This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4f/1b55df-3012-4c03-8a1d-b631c6d1c5e8/1/M-9NaJSNJyyfOEhtdTIRy16oTis.mft File: M-9NaJSNJyyfOEhtdTIRy16oTis.mft (raw, json) Hash identifier: YODk1DgUTbXvDw09XJ2q/2U84TDrduO0YjLNXg0v7+E= Subject key identifier: 7D:97:1B:F9:E2:9D:22:90:4A:1A:8D:FA:18:85:35:36:2D:A1:6A:C6 Authority key identifier: 33:EF:4D:68:94:8D:27:2C:9F:38:48:6D:75:32:11:CB:5E:A8:4E:2B Certificate issuer: /CN=33ef4d68948d272c9f38486d753211cb5ea84e2b Certificate serial: 019C43C6F49825CCADA9A45927B4E211AA4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/M-9NaJSNJyyfOEhtdTIRy16oTis.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4f/1b55df-3012-4c03-8a1d-b631c6d1c5e8/1/M-9NaJSNJyyfOEhtdTIRy16oTis.mft Manifest number: 012D Signing time: Mon 09 Feb 2026 19:00:38 +0000 Manifest this update: Mon 09 Feb 2026 19:00:38 +0000 Manifest next update: Tue 10 Feb 2026 19:00:38 +0000 Files and hashes: 1: M-9NaJSNJyyfOEhtdTIRy16oTis.crl (hash: 8WkPHjXaSHOJe49Jr/EJ97I+ohZnhX5uwpXNoqh80aM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4f/1b55df-3012-4c03-8a1d-b631c6d1c5e8/1/M-9NaJSNJyyfOEhtdTIRy16oTis.crl rsync://rpki.ripe.net/repository/DEFAULT/4f/1b55df-3012-4c03-8a1d-b631c6d1c5e8/1/M-9NaJSNJyyfOEhtdTIRy16oTis.mft rsync://rpki.ripe.net/repository/DEFAULT/M-9NaJSNJyyfOEhtdTIRy16oTis.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c6:f4:98:25:cc:ad:a9:a4:59:27:b4:e2:11:aa:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33ef4d68948d272c9f38486d753211cb5ea84e2b Validity Not Before: Feb 9 19:00:38 2026 GMT Not After : Feb 10 19:00:38 2026 GMT Subject: CN=7d971bf9e29d22904a1a8dfa188535362da16ac6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:74:a3:b0:b4:71:78:75:a8:2b:c6:28:bb:56: 8f:8c:4c:37:c0:de:97:45:47:a2:d5:0d:bb:fd:34: b2:d5:89:c8:a2:61:a4:2c:24:a0:ec:52:d4:4b:ab: f7:d4:4e:ce:3c:60:f2:5d:29:6d:12:b4:36:66:10: 19:45:f3:a4:0a:58:31:37:bd:f2:46:52:39:bd:ca: 9e:91:5a:12:f4:b6:af:ce:4b:c5:78:b7:ca:cf:98: bf:22:4c:47:15:72:b8:3b:7b:67:af:0c:e5:24:0c: 80:35:2d:36:60:45:53:be:4e:d0:75:73:8f:cb:ac: d6:8f:5f:05:bc:ac:49:96:3f:08:cd:bb:77:f3:df: da:73:82:97:00:26:7d:12:de:9f:f2:c6:27:38:db: 0b:4c:06:fb:79:65:b2:a5:e9:eb:b8:7e:34:7a:05: f4:9b:81:a4:65:18:e1:04:f2:72:a0:4a:dd:10:a3: b5:b6:02:b6:23:a4:66:13:ff:2f:86:79:78:c8:76: 71:6f:1a:0f:cb:4d:b2:83:38:38:1d:92:46:b9:7b: 00:0d:e7:d5:17:bd:bc:66:c7:b1:a9:c5:61:c6:b8: cc:e3:8e:82:96:5a:83:76:e6:82:26:67:f5:01:fa: 6e:4b:1c:2d:5c:2d:92:9d:44:e8:0f:5f:9e:8e:c4: ad:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:97:1B:F9:E2:9D:22:90:4A:1A:8D:FA:18:85:35:36:2D:A1:6A:C6 X509v3 Authority Key Identifier: keyid:33:EF:4D:68:94:8D:27:2C:9F:38:48:6D:75:32:11:CB:5E:A8:4E:2B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/M-9NaJSNJyyfOEhtdTIRy16oTis.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/1b55df-3012-4c03-8a1d-b631c6d1c5e8/1/M-9NaJSNJyyfOEhtdTIRy16oTis.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4f/1b55df-3012-4c03-8a1d-b631c6d1c5e8/1/M-9NaJSNJyyfOEhtdTIRy16oTis.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:16:30:98:8c:7c:0f:74:90:7f:e3:6e:93:0f:8a:9e:86:8f: 4d:30:d4:7e:4e:d6:13:cd:2c:7f:42:0c:d9:54:88:32:e2:d7: 1b:25:71:0f:53:6a:e1:4e:b9:e4:52:c1:e0:5e:d3:08:f9:e5: 2a:d6:72:f1:31:9c:99:61:87:74:db:73:bd:32:85:b7:7d:8f: 48:b4:c4:1f:d1:58:39:56:f8:25:a3:3c:68:d5:99:e9:d8:42: 38:48:bb:c5:73:62:21:e1:49:b7:0a:06:19:07:80:4b:dc:db: b7:b2:9a:e0:60:c7:77:cc:83:77:a2:f8:5e:06:d7:5e:bd:31: 0d:3d:da:f6:9b:27:5f:2d:d4:c4:a1:43:a5:e7:61:98:d4:38: 5f:ec:66:3b:b3:47:3c:f1:59:2c:2c:c6:99:c4:dd:ca:fe:ee: 0c:88:3c:90:11:57:75:06:ff:0e:c2:22:1a:81:17:80:fc:3b: 05:f4:60:49:45:8c:47:21:dc:ba:9b:f0:e1:4f:03:2b:1b:32: 5b:3d:c6:75:b8:8b:3a:d3:d7:68:f8:69:a8:ad:25:f3:11:b0: b8:17:0f:8f:51:38:ce:36:79:41:d2:3b:55:af:ea:a7:d2:37: c8:83:bc:b6:dc:be:bb:9a:6b:00:42:4b:67:f2:9f:c2:8a:1b: 4b:ff:c9:8b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDxvSYJcytqaRZJ7TiEapKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDMzZWY0ZDY4OTQ4ZDI3MmM5ZjM4NDg2ZDc1MzIxMWNiNWVh ODRlMmIwHhcNMjYwMjA5MTkwMDM4WhcNMjYwMjEwMTkwMDM4WjAzMTEwLwYDVQQD Eyg3ZDk3MWJmOWUyOWQyMjkwNGExYThkZmExODg1MzUzNjJkYTE2YWM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5nSjsLRxeHWoK8You1aPjEw3wN6X RUei1Q27/TSy1YnIomGkLCSg7FLUS6v31E7OPGDyXSltErQ2ZhAZRfOkClgxN73y RlI5vcqekVoS9LavzkvFeLfKz5i/IkxHFXK4O3tnrwzlJAyANS02YEVTvk7QdXOP y6zWj18FvKxJlj8Izbt389/ac4KXACZ9Et6f8sYnONsLTAb7eWWypenruH40egX0 m4GkZRjhBPJyoErdEKO1tgK2I6RmE/8vhnl4yHZxbxoPy02ygzg4HZJGuXsADefV F728ZsexqcVhxrjM446CllqDduaCJmf1AfpuSxwtXC2SnUToD1+ejsStZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH2XG/ninSKQShqN+hiFNTYtoWrGMB8GA1UdIwQY MBaAFDPvTWiUjScsnzhIbXUyEcteqE4rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTS05TmFKU05KeXlmT0VodGRUSVJ5MTZvVGlzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Zi8xYjU1ZGYtMzAxMi00YzAzLThhMWQt YjYzMWM2ZDFjNWU4LzEvTS05TmFKU05KeXlmT0VodGRUSVJ5MTZvVGlzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Zi8xYjU1ZGYtMzAxMi00YzAzLThhMWQtYjYzMWM2ZDFjNWU4 LzEvTS05TmFKU05KeXlmT0VodGRUSVJ5MTZvVGlzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhhYwmIx8 D3SQf+Nukw+KnoaPTTDUfk7WE80sf0IM2VSIMuLXGyVxD1Nq4U655FLB4F7TCPnl KtZy8TGcmWGHdNtzvTKFt32PSLTEH9FYOVb4JaM8aNWZ6dhCOEi7xXNiIeFJtwoG GQeAS9zbt7Ka4GDHd8yDd6L4XgbXXr0xDT3a9psnXy3UxKFDpedhmNQ4X+xmO7NH PPFZLCzGmcTdyv7uDIg8kBFXdQb/DsIiGoEXgPw7BfRgSUWMRyHcupvw4U8DKxsy Wz3GdbiLOtPXaPhpqK0l8xGwuBcPj1E4zjZ5QdI7Va/qp9I3yIO8tty+u5prAEJL Z/KfwoobS//Jiw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:53 2026 by rpki-client