This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft File: NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft (raw, json) Hash identifier: /2wlIGqRUlQisDR/UrfQD28lek03bGagR88qXCsP24s= Subject key identifier: 00:33:0B:D9:21:29:DF:79:0D:58:A2:D6:0F:61:D8:24:12:9A:26:4D Authority key identifier: 35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99 Certificate issuer: /CN=351652b838ff2d9672ac8ca66ba660dd4e45d699 Certificate serial: 019C42468C43AC5AAAE24922EA1233B942ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft Manifest number: 0CF4 Signing time: Mon 09 Feb 2026 12:00:45 +0000 Manifest this update: Mon 09 Feb 2026 12:00:45 +0000 Manifest next update: Tue 10 Feb 2026 12:00:45 +0000 Files and hashes: 1: 1p2ABoTmHppjIUEVK5pg2mIhNow.roa (hash: ECPu2qb2eGXD+sxXXw8nzOOHG8hI1ILJZKOoScd4Ul8=) 2: NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl (hash: fnm8DFZirlZMfK/9mhcz9y2lvO+DtF6V2CZALuIiW6Y=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:8c:43:ac:5a:aa:e2:49:22:ea:12:33:b9:42:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=351652b838ff2d9672ac8ca66ba660dd4e45d699 Validity Not Before: Feb 9 12:00:45 2026 GMT Not After : Feb 10 12:00:45 2026 GMT Subject: CN=00330bd92129df790d58a2d60f61d824129a264d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:76:99:40:ea:a0:c8:cc:d5:15:fb:89:80:fa: 2a:82:e6:8a:74:ad:3a:ea:c5:79:3b:24:f3:b2:4c: cb:d8:56:81:fa:df:13:b1:5f:22:86:c9:62:b6:ce: ca:7f:a4:32:cb:9e:9a:4b:3f:b0:41:f0:d6:27:53: e3:c9:55:4d:f1:77:af:65:72:67:89:e3:73:87:27: fe:e3:86:3f:7e:ac:8e:52:96:0e:74:53:c9:38:36: f0:64:71:d2:17:af:00:26:f5:39:bf:db:7c:96:d5: 5c:e6:b7:02:ec:3c:77:8d:72:29:69:85:91:81:32: 40:0c:42:d9:3f:80:fc:91:ba:d7:e2:d6:fa:86:2b: f5:b5:00:90:5c:f5:e6:1e:57:0b:44:43:62:cb:4b: 38:7d:49:f8:ec:ea:ac:34:9f:bc:a8:e9:20:6d:8f: 02:f5:0b:0b:3f:4e:b4:27:d8:58:3d:03:09:62:1e: d5:e4:98:6e:ca:9a:44:e8:b2:d3:45:6b:91:7b:63: b9:80:0e:60:45:77:69:a6:b7:00:70:88:b2:36:ec: cd:f8:6a:ac:76:35:58:98:11:44:7b:4e:ad:49:0b: f2:d7:b7:95:14:33:51:1c:7f:0e:ed:43:38:28:9c: d3:28:f1:27:f5:6f:7a:9a:d5:31:1b:a3:1d:c8:7f: 6d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:33:0B:D9:21:29:DF:79:0D:58:A2:D6:0F:61:D8:24:12:9A:26:4D X509v3 Authority Key Identifier: keyid:35:16:52:B8:38:FF:2D:96:72:AC:8C:A6:6B:A6:60:DD:4E:45:D6:99 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NRZSuDj_LZZyrIyma6Zg3U5F1pk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/9ce60b-cbc4-40d9-98ad-1cd506070bb5/1/NRZSuDj_LZZyrIyma6Zg3U5F1pk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:db:9a:9f:38:17:93:c1:4d:59:45:b0:2a:f1:d1:aa:bf:82: 24:22:66:38:09:e0:a4:7d:04:5c:94:25:41:8c:9e:b8:1f:ee: cd:1f:e2:49:7a:5f:b1:f0:18:fe:57:6a:f4:72:3d:a2:9c:7d: 22:eb:83:85:39:a7:f6:00:fc:37:71:0f:4d:b6:a0:7e:a3:f2: 2d:d6:26:d7:90:b5:37:bb:fb:f1:c2:47:13:09:fe:3e:83:6a: 37:f5:c3:e5:ab:8b:ce:b8:c1:95:0f:7f:49:86:eb:dd:74:8e: 1b:b7:29:64:1c:e3:44:dd:30:2c:03:a1:75:75:8d:9a:05:ad: a9:d9:d7:88:89:45:a3:6e:59:45:f3:b0:b2:45:18:5f:26:99: b5:08:9c:c2:2b:7c:72:32:fa:e0:1f:f1:d5:27:26:73:8a:7f: c7:03:e5:ed:0c:99:d9:31:27:0e:a6:6b:f3:2b:05:3d:06:db: 75:35:7a:8b:e0:70:a8:64:1c:f5:eb:67:59:e5:1b:31:fa:47: 02:e2:cc:ae:00:85:35:0b:fd:76:99:c7:b0:ef:81:4e:65:b8: 30:ef:3e:3c:fd:ca:f1:23:90:87:28:ec:a2:bc:13:69:bd:53: 98:2f:af:54:04:cd:ed:00:52:e7:b1:7a:b7:82:61:f5:1d:52: 2f:ee:bc:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoxDrFqq4kki6hIzuULtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MTY1MmI4MzhmZjJkOTY3MmFjOGNhNjZiYTY2MGRkNGU0 NWQ2OTkwHhcNMjYwMjA5MTIwMDQ1WhcNMjYwMjEwMTIwMDQ1WjAzMTEwLwYDVQQD EygwMDMzMGJkOTIxMjlkZjc5MGQ1OGEyZDYwZjYxZDgyNDEyOWEyNjRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi3aZQOqgyMzVFfuJgPoqguaKdK06 6sV5OyTzskzL2FaB+t8TsV8ihslits7Kf6Qyy56aSz+wQfDWJ1PjyVVN8XevZXJn ieNzhyf+44Y/fqyOUpYOdFPJODbwZHHSF68AJvU5v9t8ltVc5rcC7Dx3jXIpaYWR gTJADELZP4D8kbrX4tb6hiv1tQCQXPXmHlcLRENiy0s4fUn47OqsNJ+8qOkgbY8C 9QsLP060J9hYPQMJYh7V5JhuyppE6LLTRWuRe2O5gA5gRXdpprcAcIiyNuzN+Gqs djVYmBFEe06tSQvy17eVFDNRHH8O7UM4KJzTKPEn9W96mtUxG6MdyH9tdwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAAzC9khKd95DVii1g9h2CQSmiZNMB8GA1UdIwQY MBaAFDUWUrg4/y2WcqyMpmumYN1ORdaZMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi85Y2U2MGItY2JjNC00MGQ5LTk4YWQt MWNkNTA2MDcwYmI1LzEvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi85Y2U2MGItY2JjNC00MGQ5LTk4YWQtMWNkNTA2MDcwYmI1 LzEvTlJaU3VEal9MWlp5ckl5bWE2WmczVTVGMXBrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATNuanzgX k8FNWUWwKvHRqr+CJCJmOAngpH0EXJQlQYyeuB/uzR/iSXpfsfAY/ldq9HI9opx9 IuuDhTmn9gD8N3EPTbagfqPyLdYm15C1N7v78cJHEwn+PoNqN/XD5auLzrjBlQ9/ SYbr3XSOG7cpZBzjRN0wLAOhdXWNmgWtqdnXiIlFo25ZRfOwskUYXyaZtQicwit8 cjL64B/x1Scmc4p/xwPl7QyZ2TEnDqZr8ysFPQbbdTV6i+BwqGQc9etnWeUbMfpH AuLMrgCFNQv9dpnHsO+BTmW4MO8+PP3K8SOQhyjsorwTab1TmC+vVATN7QBS57F6 t4Jh9R1SL+682w== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:42 2026 by rpki-client