This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft File: rzA4pxexVOHPpHEWgy2ibyiyowQ.mft (raw, json) Hash identifier: ChLdbYRX102+3JDU78Mii5IP8agCtkxl5Pzo5qsqljY= Subject key identifier: 42:F5:3D:6C:43:1E:5F:27:00:70:37:28:E7:55:50:3D:9D:16:85:A0 Authority key identifier: AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04 Certificate issuer: /CN=af3038a717b154e1cfa47116832da26f28b2a304 Certificate serial: 019C4359276355356C70CDA0F0AB0BEE237A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 17:00:41 +0000 Manifest this update: Mon 09 Feb 2026 17:00:41 +0000 Manifest next update: Tue 10 Feb 2026 17:00:41 +0000 Files and hashes: 1: pjZgFrUWO8BOoL-HaPMDCBP4Z3k.roa (hash: DJfWljw06kfL4VTqBzgexrUkOVmGrJBBRKqjdLiN9zA=) 2: rzA4pxexVOHPpHEWgy2ibyiyowQ.crl (hash: 0gYhmoWnD0hT3OHB6tIG6xUgjWdQHZytZQDpOw1lrQw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:27:63:55:35:6c:70:cd:a0:f0:ab:0b:ee:23:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af3038a717b154e1cfa47116832da26f28b2a304 Validity Not Before: Feb 9 17:00:41 2026 GMT Not After : Feb 10 17:00:41 2026 GMT Subject: CN=42f53d6c431e5f2700703728e755503d9d1685a0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:73:32:b1:3d:17:59:4b:4f:a5:32:5d:bf:91: 76:8d:70:58:d9:71:07:1f:4c:14:c9:27:09:cb:08: 6d:d3:37:84:a1:82:3e:0f:24:48:99:37:ea:13:fa: a0:6b:a9:9c:16:f2:4e:44:06:ad:46:76:96:22:d6: b6:b8:fd:c1:cb:c2:69:07:0e:09:7d:db:bb:4a:49: 8e:ff:af:60:2b:3c:2c:8a:f8:31:db:94:82:83:c3: 3a:e6:4a:fd:ae:87:8d:1d:01:ae:29:d3:cc:57:70: 47:79:cc:ca:f7:73:01:47:73:fe:f5:e3:c7:e1:d8: 0e:31:34:16:40:72:03:a5:e7:a1:83:55:b8:ee:c0: a2:68:62:1b:c0:e9:8a:e2:96:d8:d2:ff:b7:ab:3e: 53:4f:71:61:96:94:60:ec:73:49:d1:9e:b5:33:0f: 08:c8:b5:37:81:4e:ed:8e:9f:c5:69:42:41:73:08: f1:01:8d:74:de:6e:96:13:db:0e:57:63:59:0d:11: 51:06:61:d7:f8:72:98:eb:73:3f:c3:1f:57:a0:8e: d6:bb:72:98:58:96:b3:60:50:49:16:98:9d:89:96: 51:23:fa:e7:82:cb:f9:3c:08:7c:d1:4a:d7:b2:5d: b9:42:ad:82:71:2f:e2:d5:8d:24:ee:d8:b4:29:76: d5:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:F5:3D:6C:43:1E:5F:27:00:70:37:28:E7:55:50:3D:9D:16:85:A0 X509v3 Authority Key Identifier: keyid:AF:30:38:A7:17:B1:54:E1:CF:A4:71:16:83:2D:A2:6F:28:B2:A3:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/rzA4pxexVOHPpHEWgy2ibyiyowQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/6cfb78-63bc-4820-b903-860c49d0eb6a/1/rzA4pxexVOHPpHEWgy2ibyiyowQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:4d:d7:95:67:fb:97:ae:4b:f5:24:49:0f:18:54:a3:fb:77: 26:43:11:f3:da:5d:36:10:27:e1:ec:79:0f:26:2f:e6:aa:58: 59:e9:f2:9d:59:cc:65:0b:19:fe:24:70:3b:8f:7d:aa:cf:44: 29:e6:7d:dc:15:11:4b:af:9f:41:a8:d9:7e:78:a4:8f:20:b2: d3:18:f1:ea:90:0d:2a:0d:fc:24:dc:04:44:9f:ae:ae:1a:48: e5:54:b4:43:91:9d:93:a2:3d:41:7e:bb:d8:9a:9a:47:fd:e2: 52:7a:98:72:2f:52:c0:bf:d6:c3:a3:0f:df:b8:85:3a:da:0e: ad:dd:68:f0:da:fa:08:d2:7e:f1:80:0e:49:28:9a:ce:49:7b: 46:a2:ed:08:f5:bf:12:cd:80:c8:5b:7f:c5:32:77:fb:80:14: 65:2e:a4:05:13:48:0c:5c:a0:79:ab:d6:dd:b3:5f:19:2e:e1: e2:3b:0c:1b:94:24:61:e3:b7:c2:b7:b0:83:5e:85:9f:8f:22: 1a:cf:e6:d7:a6:25:fb:23:52:82:14:0c:59:3b:f6:54:46:47: a7:df:f9:20:72:2c:8b:e3:b1:1b:87:7f:66:4c:34:23:55:ad: cd:55:28:69:d5:af:fc:c6:c7:31:2a:59:ea:c8:28:7b:b9:5b: 73:6f:e6:99 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWSdjVTVscM2g8KsL7iN6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmMzAzOGE3MTdiMTU0ZTFjZmE0NzExNjgzMmRhMjZmMjhi MmEzMDQwHhcNMjYwMjA5MTcwMDQxWhcNMjYwMjEwMTcwMDQxWjAzMTEwLwYDVQQD Eyg0MmY1M2Q2YzQzMWU1ZjI3MDA3MDM3MjhlNzU1NTAzZDlkMTY4NWEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlHMysT0XWUtPpTJdv5F2jXBY2XEH H0wUyScJywht0zeEoYI+DyRImTfqE/qga6mcFvJORAatRnaWIta2uP3By8JpBw4J fdu7SkmO/69gKzwsivgx25SCg8M65kr9roeNHQGuKdPMV3BHeczK93MBR3P+9ePH 4dgOMTQWQHIDpeehg1W47sCiaGIbwOmK4pbY0v+3qz5TT3FhlpRg7HNJ0Z61Mw8I yLU3gU7tjp/FaUJBcwjxAY103m6WE9sOV2NZDRFRBmHX+HKY63M/wx9XoI7Wu3KY WJazYFBJFpidiZZRI/rngsv5PAh80UrXsl25Qq2CcS/i1Y0k7ti0KXbVlQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEL1PWxDHl8nAHA3KOdVUD2dFoWgMB8GA1UdIwQY MBaAFK8wOKcXsVThz6RxFoMtom8osqMEMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMt ODYwYzQ5ZDBlYjZhLzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNy82Y2ZiNzgtNjNiYy00ODIwLWI5MDMtODYwYzQ5ZDBlYjZh LzEvcnpBNHB4ZXhWT0hQcEhFV2d5MmlieWl5b3dRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATk3XlWf7 l65L9SRJDxhUo/t3JkMR89pdNhAn4ex5DyYv5qpYWenynVnMZQsZ/iRwO499qs9E KeZ93BURS6+fQajZfnikjyCy0xjx6pANKg38JNwERJ+urhpI5VS0Q5Gdk6I9QX67 2JqaR/3iUnqYci9SwL/Ww6MP37iFOtoOrd1o8Nr6CNJ+8YAOSSiazkl7RqLtCPW/ Es2AyFt/xTJ3+4AUZS6kBRNIDFygeavW3bNfGS7h4jsMG5QkYeO3wrewg16Fn48i Gs/m16Yl+yNSghQMWTv2VEZHp9/5IHIsi+OxG4d/Zkw0I1WtzVUoadWv/MbHMSpZ 6sgoe7lbc2/mmQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:06 2026 by rpki-client