This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft File: NREZcs9Nkki9sYjTtBmuD7flZGs.mft (raw, json) Hash identifier: ILgQCmLH9ExEiqhqQxAy4b3iwIbV0zHmQaVccTfkXJU= Subject key identifier: 37:78:83:5D:D8:5F:73:C8:F5:6F:50:C5:70:4D:C9:B8:DF:85:48:69 Authority key identifier: 35:11:19:72:CF:4D:92:48:BD:B1:88:D3:B4:19:AE:0F:B7:E5:64:6B Certificate issuer: /CN=35111972cf4d9248bdb188d3b419ae0fb7e5646b Certificate serial: 019C4322263E20A0E4171C203FBBBD97C1E8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NREZcs9Nkki9sYjTtBmuD7flZGs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft Manifest number: 101E Signing time: Mon 09 Feb 2026 16:00:37 +0000 Manifest this update: Mon 09 Feb 2026 16:00:37 +0000 Manifest next update: Tue 10 Feb 2026 16:00:37 +0000 Files and hashes: 1: NREZcs9Nkki9sYjTtBmuD7flZGs.crl (hash: k6f0eM3cF0bCqhPJDCQui6CGaI0X3GrFrrmH7BvAM3s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.crl rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft rsync://rpki.ripe.net/repository/DEFAULT/NREZcs9Nkki9sYjTtBmuD7flZGs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:26:3e:20:a0:e4:17:1c:20:3f:bb:bd:97:c1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35111972cf4d9248bdb188d3b419ae0fb7e5646b Validity Not Before: Feb 9 16:00:37 2026 GMT Not After : Feb 10 16:00:37 2026 GMT Subject: CN=3778835dd85f73c8f56f50c5704dc9b8df854869 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f9:98:97:26:af:67:6c:67:3d:39:47:5e:bd: 75:e2:36:49:23:c5:bb:f9:43:00:f0:76:d5:19:02: 34:97:a1:ab:20:13:cb:4c:5b:6e:89:87:24:8a:d2: 41:fc:96:e9:50:d1:9a:ff:cc:c6:07:c7:59:66:b6: a4:b1:ec:3b:e1:d0:9b:49:f2:76:eb:44:18:6e:df: 2c:44:02:52:a2:be:a7:48:93:f1:1e:c5:f6:39:b8: af:6d:19:83:28:37:32:d5:85:8b:88:b7:6a:1b:b4: 20:69:94:a0:9d:28:67:bc:cb:52:b2:d8:e9:4c:09: 3b:06:28:ba:8d:5b:3a:26:84:9e:e4:56:f6:f5:42: ac:01:26:c2:fd:af:5c:83:38:f2:0f:4a:cb:82:c5: 7f:93:80:14:68:31:b8:bc:62:64:69:67:50:57:7e: 9d:ed:55:00:9b:71:7a:cf:21:cd:ad:78:75:83:ca: 40:d3:83:ed:86:0a:47:f8:bf:4d:aa:00:cc:4f:8d: b7:6e:83:72:60:ec:5e:b7:3c:41:9d:94:4a:39:4b: e6:04:43:2a:86:21:24:ea:da:5a:84:30:ba:87:c2: 44:93:9a:a9:b6:a2:bc:30:74:bf:89:34:9e:1c:da: 85:e4:c9:8d:60:13:fc:a1:08:6c:ef:9c:eb:1d:34: 31:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:78:83:5D:D8:5F:73:C8:F5:6F:50:C5:70:4D:C9:B8:DF:85:48:69 X509v3 Authority Key Identifier: keyid:35:11:19:72:CF:4D:92:48:BD:B1:88:D3:B4:19:AE:0F:B7:E5:64:6B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NREZcs9Nkki9sYjTtBmuD7flZGs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/f6b2bd-190b-4d0f-ba46-59e6325dd22b/1/NREZcs9Nkki9sYjTtBmuD7flZGs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:5e:62:67:12:dc:d7:29:1a:3b:37:49:9e:99:62:40:0f:db: 6c:34:03:95:67:e7:ec:ff:98:19:39:81:1b:c1:eb:76:82:03: a3:5d:ba:dd:6d:41:a9:ca:0f:7a:16:e4:a0:f6:43:9c:99:41: d5:23:b9:d0:8c:2b:ca:b2:d3:ef:2f:8d:2f:b4:22:ce:d3:f4: 11:5b:f6:da:68:22:a4:a9:00:47:3c:ea:fa:59:cf:33:26:7e: cc:cc:fe:c8:9b:66:a2:68:dc:7f:b7:ff:dd:8b:71:d3:99:88: 42:19:ee:12:fd:95:6a:de:6e:39:12:9a:f3:8a:4d:14:52:1e: bc:a5:e9:7a:bb:ed:e5:91:c6:81:2a:0f:56:a5:95:86:94:e3: 1b:44:2b:f5:e2:ae:53:65:87:69:1b:af:6d:12:0b:6d:b0:01: 40:b6:e0:da:13:1b:f0:a8:0a:a4:ba:6e:df:e8:20:86:4c:65: fb:cd:c8:cf:49:e5:42:6c:2b:9d:46:7a:fe:a0:e9:93:0f:27: 89:cf:89:d5:fd:a6:90:ba:fd:ed:91:ac:8c:50:e6:db:fb:a4: b0:f3:3c:73:d8:93:a4:ed:d0:ea:7b:3b:b1:47:7c:aa:68:a7: f9:f2:80:69:42:53:3f:fe:74:7a:f0:43:5a:4e:36:ef:aa:00: 55:96:af:b6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIiY+IKDkFxwgP7u9l8HoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MTExOTcyY2Y0ZDkyNDhiZGIxODhkM2I0MTlhZTBmYjdl NTY0NmIwHhcNMjYwMjA5MTYwMDM3WhcNMjYwMjEwMTYwMDM3WjAzMTEwLwYDVQQD EygzNzc4ODM1ZGQ4NWY3M2M4ZjU2ZjUwYzU3MDRkYzliOGRmODU0ODY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtfmYlyavZ2xnPTlHXr114jZJI8W7 +UMA8HbVGQI0l6GrIBPLTFtuiYckitJB/JbpUNGa/8zGB8dZZraksew74dCbSfJ2 60QYbt8sRAJSor6nSJPxHsX2ObivbRmDKDcy1YWLiLdqG7QgaZSgnShnvMtSstjp TAk7Bii6jVs6JoSe5Fb29UKsASbC/a9cgzjyD0rLgsV/k4AUaDG4vGJkaWdQV36d 7VUAm3F6zyHNrXh1g8pA04PthgpH+L9NqgDMT423boNyYOxetzxBnZRKOUvmBEMq hiEk6tpahDC6h8JEk5qptqK8MHS/iTSeHNqF5MmNYBP8oQhs75zrHTQxJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDd4g13YX3PI9W9QxXBNybjfhUhpMB8GA1UdIwQY MBaAFDURGXLPTZJIvbGI07QZrg+35WRrMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlJFWmNzOU5ra2k5c1lqVHRCbXVEN2ZsWkdzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iMy9mNmIyYmQtMTkwYi00ZDBmLWJhNDYt NTllNjMyNWRkMjJiLzEvTlJFWmNzOU5ra2k5c1lqVHRCbXVEN2ZsWkdzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iMy9mNmIyYmQtMTkwYi00ZDBmLWJhNDYtNTllNjMyNWRkMjJi LzEvTlJFWmNzOU5ra2k5c1lqVHRCbXVEN2ZsWkdzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYF5iZxLc 1ykaOzdJnpliQA/bbDQDlWfn7P+YGTmBG8HrdoIDo1263W1BqcoPehbkoPZDnJlB 1SO50IwryrLT7y+NL7QiztP0EVv22mgipKkARzzq+lnPMyZ+zMz+yJtmomjcf7f/ 3Ytx05mIQhnuEv2Vat5uORKa84pNFFIevKXpervt5ZHGgSoPVqWVhpTjG0Qr9eKu U2WHaRuvbRILbbABQLbg2hMb8KgKpLpu3+gghkxl+83Iz0nlQmwrnUZ6/qDpkw8n ic+J1f2mkLr97ZGsjFDm2/uksPM8c9iTpO3Q6ns7sUd8qmin+fKAaUJTP/50evBD Wk4276oAVZavtg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:44 2026 by rpki-client