This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft File: zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft (raw, json) Hash identifier: Aq6W2+ToQc0n9I7rZYhUEkNSVfOAEwI99/WZN9dofUg= Subject key identifier: 38:03:B7:B1:CF:10:5F:B8:B4:74:EA:C2:00:2C:8F:DC:92:14:3A:1D Authority key identifier: CE:04:26:F9:D2:E5:F3:0A:B8:7A:82:76:7F:D8:96:EE:BA:4B:1C:57 Certificate issuer: /CN=ce0426f9d2e5f30ab87a82767fd896eeba4b1c57 Certificate serial: 019C43FE1BA37D3647C4D6AC22F4B9AA1E62 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft Manifest number: 0C49 Signing time: Mon 09 Feb 2026 20:00:52 +0000 Manifest this update: Mon 09 Feb 2026 20:00:52 +0000 Manifest next update: Tue 10 Feb 2026 20:00:52 +0000 Files and hashes: 1: zgQm-dLl8wq4eoJ2f9iW7rpLHFc.crl (hash: I1ZgzgQkPqZB+cMEl0ItL8YSwMkIYUX539zOGARvpeQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.crl rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft rsync://rpki.ripe.net/repository/DEFAULT/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:1b:a3:7d:36:47:c4:d6:ac:22:f4:b9:aa:1e:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce0426f9d2e5f30ab87a82767fd896eeba4b1c57 Validity Not Before: Feb 9 20:00:52 2026 GMT Not After : Feb 10 20:00:52 2026 GMT Subject: CN=3803b7b1cf105fb8b474eac2002c8fdc92143a1d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1e:13:54:83:4a:a0:f8:33:54:2b:ce:81:e9: ef:88:6d:33:d2:bd:6d:79:4e:58:88:75:14:f2:dd: 15:28:47:77:b4:e7:58:62:be:51:88:e4:63:ae:9c: 77:dd:64:bf:ab:2a:c1:c7:95:ce:0d:3a:52:65:5f: 6a:11:36:48:a0:1e:d8:3c:88:ed:58:28:9d:6f:74: 1f:ce:e2:6d:08:01:7b:d5:af:bf:31:9c:1e:e9:82: 2e:38:b1:7c:9a:2e:52:5f:38:ce:f9:e0:ba:37:ba: ab:9e:c9:8d:12:0b:75:d5:6e:7b:0e:7a:71:5b:7c: 8f:ea:f5:9b:29:76:7e:94:c2:17:20:f6:d7:75:49: 01:c6:2a:c1:8c:8a:92:bd:88:fa:d3:e2:6b:23:e6: 7a:86:3b:a7:5e:d3:fd:49:d0:6b:b3:06:40:6a:48: 8e:f0:f1:46:8b:4b:24:cb:e1:7c:40:72:da:bd:b6: 41:65:ea:14:43:d1:dd:75:67:c0:b7:fb:60:ea:45: 01:79:e7:78:e4:25:4b:f5:87:33:b4:9a:74:d6:32: 01:47:3a:3a:fc:7d:9c:ae:37:c2:e0:10:4d:8b:ed: c5:98:60:18:07:07:df:19:f8:f5:ac:de:19:ee:24: 07:e6:96:8c:e4:a1:6b:ad:d0:85:16:74:81:f1:60: 5a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:03:B7:B1:CF:10:5F:B8:B4:74:EA:C2:00:2C:8F:DC:92:14:3A:1D X509v3 Authority Key Identifier: keyid:CE:04:26:F9:D2:E5:F3:0A:B8:7A:82:76:7F:D8:96:EE:BA:4B:1C:57 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/394dc0-75aa-40a8-8222-ee4a4618524c/1/zgQm-dLl8wq4eoJ2f9iW7rpLHFc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:7a:d6:35:0e:13:fd:43:d1:61:5a:55:1d:80:c0:ca:05:df: 48:69:4f:fd:1b:21:29:c7:57:6a:25:c9:05:df:73:42:89:72: 71:a5:9e:7c:d0:9c:41:10:1e:c1:a3:1a:97:77:f6:76:50:f9: ac:ad:9d:25:23:58:48:c8:b5:97:b9:c5:22:21:92:33:b1:66: dc:e9:34:e0:a8:c3:88:70:cf:fa:cc:31:b6:c5:74:26:0b:7c: 79:c2:40:fa:db:6b:3f:c9:61:74:42:fe:7f:3d:eb:b8:20:17: 50:a9:80:20:47:59:1e:85:d4:c5:d8:c4:ee:72:07:42:6f:6e: aa:e1:54:8e:41:64:0a:d5:9d:26:a2:8d:64:fd:1d:86:63:00: db:01:d6:b9:40:7d:9c:16:c1:b3:ca:31:58:41:89:20:37:45: a8:9d:14:3e:4e:9f:de:98:d5:24:e3:35:2c:41:0a:0c:96:56: 8b:8d:44:ee:82:e4:c0:e0:da:b2:de:da:84:9f:72:17:d7:d0: dc:3c:15:f9:0b:2c:71:49:c7:53:d2:64:f8:9a:c3:be:a3:a9: 4f:b5:32:22:20:a0:5e:ac:85:f8:fc:90:66:d2:27:54:e0:74: a1:e8:e4:e6:68:08:0a:65:f9:dd:93:fd:79:4f:45:10:81:56: 08:52:de:6e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/hujfTZHxNasIvS5qh5iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlMDQyNmY5ZDJlNWYzMGFiODdhODI3NjdmZDg5NmVlYmE0 YjFjNTcwHhcNMjYwMjA5MjAwMDUyWhcNMjYwMjEwMjAwMDUyWjAzMTEwLwYDVQQD EygzODAzYjdiMWNmMTA1ZmI4YjQ3NGVhYzIwMDJjOGZkYzkyMTQzYTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnR4TVINKoPgzVCvOgenviG0z0r1t eU5YiHUU8t0VKEd3tOdYYr5RiORjrpx33WS/qyrBx5XODTpSZV9qETZIoB7YPIjt WCidb3QfzuJtCAF71a+/MZwe6YIuOLF8mi5SXzjO+eC6N7qrnsmNEgt11W57Dnpx W3yP6vWbKXZ+lMIXIPbXdUkBxirBjIqSvYj60+JrI+Z6hjunXtP9SdBrswZAakiO 8PFGi0sky+F8QHLavbZBZeoUQ9HddWfAt/tg6kUBeed45CVL9YcztJp01jIBRzo6 /H2crjfC4BBNi+3FmGAYBwffGfj1rN4Z7iQH5paM5KFrrdCFFnSB8WBaWwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDgDt7HPEF+4tHTqwgAsj9ySFDodMB8GA1UdIwQY MBaAFM4EJvnS5fMKuHqCdn/Ylu66SxxXMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemdRbS1kTGw4d3E0ZW9KMmY5aVc3cnBMSEZjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMi8zOTRkYzAtNzVhYS00MGE4LTgyMjIt ZWU0YTQ2MTg1MjRjLzEvemdRbS1kTGw4d3E0ZW9KMmY5aVc3cnBMSEZjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMi8zOTRkYzAtNzVhYS00MGE4LTgyMjItZWU0YTQ2MTg1MjRj LzEvemdRbS1kTGw4d3E0ZW9KMmY5aVc3cnBMSEZjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfHrWNQ4T /UPRYVpVHYDAygXfSGlP/RshKcdXaiXJBd9zQolycaWefNCcQRAewaMal3f2dlD5 rK2dJSNYSMi1l7nFIiGSM7Fm3Ok04KjDiHDP+swxtsV0Jgt8ecJA+ttrP8lhdEL+ fz3ruCAXUKmAIEdZHoXUxdjE7nIHQm9uquFUjkFkCtWdJqKNZP0dhmMA2wHWuUB9 nBbBs8oxWEGJIDdFqJ0UPk6f3pjVJOM1LEEKDJZWi41E7oLkwODast7ahJ9yF9fQ 3DwV+QsscUnHU9Jk+JrDvqOpT7UyIiCgXqyF+PyQZtInVOB0oejk5mgICmX53ZP9 eU9FEIFWCFLebg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:48:57 2026 by rpki-client