This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/3059de-bafc-4a4b-86b6-f28d972c8808/1/Nq6kWA8QexEmjJbqMYko1O11_5M.mft File: Nq6kWA8QexEmjJbqMYko1O11_5M.mft (raw, json) Hash identifier: gTfjDrpuglD6yYOm6QtFLxMFVJIGhx2WYrcmrMemCww= Subject key identifier: 3E:9F:1E:60:56:51:D2:98:D4:77:07:10:C9:72:A3:5B:59:6B:35:02 Authority key identifier: 36:AE:A4:58:0F:10:7B:11:26:8C:96:EA:31:89:28:D4:ED:75:FF:93 Certificate issuer: /CN=36aea4580f107b11268c96ea318928d4ed75ff93 Certificate serial: 019C446C78960B2B793CF94DB6A906BB9195 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nq6kWA8QexEmjJbqMYko1O11_5M.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/3059de-bafc-4a4b-86b6-f28d972c8808/1/Nq6kWA8QexEmjJbqMYko1O11_5M.mft Manifest number: 06C8 Signing time: Mon 09 Feb 2026 22:01:25 +0000 Manifest this update: Mon 09 Feb 2026 22:01:25 +0000 Manifest next update: Tue 10 Feb 2026 22:01:25 +0000 Files and hashes: 1: Nq6kWA8QexEmjJbqMYko1O11_5M.crl (hash: n5dp8IJx2miJMYK6zb5SgtvIdF3V+690VgPJ9XOfT+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/3059de-bafc-4a4b-86b6-f28d972c8808/1/Nq6kWA8QexEmjJbqMYko1O11_5M.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/3059de-bafc-4a4b-86b6-f28d972c8808/1/Nq6kWA8QexEmjJbqMYko1O11_5M.mft rsync://rpki.ripe.net/repository/DEFAULT/Nq6kWA8QexEmjJbqMYko1O11_5M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6c:78:96:0b:2b:79:3c:f9:4d:b6:a9:06:bb:91:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36aea4580f107b11268c96ea318928d4ed75ff93 Validity Not Before: Feb 9 22:01:25 2026 GMT Not After : Feb 10 22:01:25 2026 GMT Subject: CN=3e9f1e605651d298d4770710c972a35b596b3502 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:7e:70:eb:83:75:55:df:d6:1a:86:4c:db:6e: ab:69:a5:4d:77:14:3d:7a:6b:a5:03:5e:10:d2:84: b8:e1:e8:14:87:5b:e0:1b:91:36:31:9e:6b:d5:6e: 75:14:c8:33:36:0d:9f:b8:83:9e:55:bd:d5:d5:38: ca:d5:2c:bb:b6:4d:1e:8a:ee:8a:dc:a2:37:b9:00: 82:b9:f6:f0:08:f8:28:eb:72:b7:4a:42:42:bb:02: ba:2c:60:fa:a7:fb:63:55:10:1c:f1:64:3a:3a:8b: 3d:64:19:7c:d6:d9:96:9f:83:16:ed:a3:d2:63:51: 3c:83:8b:37:82:0c:12:9d:cd:a9:72:b6:a5:91:08: 24:41:ad:7e:88:73:a8:2b:0a:22:95:4f:83:bb:03: 36:13:e7:c0:24:97:d4:81:83:1b:b3:bc:ca:9a:9d: c6:3a:20:96:45:27:9e:aa:9a:00:65:32:96:a6:8b: f3:68:73:c3:db:a7:c8:d4:e7:b5:cb:28:f1:d8:8d: d7:d5:31:96:8c:78:56:fb:77:33:7b:a5:b9:d7:dc: e7:bb:b2:f7:bc:da:e7:9a:68:ad:6b:ac:ab:70:1d: ac:89:21:e5:51:c5:ab:2b:fe:b9:61:fa:9e:9e:62: 91:66:38:f7:37:01:97:2c:e1:6a:6c:24:47:7e:3c: 50:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:9F:1E:60:56:51:D2:98:D4:77:07:10:C9:72:A3:5B:59:6B:35:02 X509v3 Authority Key Identifier: keyid:36:AE:A4:58:0F:10:7B:11:26:8C:96:EA:31:89:28:D4:ED:75:FF:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nq6kWA8QexEmjJbqMYko1O11_5M.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/3059de-bafc-4a4b-86b6-f28d972c8808/1/Nq6kWA8QexEmjJbqMYko1O11_5M.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/3059de-bafc-4a4b-86b6-f28d972c8808/1/Nq6kWA8QexEmjJbqMYko1O11_5M.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:74:40:bd:fc:ab:c3:d3:f3:40:8b:ab:4f:d1:4e:52:90:53: f0:29:9d:91:3f:b4:31:e0:1e:1a:3e:34:57:d0:ae:93:4f:4a: 1a:46:c2:26:7a:59:a6:02:cd:1e:d4:8f:6e:5f:39:56:72:30: 14:e8:1d:8e:f7:8c:d4:30:f5:ff:31:21:43:73:cf:da:2d:1f: 23:1b:19:1e:da:ae:b7:e6:94:18:b1:12:6b:c3:7f:43:9e:48: f5:1c:4c:bc:af:65:c6:33:b2:54:0a:93:83:1e:4d:40:4e:0b: 08:40:b1:bf:e1:e5:9b:79:5e:46:8e:9b:82:5c:07:17:e4:c3: 6f:1a:09:e9:ae:02:1a:7e:2d:87:fb:5f:71:4b:95:cf:a9:35: ac:16:d2:f9:89:c8:e2:df:97:c8:5c:32:16:a3:bd:d2:62:79: 5b:4f:41:61:39:b8:7e:37:70:a3:95:55:78:8e:e5:ee:01:f7: 9b:83:4e:2c:ee:7c:46:bc:18:87:b2:f4:d8:1c:ab:b6:cc:85: d2:b5:7f:86:ba:de:94:ee:e7:13:2e:59:87:76:93:36:7c:2b: 15:7a:8d:fb:7c:b8:5e:29:aa:aa:41:84:27:9c:80:36:b4:0a: da:46:e8:fc:00:3d:12:6c:98:a9:75:18:a2:5d:1e:17:9b:4c: e1:99:c8:67 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEbHiWCyt5PPlNtqkGu5GVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2YWVhNDU4MGYxMDdiMTEyNjhjOTZlYTMxODkyOGQ0ZWQ3 NWZmOTMwHhcNMjYwMjA5MjIwMTI1WhcNMjYwMjEwMjIwMTI1WjAzMTEwLwYDVQQD EygzZTlmMWU2MDU2NTFkMjk4ZDQ3NzA3MTBjOTcyYTM1YjU5NmIzNTAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtX5w64N1Vd/WGoZM226raaVNdxQ9 emulA14Q0oS44egUh1vgG5E2MZ5r1W51FMgzNg2fuIOeVb3V1TjK1Sy7tk0eiu6K 3KI3uQCCufbwCPgo63K3SkJCuwK6LGD6p/tjVRAc8WQ6Oos9ZBl81tmWn4MW7aPS Y1E8g4s3ggwSnc2pcralkQgkQa1+iHOoKwoilU+DuwM2E+fAJJfUgYMbs7zKmp3G OiCWRSeeqpoAZTKWpovzaHPD26fI1Oe1yyjx2I3X1TGWjHhW+3cze6W519znu7L3 vNrnmmita6yrcB2siSHlUcWrK/65YfqenmKRZjj3NwGXLOFqbCRHfjxQwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFD6fHmBWUdKY1HcHEMlyo1tZazUCMB8GA1UdIwQY MBaAFDaupFgPEHsRJoyW6jGJKNTtdf+TMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnE2a1dBOFFleEVtakpicU1Za28xTzExXzVNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi8zMDU5ZGUtYmFmYy00YTRiLTg2YjYt ZjI4ZDk3MmM4ODA4LzEvTnE2a1dBOFFleEVtakpicU1Za28xTzExXzVNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi8zMDU5ZGUtYmFmYy00YTRiLTg2YjYtZjI4ZDk3MmM4ODA4 LzEvTnE2a1dBOFFleEVtakpicU1Za28xTzExXzVNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfHRAvfyr w9PzQIurT9FOUpBT8CmdkT+0MeAeGj40V9Cuk09KGkbCJnpZpgLNHtSPbl85VnIw FOgdjveM1DD1/zEhQ3PP2i0fIxsZHtqut+aUGLESa8N/Q55I9RxMvK9lxjOyVAqT gx5NQE4LCECxv+Hlm3leRo6bglwHF+TDbxoJ6a4CGn4th/tfcUuVz6k1rBbS+YnI 4t+XyFwyFqO90mJ5W09BYTm4fjdwo5VVeI7l7gH3m4NOLO58RrwYh7L02ByrtsyF 0rV/hrrelO7nEy5Zh3aTNnwrFXqN+3y4XimqqkGEJ5yANrQK2kbo/AA9EmyYqXUY ol0eF5tM4ZnIZw== -----END CERTIFICATE-----Generated at Tue Feb 10 00:17:02 2026 by rpki-client