This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft File: nLt3urQ4qT002dXAqOC57zKuXaA.mft (raw, json) Hash identifier: rTDCco5DjIJOUB/27urkK+QIZx3scTgP3zzSATPLCL8= Subject key identifier: DF:AD:B1:E6:A4:CB:FB:F2:A4:49:40:D3:66:AB:82:B3:F1:73:B3:ED Authority key identifier: 9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0 Certificate issuer: /CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0 Certificate serial: 019C41D8C54FD283E1BB06FE2F83188E3739 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft Manifest number: 0996 Signing time: Mon 09 Feb 2026 10:00:50 +0000 Manifest this update: Mon 09 Feb 2026 10:00:50 +0000 Manifest next update: Tue 10 Feb 2026 10:00:50 +0000 Files and hashes: 1: nLt3urQ4qT002dXAqOC57zKuXaA.crl (hash: MkdIbXTkuj7FdclqBULfVel4Sy6pbESCkQxDEj5xqco=) 2: q45NW9ILWXRj7KEDEoB0elTRYN0.roa (hash: nnMWIhcjMTz5ErkFaNjKVileFt+Q5rGZenkw7duVHz8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:c5:4f:d2:83:e1:bb:06:fe:2f:83:18:8e:37:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9cbb77bab438a93d34d9d5c0a8e0b9ef32ae5da0 Validity Not Before: Feb 9 10:00:50 2026 GMT Not After : Feb 10 10:00:50 2026 GMT Subject: CN=dfadb1e6a4cbfbf2a44940d366ab82b3f173b3ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:5a:50:39:83:c0:c1:bf:3c:bb:cc:f6:70:46: ac:c6:13:e6:b9:13:e6:88:d8:16:c9:5b:a6:dc:c7: 8b:0c:c7:c5:6e:72:81:7d:29:4f:e2:49:ef:01:67: fe:b6:10:96:4c:1d:81:24:b5:bd:20:aa:c4:b3:a1: a7:52:60:f7:bd:4e:c6:88:39:24:b3:3b:47:f9:e3: b7:b3:5e:9b:80:1e:91:1b:8d:53:4a:f6:d9:72:53: f8:4e:57:49:1c:b0:42:66:64:3f:e3:4f:d3:a2:4d: b9:d9:e3:60:a0:7d:53:5f:bc:70:c3:33:d6:58:c4: 17:86:d7:be:73:4c:d7:e9:94:10:17:00:2e:c6:83: 13:91:a6:f4:8c:08:72:9a:9e:83:e2:67:d3:19:c8: 4b:c1:24:d3:eb:d2:d7:18:c3:d8:e4:c8:7b:66:72: c3:fd:3c:b5:61:15:8b:6c:5c:c0:1d:d7:dc:08:50: 86:73:05:b9:8f:d7:e9:4a:58:64:0a:c3:b1:b6:68: c5:f1:49:82:93:4a:ea:19:0f:65:c2:a3:af:2e:73: b7:e6:aa:0f:ad:2a:b3:9f:fa:70:44:f9:4c:1f:d0: 31:e9:cf:5f:40:a5:20:7c:43:d0:20:86:42:45:53: 02:6f:1d:76:d9:9b:c8:c9:66:1a:36:a6:9d:e2:a4: 9f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:AD:B1:E6:A4:CB:FB:F2:A4:49:40:D3:66:AB:82:B3:F1:73:B3:ED X509v3 Authority Key Identifier: keyid:9C:BB:77:BA:B4:38:A9:3D:34:D9:D5:C0:A8:E0:B9:EF:32:AE:5D:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nLt3urQ4qT002dXAqOC57zKuXaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3e/229182-4bdc-4234-a989-90d58c603256/1/nLt3urQ4qT002dXAqOC57zKuXaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:c8:89:3b:8d:44:cd:70:d3:f3:74:53:8f:4a:3f:ed:35:c8: e3:49:70:5b:aa:a3:70:49:69:33:26:01:11:1e:36:b1:17:94: d2:f7:f3:73:88:9b:62:17:d4:9f:a0:8f:3a:80:1c:5e:c9:86: 2a:ea:b7:9d:90:95:a8:67:06:18:2f:e8:98:8f:8c:60:55:ca: a9:11:ee:e2:e5:f4:33:fc:cf:d7:57:d4:4a:68:ad:ec:cb:86: 37:84:0b:c5:fb:e9:92:f0:db:09:c9:b6:52:37:75:c0:87:31: 62:d2:28:c5:c5:f4:73:85:3a:33:92:94:61:e2:ef:ef:11:57: 8b:9b:bd:46:83:5a:f5:de:a2:23:8a:24:0a:d0:2c:81:94:2d: de:fb:29:3c:c0:4d:73:a4:e1:67:92:62:2f:42:71:ab:f8:2c: 81:f5:35:17:0d:12:05:f2:12:e9:47:d2:1c:c5:c8:6e:86:f3: 48:8a:12:72:7e:5a:90:e9:83:8c:10:92:de:99:79:e0:af:8f: 68:a5:d5:29:98:58:e4:98:58:25:77:a4:9d:47:8c:85:2e:ec: 1e:46:7e:b9:1e:e7:dc:c0:86:1d:d5:cb:45:8a:69:7d:50:d6: 43:cd:81:c5:51:15:45:45:e6:ea:77:6e:0f:43:43:82:d3:7c: cb:9b:5f:a4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2MVP0oPhuwb+L4MYjjc5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljYmI3N2JhYjQzOGE5M2QzNGQ5ZDVjMGE4ZTBiOWVmMzJh ZTVkYTAwHhcNMjYwMjA5MTAwMDUwWhcNMjYwMjEwMTAwMDUwWjAzMTEwLwYDVQQD EyhkZmFkYjFlNmE0Y2JmYmYyYTQ0OTQwZDM2NmFiODJiM2YxNzNiM2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1pQOYPAwb88u8z2cEasxhPmuRPm iNgWyVum3MeLDMfFbnKBfSlP4knvAWf+thCWTB2BJLW9IKrEs6GnUmD3vU7GiDkk sztH+eO3s16bgB6RG41TSvbZclP4TldJHLBCZmQ/40/Tok252eNgoH1TX7xwwzPW WMQXhte+c0zX6ZQQFwAuxoMTkab0jAhymp6D4mfTGchLwSTT69LXGMPY5Mh7ZnLD /Ty1YRWLbFzAHdfcCFCGcwW5j9fpSlhkCsOxtmjF8UmCk0rqGQ9lwqOvLnO35qoP rSqzn/pwRPlMH9Ax6c9fQKUgfEPQIIZCRVMCbx122ZvIyWYaNqad4qSfQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN+tseaky/vypElA02argrPxc7PtMB8GA1UdIwQY MBaAFJy7d7q0OKk9NNnVwKjgue8yrl2gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkx0M3VyUTRxVDAwMmRYQXFPQzU3ekt1WGFBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zZS8yMjkxODItNGJkYy00MjM0LWE5ODkt OTBkNThjNjAzMjU2LzEvbkx0M3VyUTRxVDAwMmRYQXFPQzU3ekt1WGFBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zZS8yMjkxODItNGJkYy00MjM0LWE5ODktOTBkNThjNjAzMjU2 LzEvbkx0M3VyUTRxVDAwMmRYQXFPQzU3ekt1WGFBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB8iJO41E zXDT83RTj0o/7TXI40lwW6qjcElpMyYBER42sReU0vfzc4ibYhfUn6CPOoAcXsmG Kuq3nZCVqGcGGC/omI+MYFXKqRHu4uX0M/zP11fUSmit7MuGN4QLxfvpkvDbCcm2 Ujd1wIcxYtIoxcX0c4U6M5KUYeLv7xFXi5u9RoNa9d6iI4okCtAsgZQt3vspPMBN c6ThZ5JiL0Jxq/gsgfU1Fw0SBfIS6UfSHMXIbobzSIoScn5akOmDjBCS3pl54K+P aKXVKZhY5JhYJXeknUeMhS7sHkZ+uR7n3MCGHdXLRYppfVDWQ82BxVEVRUXm6ndu D0NDgtN8y5tfpA== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:15 2026 by rpki-client