This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft File: zsY7h6iuwJPb5H3MqShg6oQSKOA.mft (raw, json) Hash identifier: 57xPqe8WM7QrC6Yx0oxyQsXIZ/xhM+0dbzBKcyO5vrg= Subject key identifier: 05:6B:68:89:E9:67:9B:10:F6:96:EC:9A:0A:63:F7:BF:49:00:5C:33 Authority key identifier: CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0 Certificate issuer: /CN=cec63b87a8aec093dbe47dcca92860ea841228e0 Certificate serial: 019C41A250844030C1BA534D1029548DB682 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft Manifest number: 0D18 Signing time: Mon 09 Feb 2026 09:01:22 +0000 Manifest this update: Mon 09 Feb 2026 09:01:22 +0000 Manifest next update: Tue 10 Feb 2026 09:01:22 +0000 Files and hashes: 1: hl2ItpSJbgNc8RoWoL4bCpNDXxw.roa (hash: ThfYHLL+zFBLeQn7rt4aKrE2rh3ZM5jimecJ6acAoR4=) 2: zsY7h6iuwJPb5H3MqShg6oQSKOA.crl (hash: 4QpGWuvYavtFVfIR7vykfNpHnUEiqrpWWBP8vSE4J/Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a2:50:84:40:30:c1:ba:53:4d:10:29:54:8d:b6:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cec63b87a8aec093dbe47dcca92860ea841228e0 Validity Not Before: Feb 9 09:01:22 2026 GMT Not After : Feb 10 09:01:22 2026 GMT Subject: CN=056b6889e9679b10f696ec9a0a63f7bf49005c33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e1:c6:f5:dc:06:eb:79:f3:7d:f1:fe:b8:db: a8:72:4c:71:e5:fd:ab:80:e8:35:b1:aa:27:0e:30: c1:46:f1:b9:d6:49:ba:bc:84:8c:54:1c:6b:1e:00: d7:66:23:60:2b:6b:3b:63:68:7f:c4:87:d7:5c:d8: f6:17:fb:1c:8f:07:86:ca:ff:93:a8:2b:88:46:11: c3:28:61:27:d5:e3:22:d2:0b:cc:9a:94:00:f2:bb: e0:81:ff:82:30:e1:ad:cd:c6:38:f0:de:30:95:fa: c0:1f:06:65:c2:cb:3e:a7:51:39:3d:06:c9:28:9f: 72:f3:1a:ca:20:3a:1b:3b:76:87:58:96:ed:01:dc: 25:d3:93:d4:c5:b2:1b:d5:0a:86:e4:2b:dc:ce:39: a9:7b:e9:a1:b4:2d:d0:cb:d4:e5:12:83:d2:92:60: 6c:5e:ad:c4:b9:3b:aa:1c:be:55:f6:fb:dc:f3:a2: c3:cc:f0:4d:67:0d:5d:06:ea:20:2d:38:8f:b8:cf: 5c:2d:10:7f:10:8b:da:1d:d4:2b:ae:76:26:f0:44: fc:de:8f:e2:d7:73:ec:79:b2:36:db:55:f3:4e:2c: f5:fd:d0:2b:3b:8b:be:12:9a:7d:86:de:fe:7a:7e: 98:0d:9d:5f:5b:19:be:d4:87:cf:1e:1b:dc:4f:48: 81:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:6B:68:89:E9:67:9B:10:F6:96:EC:9A:0A:63:F7:BF:49:00:5C:33 X509v3 Authority Key Identifier: keyid:CE:C6:3B:87:A8:AE:C0:93:DB:E4:7D:CC:A9:28:60:EA:84:12:28:E0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zsY7h6iuwJPb5H3MqShg6oQSKOA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/a82f43-502b-42fb-88eb-83bd66f4e6f6/1/zsY7h6iuwJPb5H3MqShg6oQSKOA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:14:99:48:b3:e5:ab:eb:83:ab:64:dc:dd:60:fc:c9:cb:46: 7e:b4:4c:6e:a9:c3:f1:bf:25:95:42:de:12:62:ee:5e:06:e7: b3:bc:d7:3d:1e:c6:7a:07:8f:e8:ec:ae:a5:34:99:cd:04:4d: cf:65:87:d8:29:a1:c6:cb:d7:4c:cd:91:99:f6:44:a0:31:8d: 9a:fc:e3:26:9c:05:1c:2c:fc:4e:58:68:1e:ce:b9:9f:f0:3f: 06:0a:75:fd:0e:12:27:36:11:fb:de:6d:81:a6:99:6a:9d:20: 80:3c:8e:e4:da:a4:d4:77:c1:c5:0b:46:48:df:e6:2b:2c:ec: 8b:4d:22:31:b6:d4:21:04:1f:10:7d:9e:53:e8:49:87:46:02: 39:b1:95:83:df:5c:db:c9:de:b5:8f:a1:2a:75:7d:11:c4:5c: 6e:69:d2:1d:51:61:36:f7:f8:91:d9:3e:47:95:3c:3a:8b:1a: e8:57:34:66:1a:3f:60:d9:e2:8e:10:89:fc:51:e5:64:c4:9b: 3c:38:ca:dd:75:cc:50:8a:3f:20:ce:db:17:31:c6:d2:2f:09: 67:23:be:f5:11:f5:a6:88:e7:be:23:4d:d0:9b:49:ca:62:fe: c3:22:75:28:81:84:26:b5:08:30:03:e3:48:78:50:2c:3f:8e: 41:c2:88:5b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBolCEQDDBulNNEClUjbaCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlYzYzYjg3YThhZWMwOTNkYmU0N2RjY2E5Mjg2MGVhODQx MjI4ZTAwHhcNMjYwMjA5MDkwMTIyWhcNMjYwMjEwMDkwMTIyWjAzMTEwLwYDVQQD EygwNTZiNjg4OWU5Njc5YjEwZjY5NmVjOWEwYTYzZjdiZjQ5MDA1YzMzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjuHG9dwG63nzffH+uNuockxx5f2r gOg1saonDjDBRvG51km6vISMVBxrHgDXZiNgK2s7Y2h/xIfXXNj2F/scjweGyv+T qCuIRhHDKGEn1eMi0gvMmpQA8rvggf+CMOGtzcY48N4wlfrAHwZlwss+p1E5PQbJ KJ9y8xrKIDobO3aHWJbtAdwl05PUxbIb1QqG5Cvczjmpe+mhtC3Qy9TlEoPSkmBs Xq3EuTuqHL5V9vvc86LDzPBNZw1dBuogLTiPuM9cLRB/EIvaHdQrrnYm8ET83o/i 13PsebI221XzTiz1/dArO4u+Epp9ht7+en6YDZ1fWxm+1IfPHhvcT0iBdQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAVraInpZ5sQ9pbsmgpj979JAFwzMB8GA1UdIwQY MBaAFM7GO4eorsCT2+R9zKkoYOqEEijgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenNZN2g2aXV3SlBiNUgzTXFTaGc2b1FTS09BLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9hODJmNDMtNTAyYi00MmZiLTg4ZWIt ODNiZDY2ZjRlNmY2LzEvenNZN2g2aXV3SlBiNUgzTXFTaGc2b1FTS09BLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9hODJmNDMtNTAyYi00MmZiLTg4ZWItODNiZDY2ZjRlNmY2 LzEvenNZN2g2aXV3SlBiNUgzTXFTaGc2b1FTS09BLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAahSZSLPl q+uDq2Tc3WD8yctGfrRMbqnD8b8llULeEmLuXgbns7zXPR7GegeP6OyupTSZzQRN z2WH2CmhxsvXTM2RmfZEoDGNmvzjJpwFHCz8TlhoHs65n/A/Bgp1/Q4SJzYR+95t gaaZap0ggDyO5Nqk1HfBxQtGSN/mKyzsi00iMbbUIQQfEH2eU+hJh0YCObGVg99c 28netY+hKnV9EcRcbmnSHVFhNvf4kdk+R5U8Oosa6Fc0Zho/YNnijhCJ/FHlZMSb PDjK3XXMUIo/IM7bFzHG0i8JZyO+9RH1pojnviNN0JtJymL+wyJ1KIGEJrUIMAPj SHhQLD+OQcKIWw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:23 2026 by rpki-client