This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft File: NUgzKLASxNGWj8IF3gJK8vmx2rw.mft (raw, json) Hash identifier: M/v1sCgfjXyuybBAD77q4213Pve8sLeH00a6j67ilUU= Subject key identifier: 82:0A:2E:C2:57:87:48:3D:8F:97:AC:DD:4B:80:55:75:B9:B6:33:56 Authority key identifier: 35:48:33:28:B0:12:C4:D1:96:8F:C2:05:DE:02:4A:F2:F9:B1:DA:BC Certificate issuer: /CN=35483328b012c4d1968fc205de024af2f9b1dabc Certificate serial: 019C4511030EF4DC41D7B7DD69B3BC97FCF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NUgzKLASxNGWj8IF3gJK8vmx2rw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft Manifest number: 04B0 Signing time: Tue 10 Feb 2026 01:01:08 +0000 Manifest this update: Tue 10 Feb 2026 01:01:08 +0000 Manifest next update: Wed 11 Feb 2026 01:01:08 +0000 Files and hashes: 1: NUgzKLASxNGWj8IF3gJK8vmx2rw.crl (hash: ADLNL9SBiin+anYOkEF4VqQRarNA7bzT+ZqLoYlvLBg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.crl rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft rsync://rpki.ripe.net/repository/DEFAULT/NUgzKLASxNGWj8IF3gJK8vmx2rw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:45:11:03:0e:f4:dc:41:d7:b7:dd:69:b3:bc:97:fc:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35483328b012c4d1968fc205de024af2f9b1dabc Validity Not Before: Feb 10 01:01:08 2026 GMT Not After : Feb 11 01:01:08 2026 GMT Subject: CN=820a2ec25787483d8f97acdd4b805575b9b63356 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:8f:d4:6f:98:a2:5d:51:16:a5:28:dc:b3:52: 17:93:6f:ad:f8:be:95:76:36:6f:09:d7:9c:4e:b2: 2e:b6:4b:ee:a2:62:c3:4c:8e:b7:e6:3c:84:70:cf: b8:9d:a5:06:c1:21:ef:87:2f:74:93:42:2f:33:9c: fd:56:33:ff:96:31:aa:47:62:7b:ef:e4:67:35:e3: af:ac:10:37:81:4f:3a:0a:bf:2e:55:d2:5a:87:ca: 94:5a:30:af:53:76:58:e7:74:15:55:35:4c:36:c3: 70:68:5a:0b:b1:46:73:00:72:3e:aa:0c:98:4d:20: dd:e9:6a:33:9a:0d:b4:48:48:ba:f7:01:5e:77:38: e3:36:21:9d:06:4b:3f:9a:94:b2:9c:69:bd:c0:07: 9e:97:15:01:dd:dc:40:52:ce:79:1e:d3:ba:6f:0e: cf:ac:44:17:e6:98:07:4c:57:84:bb:0d:24:73:12: 3e:a2:b6:4c:bb:3e:fa:f1:1d:37:c5:0c:22:f4:b9: 20:55:5a:15:65:90:02:54:72:88:fc:a4:23:0a:f5: b3:3c:e0:e2:90:ce:bf:fc:53:b7:75:91:39:f2:0a: e3:e3:0f:d3:af:42:b3:7e:22:26:4e:7d:66:79:fe: 40:5d:bb:db:18:9b:65:2f:0e:a0:06:b6:f0:dd:4c: 22:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:0A:2E:C2:57:87:48:3D:8F:97:AC:DD:4B:80:55:75:B9:B6:33:56 X509v3 Authority Key Identifier: keyid:35:48:33:28:B0:12:C4:D1:96:8F:C2:05:DE:02:4A:F2:F9:B1:DA:BC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NUgzKLASxNGWj8IF3gJK8vmx2rw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/91070a-0a96-49df-acff-ec567575418b/1/NUgzKLASxNGWj8IF3gJK8vmx2rw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:53:3e:b0:73:b8:a3:e6:01:4d:8d:8a:e2:94:fd:e4:4f:b1: ea:e9:7d:5b:74:13:cc:db:31:e8:7b:1a:32:3a:f3:63:49:0e: e8:a4:dd:ee:87:61:8e:25:26:57:f0:e9:39:65:2f:6e:9b:35: 48:04:55:8b:21:ac:3e:a3:f6:14:54:fd:94:24:86:eb:5b:ef: e4:b0:c5:15:00:44:fd:9a:26:fa:7f:5c:e8:69:f9:ec:a9:41: f2:40:72:75:55:f8:c6:38:f6:78:91:60:84:c5:69:cb:fe:88: 27:26:70:21:37:96:99:94:cb:cf:c2:b6:f1:2d:3d:5c:0e:00: 7a:5f:54:23:c4:11:de:e4:0f:3a:ca:52:d4:df:ce:d5:b4:a5: d6:2a:27:a0:4f:98:89:62:8f:33:49:bd:67:fe:6c:30:90:36: 40:f3:97:79:ca:c0:17:23:7b:59:f5:cb:12:50:67:40:13:73: 84:cb:59:59:09:9f:4d:19:75:4f:c2:d1:cd:b2:89:cd:8a:d0: ab:bd:d0:5c:ab:5b:22:49:2c:44:51:c1:9d:3a:e9:ad:15:8f: 01:3d:f7:ca:d0:6e:76:54:ec:2c:44:ae:cc:42:2d:36:6c:d1: 91:5a:17:79:8c:dd:ca:82:93:43:58:e4:01:2d:2b:fb:27:cd: 74:a0:fe:3f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxFEQMO9NxB17fdabO8l/z0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NDgzMzI4YjAxMmM0ZDE5NjhmYzIwNWRlMDI0YWYyZjli MWRhYmMwHhcNMjYwMjEwMDEwMTA4WhcNMjYwMjExMDEwMTA4WjAzMTEwLwYDVQQD Eyg4MjBhMmVjMjU3ODc0ODNkOGY5N2FjZGQ0YjgwNTU3NWI5YjYzMzU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArI/Ub5iiXVEWpSjcs1IXk2+t+L6V djZvCdecTrIutkvuomLDTI635jyEcM+4naUGwSHvhy90k0IvM5z9VjP/ljGqR2J7 7+RnNeOvrBA3gU86Cr8uVdJah8qUWjCvU3ZY53QVVTVMNsNwaFoLsUZzAHI+qgyY TSDd6Wozmg20SEi69wFedzjjNiGdBks/mpSynGm9wAeelxUB3dxAUs55HtO6bw7P rEQX5pgHTFeEuw0kcxI+orZMuz768R03xQwi9LkgVVoVZZACVHKI/KQjCvWzPODi kM6//FO3dZE58grj4w/Tr0KzfiImTn1mef5AXbvbGJtlLw6gBrbw3UwiowIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIIKLsJXh0g9j5es3UuAVXW5tjNWMB8GA1UdIwQY MBaAFDVIMyiwEsTRlo/CBd4CSvL5sdq8MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlVnektMQVN4TkdXajhJRjNnSks4dm14MnJ3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny85MTA3MGEtMGE5Ni00OWRmLWFjZmYt ZWM1Njc1NzU0MThiLzEvTlVnektMQVN4TkdXajhJRjNnSks4dm14MnJ3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny85MTA3MGEtMGE5Ni00OWRmLWFjZmYtZWM1Njc1NzU0MThi LzEvTlVnektMQVN4TkdXajhJRjNnSks4dm14MnJ3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABVM+sHO4 o+YBTY2K4pT95E+x6ul9W3QTzNsx6HsaMjrzY0kO6KTd7odhjiUmV/DpOWUvbps1 SARViyGsPqP2FFT9lCSG61vv5LDFFQBE/Zom+n9c6Gn57KlB8kBydVX4xjj2eJFg hMVpy/6IJyZwITeWmZTLz8K28S09XA4Ael9UI8QR3uQPOspS1N/O1bSl1ionoE+Y iWKPM0m9Z/5sMJA2QPOXecrAFyN7WfXLElBnQBNzhMtZWQmfTRl1T8LRzbKJzYrQ q73QXKtbIkksRFHBnTrprRWPAT33ytBudlTsLESuzEItNmzRkVoXeYzdyoKTQ1jk AS0r+yfNdKD+Pw== -----END CERTIFICATE-----Generated at Tue Feb 10 02:51:33 2026 by rpki-client