This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft File: zo2SrOCAEcTQrsjyKGVxW9kaASI.mft (raw, json) Hash identifier: Yge6wk+T7yWYFXOJ8K2B7bN+JgCBIre4+KbzvK6/nrw= Subject key identifier: 2C:BA:CE:14:D0:E8:9F:FB:17:58:95:A5:62:28:51:16:56:FE:14:7B Authority key identifier: CE:8D:92:AC:E0:80:11:C4:D0:AE:C8:F2:28:65:71:5B:D9:1A:01:22 Certificate issuer: /CN=ce8d92ace08011c4d0aec8f22865715bd91a0122 Certificate serial: 019C424683BC435D8C3F0641DBB24FCF4C22 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 12:00:43 +0000 Manifest this update: Mon 09 Feb 2026 12:00:43 +0000 Manifest next update: Tue 10 Feb 2026 12:00:43 +0000 Files and hashes: 1: 2WuQdzmfTzUsr5yT6_ElWI37EFQ.roa (hash: UEPfvyzT8876g2v5SGvEl+4/qaMtSPjm6N+hA2QZZSY=) 2: zo2SrOCAEcTQrsjyKGVxW9kaASI.crl (hash: N6bt9B1gXXJUzQpzbrdOny6U7KW2nle+738pcEm2JDk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.crl rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:83:bc:43:5d:8c:3f:06:41:db:b2:4f:cf:4c:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce8d92ace08011c4d0aec8f22865715bd91a0122 Validity Not Before: Feb 9 12:00:43 2026 GMT Not After : Feb 10 12:00:43 2026 GMT Subject: CN=2cbace14d0e89ffb175895a56228511656fe147b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7e:cc:d7:e4:f6:9a:a8:d4:f6:e5:c8:14:0e: a5:7e:cb:4a:a3:56:30:a9:90:01:78:cd:be:44:f9: 42:4f:b6:10:4d:e5:90:db:fc:22:e2:db:ee:50:c1: f6:ac:20:25:7d:ea:bf:0d:b4:bf:84:ee:c9:fb:07: 61:79:3d:d5:e7:0f:bb:ef:55:b5:f7:3c:59:fc:90: 00:05:3e:b8:c8:9d:bc:b4:97:70:5e:4a:70:f0:a9: f6:4d:2d:ee:bb:dc:6f:c9:6b:49:3b:0d:16:40:34: 93:8c:19:a7:53:b6:10:62:14:9e:75:c9:b2:b7:12: 8f:d3:bd:79:11:d6:4d:33:50:37:a6:83:65:94:1f: 77:b3:3a:bc:92:10:39:2d:9f:77:00:0f:c3:6b:2e: c0:43:9e:72:e4:a1:81:24:12:4e:ae:f4:e1:4a:3e: ae:14:05:12:3d:22:41:63:2d:69:07:c5:99:5a:fc: 8e:f5:df:97:d7:d9:24:73:0c:7a:bb:1a:52:eb:28: aa:51:19:97:83:4e:2f:37:0e:32:1d:be:50:d3:79: b9:3b:c3:b9:28:bf:96:1f:2a:62:a9:3b:d2:78:d0: 03:2c:7a:3d:42:05:1c:78:27:ef:25:1c:84:6f:61: bb:cc:da:19:19:dc:1d:91:71:cc:ba:3c:4f:87:65: bf:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:BA:CE:14:D0:E8:9F:FB:17:58:95:A5:62:28:51:16:56:FE:14:7B X509v3 Authority Key Identifier: keyid:CE:8D:92:AC:E0:80:11:C4:D0:AE:C8:F2:28:65:71:5B:D9:1A:01:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zo2SrOCAEcTQrsjyKGVxW9kaASI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d1/143d0b-7755-4250-8a8c-545449e49f73/1/zo2SrOCAEcTQrsjyKGVxW9kaASI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:69:3d:0e:47:82:31:13:98:3e:b3:84:46:a5:a3:75:5b:f2: ad:12:94:41:f2:28:3f:56:b3:e3:d6:1e:40:65:ff:41:06:12: b3:62:28:3a:c2:00:4c:53:22:dc:65:04:cb:22:7a:56:c4:88: 85:a5:fe:12:f7:d6:8d:67:77:01:6c:b3:2a:6f:bb:7c:02:89: c2:c3:69:3c:84:f8:b5:7e:36:0a:6c:8b:cd:27:03:fa:fc:09: a6:fc:69:92:02:8d:6a:79:f1:79:38:46:f5:7f:91:2e:b5:66: 36:e5:3f:f1:fd:dc:8b:95:d3:77:8f:85:fc:2c:78:a1:29:d0: c8:dd:fd:92:d4:e4:dc:b6:56:c8:9f:e6:ce:80:10:54:5e:e3: 96:04:32:4a:e6:38:cc:ca:27:a9:93:a0:05:24:28:42:1b:9c: 2b:cd:e9:d2:9f:f3:d0:15:a2:52:2a:f8:b7:b3:e3:8b:6f:c1: e6:fe:ac:16:20:60:d6:6c:0c:cf:e3:b8:bc:4c:fd:b9:c0:08: db:84:6f:c6:f1:fe:be:c9:bd:4f:0f:24:f3:7b:cf:89:79:9f: b4:d6:73:ee:ee:f9:b5:92:c8:43:1f:d8:3b:15:3a:32:d8:5c: c4:44:ce:a5:a5:c8:44:d9:d1:dc:8d:ea:bf:8a:9f:18:df:b8: 14:a3:01:48 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoO8Q12MPwZB27JPz0wiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlOGQ5MmFjZTA4MDExYzRkMGFlYzhmMjI4NjU3MTViZDkx YTAxMjIwHhcNMjYwMjA5MTIwMDQzWhcNMjYwMjEwMTIwMDQzWjAzMTEwLwYDVQQD EygyY2JhY2UxNGQwZTg5ZmZiMTc1ODk1YTU2MjI4NTExNjU2ZmUxNDdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuH7M1+T2mqjU9uXIFA6lfstKo1Yw qZABeM2+RPlCT7YQTeWQ2/wi4tvuUMH2rCAlfeq/DbS/hO7J+wdheT3V5w+771W1 9zxZ/JAABT64yJ28tJdwXkpw8Kn2TS3uu9xvyWtJOw0WQDSTjBmnU7YQYhSedcmy txKP0715EdZNM1A3poNllB93szq8khA5LZ93AA/Day7AQ55y5KGBJBJOrvThSj6u FAUSPSJBYy1pB8WZWvyO9d+X19kkcwx6uxpS6yiqURmXg04vNw4yHb5Q03m5O8O5 KL+WHypiqTvSeNADLHo9QgUceCfvJRyEb2G7zNoZGdwdkXHMujxPh2W/EwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCy6zhTQ6J/7F1iVpWIoURZW/hR7MB8GA1UdIwQY MBaAFM6NkqzggBHE0K7I8ihlcVvZGgEiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvem8yU3JPQ0FFY1RRcnNqeUtHVnhXOWthQVNJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMS8xNDNkMGItNzc1NS00MjUwLThhOGMt NTQ1NDQ5ZTQ5ZjczLzEvem8yU3JPQ0FFY1RRcnNqeUtHVnhXOWthQVNJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMS8xNDNkMGItNzc1NS00MjUwLThhOGMtNTQ1NDQ5ZTQ5Zjcz LzEvem8yU3JPQ0FFY1RRcnNqeUtHVnhXOWthQVNJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfGk9DkeC MROYPrOERqWjdVvyrRKUQfIoP1az49YeQGX/QQYSs2IoOsIATFMi3GUEyyJ6VsSI haX+EvfWjWd3AWyzKm+7fAKJwsNpPIT4tX42CmyLzScD+vwJpvxpkgKNannxeThG 9X+RLrVmNuU/8f3ci5XTd4+F/Cx4oSnQyN39ktTk3LZWyJ/mzoAQVF7jlgQySuY4 zMonqZOgBSQoQhucK83p0p/z0BWiUir4t7Pji2/B5v6sFiBg1mwMz+O4vEz9ucAI 24RvxvH+vsm9Tw8k83vPiXmftNZz7u75tZLIQx/YOxU6MthcxETOpaXIRNnR3I3q v4qfGN+4FKMBSA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:22 2026 by rpki-client