This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft File: nzbQijzYpC9Goslt_XLtjO4nlHc.mft (raw, json) Hash identifier: /WWol7KoomrjrPMBz1ypKu3oY7SFLRkpIdBSrk3e/yE= Subject key identifier: 76:5C:DA:2F:80:85:82:0D:9E:15:0B:6E:1A:22:53:2C:12:82:A1:A7 Authority key identifier: 9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77 Certificate issuer: /CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477 Certificate serial: 019C420FA1EE9B85BCE33564A838A3F104AB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft Manifest number: 0E17 Signing time: Mon 09 Feb 2026 11:00:46 +0000 Manifest this update: Mon 09 Feb 2026 11:00:46 +0000 Manifest next update: Tue 10 Feb 2026 11:00:46 +0000 Files and hashes: 1: 5u7r-95wuuMX-2fZHuvG2UHWlXU.roa (hash: tBKl8/BRqmf50ldsgxKlxVMabmpWuazrAadJJugrD/I=) 2: nzbQijzYpC9Goslt_XLtjO4nlHc.crl (hash: RH6cLynNgCxEp1rtjdTjoxRS9KEID/KEo2PJD+3AB6k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:a1:ee:9b:85:bc:e3:35:64:a8:38:a3:f1:04:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f36d08a3cd8a42f46a2c96dfd72ed8cee279477 Validity Not Before: Feb 9 11:00:46 2026 GMT Not After : Feb 10 11:00:46 2026 GMT Subject: CN=765cda2f8085820d9e150b6e1a22532c1282a1a7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:b5:32:8e:de:c2:b0:af:b7:95:ec:30:fa:b6: d9:e4:b9:1f:2d:8e:ce:c1:a8:cf:73:74:ee:f8:70: b6:56:8e:4f:86:94:cd:24:6e:bd:c4:51:e4:13:d9: 28:9d:0d:d7:69:c8:ce:3a:2a:4d:32:b3:09:a6:6c: 19:dd:0c:8d:9d:85:bd:bd:96:0a:48:1f:74:a6:04: ee:cd:14:9e:01:ee:33:4b:0c:58:31:0b:77:98:33: 77:25:60:e8:f8:36:c8:f0:86:ac:26:50:39:a9:1e: 3e:9e:20:b1:d7:69:dc:a5:e5:ad:8c:e0:be:40:90: 11:5e:e1:46:ad:3b:b0:f7:5a:f2:f5:e2:c6:b0:c1: a4:7f:0a:25:62:73:b1:4b:29:3d:3d:c1:7e:d2:3b: 7c:a1:15:d3:c0:a3:ef:ea:ec:b0:3d:bc:21:93:80: 78:9b:cd:9c:f8:a0:ef:aa:0d:20:23:de:f5:d2:5c: 07:cb:e9:60:2c:f3:20:82:44:1b:a4:86:07:33:25: 94:21:72:87:42:f3:c4:99:df:a2:4c:3f:b5:f2:5c: 32:39:2c:53:56:a7:4d:08:4a:85:d5:e9:b3:d3:0a: df:c0:e0:5e:d6:8c:80:c5:8f:ff:07:e3:34:3c:70: 1e:c8:71:de:a2:7c:d4:79:f7:bc:84:53:54:a8:14: d9:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:5C:DA:2F:80:85:82:0D:9E:15:0B:6E:1A:22:53:2C:12:82:A1:A7 X509v3 Authority Key Identifier: keyid:9F:36:D0:8A:3C:D8:A4:2F:46:A2:C9:6D:FD:72:ED:8C:EE:27:94:77 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzbQijzYpC9Goslt_XLtjO4nlHc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/2fbba7-ea0e-4089-9727-c33372c9d507/1/nzbQijzYpC9Goslt_XLtjO4nlHc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:9a:45:db:3d:46:4c:66:6d:d1:d7:7e:61:0c:30:5b:23:c2: 03:5b:98:24:d6:5f:9e:2f:6f:04:10:17:41:52:49:47:54:b7: c7:b7:1d:3b:59:d6:c5:51:d3:40:dd:02:87:5f:b2:6d:c8:13: 76:ae:b3:33:0e:65:30:96:67:b0:af:bb:90:88:0e:5a:29:98: 64:1b:2e:99:eb:44:cc:2a:a9:97:01:f1:2b:f1:f1:bc:b1:49: a8:7d:22:2d:56:5e:18:b9:43:14:0d:7c:99:37:7e:c0:1c:91: c3:ed:25:56:08:27:9b:24:5a:2a:df:40:60:48:85:d7:21:3e: d0:e6:2e:93:a5:68:cd:26:38:44:a0:e6:25:0d:96:a8:09:66: 88:5d:9f:b5:d0:d5:9c:36:fe:69:ba:ac:a4:15:4f:56:71:44: a3:58:5c:98:b7:30:59:e8:5f:21:5b:66:b2:af:e2:65:2e:6d: 1a:a8:6b:a7:79:fb:e5:8d:51:07:0a:46:73:8b:c7:a5:60:a4: e0:bb:d1:36:05:1a:02:cb:81:e8:cf:9c:fc:fb:11:5d:ff:ac: da:89:7f:48:5e:ae:fd:c8:c8:45:e0:f7:c2:06:64:53:b8:3f: 79:fe:01:75:ac:0f:b7:1b:95:ff:53:c9:9c:65:73:ba:87:16: 8c:2a:ea:af -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD6Hum4W84zVkqDij8QSrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMzZkMDhhM2NkOGE0MmY0NmEyYzk2ZGZkNzJlZDhjZWUy Nzk0NzcwHhcNMjYwMjA5MTEwMDQ2WhcNMjYwMjEwMTEwMDQ2WjAzMTEwLwYDVQQD Eyg3NjVjZGEyZjgwODU4MjBkOWUxNTBiNmUxYTIyNTMyYzEyODJhMWE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyrUyjt7CsK+3leww+rbZ5LkfLY7O wajPc3Tu+HC2Vo5PhpTNJG69xFHkE9konQ3XacjOOipNMrMJpmwZ3QyNnYW9vZYK SB90pgTuzRSeAe4zSwxYMQt3mDN3JWDo+DbI8IasJlA5qR4+niCx12ncpeWtjOC+ QJARXuFGrTuw91ry9eLGsMGkfwolYnOxSyk9PcF+0jt8oRXTwKPv6uywPbwhk4B4 m82c+KDvqg0gI9710lwHy+lgLPMggkQbpIYHMyWUIXKHQvPEmd+iTD+18lwyOSxT VqdNCEqF1emz0wrfwOBe1oyAxY//B+M0PHAeyHHeonzUefe8hFNUqBTZwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHZc2i+AhYINnhULbhoiUywSgqGnMB8GA1UdIwQY MBaAFJ820Io82KQvRqLJbf1y7YzuJ5R3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi8yZmJiYTctZWEwZS00MDg5LTk3Mjct YzMzMzcyYzlkNTA3LzEvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi8yZmJiYTctZWEwZS00MDg5LTk3MjctYzMzMzcyYzlkNTA3 LzEvbnpiUWlqellwQzlHb3NsdF9YTHRqTzRubEhjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT5pF2z1G TGZt0dd+YQwwWyPCA1uYJNZfni9vBBAXQVJJR1S3x7cdO1nWxVHTQN0Ch1+ybcgT dq6zMw5lMJZnsK+7kIgOWimYZBsumetEzCqplwHxK/HxvLFJqH0iLVZeGLlDFA18 mTd+wByRw+0lVggnmyRaKt9AYEiF1yE+0OYuk6VozSY4RKDmJQ2WqAlmiF2ftdDV nDb+abqspBVPVnFEo1hcmLcwWehfIVtmsq/iZS5tGqhrp3n75Y1RBwpGc4vHpWCk 4LvRNgUaAsuB6M+c/PsRXf+s2ol/SF6u/cjIReD3wgZkU7g/ef4BdawPtxuV/1PJ nGVzuocWjCrqrw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:29 2026 by rpki-client