This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft File: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft (raw, json) Hash identifier: TIdB/uhnOt8tkxzYiM5KdfY5GuuTP8/rNt3GBDg3vEU= Subject key identifier: 7C:56:3E:41:EE:60:48:1F:AB:90:40:E2:1C:86:AE:30:C7:0F:01:2B Authority key identifier: AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63 Certificate issuer: /CN=af3465437669ce586261a066cc4ad1ea464eb663 Certificate serial: 019C4322D386B97CF2A6FC0701AC9FB3EFD8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft Manifest number: 10BF Signing time: Mon 09 Feb 2026 16:01:21 +0000 Manifest this update: Mon 09 Feb 2026 16:01:21 +0000 Manifest next update: Tue 10 Feb 2026 16:01:21 +0000 Files and hashes: 1: rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl (hash: VITyjq/4unC44Upd5x0A2EUSlG+ufbY5iOs9JNnqD2k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d3:86:b9:7c:f2:a6:fc:07:01:ac:9f:b3:ef:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af3465437669ce586261a066cc4ad1ea464eb663 Validity Not Before: Feb 9 16:01:21 2026 GMT Not After : Feb 10 16:01:21 2026 GMT Subject: CN=7c563e41ee60481fab9040e21c86ae30c70f012b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:e7:7b:29:20:31:52:ee:a6:8c:64:31:0b:8c: 43:43:dd:92:48:1c:37:d0:8a:01:f8:39:fc:25:88: f7:32:5b:ee:37:24:6a:92:10:8c:c6:05:cb:6f:1a: 1d:e0:cf:a5:5a:a8:f9:79:9c:9a:80:54:82:74:b8: e0:1d:08:b9:ec:70:c3:c7:07:1b:4b:0d:25:5e:8e: ed:8c:a0:68:45:e3:eb:da:c4:64:52:6a:87:88:e6: 14:35:4f:f6:7f:4b:c0:76:85:56:4c:77:37:c4:e2: 14:93:a1:d4:16:63:c7:60:c3:3f:2a:cf:69:56:73: 90:b3:4c:a2:5d:64:46:1b:1b:2d:24:e3:39:85:32: 71:3f:4d:e0:dd:69:47:ca:d1:43:ba:3f:d8:f7:1d: 20:d7:bc:a9:4a:49:d4:43:b5:7c:6b:70:ba:0d:d1: eb:e5:7b:3e:b2:10:3e:b4:d1:38:07:42:46:15:39: 61:1a:88:2d:f8:a8:e2:50:85:b5:30:8c:d8:d3:00: 63:af:10:2c:29:41:a6:23:fd:f8:88:12:9d:d2:95: 92:d2:56:aa:1c:a6:ca:44:05:ff:10:10:db:81:67: 2e:c6:7c:c6:48:0d:97:cd:1e:ac:6c:cc:1e:23:58: f6:23:ef:27:c0:cb:60:e4:86:79:7a:ae:f1:9a:15: 03:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:56:3E:41:EE:60:48:1F:AB:90:40:E2:1C:86:AE:30:C7:0F:01:2B X509v3 Authority Key Identifier: keyid:AF:34:65:43:76:69:CE:58:62:61:A0:66:CC:4A:D1:EA:46:4E:B6:63 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/4861ba-4d1c-493c-a90d-60cf660ad533/1/rzRlQ3ZpzlhiYaBmzErR6kZOtmM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:a4:b2:ca:90:9b:d7:99:76:5a:63:82:06:9a:01:99:f3:f2: 4e:a1:12:e4:44:03:83:8e:8b:68:d2:93:04:cc:ae:cf:47:f5: 00:43:fa:17:a1:de:33:71:1a:2d:b4:c6:fd:ad:64:2d:eb:b3: 05:20:f7:a9:95:6d:9a:06:39:b3:6c:d1:93:3c:c0:82:32:9d: 88:a0:d5:a5:49:a5:e0:ba:85:26:f1:98:f5:f6:e4:08:cc:de: b6:ce:87:a2:5f:d5:9a:18:6f:f0:cc:e7:73:f4:93:31:54:d8: 3e:f3:87:8a:a6:00:fb:55:f1:73:bd:e8:69:f2:4c:43:04:62: b9:57:89:b1:64:eb:47:0c:d6:ba:a8:68:79:cd:a5:49:26:ba: 7e:0d:92:1a:9b:65:b8:17:dc:63:06:9f:26:64:c5:9f:e3:6c: 29:8a:60:1b:42:11:c1:be:c9:a3:5e:0c:2e:10:77:87:5a:93: 2c:ca:bd:29:29:5b:c0:47:04:bf:eb:36:a7:3e:98:ef:43:36: 3d:73:72:61:7e:d5:be:bd:86:eb:32:f5:82:b5:90:27:cd:6d: 7c:38:6c:57:dd:b7:84:59:e9:eb:04:6c:8e:10:fc:14:b1:73: 03:17:1e:8e:e3:67:be:c1:94:06:f3:d3:4e:7b:cd:09:ce:d8: ab:6b:28:29 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItOGuXzypvwHAayfs+/YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMzQ2NTQzNzY2OWNlNTg2MjYxYTA2NmNjNGFkMWVhNDY0 ZWI2NjMwHhcNMjYwMjA5MTYwMTIxWhcNMjYwMjEwMTYwMTIxWjAzMTEwLwYDVQQD Eyg3YzU2M2U0MWVlNjA0ODFmYWI5MDQwZTIxYzg2YWUzMGM3MGYwMTJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOd7KSAxUu6mjGQxC4xDQ92SSBw3 0IoB+Dn8JYj3MlvuNyRqkhCMxgXLbxod4M+lWqj5eZyagFSCdLjgHQi57HDDxwcb Sw0lXo7tjKBoRePr2sRkUmqHiOYUNU/2f0vAdoVWTHc3xOIUk6HUFmPHYMM/Ks9p VnOQs0yiXWRGGxstJOM5hTJxP03g3WlHytFDuj/Y9x0g17ypSknUQ7V8a3C6DdHr 5Xs+shA+tNE4B0JGFTlhGogt+KjiUIW1MIzY0wBjrxAsKUGmI/34iBKd0pWS0laq HKbKRAX/EBDbgWcuxnzGSA2XzR6sbMweI1j2I+8nwMtg5IZ5eq7xmhUD5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHxWPkHuYEgfq5BA4hyGrjDHDwErMB8GA1UdIwQY MBaAFK80ZUN2ac5YYmGgZsxK0epGTrZjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnpSbFEzWnB6bGhpWWFCbXpFclI2a1pPdG1NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS80ODYxYmEtNGQxYy00OTNjLWE5MGQt NjBjZjY2MGFkNTMzLzEvcnpSbFEzWnB6bGhpWWFCbXpFclI2a1pPdG1NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS80ODYxYmEtNGQxYy00OTNjLWE5MGQtNjBjZjY2MGFkNTMz LzEvcnpSbFEzWnB6bGhpWWFCbXpFclI2a1pPdG1NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZaSyypCb 15l2WmOCBpoBmfPyTqES5EQDg46LaNKTBMyuz0f1AEP6F6HeM3EaLbTG/a1kLeuz BSD3qZVtmgY5s2zRkzzAgjKdiKDVpUml4LqFJvGY9fbkCMzets6Hol/Vmhhv8Mzn c/STMVTYPvOHiqYA+1Xxc73oafJMQwRiuVeJsWTrRwzWuqhoec2lSSa6fg2SGptl uBfcYwafJmTFn+NsKYpgG0IRwb7Jo14MLhB3h1qTLMq9KSlbwEcEv+s2pz6Y70M2 PXNyYX7Vvr2G6zL1grWQJ81tfDhsV923hFnp6wRsjhD8FLFzAxcejuNnvsGUBvPT TnvNCc7Yq2soKQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:30 2026 by rpki-client