This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft File: NHjAigY6wtNKGxkeJDY4m77tXpc.mft (raw, json) Hash identifier: BUuJurlK4Ph/323ee3s+PApeUBzdBVbqWLeeWp50jO0= Subject key identifier: C0:CE:C7:9F:8A:D3:65:9F:62:80:35:04:A2:C2:2A:72:46:E4:9E:D6 Authority key identifier: 34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97 Certificate issuer: /CN=3478c08a063ac2d34a1b191e2436389bbeed5e97 Certificate serial: 019C432247A90EA8229B9128D4201BBF5D96 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft Manifest number: 0E50 Signing time: Mon 09 Feb 2026 16:00:45 +0000 Manifest this update: Mon 09 Feb 2026 16:00:45 +0000 Manifest next update: Tue 10 Feb 2026 16:00:45 +0000 Files and hashes: 1: NHjAigY6wtNKGxkeJDY4m77tXpc.crl (hash: jUqn7kdvD1Tzbp8LF4EreN8H/pHJ25E2PtavCCnwNX8=) 2: w9CRvvsYzgY0DlQQmWuMnS9mI2o.roa (hash: fUMokcIKd3DOh6naOLFCtJpr9vVF9HoG1tnLSbQmKeQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:47:a9:0e:a8:22:9b:91:28:d4:20:1b:bf:5d:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3478c08a063ac2d34a1b191e2436389bbeed5e97 Validity Not Before: Feb 9 16:00:45 2026 GMT Not After : Feb 10 16:00:45 2026 GMT Subject: CN=c0cec79f8ad3659f62803504a2c22a7246e49ed6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:2c:31:54:53:1a:64:81:08:6f:60:58:6c:7e: 8c:b2:3c:ce:cf:b1:ae:00:60:ff:73:49:f0:51:05: 04:82:41:60:c8:50:75:6c:f0:8d:70:8d:20:74:f2: c8:c8:1a:bf:88:1a:0d:f9:c3:38:24:86:81:0f:4e: 21:f4:b1:0f:0a:1b:bc:a8:b6:4f:f3:44:85:4c:20: da:04:80:18:af:fd:57:92:8b:77:eb:61:70:85:ec: 45:ea:4a:67:61:48:e5:78:d7:52:2c:57:9e:3b:f5: c7:db:d8:49:b8:77:c0:32:36:a9:42:09:da:10:3c: 61:38:f9:52:73:43:54:9d:7b:12:a2:98:d3:cd:71: 6d:1b:da:c6:8b:8e:f1:b6:63:18:ea:fd:ee:e0:2c: 01:15:ff:cf:7e:e3:15:a6:83:85:58:c2:9d:65:9f: 0d:5d:69:d2:ff:6c:0e:39:b7:6b:69:01:43:bf:39: fe:68:f4:6c:c7:d8:65:ca:57:62:e2:e4:da:2c:33: d3:d9:1e:e3:b7:b2:04:6d:89:3c:f1:6e:82:29:8d: e7:ca:d6:bd:a7:42:c7:b4:e6:13:57:2f:01:dd:15: c3:ec:91:61:e4:07:a1:db:70:5c:9d:56:99:51:4b: 1c:d4:0c:3e:d6:df:ce:16:88:08:60:25:fb:ab:e9: ec:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:CE:C7:9F:8A:D3:65:9F:62:80:35:04:A2:C2:2A:72:46:E4:9E:D6 X509v3 Authority Key Identifier: keyid:34:78:C0:8A:06:3A:C2:D3:4A:1B:19:1E:24:36:38:9B:BE:ED:5E:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHjAigY6wtNKGxkeJDY4m77tXpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/13/1f10c2-02e2-438a-90a2-917c3577f34f/1/NHjAigY6wtNKGxkeJDY4m77tXpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:0f:35:30:ae:9a:b7:4e:76:21:e3:3d:c5:ed:bc:2c:83:32: 67:bc:34:56:33:e4:3a:7c:e3:9a:98:73:e9:7a:ce:77:99:53: a2:75:4b:04:2d:89:e1:2b:ed:3a:13:29:bc:68:7f:bd:5d:ea: ee:29:08:f4:df:10:3b:d8:14:58:c1:c7:c0:58:f1:6f:66:c6: f7:f6:6a:cc:8b:05:4e:a2:82:9b:54:d4:96:61:0e:09:d6:09: d9:01:e3:4f:c0:c7:97:8b:f5:7f:c7:ae:bf:2e:00:e6:84:49: 96:56:a6:68:ba:43:d8:53:cd:5b:b4:ae:f0:f0:d2:17:7b:29: f0:f2:04:44:b8:65:08:fd:cf:48:3b:e5:2a:89:33:f8:9f:f8: a4:08:dd:d2:d4:cd:59:9f:ea:a7:61:e4:5c:f9:f2:cf:e5:39: e4:de:bf:1c:ff:4b:0a:87:4e:84:55:d7:89:2a:5d:2d:13:27: 2d:c6:ba:2d:d2:bf:a8:a5:97:6f:cc:5d:bc:07:13:12:f4:33: c6:6b:e4:b4:04:3a:8a:bc:2d:b0:18:4f:1d:de:2d:e9:25:89: 2e:c6:f2:cb:e2:fa:c6:82:15:05:ea:d3:54:95:cd:c9:b5:a8: 20:19:24:68:f2:78:74:06:de:eb:1f:76:55:a5:f9:a1:c1:3e: 52:30:0e:37 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIkepDqgim5Eo1CAbv12WMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0NzhjMDhhMDYzYWMyZDM0YTFiMTkxZTI0MzYzODliYmVl ZDVlOTcwHhcNMjYwMjA5MTYwMDQ1WhcNMjYwMjEwMTYwMDQ1WjAzMTEwLwYDVQQD EyhjMGNlYzc5ZjhhZDM2NTlmNjI4MDM1MDRhMmMyMmE3MjQ2ZTQ5ZWQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzSwxVFMaZIEIb2BYbH6MsjzOz7Gu AGD/c0nwUQUEgkFgyFB1bPCNcI0gdPLIyBq/iBoN+cM4JIaBD04h9LEPChu8qLZP 80SFTCDaBIAYr/1Xkot362FwhexF6kpnYUjleNdSLFeeO/XH29hJuHfAMjapQgna EDxhOPlSc0NUnXsSopjTzXFtG9rGi47xtmMY6v3u4CwBFf/PfuMVpoOFWMKdZZ8N XWnS/2wOObdraQFDvzn+aPRsx9hlyldi4uTaLDPT2R7jt7IEbYk88W6CKY3nyta9 p0LHtOYTVy8B3RXD7JFh5Aeh23BcnVaZUUsc1Aw+1t/OFogIYCX7q+nsewIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMDOx5+K02WfYoA1BKLCKnJG5J7WMB8GA1UdIwQY MBaAFDR4wIoGOsLTShsZHiQ2OJu+7V6XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkhqQWlnWTZ3dE5LR3hrZUpEWTRtNzd0WHBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMy8xZjEwYzItMDJlMi00MzhhLTkwYTIt OTE3YzM1NzdmMzRmLzEvTkhqQWlnWTZ3dE5LR3hrZUpEWTRtNzd0WHBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMy8xZjEwYzItMDJlMi00MzhhLTkwYTItOTE3YzM1NzdmMzRm LzEvTkhqQWlnWTZ3dE5LR3hrZUpEWTRtNzd0WHBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJA81MK6a t052IeM9xe28LIMyZ7w0VjPkOnzjmphz6XrOd5lTonVLBC2J4SvtOhMpvGh/vV3q 7ikI9N8QO9gUWMHHwFjxb2bG9/ZqzIsFTqKCm1TUlmEOCdYJ2QHjT8DHl4v1f8eu vy4A5oRJllamaLpD2FPNW7Su8PDSF3sp8PIERLhlCP3PSDvlKokz+J/4pAjd0tTN WZ/qp2HkXPnyz+U55N6/HP9LCodOhFXXiSpdLRMnLca6LdK/qKWXb8xdvAcTEvQz xmvktAQ6irwtsBhPHd4t6SWJLsbyy+L6xoIVBerTVJXNybWoIBkkaPJ4dAbe6x92 VaX5ocE+UjAONw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:54:30 2026 by rpki-client