This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft File: Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft (raw, json) Hash identifier: uKvxQ7tF+4HRau1uOs4Qpe6Mfu8uKix/wUeWB9T3ZK4= Subject key identifier: 4D:7D:4D:1A:F4:1F:72:82:C4:81:0E:F4:81:58:24:0C:B3:61:FA:98 Authority key identifier: 67:70:C9:B9:40:57:48:D2:65:48:FD:5F:CA:7A:64:A0:38:D5:81:2D Certificate issuer: /CN=6770c9b9405748d26548fd5fca7a64a038d5812d Certificate serial: 019C41D8DE22671EFAA6C1BD2F1F8EB297FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z3DJuUBXSNJlSP1fynpkoDjVgS0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft Manifest number: 1351 Signing time: Mon 09 Feb 2026 10:00:57 +0000 Manifest this update: Mon 09 Feb 2026 10:00:57 +0000 Manifest next update: Tue 10 Feb 2026 10:00:57 +0000 Files and hashes: 1: Z3DJuUBXSNJlSP1fynpkoDjVgS0.crl (hash: wHJ6X0jkfcXbbGi/gMCwhuMDlX+O8VuZ1i/ctJZqf/8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft rsync://rpki.ripe.net/repository/DEFAULT/Z3DJuUBXSNJlSP1fynpkoDjVgS0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:de:22:67:1e:fa:a6:c1:bd:2f:1f:8e:b2:97:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6770c9b9405748d26548fd5fca7a64a038d5812d Validity Not Before: Feb 9 10:00:57 2026 GMT Not After : Feb 10 10:00:57 2026 GMT Subject: CN=4d7d4d1af41f7282c4810ef48158240cb361fa98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0f:b9:8b:b8:09:1d:64:c7:0c:7c:37:a8:ff: c9:76:5c:69:67:65:f4:cc:3a:59:97:c1:2f:65:05: 3c:02:0a:62:ef:d3:c2:df:32:a6:3f:3d:0d:a3:09: 24:df:cc:09:c1:a0:fe:42:f4:50:ad:33:39:fc:de: a6:7a:4c:77:0e:3f:2a:5e:0f:7c:16:6d:3c:29:78: 60:73:f7:4f:ff:ff:2e:2e:8d:2e:2e:dd:91:4a:14: c8:a7:ab:0b:cd:d4:da:d8:29:20:56:c1:da:8e:35: 38:8a:5d:79:52:f3:c9:cc:37:3a:1f:4e:72:1a:55: c4:0a:c6:5b:a5:df:a0:16:6c:4d:a5:00:f3:48:17: d5:6d:ca:f9:0c:c2:42:78:34:ea:99:ab:d4:08:e4: 52:6d:68:41:ca:d3:16:03:6c:16:a6:c2:ff:14:bb: 55:32:22:ca:30:7f:aa:7a:7d:0b:01:0a:04:2f:a5: a0:08:de:c4:32:b8:6c:7d:39:a2:fb:06:44:75:59: cf:44:e4:54:f1:c3:b5:a2:34:98:81:8d:c5:46:15: 13:01:61:ca:f5:a1:29:f6:0c:c3:7e:11:1b:ea:d6: f8:a5:9c:1e:e2:e9:d8:d4:71:02:75:0d:e2:c5:09: f4:28:56:e6:33:90:21:40:06:fd:a6:c8:5c:9b:c5: 7e:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7D:4D:1A:F4:1F:72:82:C4:81:0E:F4:81:58:24:0C:B3:61:FA:98 X509v3 Authority Key Identifier: keyid:67:70:C9:B9:40:57:48:D2:65:48:FD:5F:CA:7A:64:A0:38:D5:81:2D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z3DJuUBXSNJlSP1fynpkoDjVgS0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/9a56c5-b28c-43c9-a465-14887876aa0e/1/Z3DJuUBXSNJlSP1fynpkoDjVgS0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:f6:6e:ce:97:81:48:5c:fb:67:a5:ad:cf:15:0d:bb:a7:ce: 99:55:06:cb:b6:9c:a5:7d:54:63:8d:67:c9:c8:02:19:d4:ec: eb:12:10:ee:a5:f9:9c:37:04:61:c5:78:f3:c0:89:30:7b:91: 22:a0:29:bf:8d:6a:42:bc:a8:98:73:fc:7d:bf:42:61:3f:82: bc:e7:27:be:6f:e7:52:4a:c9:d4:5c:a6:50:f9:2e:d4:e0:0f: 25:f2:e7:5c:2a:da:30:77:1a:75:74:a5:c2:cc:8d:cf:70:a7: 8b:1f:49:d9:62:2c:98:6b:9c:dc:41:85:0a:a0:49:87:ba:36: 73:13:ad:49:b5:14:11:e6:b8:77:7c:c7:b3:ed:3e:da:59:6f: c4:8a:a4:8f:f4:4e:f7:5b:c2:f0:bd:d3:2c:17:e6:f9:aa:5f: 4a:69:68:6c:90:f8:b1:86:22:2e:ce:11:85:87:47:21:15:ff: b4:5a:31:bd:4a:a5:45:7f:34:47:48:06:92:b3:d8:2f:4c:a1: 6c:4d:3b:2a:d8:bf:44:10:23:b9:aa:c6:3e:6b:6b:c6:38:a7: e2:a9:e0:88:7a:67:31:17:c6:26:8c:dc:99:14:54:53:2e:eb: a3:e1:09:1f:94:aa:c6:48:3f:56:30:dd:76:6a:f3:33:0c:4d: 76:b1:1f:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2N4iZx76psG9Lx+Ospf6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3NzBjOWI5NDA1NzQ4ZDI2NTQ4ZmQ1ZmNhN2E2NGEwMzhk NTgxMmQwHhcNMjYwMjA5MTAwMDU3WhcNMjYwMjEwMTAwMDU3WjAzMTEwLwYDVQQD Eyg0ZDdkNGQxYWY0MWY3MjgyYzQ4MTBlZjQ4MTU4MjQwY2IzNjFmYTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmg+5i7gJHWTHDHw3qP/JdlxpZ2X0 zDpZl8EvZQU8Agpi79PC3zKmPz0Nowkk38wJwaD+QvRQrTM5/N6mekx3Dj8qXg98 Fm08KXhgc/dP//8uLo0uLt2RShTIp6sLzdTa2CkgVsHajjU4il15UvPJzDc6H05y GlXECsZbpd+gFmxNpQDzSBfVbcr5DMJCeDTqmavUCORSbWhBytMWA2wWpsL/FLtV MiLKMH+qen0LAQoEL6WgCN7EMrhsfTmi+wZEdVnPRORU8cO1ojSYgY3FRhUTAWHK 9aEp9gzDfhEb6tb4pZwe4unY1HECdQ3ixQn0KFbmM5AhQAb9pshcm8V+5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFE19TRr0H3KCxIEO9IFYJAyzYfqYMB8GA1UdIwQY MBaAFGdwyblAV0jSZUj9X8p6ZKA41YEtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjNESnVVQlhTTkpsU1AxZnlucGtvRGpWZ1MwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS85YTU2YzUtYjI4Yy00M2M5LWE0NjUt MTQ4ODc4NzZhYTBlLzEvWjNESnVVQlhTTkpsU1AxZnlucGtvRGpWZ1MwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS85YTU2YzUtYjI4Yy00M2M5LWE0NjUtMTQ4ODc4NzZhYTBl LzEvWjNESnVVQlhTTkpsU1AxZnlucGtvRGpWZ1MwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAevZuzpeB SFz7Z6WtzxUNu6fOmVUGy7acpX1UY41nycgCGdTs6xIQ7qX5nDcEYcV488CJMHuR IqApv41qQryomHP8fb9CYT+CvOcnvm/nUkrJ1FymUPku1OAPJfLnXCraMHcadXSl wsyNz3Cnix9J2WIsmGuc3EGFCqBJh7o2cxOtSbUUEea4d3zHs+0+2llvxIqkj/RO 91vC8L3TLBfm+apfSmlobJD4sYYiLs4RhYdHIRX/tFoxvUqlRX80R0gGkrPYL0yh bE07Kti/RBAjuarGPmtrxjin4qngiHpnMRfGJozcmRRUUy7ro+EJH5Sqxkg/VjDd dmrzMwxNdrEfwA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:28 2026 by rpki-client