This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft File: zmdqMChOFLAsxt2qA053VAbkYaY.mft (raw, json) Hash identifier: 3XTTZWsalzIqGkcPyjfE1KX6X6bCmOSNNCY3dTx9RHA= Subject key identifier: 1F:BC:F7:63:06:EB:20:B9:12:FB:51:BC:BE:F2:21:C4:06:FF:19:4E Authority key identifier: CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6 Certificate issuer: /CN=ce676a30284e14b02cc6ddaa034e775406e461a6 Certificate serial: 019C4358C9D6D3611C78A810A4E3B7E81312 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft Manifest number: 0BA9 Signing time: Mon 09 Feb 2026 17:00:18 +0000 Manifest this update: Mon 09 Feb 2026 17:00:18 +0000 Manifest next update: Tue 10 Feb 2026 17:00:18 +0000 Files and hashes: 1: Q3WmyVx2hL_ulJlmWV4wBuMv3sY.roa (hash: qNBXvE4FodOwmoHeT/8KvY1e+YtkkhFfaz/pGiYECDk=) 2: zmdqMChOFLAsxt2qA053VAbkYaY.crl (hash: i9myS25uD/ryxPnCGPixA6j1p7m2C9BIR3UsC3UjyJE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:c9:d6:d3:61:1c:78:a8:10:a4:e3:b7:e8:13:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce676a30284e14b02cc6ddaa034e775406e461a6 Validity Not Before: Feb 9 17:00:18 2026 GMT Not After : Feb 10 17:00:18 2026 GMT Subject: CN=1fbcf76306eb20b912fb51bcbef221c406ff194e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b0:15:d2:eb:be:33:d0:e9:e8:89:91:ac:13: df:25:1d:f8:7c:b7:ad:a1:c1:97:61:ec:61:ba:73: 8e:01:f2:ba:e8:9e:e7:8b:a1:43:1e:7c:b0:27:80: 39:4c:a5:59:b0:79:59:ae:8a:6e:59:33:dc:60:dc: 7a:fb:1f:5f:09:40:7a:c6:52:32:3f:64:34:2f:f6: 25:05:3c:8d:30:94:12:2d:ad:49:38:4c:b5:1f:60: 71:ef:af:38:d7:d3:b6:0f:83:75:23:b6:9e:f1:c5: ac:3c:1b:f0:17:77:ff:24:b3:ca:a2:8c:84:6b:1e: 0d:86:6b:76:84:15:2e:65:07:c2:ac:39:f2:3c:a2: 85:cb:c9:6c:17:45:b6:20:1b:94:7d:af:5f:33:21: 43:29:29:68:20:5a:ad:da:9f:2e:17:e5:94:a8:d4: 8b:af:cc:98:d4:dc:b8:84:ca:a7:d6:dd:12:e2:b8: de:25:1c:0a:47:4f:27:ec:35:30:d5:d9:97:19:a5: c9:b5:03:6d:08:bc:2c:44:b1:03:18:66:31:41:7e: 02:9c:aa:93:64:07:90:ce:99:ce:b9:fa:f8:e6:43: 86:ec:70:aa:90:ea:9f:00:13:18:5c:22:0e:e5:a4: 5d:4f:91:99:8b:74:01:60:3a:73:82:74:a1:76:80: e4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:BC:F7:63:06:EB:20:B9:12:FB:51:BC:BE:F2:21:C4:06:FF:19:4E X509v3 Authority Key Identifier: keyid:CE:67:6A:30:28:4E:14:B0:2C:C6:DD:AA:03:4E:77:54:06:E4:61:A6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zmdqMChOFLAsxt2qA053VAbkYaY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/b8605a-2136-4389-a405-ea606570946a/1/zmdqMChOFLAsxt2qA053VAbkYaY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 80:7e:d2:8b:e4:7b:fa:a6:95:5d:71:b0:7e:a6:6f:85:bb:24: 46:28:94:ba:87:74:8f:ba:4d:cf:3b:47:21:fe:08:24:68:a3: c0:c8:79:f5:51:26:8d:c5:16:35:40:0d:1a:ee:57:cf:34:98: 7f:e1:50:6b:75:39:51:1b:8f:79:7f:c6:4e:51:e2:5f:d6:e6: fd:c5:23:39:e7:7a:75:88:bf:13:26:6a:8e:34:03:df:ca:b2: 69:12:3f:a2:e8:eb:38:3b:95:f2:70:42:bd:7c:40:e9:47:ca: ef:01:f4:d5:12:eb:18:85:69:b4:19:54:69:09:28:a6:13:e5: 13:01:95:4b:10:7b:99:0e:dd:44:18:99:ea:70:23:ca:61:2a: 3b:c4:c6:63:99:bb:a9:a0:92:1d:d9:bb:44:96:b3:d8:69:a6: 4f:71:b1:f1:90:f7:4b:80:7a:1d:35:64:20:34:08:38:d3:6f: 6f:97:2e:e7:43:e1:dd:ba:a8:db:1a:96:9d:9f:52:33:52:80: 13:15:8f:c7:ac:bf:ab:97:4a:8c:24:70:d7:eb:f8:68:5e:6e: e7:06:95:d7:79:0e:82:f8:26:a6:b3:a2:49:de:9c:04:18:55: d9:b4:76:ec:d6:d8:f2:b3:19:2a:48:ae:d1:a5:52:22:e5:3c: ec:4a:82:98 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWMnW02EceKgQpOO36BMSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNjc2YTMwMjg0ZTE0YjAyY2M2ZGRhYTAzNGU3NzU0MDZl NDYxYTYwHhcNMjYwMjA5MTcwMDE4WhcNMjYwMjEwMTcwMDE4WjAzMTEwLwYDVQQD EygxZmJjZjc2MzA2ZWIyMGI5MTJmYjUxYmNiZWYyMjFjNDA2ZmYxOTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1bAV0uu+M9Dp6ImRrBPfJR34fLet ocGXYexhunOOAfK66J7ni6FDHnywJ4A5TKVZsHlZropuWTPcYNx6+x9fCUB6xlIy P2Q0L/YlBTyNMJQSLa1JOEy1H2Bx768419O2D4N1I7ae8cWsPBvwF3f/JLPKooyE ax4Nhmt2hBUuZQfCrDnyPKKFy8lsF0W2IBuUfa9fMyFDKSloIFqt2p8uF+WUqNSL r8yY1Ny4hMqn1t0S4rjeJRwKR08n7DUw1dmXGaXJtQNtCLwsRLEDGGYxQX4CnKqT ZAeQzpnOufr45kOG7HCqkOqfABMYXCIO5aRdT5GZi3QBYDpzgnShdoDkDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB+892MG6yC5EvtRvL7yIcQG/xlOMB8GA1UdIwQY MBaAFM5najAoThSwLMbdqgNOd1QG5GGmMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUt ZWE2MDY1NzA5NDZhLzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9iODYwNWEtMjEzNi00Mzg5LWE0MDUtZWE2MDY1NzA5NDZh LzEvem1kcU1DaE9GTEFzeHQycUEwNTNWQWJrWWFZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgH7Si+R7 +qaVXXGwfqZvhbskRiiUuod0j7pNzztHIf4IJGijwMh59VEmjcUWNUANGu5XzzSY f+FQa3U5URuPeX/GTlHiX9bm/cUjOed6dYi/EyZqjjQD38qyaRI/oujrODuV8nBC vXxA6UfK7wH01RLrGIVptBlUaQkophPlEwGVSxB7mQ7dRBiZ6nAjymEqO8TGY5m7 qaCSHdm7RJaz2GmmT3Gx8ZD3S4B6HTVkIDQIONNvb5cu50Ph3bqo2xqWnZ9SM1KA ExWPx6y/q5dKjCRw1+v4aF5u5waV13kOgvgmprOiSd6cBBhV2bR27NbY8rMZKkiu 0aVSIuU87EqCmA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:23 2026 by rpki-client