This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft File: bNmlABXpaTdlb8DKW21WXkWb02A.mft (raw, json) Hash identifier: INWFvOU7H6s7c6w8R1PB0f6lJsx/x1seIr23R3rX0lU= Subject key identifier: FD:60:71:22:F7:5C:29:6D:6A:B1:A7:E9:DA:E9:94:37:96:D3:CE:3D Authority key identifier: 6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60 Certificate issuer: /CN=6cd9a50015e96937656fc0ca5b6d565e459bd360 Certificate serial: 019C4322CF6BF27B7D69AA9847A91E79E0C2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft Manifest number: 180E Signing time: Mon 09 Feb 2026 16:01:20 +0000 Manifest this update: Mon 09 Feb 2026 16:01:20 +0000 Manifest next update: Tue 10 Feb 2026 16:01:20 +0000 Files and hashes: 1: bNmlABXpaTdlb8DKW21WXkWb02A.crl (hash: FWAlN5wXOsF0ngcFa820Bdg+LH3jMYzjWSmuPDki0dk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:cf:6b:f2:7b:7d:69:aa:98:47:a9:1e:79:e0:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6cd9a50015e96937656fc0ca5b6d565e459bd360 Validity Not Before: Feb 9 16:01:20 2026 GMT Not After : Feb 10 16:01:20 2026 GMT Subject: CN=fd607122f75c296d6ab1a7e9dae9943796d3ce3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:74:b9:c2:75:f8:60:9c:e1:f7:76:fe:1c:e6: f0:9b:a1:1c:39:3a:db:25:7e:4d:5e:e1:de:f4:11: 60:8e:e0:00:78:9e:29:5e:0b:10:92:80:9e:4f:ad: dd:e9:c4:68:78:33:4a:09:b4:a7:16:d0:3f:b6:52: 57:cd:70:b9:af:86:5c:64:48:64:64:a7:dd:48:d8: 3b:f4:76:8f:10:78:bd:9c:51:ea:51:44:c7:9a:fe: 70:21:b7:83:fa:3e:2d:39:f8:f7:29:0d:ca:0d:f6: 97:b5:d4:71:25:f7:fa:e9:81:42:18:ed:10:eb:04: 43:12:35:ea:37:ab:73:91:1d:5a:d2:6e:f2:20:fd: 4d:4e:a5:aa:7a:47:33:e4:94:c2:47:16:d7:3f:9a: 79:19:de:4f:2c:a7:18:b5:62:2a:49:e7:ff:7c:e3: 58:84:f1:34:2f:99:06:fe:27:e6:3e:ae:99:f4:dd: f1:cf:1e:a8:83:69:b4:b1:5c:69:d7:e2:b8:42:dc: 8a:9c:55:e6:2c:bd:b2:3f:cf:f3:9b:af:0b:ad:43: b6:51:53:c3:06:49:5f:20:47:89:b9:ac:0d:9d:6f: 95:3f:0c:83:c5:01:6b:9e:ac:7a:33:f4:64:93:c8: 99:ce:d1:23:ca:49:1e:48:ca:78:39:d3:69:42:bb: d8:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:60:71:22:F7:5C:29:6D:6A:B1:A7:E9:DA:E9:94:37:96:D3:CE:3D X509v3 Authority Key Identifier: keyid:6C:D9:A5:00:15:E9:69:37:65:6F:C0:CA:5B:6D:56:5E:45:9B:D3:60 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/bNmlABXpaTdlb8DKW21WXkWb02A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/7dbd11-1b22-404c-94d3-2b9d437fe902/1/bNmlABXpaTdlb8DKW21WXkWb02A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:8c:1f:55:cf:0a:3d:bc:2d:00:c3:ef:b4:ab:f0:f8:fc:47: bd:8e:55:f2:49:c6:08:ac:45:a9:f1:4f:7a:7e:aa:2f:16:38: f3:af:70:cd:b5:b7:d2:b6:33:77:7b:b2:5b:4f:35:42:05:c0: 42:ed:1e:36:bf:1c:4c:44:e7:93:a6:90:bf:96:06:14:31:7d: 52:e3:f5:cb:e7:f0:a6:cb:b1:15:e6:8d:7a:20:f1:86:d4:7f: ac:e8:db:17:b9:84:d9:45:23:f7:59:a9:cd:f5:77:92:e6:75: 7e:1b:cd:dd:9c:29:e3:d0:af:84:3a:2e:00:50:6a:43:82:11: 2b:25:b4:45:b8:be:78:da:50:08:54:a8:44:18:65:70:40:5f: c6:4a:37:ed:06:a1:e3:4f:9d:97:b5:49:c5:ea:3b:98:08:83: 02:fd:81:6a:e0:d1:5e:da:db:44:f6:c2:17:94:69:d9:bb:94: 23:13:95:ca:95:47:b3:14:0a:6d:3d:c2:12:17:23:29:d9:7a: 33:eb:4f:81:09:5b:61:5a:fe:21:df:6b:3e:49:f3:79:31:09: 19:53:a2:b7:0c:ba:4e:3b:02:f7:c8:9f:e4:3f:ad:d3:82:20: 06:5d:db:70:6e:46:ff:26:47:f4:92:d7:d9:db:a0:52:5c:16: 43:fb:25:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIs9r8nt9aaqYR6keeeDCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDZjZDlhNTAwMTVlOTY5Mzc2NTZmYzBjYTViNmQ1NjVlNDU5 YmQzNjAwHhcNMjYwMjA5MTYwMTIwWhcNMjYwMjEwMTYwMTIwWjAzMTEwLwYDVQQD EyhmZDYwNzEyMmY3NWMyOTZkNmFiMWE3ZTlkYWU5OTQzNzk2ZDNjZTNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/HS5wnX4YJzh93b+HObwm6EcOTrb JX5NXuHe9BFgjuAAeJ4pXgsQkoCeT63d6cRoeDNKCbSnFtA/tlJXzXC5r4ZcZEhk ZKfdSNg79HaPEHi9nFHqUUTHmv5wIbeD+j4tOfj3KQ3KDfaXtdRxJff66YFCGO0Q 6wRDEjXqN6tzkR1a0m7yIP1NTqWqekcz5JTCRxbXP5p5Gd5PLKcYtWIqSef/fONY hPE0L5kG/ifmPq6Z9N3xzx6og2m0sVxp1+K4QtyKnFXmLL2yP8/zm68LrUO2UVPD BklfIEeJuawNnW+VPwyDxQFrnqx6M/Rkk8iZztEjykkeSMp4OdNpQrvYHwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP1gcSL3XCltarGn6drplDeW0849MB8GA1UdIwQY MBaAFGzZpQAV6Wk3ZW/AylttVl5Fm9NgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvYk5tbEFCWHBhVGRsYjhES1cyMVdYa1diMDJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hMi83ZGJkMTEtMWIyMi00MDRjLTk0ZDMt MmI5ZDQzN2ZlOTAyLzEvYk5tbEFCWHBhVGRsYjhES1cyMVdYa1diMDJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hMi83ZGJkMTEtMWIyMi00MDRjLTk0ZDMtMmI5ZDQzN2ZlOTAy LzEvYk5tbEFCWHBhVGRsYjhES1cyMVdYa1diMDJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHIwfVc8K PbwtAMPvtKvw+PxHvY5V8knGCKxFqfFPen6qLxY4869wzbW30rYzd3uyW081QgXA Qu0eNr8cTETnk6aQv5YGFDF9UuP1y+fwpsuxFeaNeiDxhtR/rOjbF7mE2UUj91mp zfV3kuZ1fhvN3Zwp49CvhDouAFBqQ4IRKyW0Rbi+eNpQCFSoRBhlcEBfxko37Qah 40+dl7VJxeo7mAiDAv2BauDRXtrbRPbCF5Rp2buUIxOVypVHsxQKbT3CEhcjKdl6 M+tPgQlbYVr+Id9rPknzeTEJGVOitwy6TjsC98if5D+t04IgBl3bcG5G/yZH9JLX 2dugUlwWQ/slCg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:24 2026 by rpki-client