This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft File: zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft (raw, json) Hash identifier: 5utqu4vWYGdjPEez9CUHfFxd1l2vYg9gGcUl4YhvYqo= Subject key identifier: 70:5B:17:8A:F3:5E:F1:45:AA:D0:72:40:67:B3:05:82:E2:00:ED:CE Authority key identifier: CE:81:E2:D5:6F:D9:F1:93:2D:BC:0F:21:63:29:94:2F:E2:3F:75:5A Certificate issuer: /CN=ce81e2d56fd9f1932dbc0f216329942fe23f755a Certificate serial: 019C4390423963821507635A8F53B95AF27D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft Manifest number: 041F Signing time: Mon 09 Feb 2026 18:00:53 +0000 Manifest this update: Mon 09 Feb 2026 18:00:53 +0000 Manifest next update: Tue 10 Feb 2026 18:00:53 +0000 Files and hashes: 1: zoHi1W_Z8ZMtvA8hYymUL-I_dVo.crl (hash: XK5kxXzfcK2pe7ckby6UHHFxPZTaisLyFKqiWlO74QE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.crl rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft rsync://rpki.ripe.net/repository/DEFAULT/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:42:39:63:82:15:07:63:5a:8f:53:b9:5a:f2:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce81e2d56fd9f1932dbc0f216329942fe23f755a Validity Not Before: Feb 9 18:00:53 2026 GMT Not After : Feb 10 18:00:53 2026 GMT Subject: CN=705b178af35ef145aad0724067b30582e200edce Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:93:24:86:ee:22:b9:01:95:5f:88:0d:f7:85: c9:ce:96:04:0d:dd:aa:5f:d0:33:5d:24:67:5c:b0: cf:3e:71:a6:1c:7a:b7:cd:21:84:f3:49:fc:b8:22: c6:d6:9c:b8:1e:0a:a9:92:12:21:a6:b3:9e:86:7a: cd:77:29:7d:15:fe:f3:b7:8b:da:e8:cb:db:3c:68: eb:44:65:a9:00:4a:60:b4:18:6b:3b:95:15:25:1e: 57:e9:d4:fc:81:98:1e:6c:c6:a8:fa:a0:94:bc:e2: 31:86:09:92:41:8e:e0:7e:0e:8b:ee:ba:d3:53:59: 11:e3:59:f4:ac:5f:c9:d5:bf:2c:ab:c2:a3:ac:d1: b0:7b:7f:cc:b7:51:51:96:14:b6:dc:0d:37:ad:d1: 00:bb:90:5c:5e:d0:a3:f0:48:6f:3c:6f:b3:65:d4: 8b:49:34:40:89:92:43:45:11:73:b9:7b:ed:df:c6: 1c:50:cf:26:79:02:b6:60:23:23:d5:a1:e5:94:d0: 7e:fa:5c:9f:48:42:16:57:c3:5b:71:af:57:52:51: 75:db:90:cd:36:95:1e:ef:58:d6:57:ee:fb:5e:3d: b8:63:99:ea:3d:b8:79:aa:bd:ae:28:d2:07:7f:df: 7b:08:33:5e:4c:37:05:c3:48:a4:f1:d3:3a:c5:a2: c3:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:5B:17:8A:F3:5E:F1:45:AA:D0:72:40:67:B3:05:82:E2:00:ED:CE X509v3 Authority Key Identifier: keyid:CE:81:E2:D5:6F:D9:F1:93:2D:BC:0F:21:63:29:94:2F:E2:3F:75:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/fd/c20cdc-b1a6-498b-8ccc-9493a74b5f75/1/zoHi1W_Z8ZMtvA8hYymUL-I_dVo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 18:3f:08:c3:27:0d:13:23:c6:8e:ca:63:b1:ca:08:48:e5:26: 03:fa:f5:2d:d3:51:99:f8:23:cf:89:b0:85:c0:88:81:8d:74: 06:04:ba:2e:11:c1:df:a2:90:ef:02:b2:8e:28:d1:ee:af:7c: 30:72:e6:34:bc:9b:f1:55:b3:22:b6:95:66:99:29:71:71:a3: c6:06:7a:42:94:05:32:20:dc:3d:e1:2d:a9:4d:a4:78:90:5a: ef:97:d8:76:3b:29:23:c4:2c:a9:3a:79:f4:95:89:40:f0:be: 4b:15:dd:18:61:40:dd:eb:08:8f:01:95:ac:a2:08:8f:f4:1d: f4:4b:69:b9:c5:f3:58:af:6c:d8:e1:ea:97:00:d3:5a:06:2f: a5:0a:16:ab:9d:0c:00:71:51:5c:2b:7a:53:fe:57:4d:5d:b4: 43:2d:93:dc:f2:f9:9d:58:ee:7a:28:9f:d7:ad:74:b5:76:db: 4b:a5:43:6a:21:bb:38:4c:98:63:c6:b0:57:50:b9:fb:e9:c8: f8:30:e9:d9:e5:99:16:ca:94:fd:75:4c:8b:bf:1c:cc:ba:d9: 83:ff:64:9c:0e:2f:10:92:f2:05:3c:44:2a:cf:7d:05:b5:fd: 95:fd:45:06:50:8a:f0:1f:ec:59:63:4b:4f:eb:f1:f5:be:b1: 0f:8c:d9:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkEI5Y4IVB2Naj1O5WvJ9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlODFlMmQ1NmZkOWYxOTMyZGJjMGYyMTYzMjk5NDJmZTIz Zjc1NWEwHhcNMjYwMjA5MTgwMDUzWhcNMjYwMjEwMTgwMDUzWjAzMTEwLwYDVQQD Eyg3MDViMTc4YWYzNWVmMTQ1YWFkMDcyNDA2N2IzMDU4MmUyMDBlZGNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAppMkhu4iuQGVX4gN94XJzpYEDd2q X9AzXSRnXLDPPnGmHHq3zSGE80n8uCLG1py4HgqpkhIhprOehnrNdyl9Ff7zt4va 6MvbPGjrRGWpAEpgtBhrO5UVJR5X6dT8gZgebMao+qCUvOIxhgmSQY7gfg6L7rrT U1kR41n0rF/J1b8sq8KjrNGwe3/Mt1FRlhS23A03rdEAu5BcXtCj8EhvPG+zZdSL STRAiZJDRRFzuXvt38YcUM8meQK2YCMj1aHllNB++lyfSEIWV8Nbca9XUlF125DN NpUe71jWV+77Xj24Y5nqPbh5qr2uKNIHf997CDNeTDcFw0ik8dM6xaLDGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHBbF4rzXvFFqtByQGezBYLiAO3OMB8GA1UdIwQY MBaAFM6B4tVv2fGTLbwPIWMplC/iP3VaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvem9IaTFXX1o4Wk10dkE4aFl5bVVMLUlfZFZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mZC9jMjBjZGMtYjFhNi00OThiLThjY2Mt OTQ5M2E3NGI1Zjc1LzEvem9IaTFXX1o4Wk10dkE4aFl5bVVMLUlfZFZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mZC9jMjBjZGMtYjFhNi00OThiLThjY2MtOTQ5M2E3NGI1Zjc1 LzEvem9IaTFXX1o4Wk10dkE4aFl5bVVMLUlfZFZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGD8IwycN EyPGjspjscoISOUmA/r1LdNRmfgjz4mwhcCIgY10BgS6LhHB36KQ7wKyjijR7q98 MHLmNLyb8VWzIraVZpkpcXGjxgZ6QpQFMiDcPeEtqU2keJBa75fYdjspI8QsqTp5 9JWJQPC+SxXdGGFA3esIjwGVrKIIj/Qd9EtpucXzWK9s2OHqlwDTWgYvpQoWq50M AHFRXCt6U/5XTV20Qy2T3PL5nVjueiif1610tXbbS6VDaiG7OEyYY8awV1C5++nI +DDp2eWZFsqU/XVMi78czLrZg/9knA4vEJLyBTxEKs99BbX9lf1FBlCK8B/sWWNL T+vx9b6xD4zZpg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:13 2026 by rpki-client