This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft File: NHBSPMWdTwUnV-cSKR4rt535KAA.mft (raw, json) Hash identifier: TFP8wB8JwPPGHn1fvPU1u1hcGDmIDqZ/qZC3YtlDsxc= Subject key identifier: 02:26:22:FB:75:40:74:2D:F2:0A:52:95:D0:E1:C5:E6:F0:B6:A2:75 Authority key identifier: 34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00 Certificate issuer: /CN=3470523cc59d4f052757e712291e2bb79df92800 Certificate serial: 019C42101EA526F3126842CD13B896A56B65 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft Manifest number: 031E Signing time: Mon 09 Feb 2026 11:01:18 +0000 Manifest this update: Mon 09 Feb 2026 11:01:18 +0000 Manifest next update: Tue 10 Feb 2026 11:01:18 +0000 Files and hashes: 1: NHBSPMWdTwUnV-cSKR4rt535KAA.crl (hash: 4Lf0eA6gKN/iuYVldETQzZ5PH3IEuS3cythCdykMrHU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:1e:a5:26:f3:12:68:42:cd:13:b8:96:a5:6b:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3470523cc59d4f052757e712291e2bb79df92800 Validity Not Before: Feb 9 11:01:18 2026 GMT Not After : Feb 10 11:01:18 2026 GMT Subject: CN=022622fb7540742df20a5295d0e1c5e6f0b6a275 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:c3:33:5d:9b:e4:48:2b:13:1d:39:a0:b9:f4: e6:1c:a3:0f:d3:a8:a9:95:b7:ec:d0:9f:e6:c2:fa: be:da:cd:c0:55:b2:80:6d:2c:2f:c2:97:a9:88:da: c4:a9:cc:cb:b5:95:3b:55:3f:16:49:fd:5c:20:34: 3c:9c:13:d7:2b:09:31:64:43:53:bb:c7:5c:36:5e: 6c:1a:b9:4e:2c:ff:76:19:c9:58:7f:76:ef:22:f8: dc:a2:b6:55:9c:2d:b8:74:c5:84:ec:f0:08:f5:79: e5:ec:eb:9d:24:3c:15:14:4f:70:4b:81:f0:35:f3: 10:a1:ac:01:af:c7:32:36:38:56:60:55:21:1f:31: 9c:c6:af:dd:00:cf:24:f8:c6:6c:8b:1d:24:1d:f3: d9:b9:46:76:15:5f:be:b5:87:df:36:53:30:a0:96: e7:18:ad:fc:65:8a:16:60:18:23:a5:5d:a5:08:f0: f3:2b:b1:df:19:75:4d:89:10:19:46:3d:97:2b:82: 42:31:26:43:13:34:6d:c9:78:de:2c:64:99:0c:35: 41:b4:8e:91:49:0f:43:4d:42:d8:10:6c:a8:a9:b5: df:15:0b:7b:12:eb:75:3a:ba:19:04:de:47:7c:3e: c2:20:16:b4:dd:df:94:77:69:13:ae:4d:9e:cc:c9: 8f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:26:22:FB:75:40:74:2D:F2:0A:52:95:D0:E1:C5:E6:F0:B6:A2:75 X509v3 Authority Key Identifier: keyid:34:70:52:3C:C5:9D:4F:05:27:57:E7:12:29:1E:2B:B7:9D:F9:28:00 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHBSPMWdTwUnV-cSKR4rt535KAA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/24/a280d8-8dba-4566-a238-33a3f3f003a5/1/NHBSPMWdTwUnV-cSKR4rt535KAA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:b2:5a:08:f0:6a:cc:2b:d5:23:ad:6f:9c:7b:57:02:8e:2e: a2:e2:2f:26:23:f0:80:63:b0:67:03:26:4f:bf:2d:a2:57:3f: b7:c3:3e:0d:1a:99:e0:30:b0:32:a2:e5:d1:23:32:d7:d9:1e: 6f:67:89:3b:86:09:e5:ea:6c:c9:a3:18:ad:81:33:0e:1f:1b: b5:86:05:03:af:fe:b4:4f:a5:32:ca:59:c9:0d:85:1d:d2:60: c8:58:ee:13:59:91:c3:8f:df:3f:b6:70:1f:b5:3d:6f:24:fe: 3f:df:cc:ee:3b:06:da:f4:01:c8:5b:c5:9a:72:f0:f7:bf:40: b3:c2:cc:3a:d4:e2:26:8a:bc:3e:96:02:dd:42:98:27:07:59: 2e:0a:d1:61:95:41:7a:5d:e4:44:00:13:16:5e:f3:87:60:ef: bf:be:14:c1:91:2c:7e:3c:6f:f3:d1:85:84:e9:2d:a4:2a:34: 66:04:ad:d0:df:c4:3c:ff:33:a0:c7:2c:dc:0d:8e:31:a7:30: df:f3:92:f1:e8:52:e7:bd:23:7e:b0:6e:37:ab:b6:7a:17:dd: dc:a6:59:33:23:af:86:cc:12:df:00:ca:b8:53:18:92:2d:6b: 99:33:10:b1:2b:81:e5:6c:5d:f0:3c:0d:f6:0f:36:53:9e:a1: ab:0c:f5:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEB6lJvMSaELNE7iWpWtlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0NzA1MjNjYzU5ZDRmMDUyNzU3ZTcxMjI5MWUyYmI3OWRm OTI4MDAwHhcNMjYwMjA5MTEwMTE4WhcNMjYwMjEwMTEwMTE4WjAzMTEwLwYDVQQD EygwMjI2MjJmYjc1NDA3NDJkZjIwYTUyOTVkMGUxYzVlNmYwYjZhMjc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMMzXZvkSCsTHTmgufTmHKMP06ip lbfs0J/mwvq+2s3AVbKAbSwvwpepiNrEqczLtZU7VT8WSf1cIDQ8nBPXKwkxZENT u8dcNl5sGrlOLP92GclYf3bvIvjcorZVnC24dMWE7PAI9Xnl7OudJDwVFE9wS4Hw NfMQoawBr8cyNjhWYFUhHzGcxq/dAM8k+MZsix0kHfPZuUZ2FV++tYffNlMwoJbn GK38ZYoWYBgjpV2lCPDzK7HfGXVNiRAZRj2XK4JCMSZDEzRtyXjeLGSZDDVBtI6R SQ9DTULYEGyoqbXfFQt7Eut1OroZBN5HfD7CIBa03d+Ud2kTrk2ezMmPIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAImIvt1QHQt8gpSldDhxebwtqJ1MB8GA1UdIwQY MBaAFDRwUjzFnU8FJ1fnEikeK7ed+SgAMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNC9hMjgwZDgtOGRiYS00NTY2LWEyMzgt MzNhM2YzZjAwM2E1LzEvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNC9hMjgwZDgtOGRiYS00NTY2LWEyMzgtMzNhM2YzZjAwM2E1 LzEvTkhCU1BNV2RUd1VuVi1jU0tSNHJ0NTM1S0FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArbJaCPBq zCvVI61vnHtXAo4uouIvJiPwgGOwZwMmT78tolc/t8M+DRqZ4DCwMqLl0SMy19ke b2eJO4YJ5epsyaMYrYEzDh8btYYFA6/+tE+lMspZyQ2FHdJgyFjuE1mRw4/fP7Zw H7U9byT+P9/M7jsG2vQByFvFmnLw979As8LMOtTiJoq8PpYC3UKYJwdZLgrRYZVB el3kRAATFl7zh2Dvv74UwZEsfjxv89GFhOktpCo0ZgSt0N/EPP8zoMcs3A2OMacw 3/OS8ehS570jfrBuN6u2ehfd3KZZMyOvhswS3wDKuFMYki1rmTMQsSuB5Wxd8DwN 9g82U56hqwz1Og== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:49 2026 by rpki-client