This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft File: nc28ow8_5XpR57bAt_MgOvFnKiI.mft (raw, json) Hash identifier: +c4WVindKfFj2FTV6hZXkH12flE57Whaf7GX47Sqn3s= Subject key identifier: DC:B2:EF:89:D0:33:DC:1D:2E:5C:17:48:A4:18:33:E1:49:82:B3:FC Authority key identifier: 9D:CD:BC:A3:0F:3F:E5:7A:51:E7:B6:C0:B7:F3:20:3A:F1:67:2A:22 Certificate issuer: /CN=9dcdbca30f3fe57a51e7b6c0b7f3203af1672a22 Certificate serial: 019C4322D3FF40A23EB04E9C30D04FAD8994 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nc28ow8_5XpR57bAt_MgOvFnKiI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft Manifest number: 180A Signing time: Mon 09 Feb 2026 16:01:21 +0000 Manifest this update: Mon 09 Feb 2026 16:01:21 +0000 Manifest next update: Tue 10 Feb 2026 16:01:21 +0000 Files and hashes: 1: nc28ow8_5XpR57bAt_MgOvFnKiI.crl (hash: xD4zscUx5XED7ngQ7HdZN9FU0HHKNtY7rfRc2YJbf8g=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.crl rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft rsync://rpki.ripe.net/repository/DEFAULT/nc28ow8_5XpR57bAt_MgOvFnKiI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 16:01:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:d3:ff:40:a2:3e:b0:4e:9c:30:d0:4f:ad:89:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dcdbca30f3fe57a51e7b6c0b7f3203af1672a22 Validity Not Before: Feb 9 16:01:21 2026 GMT Not After : Feb 10 16:01:21 2026 GMT Subject: CN=dcb2ef89d033dc1d2e5c1748a41833e14982b3fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:01:ea:60:57:fc:cd:d7:f1:5d:db:41:02:f2: 46:86:d5:e1:0a:b0:5f:82:7e:8e:46:30:b4:90:31: aa:0f:12:8e:05:23:4c:37:f1:7a:37:05:1a:7b:8d: eb:7f:12:f4:ce:45:0f:8b:b5:d8:7d:3c:0e:ac:39: d8:d9:82:af:c4:34:bd:14:45:be:1d:b9:0d:d4:0e: 0c:54:56:55:88:d4:9d:de:e1:bb:84:10:47:fa:2b: fc:68:30:be:6d:c7:a4:16:9a:4f:a1:58:21:76:fc: 2f:05:48:91:16:36:fa:2b:8f:a5:04:3a:b5:4e:3d: 25:af:00:59:ed:f1:0a:26:5d:ab:ad:9f:54:36:b4: 23:ab:32:9d:f8:a6:1f:ab:73:93:1c:88:0a:e1:71: 21:2d:19:0e:6a:e4:61:4f:71:1e:66:b9:3e:26:71: f2:a8:04:7e:ce:b0:49:54:8d:a0:13:4e:d3:99:64: e3:d9:f2:f5:48:53:66:9b:ae:3c:d0:1d:2b:84:d7: 93:ac:f5:21:5d:26:19:45:16:c6:79:ce:55:b8:e2: 7b:79:a5:5d:69:65:8d:ef:fb:91:37:de:93:b0:27: c7:c4:3f:29:c1:97:20:ef:5f:ff:b2:4a:9b:41:1c: 2a:df:dd:7b:bc:2f:b0:3a:f7:76:d5:20:1c:e8:95: 60:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:B2:EF:89:D0:33:DC:1D:2E:5C:17:48:A4:18:33:E1:49:82:B3:FC X509v3 Authority Key Identifier: keyid:9D:CD:BC:A3:0F:3F:E5:7A:51:E7:B6:C0:B7:F3:20:3A:F1:67:2A:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nc28ow8_5XpR57bAt_MgOvFnKiI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/ac72a6-b836-4043-bd23-fa060b9a3b40/1/nc28ow8_5XpR57bAt_MgOvFnKiI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:8a:a0:3a:89:f0:6f:9e:6e:05:20:2d:99:b8:33:22:a3:55: 64:93:9d:5c:69:8b:1c:62:a9:1d:54:b1:e2:58:39:32:9d:9c: bc:89:0c:e1:f9:6d:2c:96:03:02:86:6a:aa:19:40:1d:b1:5c: b8:d5:7d:6d:5b:fd:62:21:45:84:bf:6c:b5:0f:6c:d9:07:17: 02:97:45:97:c4:87:70:2c:99:61:44:41:4b:a4:4e:56:dd:23: 19:87:c1:c1:32:b1:69:6f:36:33:f8:e2:5f:be:60:46:7a:f3: ab:ef:19:ad:75:47:4a:de:96:3d:c7:59:c6:17:fd:bf:09:e8: 0b:bf:28:23:c3:83:3a:b7:b9:18:a8:d1:76:f5:bc:0e:3c:44: 23:fa:66:a1:32:15:98:9d:50:fe:54:35:60:d2:1e:9b:a6:79: 6d:98:91:07:97:cb:82:4d:12:8e:a4:ca:f8:db:3a:3e:81:32: 0c:68:61:47:ca:cc:ce:48:9e:51:90:e1:32:40:cb:2a:f7:84: d3:c9:96:79:05:02:d6:d9:d8:ba:be:6b:a0:0a:bd:3e:bc:40: 19:44:7a:c8:5b:cf:c3:c2:40:f4:91:e0:d3:7e:84:fc:6d:1b: 61:c0:e3:bb:0d:ef:bc:0b:86:bd:dd:35:fe:97:91:3f:e1:15: 33:0a:69:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDItP/QKI+sE6cMNBPrYmUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkY2RiY2EzMGYzZmU1N2E1MWU3YjZjMGI3ZjMyMDNhZjE2 NzJhMjIwHhcNMjYwMjA5MTYwMTIxWhcNMjYwMjEwMTYwMTIxWjAzMTEwLwYDVQQD EyhkY2IyZWY4OWQwMzNkYzFkMmU1YzE3NDhhNDE4MzNlMTQ5ODJiM2ZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnAHqYFf8zdfxXdtBAvJGhtXhCrBf gn6ORjC0kDGqDxKOBSNMN/F6NwUae43rfxL0zkUPi7XYfTwOrDnY2YKvxDS9FEW+ HbkN1A4MVFZViNSd3uG7hBBH+iv8aDC+bcekFppPoVghdvwvBUiRFjb6K4+lBDq1 Tj0lrwBZ7fEKJl2rrZ9UNrQjqzKd+KYfq3OTHIgK4XEhLRkOauRhT3EeZrk+JnHy qAR+zrBJVI2gE07TmWTj2fL1SFNmm6480B0rhNeTrPUhXSYZRRbGec5VuOJ7eaVd aWWN7/uRN96TsCfHxD8pwZcg71//skqbQRwq3917vC+wOvd21SAc6JVgiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNyy74nQM9wdLlwXSKQYM+FJgrP8MB8GA1UdIwQY MBaAFJ3NvKMPP+V6Uee2wLfzIDrxZyoiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmMyOG93OF81WHBSNTdiQXRfTWdPdkZuS2lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS9hYzcyYTYtYjgzNi00MDQzLWJkMjMt ZmEwNjBiOWEzYjQwLzEvbmMyOG93OF81WHBSNTdiQXRfTWdPdkZuS2lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS9hYzcyYTYtYjgzNi00MDQzLWJkMjMtZmEwNjBiOWEzYjQw LzEvbmMyOG93OF81WHBSNTdiQXRfTWdPdkZuS2lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP4qgOonw b55uBSAtmbgzIqNVZJOdXGmLHGKpHVSx4lg5Mp2cvIkM4fltLJYDAoZqqhlAHbFc uNV9bVv9YiFFhL9stQ9s2QcXApdFl8SHcCyZYURBS6ROVt0jGYfBwTKxaW82M/ji X75gRnrzq+8ZrXVHSt6WPcdZxhf9vwnoC78oI8ODOre5GKjRdvW8DjxEI/pmoTIV mJ1Q/lQ1YNIem6Z5bZiRB5fLgk0SjqTK+Ns6PoEyDGhhR8rMzkieUZDhMkDLKveE 08mWeQUC1tnYur5roAq9PrxAGUR6yFvPw8JA9JHg036E/G0bYcDjuw3vvAuGvd01 /peRP+EVMwppoQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:53 2026 by rpki-client