This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft File: ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft (raw, json) Hash identifier: hDz+6WSzvp0mZcmL6wauuiz7/7MIcan4usOUE8xMHVQ= Subject key identifier: 02:86:AC:C4:BA:30:0D:CC:7F:E8:74:B9:58:15:CC:BC:30:8C:36:D2 Authority key identifier: 67:0C:D7:B2:BC:FB:37:4A:39:80:CC:E0:D0:80:92:23:87:54:EA:09 Certificate issuer: /CN=670cd7b2bcfb374a3980cce0d08092238754ea09 Certificate serial: 019C42B48831AC67EEC239B86C95E962D190 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft Manifest number: 25 Signing time: Mon 09 Feb 2026 14:00:53 +0000 Manifest this update: Mon 09 Feb 2026 14:00:53 +0000 Manifest next update: Tue 10 Feb 2026 14:00:53 +0000 Files and hashes: 1: ZwzXsrz7N0o5gMzg0ICSI4dU6gk.crl (hash: JeM+VjTJCq4Ar7MjPZHhr+Yh+kg2u27HmLEYadzTBT8=) 2: pEVSsM5N7hm3Og32HXsDhg7pL1s.roa (hash: lkqZ6UHBpwmZdzRaUJjyZFpwtlAHVK4YjoLQTGnDAAc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.crl rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft rsync://rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:88:31:ac:67:ee:c2:39:b8:6c:95:e9:62:d1:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=670cd7b2bcfb374a3980cce0d08092238754ea09 Validity Not Before: Feb 9 14:00:53 2026 GMT Not After : Feb 10 14:00:53 2026 GMT Subject: CN=0286acc4ba300dcc7fe874b95815ccbc308c36d2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:41:87:2d:0c:c2:48:a4:b1:16:07:21:b4:48: 97:b5:7e:d7:74:e4:29:ff:cf:c0:5c:c4:3b:f5:e8: 17:f5:08:3f:8d:a9:2b:94:ad:a0:5d:0b:20:b7:f7: 82:c9:da:33:bb:26:b5:b6:25:16:fd:0b:92:d7:55: 14:c9:8b:02:b4:99:8a:64:1e:8e:93:bb:52:00:34: c9:f8:5b:1b:4d:9f:3d:c4:f6:19:65:19:13:4c:26: 02:81:1d:2f:35:2f:68:38:f1:ac:02:6e:56:70:6e: 10:59:9d:bc:2d:af:a6:48:81:22:14:ea:16:bb:e4: f5:24:14:21:96:4d:99:93:1b:6c:9c:59:22:82:35: 4d:90:47:8b:73:c0:2b:68:67:09:f8:53:16:ea:66: 05:40:e3:1d:a5:14:01:ad:11:72:04:a7:1a:2f:fe: 40:a7:8b:b1:95:0b:bb:94:37:3d:5f:20:96:66:fe: b2:3e:26:85:82:5b:34:1c:33:4d:78:9d:f5:4b:82: 9b:12:eb:d4:d1:df:a5:f5:6c:ac:23:5b:98:2d:5a: ac:1d:3f:71:43:2d:ed:e1:ce:9f:59:5b:22:c7:ce: 8d:39:52:8c:46:6c:10:e4:18:92:64:9b:fa:4e:d5: a1:36:eb:9a:b6:e8:17:3c:cb:5b:7d:ce:f0:b2:be: d3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:86:AC:C4:BA:30:0D:CC:7F:E8:74:B9:58:15:CC:BC:30:8C:36:D2 X509v3 Authority Key Identifier: keyid:67:0C:D7:B2:BC:FB:37:4A:39:80:CC:E0:D0:80:92:23:87:54:EA:09 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:af:83:87:7b:d1:5c:0b:5e:70:8b:91:d1:f4:b9:d8:41:1f: 58:5d:cb:01:9e:07:20:d8:e1:16:e8:17:a8:ac:d7:00:f0:9f: 8b:5e:ad:2c:d4:19:72:20:f1:40:71:5c:44:53:7c:7f:89:c8: 41:4c:3b:4f:77:49:70:62:88:90:08:f5:15:b4:f8:b5:37:2b: aa:19:d7:26:f9:bc:f0:44:29:2d:a7:e0:39:7d:51:f5:07:41: 20:c0:9d:a8:13:26:68:4b:49:1d:22:5b:56:9a:64:ec:6c:75: ef:13:49:97:e8:d5:10:d5:cd:86:7c:de:8f:65:08:a8:3a:14: ab:8d:96:c6:79:50:85:9c:07:73:e4:37:d8:8e:56:8c:2d:94: 37:e7:4c:91:0d:a3:fa:d1:56:5c:ee:b2:60:52:0a:30:e1:b5: cb:cb:5e:e1:f4:2c:75:20:00:96:47:44:c7:84:ef:db:94:fa: e4:84:de:66:62:a1:76:57:00:7b:79:cb:bb:0a:fe:49:c0:c1: 5a:a5:65:3e:e5:52:ec:39:83:8a:e9:cd:b2:ab:8b:10:1b:cf: eb:9b:fb:e5:2a:4c:8d:49:97:f4:1f:52:dd:fb:c6:8a:7d:6b: 18:fb:49:3a:85:ca:77:f1:77:7d:3d:a1:8a:ec:38:cc:72:61: 96:cb:dc:60 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtIgxrGfuwjm4bJXpYtGQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3MGNkN2IyYmNmYjM3NGEzOTgwY2NlMGQwODA5MjIzODc1 NGVhMDkwHhcNMjYwMjA5MTQwMDUzWhcNMjYwMjEwMTQwMDUzWjAzMTEwLwYDVQQD EygwMjg2YWNjNGJhMzAwZGNjN2ZlODc0Yjk1ODE1Y2NiYzMwOGMzNmQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhUGHLQzCSKSxFgchtEiXtX7XdOQp /8/AXMQ79egX9Qg/jakrlK2gXQsgt/eCydozuya1tiUW/QuS11UUyYsCtJmKZB6O k7tSADTJ+FsbTZ89xPYZZRkTTCYCgR0vNS9oOPGsAm5WcG4QWZ28La+mSIEiFOoW u+T1JBQhlk2ZkxtsnFkigjVNkEeLc8AraGcJ+FMW6mYFQOMdpRQBrRFyBKcaL/5A p4uxlQu7lDc9XyCWZv6yPiaFgls0HDNNeJ31S4KbEuvU0d+l9WysI1uYLVqsHT9x Qy3t4c6fWVsix86NOVKMRmwQ5BiSZJv6TtWhNuuatugXPMtbfc7wsr7T4QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAKGrMS6MA3Mf+h0uVgVzLwwjDbSMB8GA1UdIwQY MBaAFGcM17K8+zdKOYDM4NCAkiOHVOoJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWnd6WHNyejdOMG81Z016ZzBJQ1NJNGRVNmdrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZS84NzIwOTctYjBhNi00ZDA4LWE2ZmYt MWU4OGJiMjc4ZjdiLzEvWnd6WHNyejdOMG81Z016ZzBJQ1NJNGRVNmdrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZS84NzIwOTctYjBhNi00ZDA4LWE2ZmYtMWU4OGJiMjc4Zjdi LzEvWnd6WHNyejdOMG81Z016ZzBJQ1NJNGRVNmdrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAe6+Dh3vR XAtecIuR0fS52EEfWF3LAZ4HINjhFugXqKzXAPCfi16tLNQZciDxQHFcRFN8f4nI QUw7T3dJcGKIkAj1FbT4tTcrqhnXJvm88EQpLafgOX1R9QdBIMCdqBMmaEtJHSJb Vppk7Gx17xNJl+jVENXNhnzej2UIqDoUq42WxnlQhZwHc+Q32I5WjC2UN+dMkQ2j +tFWXO6yYFIKMOG1y8te4fQsdSAAlkdEx4Tv25T65ITeZmKhdlcAe3nLuwr+ScDB WqVlPuVS7DmDiunNsquLEBvP65v75SpMjUmX9B9S3fvGin1rGPtJOoXKd/F3fT2h iuw4zHJhlsvcYA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:05 2026 by rpki-client