This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft File: 0zsy4F0KhdvURQ83pz5_ofYQCvw.mft (raw, json) Hash identifier: ERZLkper9sry2K7ezDeR+IBprB5GLeAZbAYMvPCrLBQ= Subject key identifier: DB:B6:04:88:4F:BF:9B:42:51:9C:BA:AA:4C:A2:E4:DC:1F:8A:93:A6 Authority key identifier: D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC Certificate issuer: /CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc Certificate serial: 019C427E14359327DAD477AEE8F6067BE3FC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft Manifest number: 0B32 Signing time: Mon 09 Feb 2026 13:01:24 +0000 Manifest this update: Mon 09 Feb 2026 13:01:24 +0000 Manifest next update: Tue 10 Feb 2026 13:01:24 +0000 Files and hashes: 1: 0zsy4F0KhdvURQ83pz5_ofYQCvw.crl (hash: cDynirb2TkzsaecyMIRm2PhBUeBFtELq4JSaG6iz7x4=) 2: bxRzuQ7bASGe-s-sdD1--Cz8P4M.roa (hash: +XM1cLvQITLL+hcYwm0/qg57RFddihfSN5qfe1ousHo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7e:14:35:93:27:da:d4:77:ae:e8:f6:06:7b:e3:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d33b32e05d0a85dbd4450f37a73e7fa1f6100afc Validity Not Before: Feb 9 13:01:24 2026 GMT Not After : Feb 10 13:01:24 2026 GMT Subject: CN=dbb604884fbf9b42519cbaaa4ca2e4dc1f8a93a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:c9:b1:0f:c0:84:44:02:96:75:f3:27:1c:9c: f6:29:07:88:da:59:64:1b:5c:fd:f8:f5:c6:d2:f1: 4a:3d:a5:a6:2a:ca:d2:c9:0d:8f:29:f0:04:7a:b4: 4f:a4:73:87:e2:80:6a:5b:82:65:63:e6:6b:f0:ec: d2:e7:67:33:56:02:eb:6f:a9:96:0f:51:ed:e0:d1: a8:28:7f:7d:d0:3a:1f:8c:a1:b3:9d:da:83:78:0a: fe:d2:23:7e:e7:58:6d:65:a2:5d:f3:f9:c9:b7:eb: b8:2b:ce:12:13:6f:9e:89:e4:0f:2b:ba:91:aa:df: 01:be:14:5e:27:65:c3:e4:1a:c3:0e:4d:7e:b5:e2: 13:d9:dd:de:38:ff:4b:a8:9e:04:11:59:04:4e:2d: 48:19:e5:e2:ea:80:50:54:7d:ee:a8:db:ea:fe:28: 40:ec:58:e8:47:6c:e0:cf:4f:67:91:8e:6e:ed:66: 72:ab:86:92:f9:7d:45:52:eb:fe:5b:a0:be:32:e6: c1:81:28:69:72:08:83:a8:61:d6:af:48:2a:9c:62: f0:83:82:60:f6:49:e9:02:83:c1:9c:d1:e6:e3:13: e1:af:51:c4:3d:62:f3:d6:ce:3e:95:a8:15:55:39: ca:4d:5a:81:7a:83:c9:17:77:b6:3c:0b:ea:2d:05: 20:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:B6:04:88:4F:BF:9B:42:51:9C:BA:AA:4C:A2:E4:DC:1F:8A:93:A6 X509v3 Authority Key Identifier: keyid:D3:3B:32:E0:5D:0A:85:DB:D4:45:0F:37:A7:3E:7F:A1:F6:10:0A:FC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0zsy4F0KhdvURQ83pz5_ofYQCvw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/cf8791-9980-4c79-9c28-0e16baef7113/1/0zsy4F0KhdvURQ83pz5_ofYQCvw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:b4:26:fc:7a:76:d9:c2:11:f6:d4:2e:00:38:8f:6b:0e:c2: 0f:2c:36:a1:09:81:fe:46:7d:d6:1a:66:30:d2:0c:df:b0:56: 9e:ee:16:89:d1:55:84:d6:4b:01:4c:b4:6a:51:e0:ed:bd:01: fa:26:60:b1:fb:a4:aa:fe:9d:e3:94:2e:8f:ab:f5:7e:4b:b7: e8:76:bd:af:dc:b5:5f:29:28:42:76:b7:e2:93:a8:6d:67:73: 3a:1e:78:43:fa:6d:d4:8b:e2:43:17:ec:b3:d9:48:ec:3f:3e: b6:3c:4f:f6:7e:cd:07:9a:66:9a:8e:36:12:48:c1:38:88:33: 34:6d:41:84:17:80:57:2b:02:2a:3b:51:53:3e:17:16:9b:f3: 87:9c:31:da:e8:e6:62:fd:e3:f1:53:ce:09:b1:cb:cf:92:25: e0:87:8b:b3:c8:28:49:c9:76:68:ab:86:06:07:8a:83:f1:8e: 60:64:25:c8:74:e3:69:77:e3:89:f5:d6:cf:e1:2a:fc:c9:af: ea:78:f8:d1:a2:8c:84:2c:ec:5f:45:ff:68:43:db:83:92:a7: 9a:79:bc:ec:68:50:69:71:1b:96:e9:dd:b0:15:88:04:16:9d: 37:69:09:b4:e7:8f:aa:1b:71:78:1e:e1:c2:56:2f:cf:13:e5: 40:6c:08:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfhQ1kyfa1Heu6PYGe+P8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQzM2IzMmUwNWQwYTg1ZGJkNDQ1MGYzN2E3M2U3ZmExZjYx MDBhZmMwHhcNMjYwMjA5MTMwMTI0WhcNMjYwMjEwMTMwMTI0WjAzMTEwLwYDVQQD EyhkYmI2MDQ4ODRmYmY5YjQyNTE5Y2JhYWE0Y2EyZTRkYzFmOGE5M2E2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjMmxD8CERAKWdfMnHJz2KQeI2llk G1z9+PXG0vFKPaWmKsrSyQ2PKfAEerRPpHOH4oBqW4JlY+Zr8OzS52czVgLrb6mW D1Ht4NGoKH990DofjKGzndqDeAr+0iN+51htZaJd8/nJt+u4K84SE2+eieQPK7qR qt8BvhReJ2XD5BrDDk1+teIT2d3eOP9LqJ4EEVkETi1IGeXi6oBQVH3uqNvq/ihA 7FjoR2zgz09nkY5u7WZyq4aS+X1FUuv+W6C+MubBgShpcgiDqGHWr0gqnGLwg4Jg 9knpAoPBnNHm4xPhr1HEPWLz1s4+lagVVTnKTVqBeoPJF3e2PAvqLQUgHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNu2BIhPv5tCUZy6qkyi5NwfipOmMB8GA1UdIwQY MBaAFNM7MuBdCoXb1EUPN6c+f6H2EAr8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgt MGUxNmJhZWY3MTEzLzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC9jZjg3OTEtOTk4MC00Yzc5LTljMjgtMGUxNmJhZWY3MTEz LzEvMHpzeTRGMEtoZHZVUlE4M3B6NV9vZllRQ3Z3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEApLQm/Hp2 2cIR9tQuADiPaw7CDyw2oQmB/kZ91hpmMNIM37BWnu4WidFVhNZLAUy0alHg7b0B +iZgsfukqv6d45Quj6v1fku36Ha9r9y1XykoQna34pOobWdzOh54Q/pt1IviQxfs s9lI7D8+tjxP9n7NB5pmmo42EkjBOIgzNG1BhBeAVysCKjtRUz4XFpvzh5wx2ujm Yv3j8VPOCbHLz5Il4IeLs8goScl2aKuGBgeKg/GOYGQlyHTjaXfjifXWz+Eq/Mmv 6nj40aKMhCzsX0X/aEPbg5Knmnm87GhQaXEblundsBWIBBadN2kJtOePqhtxeB7h wlYvzxPlQGwITA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:47:34 2026 by rpki-client