This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft File: z9rC7BEEwkXZyrqOthY46drxADk.mft (raw, json) Hash identifier: fD82hxxY6qn7KK3lYCDEFQVnSxpLYNeDbbFtJgJuNeE= Subject key identifier: FD:47:B5:DD:ED:6D:F0:14:15:B5:81:AC:80:8A:72:89:DD:A7:8C:D4 Authority key identifier: CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39 Certificate issuer: /CN=cfdac2ec1104c245d9caba8eb61638e9daf10039 Certificate serial: 019C4321E76E6B537F37F435E74679A6997D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft Manifest number: 134D Signing time: Mon 09 Feb 2026 16:00:21 +0000 Manifest this update: Mon 09 Feb 2026 16:00:21 +0000 Manifest next update: Tue 10 Feb 2026 16:00:21 +0000 Files and hashes: 1: z9rC7BEEwkXZyrqOthY46drxADk.crl (hash: eKJOtJGjSNfYkjzDO7eg6WQ1mgRFTUkS7cRpkH6lNSY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:21:e7:6e:6b:53:7f:37:f4:35:e7:46:79:a6:99:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cfdac2ec1104c245d9caba8eb61638e9daf10039 Validity Not Before: Feb 9 16:00:21 2026 GMT Not After : Feb 10 16:00:21 2026 GMT Subject: CN=fd47b5dded6df01415b581ac808a7289dda78cd4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:68:a2:94:db:2d:7a:37:0b:1b:71:56:7a:c9: 1c:79:66:6f:1c:ff:53:e4:26:f7:01:a4:d0:ef:fa: 62:e5:89:4b:c8:f4:59:f1:77:6d:25:78:27:88:b5: 98:84:f1:9e:e0:3c:9a:c9:94:37:22:a4:c4:62:e7: b0:2f:3b:35:39:ec:67:5f:60:17:2b:dc:9e:eb:dc: 05:00:22:01:b7:eb:23:eb:5a:77:4c:66:9c:46:f7: 64:90:16:a5:9a:eb:0d:9d:51:ce:cc:fb:fd:d3:99: bc:22:b5:75:41:3c:01:06:a1:37:47:9c:66:8e:b2: ca:67:48:39:1c:54:73:70:19:90:de:d3:1f:77:ab: c3:c6:5b:5f:45:fc:fa:b8:89:11:9d:06:bc:85:f1: 93:68:cb:5d:dd:55:74:04:a0:07:77:5d:f8:15:d4: dd:17:53:e5:f3:e3:1f:03:81:c7:15:48:af:c4:04: 1a:2f:6a:18:86:28:c2:23:0c:5e:23:93:21:c2:cd: 54:f1:01:5a:02:15:c7:12:f3:78:6f:af:99:ca:46: 8c:6b:f6:8b:a6:82:1b:8b:6e:6c:9e:a9:2b:55:9c: 82:5f:09:dd:96:84:b0:14:06:3f:a9:1c:7c:ae:9d: 81:1e:20:81:fa:01:9c:19:40:8f:d3:77:54:91:91: 6c:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:47:B5:DD:ED:6D:F0:14:15:B5:81:AC:80:8A:72:89:DD:A7:8C:D4 X509v3 Authority Key Identifier: keyid:CF:DA:C2:EC:11:04:C2:45:D9:CA:BA:8E:B6:16:38:E9:DA:F1:00:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z9rC7BEEwkXZyrqOthY46drxADk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/e6de68-a6e2-4ade-a096-56078c84dc17/1/z9rC7BEEwkXZyrqOthY46drxADk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:cd:c7:70:b4:6d:b7:d9:04:35:1a:b5:f6:ed:99:4d:61:11: c6:a0:36:27:4d:0a:d8:1d:f3:2c:a4:5c:91:b3:0b:1f:5e:be: f7:1a:be:e2:ce:df:b8:06:41:85:6d:91:f3:64:36:d5:c5:36: d9:cd:c3:6e:0f:db:7c:37:ca:1d:b0:f4:30:dc:ba:e7:69:10: f9:d0:c0:88:6f:1c:71:a5:93:b2:57:f0:a5:76:5a:7c:73:7d: 3d:6d:41:14:e4:86:58:0c:d9:3a:25:df:aa:5f:bc:0a:a7:1d: 08:ed:58:34:8b:cc:6b:c8:c9:eb:95:1a:75:2b:2f:ca:a4:ee: 59:33:d9:da:b0:81:61:05:92:f2:f6:cb:ef:05:15:12:78:8f: 41:5c:49:37:02:d9:07:79:d0:7c:3e:85:bd:16:e2:a0:9a:e9: 50:3b:70:d3:35:3d:de:db:5f:76:7e:bc:08:09:3a:c3:62:c2: fb:38:c7:b9:0a:b5:8c:60:38:88:e1:56:86:a2:ce:a4:96:a0: 35:65:6b:14:3c:c0:49:3b:71:33:3c:26:76:41:a4:f8:24:42: 95:2d:47:75:ab:e9:62:10:63:10:f1:01:06:26:f7:6f:ea:ac: 52:28:73:9c:45:ed:37:00:63:89:09:44:84:23:ed:a3:6d:8c: e9:8f:32:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIedua1N/N/Q150Z5ppl9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmZGFjMmVjMTEwNGMyNDVkOWNhYmE4ZWI2MTYzOGU5ZGFm MTAwMzkwHhcNMjYwMjA5MTYwMDIxWhcNMjYwMjEwMTYwMDIxWjAzMTEwLwYDVQQD EyhmZDQ3YjVkZGVkNmRmMDE0MTViNTgxYWM4MDhhNzI4OWRkYTc4Y2Q0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxGiilNstejcLG3FWeskceWZvHP9T 5Cb3AaTQ7/pi5YlLyPRZ8XdtJXgniLWYhPGe4DyayZQ3IqTEYuewLzs1OexnX2AX K9ye69wFACIBt+sj61p3TGacRvdkkBalmusNnVHOzPv905m8IrV1QTwBBqE3R5xm jrLKZ0g5HFRzcBmQ3tMfd6vDxltfRfz6uIkRnQa8hfGTaMtd3VV0BKAHd134FdTd F1Pl8+MfA4HHFUivxAQaL2oYhijCIwxeI5Mhws1U8QFaAhXHEvN4b6+ZykaMa/aL poIbi25snqkrVZyCXwndloSwFAY/qRx8rp2BHiCB+gGcGUCP03dUkZFsrQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP1Htd3tbfAUFbWBrICKcondp4zUMB8GA1UdIwQY MBaAFM/awuwRBMJF2cq6jrYWOOna8QA5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejlyQzdCRUV3a1haeXJxT3RoWTQ2ZHJ4QURrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9lNmRlNjgtYTZlMi00YWRlLWEwOTYt NTYwNzhjODRkYzE3LzEvejlyQzdCRUV3a1haeXJxT3RoWTQ2ZHJ4QURrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9lNmRlNjgtYTZlMi00YWRlLWEwOTYtNTYwNzhjODRkYzE3 LzEvejlyQzdCRUV3a1haeXJxT3RoWTQ2ZHJ4QURrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjM3HcLRt t9kENRq19u2ZTWERxqA2J00K2B3zLKRckbMLH16+9xq+4s7fuAZBhW2R82Q21cU2 2c3Dbg/bfDfKHbD0MNy652kQ+dDAiG8ccaWTslfwpXZafHN9PW1BFOSGWAzZOiXf ql+8CqcdCO1YNIvMa8jJ65UadSsvyqTuWTPZ2rCBYQWS8vbL7wUVEniPQVxJNwLZ B3nQfD6FvRbioJrpUDtw0zU93ttfdn68CAk6w2LC+zjHuQq1jGA4iOFWhqLOpJag NWVrFDzASTtxMzwmdkGk+CRClS1HdavpYhBjEPEBBib3b+qsUihznEXtNwBjiQlE hCPto22M6Y8yvQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:56 2026 by rpki-client