This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft File: nzeBglGggdHMfzAVMg62NSZwm5E.mft (raw, json) Hash identifier: k2epz+uTSAbMaVksVZCNMhFPodrDNRg9fsBL/1PMzek= Subject key identifier: 3E:92:05:D6:BD:83:69:53:FE:F4:29:EB:8A:61:D0:A6:63:24:8A:6E Authority key identifier: 9F:37:81:82:51:A0:81:D1:CC:7F:30:15:32:0E:B6:35:26:70:9B:91 Certificate issuer: /CN=9f37818251a081d1cc7f3015320eb63526709b91 Certificate serial: 019C43223796C04DC235982C6B8D7FDCA04B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzeBglGggdHMfzAVMg62NSZwm5E.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft Manifest number: 0879 Signing time: Mon 09 Feb 2026 16:00:41 +0000 Manifest this update: Mon 09 Feb 2026 16:00:41 +0000 Manifest next update: Tue 10 Feb 2026 16:00:41 +0000 Files and hashes: 1: nzeBglGggdHMfzAVMg62NSZwm5E.crl (hash: qmhtvHlPyp0bCIydmf3ylfC2MRGJlriKehUfdCpvsbo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.crl rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft rsync://rpki.ripe.net/repository/DEFAULT/nzeBglGggdHMfzAVMg62NSZwm5E.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:37:96:c0:4d:c2:35:98:2c:6b:8d:7f:dc:a0:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f37818251a081d1cc7f3015320eb63526709b91 Validity Not Before: Feb 9 16:00:41 2026 GMT Not After : Feb 10 16:00:41 2026 GMT Subject: CN=3e9205d6bd836953fef429eb8a61d0a663248a6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:4f:0d:8f:b6:69:97:17:08:cb:04:a4:df:79: 5d:23:b3:e1:4f:d6:93:cf:e6:83:59:cf:f6:b6:31: 34:c0:e3:7a:e4:e0:90:bf:94:d7:8d:92:62:0f:df: 98:5d:c2:cb:f8:de:91:d2:b6:a0:42:20:2f:c0:6c: a8:a3:28:20:51:a8:eb:d9:ee:07:91:a4:2e:00:9d: 9c:98:a1:47:e4:a9:53:fa:bb:94:52:50:9a:ac:f5: 1e:de:91:f2:1c:62:88:71:ae:98:19:a3:1e:51:64: a8:0e:11:94:48:57:38:e4:ee:dc:f6:db:c2:bf:cf: ae:e8:b6:4d:aa:b8:1b:a1:46:5a:bc:bd:02:45:5f: 1d:98:ce:5c:c0:38:84:7b:2b:57:c7:da:46:31:d5: 70:7d:72:2c:80:02:9e:4b:db:c1:cb:93:31:fb:57: f4:2b:8b:f4:f2:a3:d9:77:b4:80:38:e3:ee:aa:fd: 0c:c3:ac:78:d6:9a:22:7d:f9:2f:ce:3e:fc:f0:e3: d1:42:77:20:5d:4d:42:9a:ab:9f:ca:52:14:0e:cd: 84:1a:4f:5d:93:8e:09:b0:98:84:3f:52:f2:33:0d: ec:0f:2f:15:81:2b:7a:5c:74:61:65:4a:7a:df:37: 52:71:76:33:83:94:1e:33:de:ab:5d:44:cc:e7:89: 58:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:92:05:D6:BD:83:69:53:FE:F4:29:EB:8A:61:D0:A6:63:24:8A:6E X509v3 Authority Key Identifier: keyid:9F:37:81:82:51:A0:81:D1:CC:7F:30:15:32:0E:B6:35:26:70:9B:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzeBglGggdHMfzAVMg62NSZwm5E.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/6b5b7b-f93c-4f37-8a64-6b2f526047a9/1/nzeBglGggdHMfzAVMg62NSZwm5E.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:c9:c1:71:61:b8:a0:1f:7e:d2:7e:4f:c8:e7:81:72:71:84: 7e:af:63:ef:ca:a9:4b:af:0a:c6:38:63:8b:74:df:b3:77:fb: 6a:f2:e4:99:9e:e9:4a:41:ce:b5:aa:f6:a8:61:c7:02:52:3c: 2f:25:d8:be:86:1a:00:49:27:9e:cd:31:36:03:2b:4a:de:f8: 4a:ff:f9:6e:ea:31:2f:72:2c:9e:70:2d:95:e0:90:92:e3:94: 76:ca:a3:39:ff:16:26:65:78:36:03:30:6a:dc:88:cc:69:74: 0c:c0:3d:48:f5:66:e1:85:49:a9:09:04:64:61:1a:93:6c:1e: 9b:32:c8:5e:75:b7:3e:d6:2e:fc:f9:4e:8b:a8:b5:4b:f7:1c: b6:26:57:84:04:a7:77:ec:24:4b:85:ff:79:1c:44:ae:b7:1f: 96:30:54:9e:45:01:0e:c5:c7:a3:08:22:f2:11:23:ae:58:f2: fb:ed:c5:7c:5f:3f:e4:47:09:cf:98:5a:74:0f:1d:94:ba:04: a7:34:e3:eb:32:3b:26:97:45:93:32:00:32:86:3a:b4:e5:fc: 25:d1:40:37:8d:95:41:7f:76:27:58:9b:8d:ed:f0:3d:44:1a: 8a:09:6c:16:41:9a:5f:bb:11:33:c5:76:4a:41:01:0e:3b:2c: b0:12:ff:de -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIjeWwE3CNZgsa41/3KBLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMzc4MTgyNTFhMDgxZDFjYzdmMzAxNTMyMGViNjM1MjY3 MDliOTEwHhcNMjYwMjA5MTYwMDQxWhcNMjYwMjEwMTYwMDQxWjAzMTEwLwYDVQQD EygzZTkyMDVkNmJkODM2OTUzZmVmNDI5ZWI4YTYxZDBhNjYzMjQ4YTZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu08Nj7ZplxcIywSk33ldI7PhT9aT z+aDWc/2tjE0wON65OCQv5TXjZJiD9+YXcLL+N6R0ragQiAvwGyooyggUajr2e4H kaQuAJ2cmKFH5KlT+ruUUlCarPUe3pHyHGKIca6YGaMeUWSoDhGUSFc45O7c9tvC v8+u6LZNqrgboUZavL0CRV8dmM5cwDiEeytXx9pGMdVwfXIsgAKeS9vBy5Mx+1f0 K4v08qPZd7SAOOPuqv0Mw6x41poiffkvzj788OPRQncgXU1CmqufylIUDs2EGk9d k44JsJiEP1LyMw3sDy8VgSt6XHRhZUp63zdScXYzg5QeM96rXUTM54lYNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6SBda9g2lT/vQp64ph0KZjJIpuMB8GA1UdIwQY MBaAFJ83gYJRoIHRzH8wFTIOtjUmcJuRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnplQmdsR2dnZEhNZnpBVk1nNjJOU1p3bTVFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi82YjViN2ItZjkzYy00ZjM3LThhNjQt NmIyZjUyNjA0N2E5LzEvbnplQmdsR2dnZEhNZnpBVk1nNjJOU1p3bTVFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi82YjViN2ItZjkzYy00ZjM3LThhNjQtNmIyZjUyNjA0N2E5 LzEvbnplQmdsR2dnZEhNZnpBVk1nNjJOU1p3bTVFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACcnBcWG4 oB9+0n5PyOeBcnGEfq9j78qpS68Kxjhji3Tfs3f7avLkmZ7pSkHOtar2qGHHAlI8 LyXYvoYaAEknns0xNgMrSt74Sv/5buoxL3IsnnAtleCQkuOUdsqjOf8WJmV4NgMw atyIzGl0DMA9SPVm4YVJqQkEZGEak2wemzLIXnW3PtYu/PlOi6i1S/cctiZXhASn d+wkS4X/eRxErrcfljBUnkUBDsXHowgi8hEjrljy++3FfF8/5EcJz5hadA8dlLoE pzTj6zI7JpdFkzIAMoY6tOX8JdFAN42VQX92J1ibje3wPUQaiglsFkGaX7sRM8V2 SkEBDjsssBL/3g== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:58 2026 by rpki-client