This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft File: nlaYDUienFO8gp8-jWPTg_ONDeM.mft (raw, json) Hash identifier: XbVcOuhm6TJeZkBm7KYuUl7WaV+FbAtJNllnGirtS7A= Subject key identifier: 46:58:DF:21:36:9F:11:1F:77:71:D6:48:D4:F5:85:0D:41:F5:43:51 Authority key identifier: 9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3 Certificate issuer: /CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3 Certificate serial: 019C41A1A0A7EE058A7C6C88A19E981E46BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft Manifest number: 176C Signing time: Mon 09 Feb 2026 09:00:37 +0000 Manifest this update: Mon 09 Feb 2026 09:00:37 +0000 Manifest next update: Tue 10 Feb 2026 09:00:37 +0000 Files and hashes: 1: Ty0AHGlJ9RoCTN7szHoodFNrVgY.roa (hash: CDSZ7X9fhOdv3vxjKS4CoPN0JEb8cRxrZ3+xOxMLrhk=) 2: nlaYDUienFO8gp8-jWPTg_ONDeM.crl (hash: CITqs/Ahd90Jo8Eb72RRH+sMKCS7DPYKxMLM1xZ8taU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:a0:a7:ee:05:8a:7c:6c:88:a1:9e:98:1e:46:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e56980d489e9c53bc829f3e8d63d383f38d0de3 Validity Not Before: Feb 9 09:00:37 2026 GMT Not After : Feb 10 09:00:37 2026 GMT Subject: CN=4658df21369f111f7771d648d4f5850d41f54351 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8e:76:b2:05:ad:d2:69:a8:a2:6a:b9:16:b8: 8d:05:6f:4d:2e:27:a0:79:67:cd:64:3e:7b:51:f3: fa:11:51:af:31:87:3d:93:4d:a4:23:08:a1:0b:6e: d5:82:d1:2b:b2:15:b2:34:58:fd:2e:30:68:4b:14: 07:b4:32:c8:06:d8:3c:19:33:04:ef:e5:58:e5:a4: 19:85:2a:95:3d:2b:04:9c:b6:2f:92:a6:18:47:26: 0a:bb:aa:ef:51:4d:15:73:bf:ca:36:89:e9:85:76: ed:0c:d6:f4:92:a4:80:e3:a1:17:db:81:ce:e1:90: 2f:76:d6:6f:eb:9e:25:7c:06:2d:23:f2:0b:2d:78: be:a3:fa:7f:e9:42:eb:b3:3f:fc:fd:d0:f4:79:52: 6e:ee:14:af:7c:80:1d:5d:eb:b0:03:eb:17:79:57: 53:26:1e:7d:f2:08:f7:a4:88:a3:f4:e7:64:e0:74: f2:f8:aa:3f:16:1c:df:81:8f:08:53:d5:a5:b2:52: d6:2d:66:ae:ce:e4:28:ef:a8:a3:7f:24:65:de:7b: c0:75:d7:5e:a9:dd:e7:5a:ea:ab:ff:81:aa:d4:f9: c9:01:58:6e:c3:ba:b0:cb:c8:84:de:53:1a:9d:8f: ea:de:a2:96:7f:42:df:70:7e:04:70:bb:56:63:2d: 71:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:58:DF:21:36:9F:11:1F:77:71:D6:48:D4:F5:85:0D:41:F5:43:51 X509v3 Authority Key Identifier: keyid:9E:56:98:0D:48:9E:9C:53:BC:82:9F:3E:8D:63:D3:83:F3:8D:0D:E3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlaYDUienFO8gp8-jWPTg_ONDeM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/16/a30360-0329-4cf1-a37f-db7498dade0c/1/nlaYDUienFO8gp8-jWPTg_ONDeM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:c4:84:3d:6e:39:6a:59:2e:5c:90:ee:f4:8c:e1:c4:ac:dd: 28:ab:9d:5f:db:7c:a7:8a:87:e4:15:0e:45:d6:40:84:dd:c1: a5:38:a5:d8:1e:3b:a6:e2:b1:7f:d2:d8:46:37:9d:d3:0c:fd: c2:86:68:15:7f:28:da:93:87:94:42:69:25:a1:f0:2c:b4:30: 47:cc:8f:5b:85:77:bc:f2:af:da:3e:e7:28:37:ff:ba:d2:62: b0:ba:bc:e3:c5:14:46:50:2c:b3:ac:36:ed:7d:05:10:ab:55: 1e:bb:fa:73:44:4b:5d:f5:bf:eb:ae:a7:78:88:8f:ce:ad:b7: f9:43:d3:98:2e:a5:8f:75:96:89:2e:26:fa:d0:fe:13:a6:95: 9b:49:47:87:09:f2:d0:77:1d:38:d7:ff:f2:e9:e5:93:a5:14: f5:e1:66:17:c1:d5:9d:b2:5b:cb:3c:57:97:0f:e3:21:d4:99: 8b:1d:14:6d:e6:b1:b6:27:c7:77:66:a5:ed:33:e1:8e:53:01: a5:ae:bf:18:44:f2:72:17:4c:11:dd:59:88:89:b2:94:55:32: 83:58:7a:ea:cb:61:49:bb:43:a6:c9:a0:9a:68:04:ff:9c:77: 78:6f:d6:0e:d1:9f:c2:2c:a0:7f:e1:23:02:40:75:24:67:ec: bb:69:13:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoaCn7gWKfGyIoZ6YHka6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNTY5ODBkNDg5ZTljNTNiYzgyOWYzZThkNjNkMzgzZjM4 ZDBkZTMwHhcNMjYwMjA5MDkwMDM3WhcNMjYwMjEwMDkwMDM3WjAzMTEwLwYDVQQD Eyg0NjU4ZGYyMTM2OWYxMTFmNzc3MWQ2NDhkNGY1ODUwZDQxZjU0MzUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI52sgWt0mmoomq5FriNBW9NLieg eWfNZD57UfP6EVGvMYc9k02kIwihC27VgtErshWyNFj9LjBoSxQHtDLIBtg8GTME 7+VY5aQZhSqVPSsEnLYvkqYYRyYKu6rvUU0Vc7/KNonphXbtDNb0kqSA46EX24HO 4ZAvdtZv654lfAYtI/ILLXi+o/p/6ULrsz/8/dD0eVJu7hSvfIAdXeuwA+sXeVdT Jh598gj3pIij9Odk4HTy+Ko/FhzfgY8IU9WlslLWLWauzuQo76ijfyRl3nvAddde qd3nWuqr/4Gq1PnJAVhuw7qwy8iE3lManY/q3qKWf0LfcH4EcLtWYy1x1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEZY3yE2nxEfd3HWSNT1hQ1B9UNRMB8GA1UdIwQY MBaAFJ5WmA1InpxTvIKfPo1j04PzjQ3jMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmxhWURVaWVuRk84Z3A4LWpXUFRnX09ORGVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNi9hMzAzNjAtMDMyOS00Y2YxLWEzN2Yt ZGI3NDk4ZGFkZTBjLzEvbmxhWURVaWVuRk84Z3A4LWpXUFRnX09ORGVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNi9hMzAzNjAtMDMyOS00Y2YxLWEzN2YtZGI3NDk4ZGFkZTBj LzEvbmxhWURVaWVuRk84Z3A4LWpXUFRnX09ORGVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXMSEPW45 alkuXJDu9IzhxKzdKKudX9t8p4qH5BUORdZAhN3BpTil2B47puKxf9LYRjed0wz9 woZoFX8o2pOHlEJpJaHwLLQwR8yPW4V3vPKv2j7nKDf/utJisLq848UURlAss6w2 7X0FEKtVHrv6c0RLXfW/666neIiPzq23+UPTmC6lj3WWiS4m+tD+E6aVm0lHhwny 0HcdONf/8unlk6UU9eFmF8HVnbJbyzxXlw/jIdSZix0UbeaxtifHd2al7TPhjlMB pa6/GETychdMEd1ZiImylFUyg1h66sthSbtDpsmgmmgE/5x3eG/WDtGfwiygf+Ej AkB1JGfsu2kTSw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:20 2026 by rpki-client