This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft File: NutRbqkC2WStsqptytmh3A9bfv4.mft (raw, json) Hash identifier: hIkKhzaRcxT31qX3F/0vWpcb1EI7BtnHamAplgScNZU= Subject key identifier: 64:5E:DA:7C:20:44:FD:11:4F:12:57:E9:F8:85:B9:12:55:53:D4:D9 Authority key identifier: 36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE Certificate issuer: /CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe Certificate serial: 019C435963092E2AF0109BF00CDB073C960E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft Manifest number: 17A2 Signing time: Mon 09 Feb 2026 17:00:57 +0000 Manifest this update: Mon 09 Feb 2026 17:00:57 +0000 Manifest next update: Tue 10 Feb 2026 17:00:57 +0000 Files and hashes: 1: NutRbqkC2WStsqptytmh3A9bfv4.crl (hash: 5JejEQSFl8HGEyCS8hhqjrxfSh6hOUUsbPL+RxndCN8=) 2: YlXedLCyqhXrfS6xWyQ0uTsUI3U.roa (hash: F80TY0fOITpa/Bk+EYhgg41ne6mDHfXgDtH94lguM+A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:63:09:2e:2a:f0:10:9b:f0:0c:db:07:3c:96:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36eb516ea902d964adb2aa6dcad9a1dc0f5b7efe Validity Not Before: Feb 9 17:00:57 2026 GMT Not After : Feb 10 17:00:57 2026 GMT Subject: CN=645eda7c2044fd114f1257e9f885b9125553d4d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:d5:cd:a8:fd:c1:1d:4a:00:20:df:79:2f:28: cf:d3:45:ce:6c:94:25:6f:e1:39:c5:6a:57:fa:30: 24:f4:f0:10:96:be:64:ab:66:71:ff:8f:5b:27:d0: cf:3f:cb:42:fc:59:d1:29:ca:eb:fd:cc:0a:8d:d8: ca:b1:9c:4b:32:7f:ca:12:22:d5:69:88:89:ec:f5: 2d:ae:64:94:a5:af:87:9f:da:83:43:7a:53:a1:af: fd:b7:20:85:49:bd:07:f9:23:28:47:6f:1b:1f:5c: 61:7c:6c:df:73:a8:d1:b8:dc:4e:58:e2:87:f0:ce: c7:ff:0c:45:94:70:c7:ac:f9:96:b7:0b:3c:6e:6c: aa:b3:10:ff:41:6c:b4:84:7f:9e:3a:d2:9a:85:3e: 39:56:c1:1d:14:1d:a9:2c:3e:d6:24:6f:c4:0c:9b: e2:eb:02:df:f8:1e:49:a7:ca:4f:dd:f8:8c:63:b6: 42:e9:bd:25:61:c8:98:33:a4:61:8b:28:31:5f:41: 5d:46:da:98:49:59:f8:42:66:72:5c:fb:ac:da:e8: 40:91:cb:d8:e8:45:9d:5d:26:e7:94:5b:06:5d:0d: 17:87:27:99:b9:87:7e:5c:63:6b:83:c8:c5:10:48: 9f:56:98:de:a9:30:91:04:c0:2b:2d:e2:34:1c:77: fa:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:5E:DA:7C:20:44:FD:11:4F:12:57:E9:F8:85:B9:12:55:53:D4:D9 X509v3 Authority Key Identifier: keyid:36:EB:51:6E:A9:02:D9:64:AD:B2:AA:6D:CA:D9:A1:DC:0F:5B:7E:FE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NutRbqkC2WStsqptytmh3A9bfv4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/55/26c675-def7-4232-811b-8f76c3291fbc/1/NutRbqkC2WStsqptytmh3A9bfv4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:aa:f6:c9:97:fd:03:33:cb:8f:d8:fb:d8:7e:61:de:18:62: 68:0f:3e:d0:b3:89:29:4d:e2:70:97:c3:57:39:05:49:c9:da: 21:f6:e8:c2:d8:9d:cf:c6:f3:bf:f3:13:94:4c:ea:37:c2:15: 45:37:99:75:ff:d6:f7:ba:20:5e:3f:13:d3:be:ba:e8:5f:cf: e2:e2:17:3e:e5:d5:17:9f:fb:64:4d:d0:da:d2:5d:c0:f7:68: be:aa:dd:7b:e3:76:65:9c:a1:e6:b6:58:d2:20:4b:ad:09:7c: 37:62:31:65:33:e5:9c:3a:be:81:bd:82:96:10:43:fa:16:62: 69:56:8e:39:b8:95:bd:5a:ac:a9:d0:cb:54:f6:a8:07:09:97: 9e:95:2e:17:54:53:ec:16:74:33:ee:9b:81:92:47:60:c2:4f: 89:fc:c1:26:e6:e5:dd:9e:e1:f4:30:c0:a8:d2:6c:f1:1b:3a: 59:ac:78:90:e7:d8:58:89:73:5a:97:a6:5e:13:c5:42:e7:9d: ff:2b:48:12:a9:23:e1:d1:4c:af:97:66:45:1e:91:71:3b:46: 9c:76:e1:43:be:3b:2f:5b:84:e1:b2:81:4e:f4:75:5f:c1:27: 78:eb:72:12:b3:f8:a1:ae:64:5e:30:c3:81:de:58:97:40:36: 81:ef:00:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWMJLirwEJvwDNsHPJYOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2ZWI1MTZlYTkwMmQ5NjRhZGIyYWE2ZGNhZDlhMWRjMGY1 YjdlZmUwHhcNMjYwMjA5MTcwMDU3WhcNMjYwMjEwMTcwMDU3WjAzMTEwLwYDVQQD Eyg2NDVlZGE3YzIwNDRmZDExNGYxMjU3ZTlmODg1YjkxMjU1NTNkNGQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA79XNqP3BHUoAIN95LyjP00XObJQl b+E5xWpX+jAk9PAQlr5kq2Zx/49bJ9DPP8tC/FnRKcrr/cwKjdjKsZxLMn/KEiLV aYiJ7PUtrmSUpa+Hn9qDQ3pToa/9tyCFSb0H+SMoR28bH1xhfGzfc6jRuNxOWOKH 8M7H/wxFlHDHrPmWtws8bmyqsxD/QWy0hH+eOtKahT45VsEdFB2pLD7WJG/EDJvi 6wLf+B5Jp8pP3fiMY7ZC6b0lYciYM6RhiygxX0FdRtqYSVn4QmZyXPus2uhAkcvY 6EWdXSbnlFsGXQ0XhyeZuYd+XGNrg8jFEEifVpjeqTCRBMArLeI0HHf6rQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGRe2nwgRP0RTxJX6fiFuRJVU9TZMB8GA1UdIwQY MBaAFDbrUW6pAtlkrbKqbcrZodwPW37+MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTnV0UmJxa0MyV1N0c3FwdHl0bWgzQTliZnY0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NS8yNmM2NzUtZGVmNy00MjMyLTgxMWIt OGY3NmMzMjkxZmJjLzEvTnV0UmJxa0MyV1N0c3FwdHl0bWgzQTliZnY0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NS8yNmM2NzUtZGVmNy00MjMyLTgxMWItOGY3NmMzMjkxZmJj LzEvTnV0UmJxa0MyV1N0c3FwdHl0bWgzQTliZnY0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQar2yZf9 AzPLj9j72H5h3hhiaA8+0LOJKU3icJfDVzkFScnaIfbowtidz8bzv/MTlEzqN8IV RTeZdf/W97ogXj8T07666F/P4uIXPuXVF5/7ZE3Q2tJdwPdovqrde+N2ZZyh5rZY 0iBLrQl8N2IxZTPlnDq+gb2ClhBD+hZiaVaOObiVvVqsqdDLVPaoBwmXnpUuF1RT 7BZ0M+6bgZJHYMJPifzBJubl3Z7h9DDAqNJs8Rs6Wax4kOfYWIlzWpemXhPFQued /ytIEqkj4dFMr5dmRR6RcTtGnHbhQ747L1uE4bKBTvR1X8EneOtyErP4oa5kXjDD gd5Yl0A2ge8AkA== -----END CERTIFICATE-----Generated at Mon Feb 9 23:00:22 2026 by rpki-client