92:3E:C5:46:DF:37:1D:09:E6:8C:6B:06:02:5E:A3:12:61:23:4A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dZI-xUbfNx0J5oxrBgJeoxJhI0o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/26c68c-0482-4b62-b2af-4855366edfef/1/dZI-xUbfNx0J5oxrBgJeoxJhI0o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:ce:32:6b:37:3e:54:8e:e2:4a:9e:99:00:25:f6:94:6f:25: 15:f1:5a:5c:e2:5a:41:96:1e:72:35:c6:57:d0:36:8b:42:33: ce:02:f8:19:64:39:49:01:64:83:70:35:80:33:50:52:7e:c0: 7c:f2:04:ba:4b:88:c2:fb:b3:d1:63:00:6d:e1:73:43:1e:30: 0a:fe:4c:67:80:57:52:86:ac:9d:a1:cd:02:76:41:0e:30:95: 2c:f8:49:94:6a:ea:75:ea:a3:a9:83:b8:50:d0:49:d5:f1:ad: 0f:aa:2f:60:db:36:39:7f:27:38:fd:92:d5:1e:d9:81:1a:29: 23:3b:be:15:aa:e9:c4:a3:2e:35:49:67:f3:e4:a1:a0:0f:c8: d0:58:21:ae:89:52:9a:42:9c:99:74:35:bb:87:41:06:da:9a: c0:85:4e:b0:b0:5c:6d:15:cd:7b:56:ba:a1:38:5f:e4:15:16: 28:9b:14:59:2d:d8:71:3f:8d:3b:3f:cb:ba:70:6e:a5:fa:85: 16:f7:84:dc:3c:a5:75:77:de:94:66:42:7f:f1:3b:7f:11:da: df:75:db:34:d3:a7:2b:af:fd:04:82:1b:ff:ba:ef:c9:ed:63: 47:ef:55:bd:ae:c7:6f:8f:96:f4:52:23:a6:0d:5f:76:6d:62: b4:0b:2f:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIl1dg/cBeZoro5W0Xeu1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc1OTIzZWM1NDZkZjM3MWQwOWU2OGM2YjA2MDI1ZWEzMTI2 MTIzNGEwHhcNMjYwMjA5MTYwMDUxWhcNMjYwMjEwMTYwMDUxWjAzMTEwLwYDVQQD Eyg4ODk4Mjk2ZWM3YTcyYTQyYzNkMDVlYTI2OGYwODFjYjRhMGZhNjcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx+C6Ps68vMblp/GVm20SBjoY29YK z1HKRuX2nkuHWzOpkPYRdVXp6aNDJjeko3J/6lZgz8fGN+BgqRUsfH6BAktyS1o2 q/ndzLb0nf5qvqgiDLrYxsR4q5T1rGCgd/c3ZPTddUzkK6GOJeRafpRtGbB1AvAF 7WRju8OAE09zGHH1/rF7SIsRsREvbRk3pMzTjjMxUsoVdbw3ESfopXTHiEl1Oiek 7GFhOfch9Q9kF05sClBCUGihs1SwKYWCStZfogNqUotJRFHrKKC91Wf4ZdVsCqIe 5siXGz6qQohrllOCiiPPUGWwHvaoVo+dKz0KSwQ+jLfWOZ8eqEWXVVl5KQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIiYKW7HpypCw9BeomjwgctKD6ZxMB8GA1UdIwQY MBaAFHWSPsVG3zcdCeaMawYCXqMSYSNKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZFpJLXhVYmZOeDBKNW94ckJnSmVveEpoSTBvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC8yNmM2OGMtMDQ4Mi00YjYyLWIyYWYt NDg1NTM2NmVkZmVmLzEvZFpJLXhVYmZOeDBKNW94ckJnSmVveEpoSTBvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC8yNmM2OGMtMDQ4Mi00YjYyLWIyYWYtNDg1NTM2NmVkZmVm LzEvZFpJLXhVYmZOeDBKNW94ckJnSmVveEpoSTBvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWM4yazc+ VI7iSp6ZACX2lG8lFfFaXOJaQZYecjXGV9A2i0IzzgL4GWQ5SQFkg3A1gDNQUn7A fPIEukuIwvuz0WMAbeFzQx4wCv5MZ4BXUoasnaHNAnZBDjCVLPhJlGrqdeqjqYO4 UNBJ1fGtD6ovYNs2OX8nOP2S1R7ZgRopIzu+FarpxKMuNUln8+ShoA/I0FghrolS mkKcmXQ1u4dBBtqawIVOsLBcbRXNe1a6oThf5BUWKJsUWS3YcT+NOz/LunBupfqF FveE3DyldXfelGZCf/E7fxHa33XbNNOnK6/9BIIb/7rvye1jR+9Vva7Hb4+W9FIj pg1fdm1itAsvyw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:00 2026 by rpki-client