This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft File: zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft (raw, json) Hash identifier: ri3kOGQtKBy1kQr9ITobFeAr55n6Uji8IG+wYZGpeTI= Subject key identifier: FE:F1:25:D6:81:65:0E:1F:96:2F:7B:9D:90:F9:A5:27:39:41:7F:34 Authority key identifier: CC:0A:90:0D:70:BD:10:F7:D2:22:1A:56:48:DA:54:A5:E3:F4:47:12 Certificate issuer: /CN=cc0a900d70bd10f7d2221a5648da54a5e3f44712 Certificate serial: 019C44350F73F352DE09E4BAB0A8E81C026E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zAqQDXC9EPfSIhpWSNpUpeP0RxI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft Manifest number: 02C2 Signing time: Mon 09 Feb 2026 21:00:53 +0000 Manifest this update: Mon 09 Feb 2026 21:00:53 +0000 Manifest next update: Tue 10 Feb 2026 21:00:53 +0000 Files and hashes: 1: zAqQDXC9EPfSIhpWSNpUpeP0RxI.crl (hash: lrjfsUVCSsFuwxrq3HDct24ln6Ub/7jH/hvGmvNQcXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft rsync://rpki.ripe.net/repository/DEFAULT/zAqQDXC9EPfSIhpWSNpUpeP0RxI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:35:0f:73:f3:52:de:09:e4:ba:b0:a8:e8:1c:02:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cc0a900d70bd10f7d2221a5648da54a5e3f44712 Validity Not Before: Feb 9 21:00:53 2026 GMT Not After : Feb 10 21:00:53 2026 GMT Subject: CN=fef125d681650e1f962f7b9d90f9a52739417f34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:85:54:5b:a2:7b:94:ff:46:c1:dd:67:0c:1c: 0a:3d:fe:3e:22:df:7c:a3:9a:d7:c4:f4:20:15:e1: 44:75:cb:fc:4d:74:57:12:b2:07:bb:9d:34:35:7d: a5:a1:67:a2:15:56:40:45:83:99:ad:4a:1d:8a:c3: ec:cc:9c:a6:70:c1:85:e3:b7:82:12:ca:b8:fc:d2: 1f:d0:e2:f9:17:fb:bd:4d:21:bc:3c:37:48:92:06: 59:de:07:35:6c:21:9a:6b:f5:e0:dc:e5:da:9a:53: cc:73:3a:e2:99:7a:74:88:50:81:25:2a:61:e6:16: 15:d3:33:4f:ef:40:ee:87:10:ba:94:77:7c:c4:77: 46:ad:d6:98:8c:3c:cd:8b:c9:2b:c5:fa:e6:87:61: 70:fb:95:72:08:e3:11:b0:e4:8c:e8:ac:93:43:5c: b7:8a:a5:45:f1:8c:6e:6f:08:ad:1c:d9:e7:1a:cd: c2:f7:51:69:f5:fc:e5:29:98:4f:ce:00:18:1d:55: 15:8b:8b:b4:f5:98:83:b7:e5:5f:f5:04:ba:45:32: 04:f7:b9:7a:8c:14:fe:ea:66:b8:49:c5:bb:d8:bc: 87:08:00:8b:b9:fc:3d:96:9f:c6:d8:a9:b5:90:0e: 21:71:1b:3a:46:79:22:5d:fa:c9:e0:77:fd:bc:51: 73:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:F1:25:D6:81:65:0E:1F:96:2F:7B:9D:90:F9:A5:27:39:41:7F:34 X509v3 Authority Key Identifier: keyid:CC:0A:90:0D:70:BD:10:F7:D2:22:1A:56:48:DA:54:A5:E3:F4:47:12 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zAqQDXC9EPfSIhpWSNpUpeP0RxI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:86:95:29:8c:38:65:48:cb:d3:6e:3e:20:59:fa:bc:f1:3e: 9d:b6:e2:15:e1:6a:58:f8:8e:9a:81:61:cb:90:0a:e0:8a:13: 40:8d:c3:6f:1f:86:f4:cd:9b:b7:fc:7f:55:91:33:67:d4:c2: 48:5e:16:bf:06:c1:cb:c5:20:86:fd:52:f0:c7:f7:b8:7b:2f: 65:10:c4:2c:7a:1b:f6:c1:d3:b7:29:b9:0c:72:0e:36:29:7f: 6d:fd:80:9e:50:d9:d3:b2:3a:a9:e8:e3:13:e4:69:93:d7:6e: 06:a0:02:fa:5c:83:5b:72:d8:e1:85:8b:78:70:24:77:22:af: 94:cc:89:6a:82:b3:b2:4d:80:2e:e8:d0:1b:0a:61:ac:33:23: d2:70:2a:84:ae:2b:e7:fd:36:fb:4d:74:38:9c:10:69:05:ed: fc:a0:fc:46:c1:b4:5a:fc:25:9b:33:42:15:14:55:80:ad:2a: 43:9f:90:86:e7:29:db:d2:3f:bc:7d:b1:6b:e7:b3:59:eb:a8: 90:88:c4:c1:8c:3c:81:8f:c9:77:68:6b:71:49:6b:0c:ff:ba: c1:3b:b7:75:a3:19:a7:e0:61:00:c1:fe:45:a6:8f:31:a6:1a: a1:1e:2c:06:65:a7:52:5c:c7:e3:39:a8:62:17:a3:6e:c7:7c: 6a:9b:19:d8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxENQ9z81LeCeS6sKjoHAJuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNjMGE5MDBkNzBiZDEwZjdkMjIyMWE1NjQ4ZGE1NGE1ZTNm NDQ3MTIwHhcNMjYwMjA5MjEwMDUzWhcNMjYwMjEwMjEwMDUzWjAzMTEwLwYDVQQD EyhmZWYxMjVkNjgxNjUwZTFmOTYyZjdiOWQ5MGY5YTUyNzM5NDE3ZjM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoVUW6J7lP9Gwd1nDBwKPf4+It98 o5rXxPQgFeFEdcv8TXRXErIHu500NX2loWeiFVZARYOZrUodisPszJymcMGF47eC Esq4/NIf0OL5F/u9TSG8PDdIkgZZ3gc1bCGaa/Xg3OXamlPMczrimXp0iFCBJSph 5hYV0zNP70DuhxC6lHd8xHdGrdaYjDzNi8krxfrmh2Fw+5VyCOMRsOSM6KyTQ1y3 iqVF8YxubwitHNnnGs3C91Fp9fzlKZhPzgAYHVUVi4u09ZiDt+Vf9QS6RTIE97l6 jBT+6ma4ScW72LyHCACLufw9lp/G2Km1kA4hcRs6RnkiXfrJ4Hf9vFFzQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP7xJdaBZQ4fli97nZD5pSc5QX80MB8GA1UdIwQY MBaAFMwKkA1wvRD30iIaVkjaVKXj9EcSMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvekFxUURYQzlFUGZTSWhwV1NOcFVwZVAwUnhJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy81OGEzYjYtOWE4MC00OWMyLTg3NzUt MzgwMWM2MjE2ZTZjLzEvekFxUURYQzlFUGZTSWhwV1NOcFVwZVAwUnhJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy81OGEzYjYtOWE4MC00OWMyLTg3NzUtMzgwMWM2MjE2ZTZj LzEvekFxUURYQzlFUGZTSWhwV1NOcFVwZVAwUnhJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbIaVKYw4 ZUjL024+IFn6vPE+nbbiFeFqWPiOmoFhy5AK4IoTQI3Dbx+G9M2bt/x/VZEzZ9TC SF4WvwbBy8Ughv1S8Mf3uHsvZRDELHob9sHTtym5DHIONil/bf2AnlDZ07I6qejj E+Rpk9duBqAC+lyDW3LY4YWLeHAkdyKvlMyJaoKzsk2ALujQGwphrDMj0nAqhK4r 5/02+010OJwQaQXt/KD8RsG0WvwlmzNCFRRVgK0qQ5+Qhucp29I/vH2xa+ezWeuo kIjEwYw8gY/Jd2hrcUlrDP+6wTu3daMZp+BhAMH+RaaPMaYaoR4sBmWnUlzH4zmo Yhejbsd8apsZ2A== -----END CERTIFICATE-----Generated at Tue Feb 10 00:15:10 2026 by rpki-client