This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft File: NIVmBh42jK_xiBviusZzff08Hbo.mft (raw, json) Hash identifier: 7Ct0SnLAb5MQ9mL14N/pzUEXTzTbln9Vso9J4GNazkc= Subject key identifier: E4:0F:23:F5:28:24:D0:06:BB:16:C0:79:12:12:E6:13:76:69:A0:A3 Authority key identifier: 34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA Certificate issuer: /CN=348566061e368caff1881be2bac6737dfd3c1dba Certificate serial: 019C42B406194342387044BDF89FF1D7207C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 14:00:20 +0000 Manifest this update: Mon 09 Feb 2026 14:00:20 +0000 Manifest next update: Tue 10 Feb 2026 14:00:20 +0000 Files and hashes: 1: NIVmBh42jK_xiBviusZzff08Hbo.crl (hash: 8SP2bpE3udFmruZlisCVyRcXeXpEKXxaBr3yfQXlowY=) 2: iZZcAtI6tX7pa2kx02V3Cb8900I.roa (hash: DpMSCiHNTOpSLZuOk1jeRKQ+RT6rgkZxlrfr955DoA8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:06:19:43:42:38:70:44:bd:f8:9f:f1:d7:20:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=348566061e368caff1881be2bac6737dfd3c1dba Validity Not Before: Feb 9 14:00:20 2026 GMT Not After : Feb 10 14:00:20 2026 GMT Subject: CN=e40f23f52824d006bb16c0791212e6137669a0a3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6b:80:56:8c:c5:56:30:1e:fa:17:ba:21:5b: ea:17:2c:e0:69:01:8d:1b:6e:6b:ad:6e:80:41:78: ac:6c:2f:4d:21:48:3c:9a:ac:42:69:62:a7:42:ba: 8c:fa:fb:b4:e3:b2:3a:a1:b6:8a:9d:e3:93:86:24: 76:a2:d4:92:25:6a:e6:e0:ef:08:7f:65:86:eb:35: 4e:be:95:42:cc:13:97:9c:05:52:2e:08:59:50:c2: 25:29:2c:09:ee:cd:99:9c:6b:8f:b5:6f:b0:e9:f2: dd:1c:4f:c0:5a:bc:c0:46:ee:0b:01:a4:85:87:4d: 01:40:31:d2:15:0a:6b:0a:c9:89:68:5f:c0:f3:31: 8b:85:6c:4a:fe:a6:55:3b:5b:46:04:fc:dd:aa:d2: 9f:69:ac:75:46:a1:28:ba:4c:22:2f:0d:c0:4b:47: f0:38:69:c9:44:39:8c:22:59:3d:2a:0e:74:17:2b: 3b:ee:9a:94:c4:db:6a:2e:08:7b:14:62:a3:59:56: 65:6f:82:6f:51:b8:27:14:d6:48:e5:97:07:b6:a0: 37:7e:0f:59:22:20:49:94:77:ce:85:57:87:5a:5a: 59:fa:3e:86:ba:cc:03:d1:83:c6:95:bc:71:dd:9f: ef:5b:24:9f:72:5a:d6:ee:18:68:ae:70:8a:03:40: 36:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:0F:23:F5:28:24:D0:06:BB:16:C0:79:12:12:E6:13:76:69:A0:A3 X509v3 Authority Key Identifier: keyid:34:85:66:06:1E:36:8C:AF:F1:88:1B:E2:BA:C6:73:7D:FD:3C:1D:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NIVmBh42jK_xiBviusZzff08Hbo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/affaa1-0e7b-401e-a7c5-06270ea82154/1/NIVmBh42jK_xiBviusZzff08Hbo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:70:2d:67:aa:dc:4e:ba:9c:89:cb:66:70:86:0b:63:99:d8: db:a5:18:22:52:d2:ad:82:c4:ba:cd:8e:5f:5a:59:42:d5:b6: 3d:eb:4a:59:2f:05:79:c6:45:24:61:9b:2b:81:bb:d8:83:58: 97:e1:75:9d:a2:0d:04:ec:5a:1b:65:41:c4:01:9a:ef:89:5b: b3:6a:c7:3f:c2:1e:20:35:8e:79:e0:97:2b:ce:c3:87:ae:6f: 07:92:0c:c9:72:53:01:bc:b4:16:fb:4b:3c:e6:68:19:9f:8f: 81:4d:93:e1:a0:76:46:81:14:c3:0a:0f:61:e7:c3:53:c7:b0: 9f:38:19:3c:2b:cc:b9:96:58:91:8b:97:80:77:c7:c2:dc:d0: 27:c6:78:5f:5e:d2:55:d7:bb:06:f5:7b:2b:96:98:a8:00:b9: 28:14:13:03:19:18:2a:00:72:30:c5:a0:5a:6f:ac:10:7a:4c: 46:3f:22:83:70:77:d8:8b:15:f3:44:88:9a:7a:11:56:7c:fb: f4:1a:20:51:4a:fb:c7:42:14:e5:60:b7:95:94:c4:63:49:64: 29:84:10:88:df:fb:a9:32:1c:16:38:cb:05:10:92:b7:db:00: e6:a1:d5:37:c5:07:b6:e0:0b:e6:3d:02:da:0e:31:03:24:17: 04:3f:58:4b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAYZQ0I4cES9+J/x1yB8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0ODU2NjA2MWUzNjhjYWZmMTg4MWJlMmJhYzY3MzdkZmQz YzFkYmEwHhcNMjYwMjA5MTQwMDIwWhcNMjYwMjEwMTQwMDIwWjAzMTEwLwYDVQQD EyhlNDBmMjNmNTI4MjRkMDA2YmIxNmMwNzkxMjEyZTYxMzc2NjlhMGEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxWuAVozFVjAe+he6IVvqFyzgaQGN G25rrW6AQXisbC9NIUg8mqxCaWKnQrqM+vu047I6obaKneOThiR2otSSJWrm4O8I f2WG6zVOvpVCzBOXnAVSLghZUMIlKSwJ7s2ZnGuPtW+w6fLdHE/AWrzARu4LAaSF h00BQDHSFQprCsmJaF/A8zGLhWxK/qZVO1tGBPzdqtKfaax1RqEoukwiLw3AS0fw OGnJRDmMIlk9Kg50Fys77pqUxNtqLgh7FGKjWVZlb4JvUbgnFNZI5ZcHtqA3fg9Z IiBJlHfOhVeHWlpZ+j6GuswD0YPGlbxx3Z/vWySfclrW7hhornCKA0A22QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOQPI/UoJNAGuxbAeRIS5hN2aaCjMB8GA1UdIwQY MBaAFDSFZgYeNoyv8Ygb4rrGc339PB26MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUt MDYyNzBlYTgyMTU0LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC9hZmZhYTEtMGU3Yi00MDFlLWE3YzUtMDYyNzBlYTgyMTU0 LzEvTklWbUJoNDJqS194aUJ2aXVzWnpmZjA4SGJvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZHAtZ6rc TrqcictmcIYLY5nY26UYIlLSrYLEus2OX1pZQtW2PetKWS8FecZFJGGbK4G72INY l+F1naINBOxaG2VBxAGa74lbs2rHP8IeIDWOeeCXK87Dh65vB5IMyXJTAby0FvtL POZoGZ+PgU2T4aB2RoEUwwoPYefDU8ewnzgZPCvMuZZYkYuXgHfHwtzQJ8Z4X17S Vde7BvV7K5aYqAC5KBQTAxkYKgByMMWgWm+sEHpMRj8ig3B32IsV80SImnoRVnz7 9BogUUr7x0IU5WC3lZTEY0lkKYQQiN/7qTIcFjjLBRCSt9sA5qHVN8UHtuAL5j0C 2g4xAyQXBD9YSw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:03 2026 by rpki-client