This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft File: z3P3vZzZk2geMP7FxZtHVlIroxw.mft (raw, json) Hash identifier: wGgnahnYyQBdYXzkaK0Ihwp3WUSa8JYl3nf0K3glkJs= Subject key identifier: 40:D7:78:D5:62:E6:32:00:9A:33:AF:3B:15:3D:2B:98:73:3F:23:67 Authority key identifier: CF:73:F7:BD:9C:D9:93:68:1E:30:FE:C5:C5:9B:47:56:52:2B:A3:1C Certificate issuer: /CN=cf73f7bd9cd993681e30fec5c59b4756522ba31c Certificate serial: 019C438FF07F6F0023D175A259FB93383B9A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 18:00:32 +0000 Manifest this update: Mon 09 Feb 2026 18:00:32 +0000 Manifest next update: Tue 10 Feb 2026 18:00:32 +0000 Files and hashes: 1: z3P3vZzZk2geMP7FxZtHVlIroxw.crl (hash: q/MYpdo12tyGu50oW7xhERh7S1uke7pU5iFNOUxmqAw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.crl rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f0:7f:6f:00:23:d1:75:a2:59:fb:93:38:3b:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=cf73f7bd9cd993681e30fec5c59b4756522ba31c Validity Not Before: Feb 9 18:00:32 2026 GMT Not After : Feb 10 18:00:32 2026 GMT Subject: CN=40d778d562e632009a33af3b153d2b98733f2367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0c:a0:2a:1f:05:ed:22:be:b7:49:2a:93:ae: 2c:53:c6:37:7f:b0:64:dc:68:30:c7:60:5d:b5:04: 63:28:43:d4:10:71:8a:f1:f2:b6:a9:82:46:89:78: f1:73:7c:b4:d0:95:66:fa:77:c4:80:a3:b9:e2:d9: e3:d2:17:24:28:52:1f:ec:9f:5f:d0:12:28:7b:ad: ec:68:86:e9:5e:64:1b:48:a0:cd:46:ec:cc:11:60: 4c:2f:5d:1e:b8:22:24:fe:66:19:d7:e0:8f:8b:76: 91:21:3b:ea:77:61:8c:52:0e:ef:42:d2:32:79:4d: cb:b5:89:46:d3:46:df:7c:34:1b:64:dc:bc:fc:45: 9b:59:ee:6c:b1:75:e5:b9:83:24:c1:57:ec:d5:53: d6:85:20:42:d8:90:4e:cd:c4:d7:4a:5f:cd:c6:6c: 37:28:5e:b2:2c:1b:d1:f9:a0:03:51:71:0a:b3:c4: a3:de:74:8a:c1:99:19:e0:55:94:a5:5c:69:6b:ff: cb:3e:7b:8a:b8:e7:ce:78:2e:1b:6c:f6:63:47:83: 77:bb:fe:60:05:44:4c:9d:cd:40:09:f9:89:e9:0d: ce:8d:f1:4d:b1:25:77:6a:d3:bb:91:9c:50:fe:ff: 95:30:cc:66:68:8e:ab:b9:89:ca:17:61:48:29:e3: b5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:D7:78:D5:62:E6:32:00:9A:33:AF:3B:15:3D:2B:98:73:3F:23:67 X509v3 Authority Key Identifier: keyid:CF:73:F7:BD:9C:D9:93:68:1E:30:FE:C5:C5:9B:47:56:52:2B:A3:1C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/z3P3vZzZk2geMP7FxZtHVlIroxw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/0b0d7f-8196-4275-a911-7a793992fba0/1/z3P3vZzZk2geMP7FxZtHVlIroxw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:fb:d5:5f:cb:50:13:58:3f:f4:26:b3:6e:cf:cb:be:d9:d9: b8:0d:d2:69:55:de:f4:e2:a9:a1:0c:c6:c7:85:c8:9b:a6:4e: dd:35:e7:0f:53:98:7c:17:d0:a0:83:76:7d:a3:6d:ba:09:e6: 1d:6a:46:9d:24:b8:49:ea:79:e6:dd:12:84:71:a9:83:e2:38: 16:40:61:0e:be:59:a4:c0:4e:6e:2f:47:13:f3:20:a2:29:33: 37:a5:e5:6c:9c:12:5d:ee:7e:0a:b6:58:b1:ca:a3:99:c7:ee: f2:ca:b2:f9:7c:57:3f:1f:d8:b2:0a:72:b5:52:d7:ac:a7:e2: b9:28:55:3c:b4:58:9d:2f:50:b5:e2:dc:05:8c:3b:76:e6:86: 36:85:61:7d:fb:ca:2b:95:20:68:03:a9:a5:df:ee:fd:28:51: 35:d6:1f:0d:49:57:ee:91:e8:d1:0b:fd:4c:8d:c3:ff:e3:38: 77:72:0c:d4:9b:8e:89:64:db:bf:ec:a1:3e:ea:a8:a8:e5:ec: 01:68:f4:75:08:d4:f9:32:4d:c6:eb:6a:a4:78:9e:9f:d5:26: 3c:f0:91:ec:02:6a:7b:c1:38:a5:4f:2f:e8:6f:e2:a9:94:84: a8:b7:ae:2d:1d:c1:45:2e:f2:b9:5d:30:52:26:3e:f1:dd:57: 21:9e:89:88 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/B/bwAj0XWiWfuTODuaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNmNzNmN2JkOWNkOTkzNjgxZTMwZmVjNWM1OWI0NzU2NTIy YmEzMWMwHhcNMjYwMjA5MTgwMDMyWhcNMjYwMjEwMTgwMDMyWjAzMTEwLwYDVQQD Eyg0MGQ3NzhkNTYyZTYzMjAwOWEzM2FmM2IxNTNkMmI5ODczM2YyMzY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArgygKh8F7SK+t0kqk64sU8Y3f7Bk 3Ggwx2BdtQRjKEPUEHGK8fK2qYJGiXjxc3y00JVm+nfEgKO54tnj0hckKFIf7J9f 0BIoe63saIbpXmQbSKDNRuzMEWBML10euCIk/mYZ1+CPi3aRITvqd2GMUg7vQtIy eU3LtYlG00bffDQbZNy8/EWbWe5ssXXluYMkwVfs1VPWhSBC2JBOzcTXSl/Nxmw3 KF6yLBvR+aADUXEKs8Sj3nSKwZkZ4FWUpVxpa//LPnuKuOfOeC4bbPZjR4N3u/5g BURMnc1ACfmJ6Q3OjfFNsSV3atO7kZxQ/v+VMMxmaI6ruYnKF2FIKeO1fQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEDXeNVi5jIAmjOvOxU9K5hzPyNnMB8GA1UdIwQY MBaAFM9z972c2ZNoHjD+xcWbR1ZSK6McMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvejNQM3ZaelprMmdlTVA3RnhadEhWbElyb3h3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8wYjBkN2YtODE5Ni00Mjc1LWE5MTEt N2E3OTM5OTJmYmEwLzEvejNQM3ZaelprMmdlTVA3RnhadEhWbElyb3h3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8wYjBkN2YtODE5Ni00Mjc1LWE5MTEtN2E3OTM5OTJmYmEw LzEvejNQM3ZaelprMmdlTVA3RnhadEhWbElyb3h3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACPvVX8tQ E1g/9Cazbs/LvtnZuA3SaVXe9OKpoQzGx4XIm6ZO3TXnD1OYfBfQoIN2faNtugnm HWpGnSS4Sep55t0ShHGpg+I4FkBhDr5ZpMBObi9HE/MgoikzN6XlbJwSXe5+CrZY scqjmcfu8sqy+XxXPx/YsgpytVLXrKfiuShVPLRYnS9QteLcBYw7duaGNoVhffvK K5UgaAOppd/u/ShRNdYfDUlX7pHo0Qv9TI3D/+M4d3IM1JuOiWTbv+yhPuqoqOXs AWj0dQjU+TJNxutqpHien9UmPPCR7AJqe8E4pU8v6G/iqZSEqLeuLR3BRS7yuV0w UiY+8d1XIZ6JiA== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:55 2026 by rpki-client