This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft File: nurBz77ElK6UV8hm5jYYZcTzAEg.mft (raw, json) Hash identifier: rmzg8Q9qJDDAmvqHFRx8jcA/kqzeu02O7ZlVTdErESI= Subject key identifier: CC:BA:86:BF:61:A2:AC:F7:D8:54:FA:7E:7D:59:21:69:E5:23:35:0E Authority key identifier: 9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48 Certificate issuer: /CN=9eeac1cfbec494ae9457c866e6361865c4f30048 Certificate serial: 019C44A2896DCAB65C03F5825B881A312EAD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft Manifest number: 0E0D Signing time: Mon 09 Feb 2026 23:00:28 +0000 Manifest this update: Mon 09 Feb 2026 23:00:28 +0000 Manifest next update: Tue 10 Feb 2026 23:00:28 +0000 Files and hashes: 1: 8QjpINWPHZDJ5rBXOU-f7xhIEjw.roa (hash: 4srsR9VRePR9yB/iD/hHMwN8fvofDELlgIaatI76q6Y=) 2: nurBz77ElK6UV8hm5jYYZcTzAEg.crl (hash: IlwaYT+pLpkHlAJ+a18sHHYs8rLJP4yuAuK+JwC1/bo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:a2:89:6d:ca:b6:5c:03:f5:82:5b:88:1a:31:2e:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9eeac1cfbec494ae9457c866e6361865c4f30048 Validity Not Before: Feb 9 23:00:28 2026 GMT Not After : Feb 10 23:00:28 2026 GMT Subject: CN=ccba86bf61a2acf7d854fa7e7d592169e523350e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:e9:3b:aa:d3:44:e1:9e:fd:04:cc:5e:ab:56: 4e:98:1c:ce:84:7a:f4:c7:66:2b:63:7b:a4:a9:0c: b0:da:68:b3:fd:16:99:d2:5b:53:78:e5:79:2a:d3: 96:b3:39:04:0a:0f:92:24:5e:b0:6f:f6:19:c3:f9: 97:74:ee:84:e9:94:52:fe:10:bd:d6:09:d9:ea:f7: e9:be:0a:a2:94:f3:4c:14:ac:7f:f7:45:ee:5c:f9: 23:a4:00:2a:66:f2:ca:cd:c3:5c:88:68:a5:bb:a3: 6f:e5:c7:4b:24:da:fb:b7:a0:8d:c9:9f:97:2c:bc: fb:a9:b9:6d:d3:69:6a:54:62:c4:08:11:90:d4:02: d1:ba:96:10:77:d0:06:bc:3f:d1:40:3d:28:71:bd: 05:91:ba:19:39:99:72:42:ef:61:a4:c4:4f:07:5c: 40:1d:f3:24:07:d3:16:f1:3a:3a:c7:23:28:e3:e9: 41:ce:8d:4e:76:84:14:70:96:e6:ca:24:66:d9:fa: c8:b0:68:26:84:e0:58:4d:bf:6d:89:a3:6f:c0:d2: ae:d4:45:6a:84:6a:51:32:95:6b:27:68:f2:9d:1e: d8:80:73:c8:f2:44:34:43:bb:84:10:32:43:f5:22: 44:4d:85:96:3f:bd:da:20:8f:8f:64:26:00:f5:b0: 89:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:BA:86:BF:61:A2:AC:F7:D8:54:FA:7E:7D:59:21:69:E5:23:35:0E X509v3 Authority Key Identifier: keyid:9E:EA:C1:CF:BE:C4:94:AE:94:57:C8:66:E6:36:18:65:C4:F3:00:48 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nurBz77ElK6UV8hm5jYYZcTzAEg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/47e609-b6b7-443b-8a04-e285cd8cad12/1/nurBz77ElK6UV8hm5jYYZcTzAEg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:43:6e:9a:e2:7b:52:8d:fb:70:6d:59:a4:fc:f0:aa:7e:96: 40:d5:32:b1:55:80:e3:87:6b:9c:8d:3c:e1:bd:09:d1:90:14: 75:c0:09:1c:81:40:07:96:5f:7e:fd:00:d1:51:52:63:d3:06: de:35:88:7d:58:ee:75:30:a7:c2:60:77:a2:f1:63:66:0a:ce: 1d:7a:85:4e:6f:16:64:f3:e0:29:5c:c4:8f:80:92:a9:09:db: 49:67:c3:45:30:88:c9:78:62:f8:1d:e8:fa:3e:9a:21:80:43: 5d:74:a4:c4:ec:8e:de:06:90:90:ff:b4:47:9c:13:fe:06:9e: 07:29:52:2e:31:1f:91:95:a1:be:2c:ba:37:a9:9a:df:e0:bc: fd:e5:85:3e:33:ea:2e:11:30:09:22:89:b8:85:72:81:ea:05: 18:0c:35:9c:6f:fc:e6:85:52:2b:23:da:63:6d:37:0c:67:2b: 95:72:10:40:f3:60:d4:b1:6c:54:54:0a:3e:04:8b:8f:fe:9a: cb:a1:8c:b6:d3:38:4a:dd:c3:12:9a:68:32:06:6a:e0:ea:94: dd:87:d1:32:fe:35:75:f7:1f:b1:b6:50:78:99:41:2a:ea:2b: 61:2e:fa:eb:ab:98:79:c1:bc:d1:7b:84:90:e1:ca:99:88:fb: 12:19:87:f3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEooltyrZcA/WCW4gaMS6tMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllZWFjMWNmYmVjNDk0YWU5NDU3Yzg2NmU2MzYxODY1YzRm MzAwNDgwHhcNMjYwMjA5MjMwMDI4WhcNMjYwMjEwMjMwMDI4WjAzMTEwLwYDVQQD EyhjY2JhODZiZjYxYTJhY2Y3ZDg1NGZhN2U3ZDU5MjE2OWU1MjMzNTBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApek7qtNE4Z79BMxeq1ZOmBzOhHr0 x2YrY3ukqQyw2miz/RaZ0ltTeOV5KtOWszkECg+SJF6wb/YZw/mXdO6E6ZRS/hC9 1gnZ6vfpvgqilPNMFKx/90XuXPkjpAAqZvLKzcNciGilu6Nv5cdLJNr7t6CNyZ+X LLz7qblt02lqVGLECBGQ1ALRupYQd9AGvD/RQD0ocb0FkboZOZlyQu9hpMRPB1xA HfMkB9MW8To6xyMo4+lBzo1OdoQUcJbmyiRm2frIsGgmhOBYTb9tiaNvwNKu1EVq hGpRMpVrJ2jynR7YgHPI8kQ0Q7uEEDJD9SJETYWWP73aII+PZCYA9bCJfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMy6hr9hoqz32FT6fn1ZIWnlIzUOMB8GA1UdIwQY MBaAFJ7qwc++xJSulFfIZuY2GGXE8wBIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82YS80N2U2MDktYjZiNy00NDNiLThhMDQt ZTI4NWNkOGNhZDEyLzEvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82YS80N2U2MDktYjZiNy00NDNiLThhMDQtZTI4NWNkOGNhZDEy LzEvbnVyQno3N0VsSzZVVjhobTVqWVlaY1R6QUVnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHkNumuJ7 Uo37cG1ZpPzwqn6WQNUysVWA44drnI084b0J0ZAUdcAJHIFAB5Zffv0A0VFSY9MG 3jWIfVjudTCnwmB3ovFjZgrOHXqFTm8WZPPgKVzEj4CSqQnbSWfDRTCIyXhi+B3o +j6aIYBDXXSkxOyO3gaQkP+0R5wT/gaeBylSLjEfkZWhviy6N6ma3+C8/eWFPjPq LhEwCSKJuIVygeoFGAw1nG/85oVSKyPaY203DGcrlXIQQPNg1LFsVFQKPgSLj/6a y6GMttM4St3DEppoMgZq4OqU3YfRMv41dfcfsbZQeJlBKuorYS7666uYecG80XuE kOHKmYj7EhmH8w== -----END CERTIFICATE-----Generated at Tue Feb 10 03:15:39 2026 by rpki-client