This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft File: zrxhguhz_3oDHIiV79xXw2hx3XI.mft (raw, json) Hash identifier: 0VSPBbIZJVHVAUnwf/6EqnLzANOnBX7bqrrwP5cZr+o= Subject key identifier: D0:68:E3:FE:40:10:A7:17:19:71:C6:0A:43:98:2A:60:E9:AD:CD:7D Authority key identifier: CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72 Certificate issuer: /CN=cebc6182e873ff7a031c8895efdc57c36871dd72 Certificate serial: 019C41336DC97539D71118DB9BA89CEEF866 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft Manifest number: 03A3 Signing time: Mon 09 Feb 2026 07:00:15 +0000 Manifest this update: Mon 09 Feb 2026 07:00:15 +0000 Manifest next update: Tue 10 Feb 2026 07:00:15 +0000 Files and hashes: 1: zrxhguhz_3oDHIiV79xXw2hx3XI.crl (hash: 4m42hH3z4sVm3Wd4iwittRQSeeDmCUq/DtXClCVy6P8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:6d:c9:75:39:d7:11:18:db:9b:a8:9c:ee:f8:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cebc6182e873ff7a031c8895efdc57c36871dd72 Validity Not Before: Feb 9 07:00:15 2026 GMT Not After : Feb 10 07:00:15 2026 GMT Subject: CN=d068e3fe4010a7171971c60a43982a60e9adcd7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:12:c0:37:c5:ec:6f:c4:eb:99:fc:27:dc:e2: 78:22:28:85:51:fc:89:73:ed:da:a5:14:83:56:fd: 2a:f7:e3:87:89:ab:09:9e:5d:31:17:6d:a6:b9:25: 98:51:83:9b:53:7a:43:f1:0f:e3:04:60:df:90:28: db:a0:a4:f2:6c:fd:88:3e:24:b2:7b:41:6a:7c:6a: 8e:0b:4d:c1:fb:2e:a2:a7:44:3b:d9:ef:ee:b3:d4: d1:41:fb:93:ef:a6:63:49:a3:20:cb:b8:b3:96:cc: b7:ce:b5:72:d5:5e:d9:02:66:a0:41:f3:d7:99:b8: 7f:f5:dd:75:0e:86:57:30:e5:e8:6c:6d:d7:5a:6c: 2b:6c:a4:bf:e8:0c:1d:b9:97:73:8f:72:76:14:d4: d4:cb:b6:21:70:d8:74:c4:f6:de:3e:df:b5:64:5a: 72:05:e9:14:be:ba:b6:cd:65:c7:27:8b:ae:68:fb: bd:b3:3f:87:ad:8d:72:3a:a9:99:59:ac:a6:10:6e: db:4e:38:b3:ee:c1:24:92:25:0e:d8:de:0d:3f:f6: 15:50:60:b2:ca:11:7d:35:59:fc:3a:8c:58:a8:f5: ee:84:09:f2:eb:86:ec:84:71:98:a0:32:6b:6b:e7: 32:17:58:9f:cc:7b:93:c6:f4:44:d4:14:e8:c7:a5: 69:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:68:E3:FE:40:10:A7:17:19:71:C6:0A:43:98:2A:60:E9:AD:CD:7D X509v3 Authority Key Identifier: keyid:CE:BC:61:82:E8:73:FF:7A:03:1C:88:95:EF:DC:57:C3:68:71:DD:72 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zrxhguhz_3oDHIiV79xXw2hx3XI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/da/407bad-aed8-45e1-b3ea-2b369158a8b3/1/zrxhguhz_3oDHIiV79xXw2hx3XI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption de:07:bd:7e:9b:86:de:19:c6:74:d4:97:39:4c:52:e1:cb:f3: fb:b8:77:44:01:07:9f:a9:ea:84:d8:77:29:57:dd:33:8b:f7: b4:74:fd:6f:fa:85:9f:aa:58:f6:4f:98:74:d1:bd:ec:af:5c: db:85:e2:d5:0a:7c:6a:9b:c1:b2:8a:97:09:be:9d:f2:82:57: 5f:fb:c4:e0:6c:7c:d5:ba:ee:10:91:da:6b:5d:77:71:6e:a6: 2d:f8:58:3f:43:6b:25:54:04:18:b7:bd:98:fb:af:1a:2b:42: d1:cb:0d:90:da:f4:6e:d7:cf:cc:b2:3d:0a:a1:ff:d7:c1:20: 13:9d:69:4d:98:8f:86:57:d4:2a:8e:a5:ff:26:df:b2:7b:ce: a8:83:da:bc:25:50:f2:45:b3:a5:06:8f:60:a5:f7:9c:70:11: 2e:7a:56:ae:38:1d:73:e0:4f:0f:82:d3:df:43:b2:1e:b5:54: f7:54:85:94:0a:93:85:c5:00:b6:19:f8:25:6a:89:aa:cd:62: be:32:af:43:47:c1:2f:88:36:65:9a:97:f9:33:b4:7f:2c:84: ea:49:2d:9d:bb:1b:42:00:7e:94:93:03:46:81:1e:f5:19:da: 76:6a:1b:28:53:69:28:00:84:49:0b:0b:29:3b:f3:80:60:36: 91:35:e8:64 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM23JdTnXERjbm6ic7vhmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlYmM2MTgyZTg3M2ZmN2EwMzFjODg5NWVmZGM1N2MzNjg3 MWRkNzIwHhcNMjYwMjA5MDcwMDE1WhcNMjYwMjEwMDcwMDE1WjAzMTEwLwYDVQQD EyhkMDY4ZTNmZTQwMTBhNzE3MTk3MWM2MGE0Mzk4MmE2MGU5YWRjZDdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvRLAN8Xsb8Trmfwn3OJ4IiiFUfyJ c+3apRSDVv0q9+OHiasJnl0xF22muSWYUYObU3pD8Q/jBGDfkCjboKTybP2IPiSy e0FqfGqOC03B+y6ip0Q72e/us9TRQfuT76ZjSaMgy7izlsy3zrVy1V7ZAmagQfPX mbh/9d11DoZXMOXobG3XWmwrbKS/6AwduZdzj3J2FNTUy7YhcNh0xPbePt+1ZFpy BekUvrq2zWXHJ4uuaPu9sz+HrY1yOqmZWaymEG7bTjiz7sEkkiUO2N4NP/YVUGCy yhF9NVn8OoxYqPXuhAny64bshHGYoDJra+cyF1ifzHuTxvRE1BTox6VprQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBo4/5AEKcXGXHGCkOYKmDprc19MB8GA1UdIwQY MBaAFM68YYLoc/96AxyIle/cV8Nocd1yMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYS80MDdiYWQtYWVkOC00NWUxLWIzZWEt MmIzNjkxNThhOGIzLzEvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYS80MDdiYWQtYWVkOC00NWUxLWIzZWEtMmIzNjkxNThhOGIz LzEvenJ4aGd1aHpfM29ESElpVjc5eFh3Mmh4M1hJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3ge9fpuG 3hnGdNSXOUxS4cvz+7h3RAEHn6nqhNh3KVfdM4v3tHT9b/qFn6pY9k+YdNG97K9c 24Xi1Qp8apvBsoqXCb6d8oJXX/vE4Gx81bruEJHaa113cW6mLfhYP0NrJVQEGLe9 mPuvGitC0csNkNr0btfPzLI9CqH/18EgE51pTZiPhlfUKo6l/ybfsnvOqIPavCVQ 8kWzpQaPYKX3nHARLnpWrjgdc+BPD4LT30OyHrVU91SFlAqThcUAthn4JWqJqs1i vjKvQ0fBL4g2ZZqX+TO0fyyE6kktnbsbQgB+lJMDRoEe9RnadmobKFNpKACESQsL KTvzgGA2kTXoZA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:00 2026 by rpki-client