This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft File: NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft (raw, json) Hash identifier: 9BbuFmpIbM7reKg7dyEyzUI0r7P3NgI3jyPn79IqHVY= Subject key identifier: 58:A3:DC:A4:70:EC:E3:AC:A1:98:7D:22:95:11:5C:28:B0:08:23:B7 Authority key identifier: 34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF Certificate issuer: /CN=34b0c5a403e2dad3c47b791fda2042cf715009cf Certificate serial: 019C43220D9737D92FF1802C5EA566ADC73B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft Manifest number: 08D3 Signing time: Mon 09 Feb 2026 16:00:30 +0000 Manifest this update: Mon 09 Feb 2026 16:00:30 +0000 Manifest next update: Tue 10 Feb 2026 16:00:30 +0000 Files and hashes: 1: NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl (hash: VFYVOEhb/C8bwnXLmYt6N2o44W7xBfVotQ6Xjo+KzVg=) 2: e_OqWACnyi2Gw8DMbR4NWVTK1DE.roa (hash: Ya8bGHns04cHwjGPb8IJhQNI3VXum/7q6BwWLFTuZIs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0d:97:37:d9:2f:f1:80:2c:5e:a5:66:ad:c7:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=34b0c5a403e2dad3c47b791fda2042cf715009cf Validity Not Before: Feb 9 16:00:30 2026 GMT Not After : Feb 10 16:00:30 2026 GMT Subject: CN=58a3dca470ece3aca1987d2295115c28b00823b7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:a1:8b:c2:ea:b4:e6:95:eb:cf:32:4d:ea:47: be:ce:85:74:96:ef:b0:fb:9b:d6:c0:c2:93:ab:70: 7d:a1:d6:1e:7b:1d:8c:ef:cb:f6:47:6c:55:b5:df: 43:87:1b:e5:a9:b9:74:38:e5:3e:86:4c:b4:6b:80: 7d:eb:ff:4b:22:af:da:8b:5a:ca:a7:f1:bc:b4:a5: 73:d5:b9:17:31:8c:fc:0c:32:59:b7:bc:05:26:c0: 46:84:f0:c0:0b:1d:ca:ed:e4:0f:93:d6:41:1a:86: 0e:ed:f7:ed:47:cf:e3:36:8a:d4:20:e1:08:2a:b9: 60:61:46:91:69:be:3a:4e:d0:74:18:d0:b8:2f:a9: b4:3c:dc:03:98:93:a3:a3:26:ad:1f:5b:ec:c8:68: f2:f2:d0:5d:86:cc:2b:ed:27:dc:a8:39:8f:64:b3: db:ec:f8:31:8e:74:72:b5:47:2b:1f:cf:55:53:1a: 8c:20:0e:64:63:06:41:94:6b:c1:c0:98:e9:a5:81: af:09:9e:3d:0a:98:01:fb:dc:3a:c7:ac:8d:19:a2: e4:85:30:be:5e:ee:2d:7b:e1:9c:c5:56:74:bc:ce: 81:ee:39:4f:e5:24:6a:95:dd:fd:58:ee:6f:33:2c: 45:ba:13:45:ae:dc:97:29:96:33:25:8a:b5:f2:1c: 25:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:A3:DC:A4:70:EC:E3:AC:A1:98:7D:22:95:11:5C:28:B0:08:23:B7 X509v3 Authority Key Identifier: keyid:34:B0:C5:A4:03:E2:DA:D3:C4:7B:79:1F:DA:20:42:CF:71:50:09:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NLDFpAPi2tPEe3kf2iBCz3FQCc8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/16d5ce-184a-4366-8d75-aaab25894d5e/1/NLDFpAPi2tPEe3kf2iBCz3FQCc8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:00:d6:47:82:29:b0:61:2a:4a:e6:6a:e0:49:f8:b8:79:21: cc:3c:80:18:0c:48:03:61:29:a6:ec:3e:7f:31:30:48:93:a9: 38:d0:43:e5:a9:a7:6e:36:8a:64:f4:b5:06:1e:f6:75:3c:ca: 8a:21:0f:a8:a1:d3:92:c1:62:ee:57:37:06:8b:95:e7:e1:bc: 81:86:d0:b6:4e:7e:dc:db:6f:58:3e:52:55:ef:c5:3d:73:a1: 44:b8:91:54:e0:97:83:08:bf:34:5e:1c:39:31:50:f4:d3:1c: a5:51:3f:14:5e:7e:00:6c:7a:27:4c:e7:01:d8:ca:a1:e5:7d: cb:b5:58:96:b9:f3:bb:23:c8:be:ee:30:a5:bc:2b:94:4a:2a: 06:89:ac:50:6e:4e:06:28:51:a6:3c:da:de:ef:d1:b5:50:84: 04:87:cd:7b:7b:30:63:89:2e:cf:8f:0a:0b:17:68:dc:7a:a3: 1e:74:c0:ff:9a:83:35:a3:39:f0:9a:d8:85:47:81:d7:18:f1: 46:ee:73:39:a4:42:48:bc:0f:11:e5:f4:a1:29:b1:df:95:2a: b8:68:d0:cc:ba:7b:f2:80:19:49:97:f3:e9:d5:d7:54:b6:90: bb:19:64:a9:01:f9:07:fd:d1:ad:97:9b:1a:13:16:87:3e:16: 7e:a5:46:2e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIg2XN9kv8YAsXqVmrcc7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0YjBjNWE0MDNlMmRhZDNjNDdiNzkxZmRhMjA0MmNmNzE1 MDA5Y2YwHhcNMjYwMjA5MTYwMDMwWhcNMjYwMjEwMTYwMDMwWjAzMTEwLwYDVQQD Eyg1OGEzZGNhNDcwZWNlM2FjYTE5ODdkMjI5NTExNWMyOGIwMDgyM2I3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjqGLwuq05pXrzzJN6ke+zoV0lu+w +5vWwMKTq3B9odYeex2M78v2R2xVtd9Dhxvlqbl0OOU+hky0a4B96/9LIq/ai1rK p/G8tKVz1bkXMYz8DDJZt7wFJsBGhPDACx3K7eQPk9ZBGoYO7fftR8/jNorUIOEI KrlgYUaRab46TtB0GNC4L6m0PNwDmJOjoyatH1vsyGjy8tBdhswr7SfcqDmPZLPb 7PgxjnRytUcrH89VUxqMIA5kYwZBlGvBwJjppYGvCZ49CpgB+9w6x6yNGaLkhTC+ Xu4te+GcxVZ0vM6B7jlP5SRqld39WO5vMyxFuhNFrtyXKZYzJYq18hwllQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFij3KRw7OOsoZh9IpURXCiwCCO3MB8GA1UdIwQY MBaAFDSwxaQD4trTxHt5H9ogQs9xUAnPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xYi8xNmQ1Y2UtMTg0YS00MzY2LThkNzUt YWFhYjI1ODk0ZDVlLzEvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xYi8xNmQ1Y2UtMTg0YS00MzY2LThkNzUtYWFhYjI1ODk0ZDVl LzEvTkxERnBBUGkydFBFZTNrZjJpQkN6M0ZRQ2M4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXADWR4Ip sGEqSuZq4En4uHkhzDyAGAxIA2Eppuw+fzEwSJOpONBD5amnbjaKZPS1Bh72dTzK iiEPqKHTksFi7lc3BouV5+G8gYbQtk5+3NtvWD5SVe/FPXOhRLiRVOCXgwi/NF4c OTFQ9NMcpVE/FF5+AGx6J0znAdjKoeV9y7VYlrnzuyPIvu4wpbwrlEoqBomsUG5O BihRpjza3u/RtVCEBIfNe3swY4kuz48KCxdo3HqjHnTA/5qDNaM58JrYhUeB1xjx Ru5zOaRCSLwPEeX0oSmx35UquGjQzLp78oAZSZfz6dXXVLaQuxlkqQH5B/3RrZeb GhMWhz4WfqVGLg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:27 2026 by rpki-client