This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft File: nlY8Qm0ark7R5_WVNnSQIgiehHk.mft (raw, json) Hash identifier: 3a3XMt2DK4/bvOUxHQzdgAfDH+Vib8xN2gfYCm2DuNk= Subject key identifier: BF:70:B0:F9:EB:F0:06:EB:64:E9:2D:32:3F:EE:83:E3:D1:BE:47:19 Authority key identifier: 9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79 Certificate issuer: /CN=9e563c426d1aae4ed1e7f59536749022089e8479 Certificate serial: 019C44A2B7E73AB54E9816B70A96DC52E03B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft Manifest number: 0CD3 Signing time: Mon 09 Feb 2026 23:00:40 +0000 Manifest this update: Mon 09 Feb 2026 23:00:40 +0000 Manifest next update: Tue 10 Feb 2026 23:00:40 +0000 Files and hashes: 1: nlY8Qm0ark7R5_WVNnSQIgiehHk.crl (hash: MIZ6L263DuaaGX0smoqkoMyQ+QaS9lmvbFLLQx66g2Y=) 2: uoPZT_uIWtt1y75pLuVRiaAOCA8.roa (hash: 9YrNpBfyPkS8WM22E6fKQ7KTx+jlfiKDKpzF0Ults2s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:b7:e7:3a:b5:4e:98:16:b7:0a:96:dc:52:e0:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e563c426d1aae4ed1e7f59536749022089e8479 Validity Not Before: Feb 9 23:00:40 2026 GMT Not After : Feb 10 23:00:40 2026 GMT Subject: CN=bf70b0f9ebf006eb64e92d323fee83e3d1be4719 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6e:9c:11:e8:43:a7:92:c6:ca:ea:84:16:c8: 45:df:f9:ec:7e:15:e0:86:d5:cd:9b:5a:c9:31:b7: 77:86:3e:82:b5:01:a5:db:a0:e6:41:0d:86:7d:61: b9:82:1c:67:01:90:3d:99:2d:7e:42:92:7e:e7:f8: 08:60:e1:96:9d:27:50:2c:98:7b:34:93:64:e2:fe: b4:8f:21:2a:3b:c6:85:9b:5e:05:4d:f6:72:f2:92: ec:69:a5:cb:59:98:19:0a:ff:8b:57:09:14:41:42: 47:7f:35:8a:c8:39:1e:42:6d:e7:33:85:60:37:41: d7:97:e4:11:10:fb:ae:43:f8:cb:ac:07:18:ad:3a: c6:2d:0f:1a:a0:19:a2:db:15:43:7c:80:c2:5d:01: 74:df:9c:6a:1a:7d:b1:4d:74:6e:99:3b:70:f7:c6: b4:30:1a:19:05:9f:49:73:4e:40:d7:0b:31:28:b9: 1d:09:b9:ef:dd:60:17:80:1e:c2:07:75:fd:8c:6b: 84:4d:07:80:15:89:48:eb:a9:26:db:91:8e:ce:7f: e9:c6:92:a1:55:f2:3c:92:1c:f9:d7:bb:9f:bb:bc: 11:ed:f2:e2:cb:54:dd:ac:e8:b9:3f:7f:3a:d5:8b: da:88:50:85:34:b7:3e:e2:7b:fe:4b:55:12:ad:68: fd:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:70:B0:F9:EB:F0:06:EB:64:E9:2D:32:3F:EE:83:E3:D1:BE:47:19 X509v3 Authority Key Identifier: keyid:9E:56:3C:42:6D:1A:AE:4E:D1:E7:F5:95:36:74:90:22:08:9E:84:79 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nlY8Qm0ark7R5_WVNnSQIgiehHk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/55d595-d0bc-4ba2-80a0-afbcf366bb07/1/nlY8Qm0ark7R5_WVNnSQIgiehHk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:18:75:87:12:c4:a4:69:c5:56:51:27:a8:4b:10:a2:0f:cf: bc:19:49:a9:99:7c:18:43:de:dc:56:0e:22:41:b7:7d:17:79: cb:d9:bf:7e:1b:a6:79:b0:13:0b:91:a9:bb:89:09:be:2f:8b: a5:43:ee:1b:b7:82:b8:77:97:4b:ea:4a:d7:52:5a:f8:2a:e3: 6f:c1:2b:cf:12:95:3f:d1:ed:cd:9e:d4:27:d5:b9:1a:54:cd: 0b:6e:ef:96:2c:58:29:27:aa:bd:80:ec:46:97:1a:d7:59:b9: e6:61:c6:8c:11:17:25:d1:87:01:61:f6:45:91:b2:18:52:4b: 48:40:11:ad:8d:e1:37:e3:c6:92:0d:f7:16:6d:66:c2:a3:43: a9:de:7e:63:3f:51:57:8f:30:d9:c2:ab:04:45:eb:1e:e7:e7: bb:e9:43:80:dc:2e:20:88:8b:7a:d3:e0:58:5c:24:74:1a:2e: 4f:02:a5:8c:a1:c2:20:73:66:13:f7:33:1b:a4:aa:ff:2a:a6: c1:20:aa:26:66:ce:14:36:5d:e0:f2:8f:45:0e:13:3b:b8:f7: b7:4c:98:2d:91:74:08:b1:4d:c9:b6:3e:22:dd:24:a1:cb:67: 91:3d:a0:dd:90:20:3d:6a:a9:28:ca:a1:ee:af:87:f8:01:7d: e4:6e:17:95 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEorfnOrVOmBa3CpbcUuA7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllNTYzYzQyNmQxYWFlNGVkMWU3ZjU5NTM2NzQ5MDIyMDg5 ZTg0NzkwHhcNMjYwMjA5MjMwMDQwWhcNMjYwMjEwMjMwMDQwWjAzMTEwLwYDVQQD EyhiZjcwYjBmOWViZjAwNmViNjRlOTJkMzIzZmVlODNlM2QxYmU0NzE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv26cEehDp5LGyuqEFshF3/nsfhXg htXNm1rJMbd3hj6CtQGl26DmQQ2GfWG5ghxnAZA9mS1+QpJ+5/gIYOGWnSdQLJh7 NJNk4v60jyEqO8aFm14FTfZy8pLsaaXLWZgZCv+LVwkUQUJHfzWKyDkeQm3nM4Vg N0HXl+QREPuuQ/jLrAcYrTrGLQ8aoBmi2xVDfIDCXQF035xqGn2xTXRumTtw98a0 MBoZBZ9Jc05A1wsxKLkdCbnv3WAXgB7CB3X9jGuETQeAFYlI66km25GOzn/pxpKh VfI8khz517ufu7wR7fLiy1TdrOi5P3861YvaiFCFNLc+4nv+S1USrWj9zwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL9wsPnr8AbrZOktMj/ug+PRvkcZMB8GA1UdIwQY MBaAFJ5WPEJtGq5O0ef1lTZ0kCIInoR5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAt YWZiY2YzNjZiYjA3LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi81NWQ1OTUtZDBiYy00YmEyLTgwYTAtYWZiY2YzNjZiYjA3 LzEvbmxZOFFtMGFyazdSNV9XVk5uU1FJZ2llaEhrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbxh1hxLE pGnFVlEnqEsQog/PvBlJqZl8GEPe3FYOIkG3fRd5y9m/fhumebATC5Gpu4kJvi+L pUPuG7eCuHeXS+pK11Ja+Crjb8ErzxKVP9HtzZ7UJ9W5GlTNC27vlixYKSeqvYDs Rpca11m55mHGjBEXJdGHAWH2RZGyGFJLSEARrY3hN+PGkg33Fm1mwqNDqd5+Yz9R V48w2cKrBEXrHufnu+lDgNwuIIiLetPgWFwkdBouTwKljKHCIHNmE/czG6Sq/yqm wSCqJmbOFDZd4PKPRQ4TO7j3t0yYLZF0CLFNybY+It0koctnkT2g3ZAgPWqpKMqh 7q+H+AF95G4XlQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:50 2026 by rpki-client