This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft File: zkP-lNpK73rfscFih1rxysfLpLE.mft (raw, json) Hash identifier: CF72beFMd20kq8XW+Pn28eWdPsYjougOPpZYL7LDR3U= Subject key identifier: B4:F6:07:97:49:CA:E3:45:F4:11:B8:A3:7D:75:7B:B2:E0:8E:F9:06 Authority key identifier: CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1 Certificate issuer: /CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1 Certificate serial: 019BF91BCD9647070452C25078D55D718C3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft Manifest number: 17EC Signing time: Mon 26 Jan 2026 07:01:47 +0000 Manifest this update: Mon 26 Jan 2026 07:01:47 +0000 Manifest next update: Tue 27 Jan 2026 07:01:47 +0000 Files and hashes: 1: 0lsa2lsdRbGhXDlBoxyUzEcvTkw.roa (hash: TZA+evGUSrxkMyqk95k24o509cA93t42uHVcHnI4ehI=) 2: zkP-lNpK73rfscFih1rxysfLpLE.crl (hash: Y6dyLkWt3kwemhbi5IvIWOx+UW90wFrJMKysrXcgofU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 07:01:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f9:1b:cd:96:47:07:04:52:c2:50:78:d5:5d:71:8c:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ce43fe94da4aef7adfb1c162875af1cac7cba4b1 Validity Not Before: Jan 26 07:01:47 2026 GMT Not After : Jan 27 07:01:47 2026 GMT Subject: CN=b4f6079749cae345f411b8a37d757bb2e08ef906 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7e:6f:e0:07:f0:b0:7e:89:bf:eb:28:99:41: 7d:b1:35:c0:67:e2:47:55:2e:e5:7f:1f:4e:80:a2: 42:3c:a1:32:16:61:bf:36:84:57:43:c0:ef:cd:0e: a6:62:10:5b:15:6a:e7:be:61:06:ae:0e:e0:2d:64: e5:7b:22:60:e4:63:fa:f4:1c:cb:af:a5:44:90:81: a2:1d:08:9f:ed:17:4c:aa:5e:dc:02:68:1f:eb:db: 29:6c:e7:c5:ce:e2:24:11:2a:a7:41:08:7d:7b:c9: 11:19:aa:87:42:bd:50:3c:97:ad:07:81:eb:41:69: ca:cf:38:88:a0:5d:f7:f0:76:c1:d1:24:ac:37:8c: 52:d4:89:93:3a:49:7e:be:3c:72:1f:de:92:56:22: 1a:68:51:b2:8e:12:a0:ad:32:1d:73:e7:bf:fa:ce: 39:d3:e1:e2:47:23:bd:ec:85:58:0b:b4:d7:d9:bf: a2:06:3d:60:08:88:6c:19:b4:4f:fb:ba:ae:0c:80: 0a:7e:9a:3e:ad:35:54:58:cc:b0:73:2d:55:da:b6: 9d:4b:92:d2:09:ba:00:95:dd:83:63:71:37:c4:88: ef:b1:fd:d3:85:03:ac:19:47:6c:13:68:0f:4f:cf: 29:a0:9c:c5:e0:cc:63:a9:e5:07:8f:0e:bd:87:a0: 35:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:F6:07:97:49:CA:E3:45:F4:11:B8:A3:7D:75:7B:B2:E0:8E:F9:06 X509v3 Authority Key Identifier: keyid:CE:43:FE:94:DA:4A:EF:7A:DF:B1:C1:62:87:5A:F1:CA:C7:CB:A4:B1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/zkP-lNpK73rfscFih1rxysfLpLE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/f9d8d0-cc02-4abf-99bb-e018da53d129/1/zkP-lNpK73rfscFih1rxysfLpLE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:be:be:3b:ec:0a:e4:99:5a:10:7f:53:d6:4d:dc:4b:80:52: f8:e9:d2:30:86:78:76:80:d8:fe:51:54:0e:f6:42:69:e2:5b: 71:9e:62:61:e3:86:1d:3e:11:77:88:64:f0:1b:a6:4e:12:48: 4d:7d:7d:5b:1c:b3:25:e1:e6:74:af:84:2b:6c:5f:63:b9:ae: 35:20:d2:36:68:43:b0:de:f0:c6:67:aa:38:cb:d5:e3:23:7b: 4c:7d:b3:56:10:95:34:de:f0:ea:40:68:e1:2c:93:d7:2c:88: ad:0d:d2:39:c8:65:32:9b:36:96:ac:05:03:d9:ac:6b:76:27: bf:95:ee:f6:dc:cb:60:2b:b9:33:4a:53:c0:1a:9b:9a:e1:aa: 31:5f:65:0c:e0:2a:1d:07:9c:64:93:ba:5a:cc:f6:bd:72:48: d8:a5:61:a7:7d:cd:c5:5e:ba:97:86:2d:97:b1:0a:2a:09:f9: a3:5d:b6:5d:5d:b7:96:b2:fc:9a:a6:0b:78:84:ca:4d:fd:02: 4e:b2:dd:f2:08:34:0d:f2:65:eb:22:ac:70:4d:f1:65:4f:60: 84:1d:ce:2d:7a:e0:67:26:ef:97:5d:1f:f2:ff:5d:0a:25:39: 5a:c9:c7:fa:ff:1b:c2:48:3b:63:1d:80:97:b2:2e:b9:7a:fc: ff:32:81:e2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv5G82WRwcEUsJQeNVdcYw7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGNlNDNmZTk0ZGE0YWVmN2FkZmIxYzE2Mjg3NWFmMWNhYzdj YmE0YjEwHhcNMjYwMTI2MDcwMTQ3WhcNMjYwMTI3MDcwMTQ3WjAzMTEwLwYDVQQD EyhiNGY2MDc5NzQ5Y2FlMzQ1ZjQxMWI4YTM3ZDc1N2JiMmUwOGVmOTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq35v4AfwsH6Jv+somUF9sTXAZ+JH VS7lfx9OgKJCPKEyFmG/NoRXQ8DvzQ6mYhBbFWrnvmEGrg7gLWTleyJg5GP69BzL r6VEkIGiHQif7RdMql7cAmgf69spbOfFzuIkESqnQQh9e8kRGaqHQr1QPJetB4Hr QWnKzziIoF338HbB0SSsN4xS1ImTOkl+vjxyH96SViIaaFGyjhKgrTIdc+e/+s45 0+HiRyO97IVYC7TX2b+iBj1gCIhsGbRP+7quDIAKfpo+rTVUWMywcy1V2radS5LS CboAld2DY3E3xIjvsf3ThQOsGUdsE2gPT88poJzF4MxjqeUHjw69h6A1JwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLT2B5dJyuNF9BG4o311e7LgjvkGMB8GA1UdIwQY MBaAFM5D/pTaSu9637HBYoda8crHy6SxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvemtQLWxOcEs3M3Jmc2NGaWgxcnh5c2ZMcExFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi9mOWQ4ZDAtY2MwMi00YWJmLTk5YmIt ZTAxOGRhNTNkMTI5LzEvemtQLWxOcEs3M3Jmc2NGaWgxcnh5c2ZMcExFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi9mOWQ4ZDAtY2MwMi00YWJmLTk5YmItZTAxOGRhNTNkMTI5 LzEvemtQLWxOcEs3M3Jmc2NGaWgxcnh5c2ZMcExFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAF76+O+wK 5JlaEH9T1k3cS4BS+OnSMIZ4doDY/lFUDvZCaeJbcZ5iYeOGHT4Rd4hk8BumThJI TX19WxyzJeHmdK+EK2xfY7muNSDSNmhDsN7wxmeqOMvV4yN7TH2zVhCVNN7w6kBo 4SyT1yyIrQ3SOchlMps2lqwFA9msa3Ynv5Xu9tzLYCu5M0pTwBqbmuGqMV9lDOAq HQecZJO6Wsz2vXJI2KVhp33NxV66l4Ytl7EKKgn5o122XV23lrL8mqYLeITKTf0C TrLd8gg0DfJl6yKscE3xZU9ghB3OLXrgZybvl10f8v9dCiU5WsnH+v8bwkg7Yx2A l7IuuXr8/zKB4g== -----END CERTIFICATE-----Generated at Mon Jan 26 17:29:38 2026 by rpki-client