This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/4d194b-fbfe-4400-a475-5309335a3622/1/nscEvg6b7zQJT-8mSVnj9-HPais.mft File: nscEvg6b7zQJT-8mSVnj9-HPais.mft (raw, json) Hash identifier: xecsEIPUNSM4o7TofR/Dx50kBbh0lrTv8n/ZHu7CX18= Subject key identifier: A6:E6:1D:3F:EE:68:AF:22:78:0B:C8:69:C1:D3:FC:82:19:8B:C6:69 Authority key identifier: 9E:C7:04:BE:0E:9B:EF:34:09:4F:EF:26:49:59:E3:F7:E1:CF:6A:2B Certificate issuer: /CN=9ec704be0e9bef34094fef264959e3f7e1cf6a2b Certificate serial: 019C43220EC073D2D0EF59269B19C14098FA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nscEvg6b7zQJT-8mSVnj9-HPais.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/4d194b-fbfe-4400-a475-5309335a3622/1/nscEvg6b7zQJT-8mSVnj9-HPais.mft Manifest number: 02C4 Signing time: Mon 09 Feb 2026 16:00:31 +0000 Manifest this update: Mon 09 Feb 2026 16:00:31 +0000 Manifest next update: Tue 10 Feb 2026 16:00:31 +0000 Files and hashes: 1: nscEvg6b7zQJT-8mSVnj9-HPais.crl (hash: Xg6v5FmwRq7waBEswQW8s1k+JnhCtwbqfaK/gVzSktU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/43/4d194b-fbfe-4400-a475-5309335a3622/1/nscEvg6b7zQJT-8mSVnj9-HPais.crl rsync://rpki.ripe.net/repository/DEFAULT/43/4d194b-fbfe-4400-a475-5309335a3622/1/nscEvg6b7zQJT-8mSVnj9-HPais.mft rsync://rpki.ripe.net/repository/DEFAULT/nscEvg6b7zQJT-8mSVnj9-HPais.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:0e:c0:73:d2:d0:ef:59:26:9b:19:c1:40:98:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ec704be0e9bef34094fef264959e3f7e1cf6a2b Validity Not Before: Feb 9 16:00:31 2026 GMT Not After : Feb 10 16:00:31 2026 GMT Subject: CN=a6e61d3fee68af22780bc869c1d3fc82198bc669 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:bb:58:25:3f:66:02:01:8e:8c:db:79:ae:52: 99:fc:a5:fa:41:43:ec:b6:d8:08:3f:1b:84:dc:1e: ac:1d:20:ae:e4:8c:11:8f:4d:b3:a8:1a:e0:8b:88: 31:e6:9f:3e:a4:49:e2:4b:61:f0:84:56:43:3c:96: 63:0a:75:7b:3a:89:b4:7c:71:5e:2b:3d:63:59:e0: 83:a5:80:e4:77:04:4d:82:71:e9:a7:cc:5b:4a:8f: f7:ce:ae:41:99:49:b5:97:1b:77:bc:86:96:3c:ac: 64:78:39:75:0b:47:79:be:0d:19:4c:3c:4f:9e:44: ec:f2:f5:88:7e:52:eb:0c:ab:d0:f8:f7:5b:03:5c: 0b:19:8b:97:21:c1:1f:6e:14:0d:44:48:ad:4a:1c: ee:b7:55:0d:5c:02:cf:5e:c2:ec:73:e8:47:99:09: ba:86:0b:a4:46:ec:64:d7:43:c0:29:7c:3a:c1:91: 46:7a:80:01:6e:a4:f7:9b:ae:4b:06:e9:36:25:06: f4:5a:29:42:3a:56:31:1a:f9:ee:63:79:48:b1:c1: 7d:6a:df:ff:61:2d:db:90:22:c1:7f:e7:db:1b:ea: 74:1b:ed:42:c9:e4:c0:97:de:df:72:b1:5c:91:66: 50:41:91:b0:99:7f:0f:09:5e:84:39:18:8a:d1:ea: 83:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:E6:1D:3F:EE:68:AF:22:78:0B:C8:69:C1:D3:FC:82:19:8B:C6:69 X509v3 Authority Key Identifier: keyid:9E:C7:04:BE:0E:9B:EF:34:09:4F:EF:26:49:59:E3:F7:E1:CF:6A:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nscEvg6b7zQJT-8mSVnj9-HPais.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4d194b-fbfe-4400-a475-5309335a3622/1/nscEvg6b7zQJT-8mSVnj9-HPais.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/4d194b-fbfe-4400-a475-5309335a3622/1/nscEvg6b7zQJT-8mSVnj9-HPais.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:f0:97:d1:33:e9:9d:18:49:73:fd:0a:65:42:e4:93:f7:5d: 35:f9:f8:b8:e6:62:4d:8e:f7:ba:55:11:c0:5e:9f:0c:8c:ce: d6:67:8b:f8:80:bc:db:40:53:20:e6:16:e5:7e:e0:e3:ca:92: 3d:5b:c8:9d:17:48:fc:58:d4:fa:3c:90:c2:c8:c0:c5:39:ce: 68:f6:76:6f:4d:d5:50:d1:82:d9:fe:73:cf:fe:d0:87:c1:19: 16:a4:51:a9:d7:9d:03:e3:47:f0:63:2f:39:74:75:fd:6b:9a: 3b:07:c1:67:44:ea:76:6b:f5:5b:45:7c:52:3b:32:7b:ad:96: 21:b6:85:1f:7b:4e:79:78:c4:5f:86:1c:e8:71:5b:1c:f7:f7: b9:37:d0:7a:41:d9:f4:5e:72:ae:20:aa:b6:58:23:37:5a:94: a4:53:b2:df:da:e5:78:55:24:3a:66:ec:0e:83:96:e9:88:94: ae:04:34:3e:dc:0f:23:f8:b5:d4:09:df:d5:52:e0:9b:4f:22: bc:3e:cf:26:69:a4:b4:0a:93:36:09:52:9c:36:85:98:42:be: 79:70:9f:37:ac:f2:3c:46:6f:2f:fa:b5:5c:0f:76:66:6a:66: 57:37:62:6e:0b:1c:1b:ab:1b:89:cc:0c:d1:ed:61:44:d0:b0: f5:38:57:65 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIg7Ac9LQ71kmmxnBQJj6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllYzcwNGJlMGU5YmVmMzQwOTRmZWYyNjQ5NTllM2Y3ZTFj ZjZhMmIwHhcNMjYwMjA5MTYwMDMxWhcNMjYwMjEwMTYwMDMxWjAzMTEwLwYDVQQD EyhhNmU2MWQzZmVlNjhhZjIyNzgwYmM4NjljMWQzZmM4MjE5OGJjNjY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA27tYJT9mAgGOjNt5rlKZ/KX6QUPs ttgIPxuE3B6sHSCu5IwRj02zqBrgi4gx5p8+pEniS2HwhFZDPJZjCnV7Oom0fHFe Kz1jWeCDpYDkdwRNgnHpp8xbSo/3zq5BmUm1lxt3vIaWPKxkeDl1C0d5vg0ZTDxP nkTs8vWIflLrDKvQ+PdbA1wLGYuXIcEfbhQNREitShzut1UNXALPXsLsc+hHmQm6 hgukRuxk10PAKXw6wZFGeoABbqT3m65LBuk2JQb0WilCOlYxGvnuY3lIscF9at// YS3bkCLBf+fbG+p0G+1CyeTAl97fcrFckWZQQZGwmX8PCV6EORiK0eqD1QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKbmHT/uaK8ieAvIacHT/IIZi8ZpMB8GA1UdIwQY MBaAFJ7HBL4Om+80CU/vJklZ4/fhz2orMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnNjRXZnNmI3elFKVC04bVNWbmo5LUhQYWlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My80ZDE5NGItZmJmZS00NDAwLWE0NzUt NTMwOTMzNWEzNjIyLzEvbnNjRXZnNmI3elFKVC04bVNWbmo5LUhQYWlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My80ZDE5NGItZmJmZS00NDAwLWE0NzUtNTMwOTMzNWEzNjIy LzEvbnNjRXZnNmI3elFKVC04bVNWbmo5LUhQYWlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf/CX0TPp nRhJc/0KZULkk/ddNfn4uOZiTY73ulURwF6fDIzO1meL+IC820BTIOYW5X7g48qS PVvInRdI/FjU+jyQwsjAxTnOaPZ2b03VUNGC2f5zz/7Qh8EZFqRRqdedA+NH8GMv OXR1/WuaOwfBZ0Tqdmv1W0V8Ujsye62WIbaFH3tOeXjEX4Yc6HFbHPf3uTfQekHZ 9F5yriCqtlgjN1qUpFOy39rleFUkOmbsDoOW6YiUrgQ0PtwPI/i11Anf1VLgm08i vD7PJmmktAqTNglSnDaFmEK+eXCfN6zyPEZvL/q1XA92ZmpmVzdibgscG6sbicwM 0e1hRNCw9ThXZQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:49 2026 by rpki-client