This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft File: Z8i133U8dJrleBD52T87pRrgXVw.mft (raw, json) Hash identifier: g+hJR8Q4Ik96mck3iXN9NzOD+9VGAEczVed6YNN/pYQ= Subject key identifier: B8:4E:9C:EE:ED:BC:57:EF:1C:1E:85:18:74:ED:29:DC:B9:FD:A0:BD Authority key identifier: 67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C Certificate issuer: /CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c Certificate serial: 019C4322CD4937D8414494BE2332EFF23C40 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft Manifest number: 110C Signing time: Mon 09 Feb 2026 16:01:20 +0000 Manifest this update: Mon 09 Feb 2026 16:01:20 +0000 Manifest next update: Tue 10 Feb 2026 16:01:20 +0000 Files and hashes: 1: Z8i133U8dJrleBD52T87pRrgXVw.crl (hash: 79CzGPK7HJZGrbCEZqJ8L8UCJERGfcLxFuRss+R2/kQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cd:49:37:d8:41:44:94:be:23:32:ef:f2:3c:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67c8b5df753c749ae57810f9d93f3ba51ae05d5c Validity Not Before: Feb 9 16:01:20 2026 GMT Not After : Feb 10 16:01:20 2026 GMT Subject: CN=b84e9ceeedbc57ef1c1e851874ed29dcb9fda0bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b2:4d:de:ab:b7:b5:18:4e:78:0b:6c:42:85: 69:5e:79:2e:df:c8:2e:ee:37:c4:84:cf:e8:50:d5: ab:be:24:1d:ed:1a:21:78:97:ce:69:97:15:9e:9e: 21:dd:61:59:2c:ac:88:d1:4c:a8:81:e4:91:ad:4c: 8d:7c:4f:d3:07:95:9b:75:a9:fe:3e:60:bb:22:4b: f5:16:3c:42:bc:63:a0:c7:be:89:4b:71:8e:f8:dc: 81:19:c3:7c:4b:ed:98:21:fc:a5:8c:a3:36:81:50: 7d:13:6b:c0:02:4e:d6:ce:c2:be:0c:be:a4:6b:ec: 90:c0:ad:11:d1:85:9b:c2:a1:21:da:eb:31:9e:74: c9:76:7e:bc:f8:34:ca:cc:b0:8d:a1:9a:ab:f4:96: 9e:26:ae:f8:e7:89:0e:c0:f1:08:45:17:f5:34:57: 64:83:fd:b8:6e:e8:04:de:91:85:dd:1c:fa:40:e4: 95:42:d4:b3:ae:2b:b8:b7:04:f5:d3:8e:07:71:e7: cd:fb:1b:6e:56:9a:9e:cb:34:b1:7c:b7:0c:f8:7d: 56:33:93:b6:d1:a8:4a:7d:0d:a4:a0:8c:a9:81:c1: 36:29:a7:b1:82:88:2f:6c:47:5c:43:51:1e:d2:c5: 2c:91:20:89:ce:67:b5:c9:b8:40:0f:47:b9:d9:53: d1:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:4E:9C:EE:ED:BC:57:EF:1C:1E:85:18:74:ED:29:DC:B9:FD:A0:BD X509v3 Authority Key Identifier: keyid:67:C8:B5:DF:75:3C:74:9A:E5:78:10:F9:D9:3F:3B:A5:1A:E0:5D:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z8i133U8dJrleBD52T87pRrgXVw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/d50be2-b9b6-477b-84fc-fbe47ad62aa5/1/Z8i133U8dJrleBD52T87pRrgXVw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:0d:56:af:36:29:96:61:f8:d4:7c:4c:21:a7:74:db:33:e7: eb:c8:4e:42:2f:a5:80:81:99:92:6b:60:87:fb:29:60:a3:61: 2c:e7:28:80:15:c8:b8:ef:b0:4f:9c:20:65:66:1d:37:0b:eb: 30:8c:f8:1f:cf:4f:37:de:01:bd:e2:a3:09:9b:96:7c:b4:9e: 3f:f3:a4:c9:a8:62:b1:b0:a8:d2:0b:96:99:4c:84:ca:c1:b0: e1:7d:27:7a:ea:b1:e4:29:f8:aa:a3:44:34:81:92:6b:5d:ec: 25:21:e5:21:45:83:f9:d1:4f:72:9d:5f:47:20:2d:32:24:f4: bb:d3:40:3c:de:53:5f:17:6e:84:c7:04:80:02:e2:e6:a8:80: 8e:81:fe:15:74:05:e8:75:70:34:eb:2f:cf:6a:3a:2e:8e:19: 53:44:df:7f:54:9c:c9:cb:55:ab:7f:ce:ae:45:b3:e0:ca:3d: 5c:30:cf:fb:22:03:b3:56:70:7b:55:83:75:1a:88:03:24:5f: 4c:63:2e:cc:b5:d2:07:58:19:5b:33:59:bb:da:58:f6:81:64: 2b:67:54:bb:6f:b5:fe:3a:83:4c:01:0a:88:5e:48:95:fc:16: 4d:7e:80:fb:26:cc:86:7d:06:4b:1c:cb:56:3e:aa:b9:03:0b: dd:01:29:a7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIs1JN9hBRJS+IzLv8jxAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY3YzhiNWRmNzUzYzc0OWFlNTc4MTBmOWQ5M2YzYmE1MWFl MDVkNWMwHhcNMjYwMjA5MTYwMTIwWhcNMjYwMjEwMTYwMTIwWjAzMTEwLwYDVQQD EyhiODRlOWNlZWVkYmM1N2VmMWMxZTg1MTg3NGVkMjlkY2I5ZmRhMGJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtrJN3qu3tRhOeAtsQoVpXnku38gu 7jfEhM/oUNWrviQd7RoheJfOaZcVnp4h3WFZLKyI0UyogeSRrUyNfE/TB5Wbdan+ PmC7Ikv1FjxCvGOgx76JS3GO+NyBGcN8S+2YIfyljKM2gVB9E2vAAk7WzsK+DL6k a+yQwK0R0YWbwqEh2usxnnTJdn68+DTKzLCNoZqr9JaeJq7454kOwPEIRRf1NFdk g/24bugE3pGF3Rz6QOSVQtSzriu4twT1044HcefN+xtuVpqeyzSxfLcM+H1WM5O2 0ahKfQ2koIypgcE2KaexgogvbEdcQ1Ee0sUskSCJzme1ybhAD0e52VPRlwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLhOnO7tvFfvHB6FGHTtKdy5/aC9MB8GA1UdIwQY MBaAFGfItd91PHSa5XgQ+dk/O6Ua4F1cMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWjhpMTMzVThkSnJsZUJENTJUODdwUnJnWFZ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mYy9kNTBiZTItYjliNi00NzdiLTg0ZmMt ZmJlNDdhZDYyYWE1LzEvWjhpMTMzVThkSnJsZUJENTJUODdwUnJnWFZ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mYy9kNTBiZTItYjliNi00NzdiLTg0ZmMtZmJlNDdhZDYyYWE1 LzEvWjhpMTMzVThkSnJsZUJENTJUODdwUnJnWFZ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdw1WrzYp lmH41HxMIad02zPn68hOQi+lgIGZkmtgh/spYKNhLOcogBXIuO+wT5wgZWYdNwvr MIz4H89PN94BveKjCZuWfLSeP/OkyahisbCo0guWmUyEysGw4X0neuqx5Cn4qqNE NIGSa13sJSHlIUWD+dFPcp1fRyAtMiT0u9NAPN5TXxduhMcEgALi5qiAjoH+FXQF 6HVwNOsvz2o6Lo4ZU0Tff1ScyctVq3/OrkWz4Mo9XDDP+yIDs1Zwe1WDdRqIAyRf TGMuzLXSB1gZWzNZu9pY9oFkK2dUu2+1/jqDTAEKiF5IlfwWTX6A+ybMhn0GSxzL Vj6quQML3QEppw== -----END CERTIFICATE-----Generated at Tue Feb 10 01:31:27 2026 by rpki-client