This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/bdd17a-fad4-4249-ac0f-edfbab3361bb/1/nuC9T-woxBx9-CFI8JHsPzkb23A.mft File: nuC9T-woxBx9-CFI8JHsPzkb23A.mft (raw, json) Hash identifier: +PD5ZEosBNgBY7TUp09AEJ3KNj8Ntn/Sxj89HpUeZtM= Subject key identifier: 2D:FD:DF:A3:AB:EF:05:80:3C:F2:C8:BE:77:97:70:7B:64:D7:0B:F8 Authority key identifier: 9E:E0:BD:4F:EC:28:C4:1C:7D:F8:21:48:F0:91:EC:3F:39:1B:DB:70 Certificate issuer: /CN=9ee0bd4fec28c41c7df82148f091ec3f391bdb70 Certificate serial: 019C41348976FD4D6B5D485CFA5174A89D7F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nuC9T-woxBx9-CFI8JHsPzkb23A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/bdd17a-fad4-4249-ac0f-edfbab3361bb/1/nuC9T-woxBx9-CFI8JHsPzkb23A.mft Manifest number: 09BD Signing time: Mon 09 Feb 2026 07:01:27 +0000 Manifest this update: Mon 09 Feb 2026 07:01:27 +0000 Manifest next update: Tue 10 Feb 2026 07:01:27 +0000 Files and hashes: 1: nuC9T-woxBx9-CFI8JHsPzkb23A.crl (hash: 9qi9frC6/xV+9kxBvT8PIOHu/Us2uvXSOF5p9ifsRWI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/bdd17a-fad4-4249-ac0f-edfbab3361bb/1/nuC9T-woxBx9-CFI8JHsPzkb23A.crl rsync://rpki.ripe.net/repository/DEFAULT/26/bdd17a-fad4-4249-ac0f-edfbab3361bb/1/nuC9T-woxBx9-CFI8JHsPzkb23A.mft rsync://rpki.ripe.net/repository/DEFAULT/nuC9T-woxBx9-CFI8JHsPzkb23A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:01:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:89:76:fd:4d:6b:5d:48:5c:fa:51:74:a8:9d:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ee0bd4fec28c41c7df82148f091ec3f391bdb70 Validity Not Before: Feb 9 07:01:27 2026 GMT Not After : Feb 10 07:01:27 2026 GMT Subject: CN=2dfddfa3abef05803cf2c8be7797707b64d70bf8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4e:a7:ce:58:08:89:43:29:90:04:b8:f5:4f: 2b:ea:95:ed:b7:a4:1e:2e:a9:97:40:2b:f3:d1:fc: 82:49:b8:ce:64:b2:f9:d9:63:3a:f8:f2:fa:84:00: 86:b3:9f:9a:e5:35:03:02:6f:01:54:13:a4:fd:6a: 98:20:9e:39:09:f1:0f:88:81:96:18:cf:09:62:3c: 33:6f:8f:d0:b1:07:ed:ab:97:82:6c:09:e5:e0:a6: 02:7a:01:01:65:ba:47:68:bf:e4:04:82:9b:74:f3: c8:63:e1:6c:a1:25:c6:e3:af:76:9f:c0:d1:98:a5: db:ac:e8:30:9c:32:a6:5f:73:67:02:d9:97:f9:13: 05:79:46:a6:cd:56:68:60:4f:75:2f:8f:c7:d5:4b: 28:4d:ac:61:29:1e:3b:78:f0:54:76:10:92:f3:2b: 90:f6:e2:a5:b6:db:07:ae:57:a2:78:b2:14:7b:fb: a7:30:1d:1c:73:23:2a:7a:d4:45:5a:1c:4e:1f:b1: a7:05:a8:c1:68:73:30:a8:da:bb:fa:e2:4d:07:83: d7:f2:23:ec:1b:ff:6d:4d:b3:f5:9a:a1:96:98:c7: 50:b1:b3:05:02:d3:00:d3:9f:ed:d5:d4:fd:09:11: 72:0f:80:52:d8:64:82:b6:34:ee:89:b7:a5:cb:10: 2e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:FD:DF:A3:AB:EF:05:80:3C:F2:C8:BE:77:97:70:7B:64:D7:0B:F8 X509v3 Authority Key Identifier: keyid:9E:E0:BD:4F:EC:28:C4:1C:7D:F8:21:48:F0:91:EC:3F:39:1B:DB:70 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nuC9T-woxBx9-CFI8JHsPzkb23A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/bdd17a-fad4-4249-ac0f-edfbab3361bb/1/nuC9T-woxBx9-CFI8JHsPzkb23A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/bdd17a-fad4-4249-ac0f-edfbab3361bb/1/nuC9T-woxBx9-CFI8JHsPzkb23A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:c7:21:d5:5c:bc:6f:90:19:99:cf:f4:f8:59:45:8f:65:d3: bc:b7:f5:44:94:e0:fc:0d:76:92:19:ec:3a:bf:f7:99:96:22: a4:1b:36:ac:09:3e:53:07:81:81:b1:3e:02:af:41:ad:21:54: 89:73:62:5e:44:d0:9e:6b:6c:0d:9d:95:bf:28:99:3c:aa:7c: b8:c8:cf:6f:b7:ca:f9:c6:00:c0:91:28:7b:0d:e9:2e:72:f3: d4:6c:94:40:e8:5c:94:0e:44:0f:9b:e7:c9:66:e1:be:e2:a8: 7b:0f:98:75:d3:32:1a:67:c8:c8:bd:a2:a7:ab:67:1b:ca:c0: 14:9d:72:b0:db:73:fd:85:34:6e:97:87:04:21:c9:87:39:1e: 2c:ef:d4:c3:83:b3:ad:0d:fc:6a:11:e3:fe:cb:25:fd:d7:45: 15:87:9c:fc:35:96:b0:fd:b1:af:17:d0:c7:6c:2c:3c:bd:c4: 98:53:04:6b:97:18:27:1b:24:c3:93:d8:2c:6a:65:70:0c:ad: c5:d5:83:20:52:bd:3d:eb:39:67:39:ea:a7:21:b3:f1:97:e0: b9:1d:be:b6:e3:b0:41:85:1a:67:a0:b8:73:78:4f:00:e0:62: f2:a6:6c:19:2c:e9:80:eb:ed:ad:e2:14:d5:ce:02:84:f0:d1: 1b:89:69:82 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNIl2/U1rXUhc+lF0qJ1/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllZTBiZDRmZWMyOGM0MWM3ZGY4MjE0OGYwOTFlYzNmMzkx YmRiNzAwHhcNMjYwMjA5MDcwMTI3WhcNMjYwMjEwMDcwMTI3WjAzMTEwLwYDVQQD EygyZGZkZGZhM2FiZWYwNTgwM2NmMmM4YmU3Nzk3NzA3YjY0ZDcwYmY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsE6nzlgIiUMpkAS49U8r6pXtt6Qe LqmXQCvz0fyCSbjOZLL52WM6+PL6hACGs5+a5TUDAm8BVBOk/WqYIJ45CfEPiIGW GM8JYjwzb4/QsQftq5eCbAnl4KYCegEBZbpHaL/kBIKbdPPIY+FsoSXG4692n8DR mKXbrOgwnDKmX3NnAtmX+RMFeUamzVZoYE91L4/H1UsoTaxhKR47ePBUdhCS8yuQ 9uKlttsHrleieLIUe/unMB0ccyMqetRFWhxOH7GnBajBaHMwqNq7+uJNB4PX8iPs G/9tTbP1mqGWmMdQsbMFAtMA05/t1dT9CRFyD4BS2GSCtjTuibelyxAuAwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC3936Or7wWAPPLIvneXcHtk1wv4MB8GA1UdIwQY MBaAFJ7gvU/sKMQcffghSPCR7D85G9twMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnVDOVQtd294Qng5LUNGSThKSHNQemtiMjNBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi9iZGQxN2EtZmFkNC00MjQ5LWFjMGYt ZWRmYmFiMzM2MWJiLzEvbnVDOVQtd294Qng5LUNGSThKSHNQemtiMjNBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi9iZGQxN2EtZmFkNC00MjQ5LWFjMGYtZWRmYmFiMzM2MWJi LzEvbnVDOVQtd294Qng5LUNGSThKSHNQemtiMjNBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAicch1Vy8 b5AZmc/0+FlFj2XTvLf1RJTg/A12khnsOr/3mZYipBs2rAk+UweBgbE+Aq9BrSFU iXNiXkTQnmtsDZ2VvyiZPKp8uMjPb7fK+cYAwJEoew3pLnLz1GyUQOhclA5ED5vn yWbhvuKoew+YddMyGmfIyL2ip6tnG8rAFJ1ysNtz/YU0bpeHBCHJhzkeLO/Uw4Oz rQ38ahHj/ssl/ddFFYec/DWWsP2xrxfQx2wsPL3EmFMEa5cYJxskw5PYLGplcAyt xdWDIFK9Pes5ZznqpyGz8ZfguR2+tuOwQYUaZ6C4c3hPAOBi8qZsGSzpgOvtreIU 1c4ChPDRG4lpgg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:57:17 2026 by rpki-client