This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft File: nvnDHh7MuhkCs_YiWT3pcspxi1w.mft (raw, json) Hash identifier: Cuza1QCpeD+Ng+gg85gUoyAdBclSo2D5upr4V/H92XE= Subject key identifier: 9D:A4:53:5F:90:9A:EC:5F:E9:3F:24:38:F3:F6:5F:F5:56:A3:20:81 Authority key identifier: 9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C Certificate issuer: /CN=9ef9c31e1eccba1902b3f622593de972ca718b5c Certificate serial: 019C42102F2A3AD21FCE319BBCFD184A161D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft Manifest number: 0F67 Signing time: Mon 09 Feb 2026 11:01:22 +0000 Manifest this update: Mon 09 Feb 2026 11:01:22 +0000 Manifest next update: Tue 10 Feb 2026 11:01:22 +0000 Files and hashes: 1: nvnDHh7MuhkCs_YiWT3pcspxi1w.crl (hash: bpA7tBRAlIJalETlDe83EiJr6PLqNHwdGADGGqjgmSs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:2f:2a:3a:d2:1f:ce:31:9b:bc:fd:18:4a:16:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ef9c31e1eccba1902b3f622593de972ca718b5c Validity Not Before: Feb 9 11:01:22 2026 GMT Not After : Feb 10 11:01:22 2026 GMT Subject: CN=9da4535f909aec5fe93f2438f3f65ff556a32081 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:da:88:f4:34:20:c3:7e:8c:f7:9e:81:da:bd: cd:b8:60:4a:1d:7d:f4:1e:33:0a:72:64:ee:46:91: a7:d7:3f:4a:25:2f:ae:fa:a6:70:6a:3d:71:7e:3f: f2:41:d3:c4:d1:5b:3d:94:4b:35:a7:e2:16:ab:a5: a7:4b:30:b6:b8:c8:94:c9:2a:a6:50:f5:9f:b7:d4: 1f:18:13:3f:c1:cd:5e:f9:65:22:7d:28:10:c4:dc: 35:5d:28:4a:c2:5f:f6:ea:80:7b:02:a4:ad:57:72: 18:1f:44:7c:aa:a2:ee:f0:03:9f:b1:f3:f7:16:ab: d8:ed:63:e7:22:1e:03:29:41:d6:66:0d:63:8a:aa: b7:af:b5:79:91:67:6a:b2:eb:34:53:cc:2d:ec:d2: cd:73:60:3b:15:78:0f:33:66:17:9a:11:70:20:36: 67:95:db:16:fa:5f:ff:bc:f3:17:80:ce:39:53:56: 0f:9c:84:87:e2:3d:bc:6a:75:2c:59:cf:9a:ac:2b: e0:53:85:92:6d:4b:10:65:2b:98:7b:92:c3:b9:e7: 75:c8:4e:f9:57:c6:42:34:85:0e:30:29:05:b1:3e: 5c:c1:54:7e:43:d9:bf:e6:6f:0a:b0:9b:d4:79:0b: a0:9c:67:1a:25:f2:e9:d7:0e:70:4a:8a:68:21:df: 03:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:A4:53:5F:90:9A:EC:5F:E9:3F:24:38:F3:F6:5F:F5:56:A3:20:81 X509v3 Authority Key Identifier: keyid:9E:F9:C3:1E:1E:CC:BA:19:02:B3:F6:22:59:3D:E9:72:CA:71:8B:5C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nvnDHh7MuhkCs_YiWT3pcspxi1w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/92/2fa7b8-a484-47df-b1c2-972c0fae67b8/1/nvnDHh7MuhkCs_YiWT3pcspxi1w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:b0:c2:b1:fa:c6:10:0a:4d:6e:1e:49:bf:c6:22:c1:95:92: 8c:e4:b6:bc:93:0b:c5:06:6d:78:bb:ac:83:79:f6:4e:5c:07: cd:11:9b:9f:37:7d:fd:67:0c:07:05:2d:48:6a:54:93:c7:52: 5e:2c:06:bc:c5:74:3c:91:c0:f1:de:e6:6a:e3:4b:8f:ee:da: db:75:d6:c2:ed:c2:c4:15:12:bb:f1:1b:f4:7e:79:e0:a1:87: a3:a6:5b:95:94:5d:ed:10:b8:2d:18:22:02:e9:c2:6d:eb:bf: 5a:76:3f:1f:b1:d2:ad:71:76:5b:ec:9e:e1:ee:be:a7:08:c1: 1f:b6:f2:ee:53:da:cd:28:7f:a5:a8:ea:50:d2:aa:5c:ca:09: 57:f6:75:2f:50:66:96:40:fb:0a:33:2c:89:3e:81:f2:90:de: 83:0a:1c:3e:e7:81:d9:91:e4:9f:a4:e1:8c:f4:a4:e3:1f:99: 43:87:1c:29:73:92:1c:46:9e:bc:c3:29:f4:9d:69:ba:1c:18: cc:4a:d9:ba:6a:12:5c:9c:3d:fb:e0:d9:72:4d:80:2d:64:25: e1:b4:bf:f3:5b:99:26:fe:85:41:8c:5e:9b:eb:29:ff:df:e6: 43:85:08:42:a0:f5:8e:03:16:1d:10:21:e0:9b:a9:8e:4d:e1: ce:08:71:66 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEC8qOtIfzjGbvP0YShYdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllZjljMzFlMWVjY2JhMTkwMmIzZjYyMjU5M2RlOTcyY2E3 MThiNWMwHhcNMjYwMjA5MTEwMTIyWhcNMjYwMjEwMTEwMTIyWjAzMTEwLwYDVQQD Eyg5ZGE0NTM1ZjkwOWFlYzVmZTkzZjI0MzhmM2Y2NWZmNTU2YTMyMDgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqNqI9DQgw36M956B2r3NuGBKHX30 HjMKcmTuRpGn1z9KJS+u+qZwaj1xfj/yQdPE0Vs9lEs1p+IWq6WnSzC2uMiUySqm UPWft9QfGBM/wc1e+WUifSgQxNw1XShKwl/26oB7AqStV3IYH0R8qqLu8AOfsfP3 FqvY7WPnIh4DKUHWZg1jiqq3r7V5kWdqsus0U8wt7NLNc2A7FXgPM2YXmhFwIDZn ldsW+l//vPMXgM45U1YPnISH4j28anUsWc+arCvgU4WSbUsQZSuYe5LDued1yE75 V8ZCNIUOMCkFsT5cwVR+Q9m/5m8KsJvUeQugnGcaJfLp1w5wSopoId8D6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ2kU1+Qmuxf6T8kOPP2X/VWoyCBMB8GA1UdIwQY MBaAFJ75wx4ezLoZArP2Ilk96XLKcYtcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Mi8yZmE3YjgtYTQ4NC00N2RmLWIxYzIt OTcyYzBmYWU2N2I4LzEvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Mi8yZmE3YjgtYTQ4NC00N2RmLWIxYzItOTcyYzBmYWU2N2I4 LzEvbnZuREhoN011aGtDc19ZaVdUM3Bjc3B4aTF3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc7DCsfrG EApNbh5Jv8YiwZWSjOS2vJMLxQZteLusg3n2TlwHzRGbnzd9/WcMBwUtSGpUk8dS XiwGvMV0PJHA8d7mauNLj+7a23XWwu3CxBUSu/Eb9H554KGHo6ZblZRd7RC4LRgi AunCbeu/WnY/H7HSrXF2W+ye4e6+pwjBH7by7lPazSh/pajqUNKqXMoJV/Z1L1Bm lkD7CjMsiT6B8pDegwocPueB2ZHkn6ThjPSk4x+ZQ4ccKXOSHEaevMMp9J1puhwY zErZumoSXJw9++DZck2ALWQl4bS/81uZJv6FQYxem+sp/9/mQ4UIQqD1jgMWHRAh 4Jupjk3hzghxZg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:56:00 2026 by rpki-client