This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft File: nTW9eP7OI2XlsT9SOIfS2NakU_k.mft (raw, json) Hash identifier: /PgdUvhpKiYbFZ6Ps2RnzTvmSwfEititKg4sSEMBAlw= Subject key identifier: A1:81:26:0B:60:AA:1F:DF:BF:E6:02:09:F7:F2:8F:64:8D:A8:AB:5C Authority key identifier: 9D:35:BD:78:FE:CE:23:65:E5:B1:3F:52:38:87:D2:D8:D6:A4:53:F9 Certificate issuer: /CN=9d35bd78fece2365e5b13f523887d2d8d6a453f9 Certificate serial: 019C42B48D11F99E8FE80524AE2D7012B9ED Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft Manifest number: 0232 Signing time: Mon 09 Feb 2026 14:00:54 +0000 Manifest this update: Mon 09 Feb 2026 14:00:54 +0000 Manifest next update: Tue 10 Feb 2026 14:00:54 +0000 Files and hashes: 1: nTW9eP7OI2XlsT9SOIfS2NakU_k.crl (hash: 2+5SllWvYOwRp3+IFJzShy11uajugD8r3yM6oBFQcjg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.crl rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:8d:11:f9:9e:8f:e8:05:24:ae:2d:70:12:b9:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d35bd78fece2365e5b13f523887d2d8d6a453f9 Validity Not Before: Feb 9 14:00:54 2026 GMT Not After : Feb 10 14:00:54 2026 GMT Subject: CN=a181260b60aa1fdfbfe60209f7f28f648da8ab5c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:99:6b:a5:7d:05:ed:6b:5c:70:5a:23:64:10: 44:e6:6d:ea:2d:0d:1f:90:28:b5:33:f9:5a:9b:11: a6:89:21:bc:b2:3c:8f:17:1c:f4:90:6b:47:09:df: bd:65:75:69:9a:df:29:ea:a5:bd:0f:4d:7b:a5:f1: b2:0e:9b:c6:81:ad:47:bf:99:b7:b8:85:b9:74:47: 34:bc:db:de:d7:ee:08:08:3b:eb:dd:53:e0:15:5f: e2:b5:cf:f9:86:c1:2b:e6:97:77:65:91:78:c4:c7: d6:51:c5:66:d5:c1:c1:35:47:37:92:b0:50:de:9d: be:7f:8a:60:6a:a9:0e:b4:40:be:39:3d:51:53:b5: 8f:62:73:2f:77:47:c8:a4:e2:f5:68:26:cc:a5:37: b6:9a:4c:e3:9b:4c:f6:27:3b:a1:29:fe:74:84:ad: 3f:d0:e7:d9:ea:9e:92:9c:3d:5a:96:7f:d2:df:53: 0e:6e:07:87:c3:d3:9f:5c:9d:5e:e9:96:ba:00:f0: 93:5a:15:61:28:68:7b:a8:e3:4d:ea:76:48:cc:e9: ea:5c:c5:ad:eb:fa:fd:1e:06:c8:d0:1a:41:7a:ab: 78:b0:e0:e8:41:17:fb:ca:2f:4d:8f:70:0c:cc:2a: 4e:69:4e:d4:3a:4d:15:f9:57:2f:d4:8b:21:15:03: 48:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:81:26:0B:60:AA:1F:DF:BF:E6:02:09:F7:F2:8F:64:8D:A8:AB:5C X509v3 Authority Key Identifier: keyid:9D:35:BD:78:FE:CE:23:65:E5:B1:3F:52:38:87:D2:D8:D6:A4:53:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTW9eP7OI2XlsT9SOIfS2NakU_k.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/59/5ee153-21a9-41e9-a599-6c442324ca3c/1/nTW9eP7OI2XlsT9SOIfS2NakU_k.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 14:96:5b:98:df:96:b8:58:a0:59:aa:f8:d3:be:76:36:d9:7d: 43:cd:45:36:32:dd:93:72:8b:fe:64:0b:5e:00:53:18:5f:f0: 4a:1f:31:ef:a4:15:86:e4:65:a0:96:5a:4e:38:59:04:a0:01: 1b:ba:77:fa:4a:d5:bf:16:06:11:e9:ff:15:e3:f9:77:76:70: 71:59:54:98:bf:50:2a:ca:37:f3:5b:8e:75:4f:67:2a:05:21: c0:a9:71:ad:dd:58:a0:24:b6:e1:d7:a1:48:97:4d:cd:f3:aa: 0b:e1:38:11:5f:9b:7b:6f:3a:3e:46:3a:0f:10:fe:79:bd:21: fa:a1:b2:35:46:98:2c:c4:d2:78:94:47:38:8f:4a:6d:ef:1d: fa:26:4f:ec:f6:b0:10:cf:a1:92:d6:4e:a9:2a:9d:da:17:ea: be:0c:7d:3a:af:0f:2a:16:4e:81:3d:66:10:35:bd:37:fb:33: b2:76:7d:09:5e:51:ce:6f:0c:5b:16:49:56:9b:4a:6c:05:56: f5:63:86:1f:9d:38:4e:f1:01:b4:7b:f2:31:94:87:64:f9:6c: fb:7e:d1:ac:14:54:b7:97:8c:c6:86:af:4a:22:be:d0:d2:8c: 64:3b:ff:1e:3f:9b:b6:58:0c:e7:1e:8f:5e:fa:87:5a:fa:db: b0:66:d3:08 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtI0R+Z6P6AUkri1wErntMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMzViZDc4ZmVjZTIzNjVlNWIxM2Y1MjM4ODdkMmQ4ZDZh NDUzZjkwHhcNMjYwMjA5MTQwMDU0WhcNMjYwMjEwMTQwMDU0WjAzMTEwLwYDVQQD EyhhMTgxMjYwYjYwYWExZmRmYmZlNjAyMDlmN2YyOGY2NDhkYThhYjVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2JlrpX0F7WtccFojZBBE5m3qLQ0f kCi1M/lamxGmiSG8sjyPFxz0kGtHCd+9ZXVpmt8p6qW9D017pfGyDpvGga1Hv5m3 uIW5dEc0vNve1+4ICDvr3VPgFV/itc/5hsEr5pd3ZZF4xMfWUcVm1cHBNUc3krBQ 3p2+f4pgaqkOtEC+OT1RU7WPYnMvd0fIpOL1aCbMpTe2mkzjm0z2JzuhKf50hK0/ 0OfZ6p6SnD1aln/S31MObgeHw9OfXJ1e6Za6APCTWhVhKGh7qONN6nZIzOnqXMWt 6/r9HgbI0BpBeqt4sODoQRf7yi9Nj3AMzCpOaU7UOk0V+Vcv1IshFQNITwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKGBJgtgqh/fv+YCCffyj2SNqKtcMB8GA1UdIwQY MBaAFJ01vXj+ziNl5bE/UjiH0tjWpFP5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblRXOWVQN09JMlhsc1Q5U09JZlMyTmFrVV9rLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OS81ZWUxNTMtMjFhOS00MWU5LWE1OTkt NmM0NDIzMjRjYTNjLzEvblRXOWVQN09JMlhsc1Q5U09JZlMyTmFrVV9rLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OS81ZWUxNTMtMjFhOS00MWU5LWE1OTktNmM0NDIzMjRjYTNj LzEvblRXOWVQN09JMlhsc1Q5U09JZlMyTmFrVV9rLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFJZbmN+W uFigWar40752Ntl9Q81FNjLdk3KL/mQLXgBTGF/wSh8x76QVhuRloJZaTjhZBKAB G7p3+krVvxYGEen/FeP5d3ZwcVlUmL9QKso381uOdU9nKgUhwKlxrd1YoCS24deh SJdNzfOqC+E4EV+be286PkY6DxD+eb0h+qGyNUaYLMTSeJRHOI9Kbe8d+iZP7Paw EM+hktZOqSqd2hfqvgx9Oq8PKhZOgT1mEDW9N/szsnZ9CV5Rzm8MWxZJVptKbAVW 9WOGH504TvEBtHvyMZSHZPls+37RrBRUt5eMxoavSiK+0NKMZDv/Hj+btlgM5x6P XvqHWvrbsGbTCA== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:50 2026 by rpki-client