This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft File: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft (raw, json) Hash identifier: jotONZNuqNUCUBDnBH4X9+E2yHRlFw4e7ZQIMw9LWsA= Subject key identifier: 32:B9:42:74:24:F3:4C:89:24:D0:41:25:BF:9E:E6:1B:A3:60:29:55 Authority key identifier: CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB Certificate issuer: /CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb Certificate serial: 019C4322135293311AE2984C9B7110DE3943 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft Manifest number: 0DC3 Signing time: Mon 09 Feb 2026 16:00:32 +0000 Manifest this update: Mon 09 Feb 2026 16:00:32 +0000 Manifest next update: Tue 10 Feb 2026 16:00:32 +0000 Files and hashes: 1: fskjKgPj5L9YOuWuL2aoh4G8vqU.roa (hash: 31yKilxbLobmkxS1Ne8oNBBHC8xU0xlQdNH3udg5Os4=) 2: zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl (hash: j2r9WCo3ULoEDsDDq+qKrIsN1WtCFYGVxhsNwV4VkWQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:13:52:93:31:1a:e2:98:4c:9b:71:10:de:39:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cd8e8ebd80fcf884975e42b46bf4e548793f29cb Validity Not Before: Feb 9 16:00:32 2026 GMT Not After : Feb 10 16:00:32 2026 GMT Subject: CN=32b9427424f34c8924d04125bf9ee61ba3602955 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:9c:bf:ad:25:55:c2:5a:3c:93:d7:72:bc:eb: 6e:b6:8e:7b:c8:49:8b:bf:d5:18:ef:97:75:45:0d: 4c:bf:fd:91:f0:15:96:20:12:bd:cb:d9:a7:77:67: ae:a5:e0:af:55:64:96:13:cd:66:40:29:f3:ab:97: ae:dd:b6:55:74:78:27:55:a2:f7:e0:fd:93:c2:b9: 7c:c6:6e:05:1d:81:72:74:b7:3e:05:fa:94:3f:29: dc:ca:ec:5f:9e:30:39:3d:49:ec:39:ac:d6:e4:6c: ec:18:3e:2a:1f:05:74:42:a7:f0:ff:c4:2d:5d:1c: 9a:ca:71:bb:d8:e4:14:7e:fc:31:53:34:a9:a8:c7: 3e:9b:72:94:86:f5:cd:4c:c1:fa:4c:8c:6c:5f:48: a5:dc:16:69:28:85:23:79:e1:48:3a:65:1f:94:aa: 49:9d:e6:dd:c4:d1:86:7c:aa:f7:5c:c6:28:f9:f4: 86:3a:a9:74:4a:d4:9f:a7:9b:0f:b5:d9:23:6d:16: e8:3c:ad:d0:3b:fc:21:34:16:be:7f:58:5f:f3:2f: e1:78:d4:94:2e:6b:1e:47:fc:fd:87:bd:b0:9c:b8: e7:bb:7a:e1:ca:42:12:ea:22:7e:06:d5:25:e8:f3: 9d:15:c7:02:57:36:0c:00:02:8c:e7:d1:19:c0:de: 3f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:B9:42:74:24:F3:4C:89:24:D0:41:25:BF:9E:E6:1B:A3:60:29:55 X509v3 Authority Key Identifier: keyid:CD:8E:8E:BD:80:FC:F8:84:97:5E:42:B4:6B:F4:E5:48:79:3F:29:CB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c2/dc8f9b-06d6-44d3-9a38-286a5ee6e043/1/zY6OvYD8-ISXXkK0a_TlSHk_Kcs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:08:9e:1e:c4:8e:2f:83:3c:b1:b4:f2:15:3b:9b:9e:d7:c6: 29:bb:9b:88:70:4d:3c:1a:e7:11:c7:c9:cc:06:bf:52:04:98: 65:50:54:74:f8:29:36:72:20:75:6e:94:43:9d:43:ca:38:fd: 45:57:84:f1:d9:d4:77:f8:c8:c6:fa:2b:11:a0:2f:34:15:67: 22:07:47:41:90:87:a4:ce:9e:73:e4:7a:12:aa:89:2d:0f:35: 8b:db:5b:6b:c2:9e:ab:84:11:83:41:1a:dd:ae:23:ce:38:cb: 7c:14:66:d6:9f:3b:40:d3:8f:05:34:37:a5:d4:f6:5f:15:a0: eb:b2:71:d2:20:5c:d2:2b:a0:78:cc:1c:a2:7a:d2:0e:9d:db: 15:eb:a5:34:aa:65:ae:e7:43:9a:2c:8d:7c:a8:d4:48:47:50: 25:6c:86:b7:c3:44:9f:2d:0f:86:40:75:30:89:6d:a8:2d:93: 38:b4:24:ce:5a:a7:52:55:a6:d0:8b:c9:76:ee:4e:28:11:07: 1b:31:2f:ef:94:7a:75:32:3b:e2:7c:80:c2:32:bb:ec:21:b8: ad:f2:d5:71:a5:4e:80:9b:1e:ad:bc:c0:6c:be:b5:77:f9:8a: f5:f1:e4:42:bc:b8:79:c8:9a:bb:7b:e9:49:b0:b0:fb:32:6f: 3e:73:0a:70 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIhNSkzEa4phMm3EQ3jlDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNkOGU4ZWJkODBmY2Y4ODQ5NzVlNDJiNDZiZjRlNTQ4Nzkz ZjI5Y2IwHhcNMjYwMjA5MTYwMDMyWhcNMjYwMjEwMTYwMDMyWjAzMTEwLwYDVQQD EygzMmI5NDI3NDI0ZjM0Yzg5MjRkMDQxMjViZjllZTYxYmEzNjAyOTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmZy/rSVVwlo8k9dyvOtuto57yEmL v9UY75d1RQ1Mv/2R8BWWIBK9y9mnd2eupeCvVWSWE81mQCnzq5eu3bZVdHgnVaL3 4P2Twrl8xm4FHYFydLc+BfqUPyncyuxfnjA5PUnsOazW5GzsGD4qHwV0Qqfw/8Qt XRyaynG72OQUfvwxUzSpqMc+m3KUhvXNTMH6TIxsX0il3BZpKIUjeeFIOmUflKpJ nebdxNGGfKr3XMYo+fSGOql0StSfp5sPtdkjbRboPK3QO/whNBa+f1hf8y/heNSU LmseR/z9h72wnLjnu3rhykIS6iJ+BtUl6POdFccCVzYMAAKM59EZwN4/lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDK5QnQk80yJJNBBJb+e5hujYClVMB8GA1UdIwQY MBaAFM2Ojr2A/PiEl15CtGv05Uh5PynLMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvelk2T3ZZRDgtSVNYWGtLMGFfVGxTSGtfS2NzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jMi9kYzhmOWItMDZkNi00NGQzLTlhMzgt Mjg2YTVlZTZlMDQzLzEvelk2T3ZZRDgtSVNYWGtLMGFfVGxTSGtfS2NzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jMi9kYzhmOWItMDZkNi00NGQzLTlhMzgtMjg2YTVlZTZlMDQz LzEvelk2T3ZZRDgtSVNYWGtLMGFfVGxTSGtfS2NzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARwieHsSO L4M8sbTyFTubntfGKbubiHBNPBrnEcfJzAa/UgSYZVBUdPgpNnIgdW6UQ51Dyjj9 RVeE8dnUd/jIxvorEaAvNBVnIgdHQZCHpM6ec+R6EqqJLQ81i9tba8Keq4QRg0Ea 3a4jzjjLfBRm1p87QNOPBTQ3pdT2XxWg67Jx0iBc0iugeMwconrSDp3bFeulNKpl rudDmiyNfKjUSEdQJWyGt8NEny0PhkB1MIltqC2TOLQkzlqnUlWm0IvJdu5OKBEH GzEv75R6dTI74nyAwjK77CG4rfLVcaVOgJserbzAbL61d/mK9fHkQry4eciau3vp SbCw+zJvPnMKcA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:42 2026 by rpki-client