This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json) Hash identifier: 74tPanfKGPJAN6VSAu0NLNfHgkoyfThhBltMfkKUatY= Subject key identifier: 96:9F:AE:D9:95:C5:A8:8B:BC:56:09:B3:3A:1A:67:AA:D9:66:2E:5D Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0 Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0 Certificate serial: 019C4358E91286F075DAAE005BB5C12DA0B1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft Manifest number: 0A89 Signing time: Mon 09 Feb 2026 17:00:26 +0000 Manifest this update: Mon 09 Feb 2026 17:00:26 +0000 Manifest next update: Tue 10 Feb 2026 17:00:26 +0000 Files and hashes: 1: KggeSoYJuTH0OsCrW287o_IBVIU.roa (hash: 3X9Kd87JdDMTWZvK8kLFjDZVe2SDW7wiUWXk0sGtCM8=) 2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: Gonzl7wLMyQpAMU7w7nXkaVwXEZaef5kHeU49vk8ft8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:e9:12:86:f0:75:da:ae:00:5b:b5:c1:2d:a0:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0 Validity Not Before: Feb 9 17:00:26 2026 GMT Not After : Feb 10 17:00:26 2026 GMT Subject: CN=969faed995c5a88bbc5609b33a1a67aad9662e5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:74:cb:ff:93:65:b4:66:86:52:59:6d:b2:74: 93:c7:30:8a:42:4e:de:34:7f:8f:41:a3:45:47:8d: d0:53:d8:17:dd:df:5d:ff:76:52:4f:9f:f7:2c:b9: 79:97:80:c9:eb:bc:7c:80:20:5e:5c:b9:fc:6b:2f: c3:53:ab:b6:98:7c:72:5a:46:3d:8a:91:cd:20:8c: cb:01:9b:d3:84:b6:e4:af:60:58:c8:d6:49:0e:ad: 75:3e:a6:16:a9:d9:0a:48:d8:81:2e:29:74:cd:bc: b8:76:88:49:82:03:40:c0:a4:e6:5f:5d:a7:ce:f3: 71:31:f4:07:e9:44:4a:05:4a:05:64:df:65:14:96: a0:a1:75:96:10:93:57:32:b4:c0:be:0d:5c:6c:82: 9e:58:aa:35:87:df:6e:a5:73:15:7e:1f:26:00:44: dc:9d:36:33:74:d7:25:62:39:1b:a2:aa:36:9d:5e: 31:c4:11:fd:36:85:9a:ac:fb:49:7f:d8:a0:0f:85: 38:43:29:2f:f0:e3:39:4d:8a:15:ec:33:05:13:d7: e2:65:95:66:eb:19:de:23:0a:76:aa:25:87:54:8e: a0:f3:ef:1f:79:16:7c:4b:14:80:cb:a4:83:f6:74: f6:d0:61:8f:87:58:51:9d:9c:ad:f7:19:bd:1c:94: 4e:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9F:AE:D9:95:C5:A8:8B:BC:56:09:B3:3A:1A:67:AA:D9:66:2E:5D X509v3 Authority Key Identifier: keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:14:ed:8c:03:f5:d3:6f:48:f2:26:b1:37:03:13:b3:ad:e7: 64:0e:00:5d:42:6d:60:4e:98:0c:f5:b8:f2:4e:00:02:55:f9: 14:55:2b:16:44:0c:6d:16:95:8b:62:13:e6:e5:fd:cc:11:67: 79:0e:73:20:0b:76:3b:8c:b4:d8:23:a1:56:7a:da:04:23:6b: 1a:f0:d1:b2:83:ca:16:8d:fd:5a:bb:55:6b:d9:24:be:86:54: 2e:3f:21:8f:21:5b:59:4b:fe:d7:56:24:f1:32:50:9f:bc:f5: 09:2c:6e:f6:3c:34:8f:ba:82:46:ab:4e:70:6e:be:2f:42:0e: 4a:1b:a5:dc:20:e4:ed:14:ba:7a:53:38:0b:21:a5:6c:ac:2f: 58:fc:e1:26:11:23:24:52:93:a1:45:af:09:aa:4b:d7:fc:20: 3a:47:b2:08:29:8b:2c:ee:ce:98:2f:b8:7d:66:9c:6b:5a:bf: d7:a1:63:4c:21:0c:73:b4:56:7d:54:a7:35:1f:88:2f:3a:88: 37:e1:86:04:4d:6f:60:e7:0e:f7:4f:d5:09:b9:55:da:d0:1f: 4b:5e:3a:ba:c2:2c:8c:fd:a6:a5:61:d1:04:cb:d5:a3:72:3e: 20:03:26:91:ef:8a:ad:fb:a2:07:05:5e:5a:ba:f0:b8:42:af: 97:38:ad:bd -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWOkShvB12q4AW7XBLaCxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx ZTkxYTAwHhcNMjYwMjA5MTcwMDI2WhcNMjYwMjEwMTcwMDI2WjAzMTEwLwYDVQQD Eyg5NjlmYWVkOTk1YzVhODhiYmM1NjA5YjMzYTFhNjdhYWQ5NjYyZTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsXTL/5NltGaGUlltsnSTxzCKQk7e NH+PQaNFR43QU9gX3d9d/3ZST5/3LLl5l4DJ67x8gCBeXLn8ay/DU6u2mHxyWkY9 ipHNIIzLAZvThLbkr2BYyNZJDq11PqYWqdkKSNiBLil0zby4dohJggNAwKTmX12n zvNxMfQH6URKBUoFZN9lFJagoXWWEJNXMrTAvg1cbIKeWKo1h99upXMVfh8mAETc nTYzdNclYjkboqo2nV4xxBH9NoWarPtJf9igD4U4Qykv8OM5TYoV7DMFE9fiZZVm 6xneIwp2qiWHVI6g8+8feRZ8SxSAy6SD9nT20GGPh1hRnZyt9xm9HJROmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJafrtmVxaiLvFYJszoaZ6rZZi5dMB8GA1UdIwQY MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0 LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnxTtjAP1 029I8iaxNwMTs63nZA4AXUJtYE6YDPW48k4AAlX5FFUrFkQMbRaVi2IT5uX9zBFn eQ5zIAt2O4y02COhVnraBCNrGvDRsoPKFo39WrtVa9kkvoZULj8hjyFbWUv+11Yk 8TJQn7z1CSxu9jw0j7qCRqtOcG6+L0IOShul3CDk7RS6elM4CyGlbKwvWPzhJhEj JFKToUWvCapL1/wgOkeyCCmLLO7OmC+4fWaca1q/16FjTCEMc7RWfVSnNR+ILzqI N+GGBE1vYOcO90/VCblV2tAfS146usIsjP2mpWHRBMvVo3I+IAMmke+KrfuiBwVe WrrwuEKvlzitvQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:00:00 2026 by rpki-client