This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft File: nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft (raw, json) Hash identifier: HMKQtV/9e+xJYcEzPce9Ws3SM7tQg03GBxVhei4s7/A= Subject key identifier: CC:FD:10:58:98:18:7D:FF:31:63:74:99:24:F6:54:45:C7:ED:56:14 Authority key identifier: 9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4 Certificate issuer: /CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4 Certificate serial: 019C427D2FCB8927535B6C3B2D8B38CC4A70 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 13:00:26 +0000 Manifest this update: Mon 09 Feb 2026 13:00:26 +0000 Manifest next update: Tue 10 Feb 2026 13:00:26 +0000 Files and hashes: 1: nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl (hash: oRg2ZtrCBBLar1exT3MkoUDqANiRwN9up8oDjo3PbFY=) 2: yE7elJQcwCE2lQSAbWletTxQ5Qo.roa (hash: tKAft8gW1YvZxBPlZ5+27HK7UOl/JK2+eMjDk7cQl10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:2f:cb:89:27:53:5b:6c:3b:2d:8b:38:cc:4a:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d239c08ead94bb04fc3e6b4a65e6e1c7dcf38f4 Validity Not Before: Feb 9 13:00:26 2026 GMT Not After : Feb 10 13:00:26 2026 GMT Subject: CN=ccfd105898187dff3163749924f65445c7ed5614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:65:fb:40:81:a0:5d:90:b9:99:6b:ff:47:29: ad:ed:6d:a2:bf:3c:7b:1a:23:df:75:60:44:0e:72: 17:3a:03:2e:4d:36:2b:45:0f:70:09:59:83:55:59: a4:98:c3:3b:bb:b3:f4:59:ef:f6:9c:91:e9:88:bf: 4f:7b:16:e4:56:d5:9e:5f:4f:d6:7e:3a:8a:f9:13: 66:56:5b:3f:f1:40:ed:58:6d:57:3e:28:d2:04:d6: f1:0c:40:91:a9:c2:1a:41:f8:0c:fc:df:2a:4d:80: 95:db:07:1a:af:c9:b2:09:62:3c:60:8c:89:2d:8b: a8:47:35:29:af:af:cb:12:e5:a3:db:5c:d2:89:ac: f1:bc:0e:49:50:6d:81:c2:a2:79:36:86:4c:de:85: 45:a6:79:36:2d:eb:cc:8f:aa:36:0e:4f:33:39:d7: 4c:b8:86:d7:9d:67:d8:19:43:24:f7:45:fb:ba:23: cb:4b:9c:bd:ca:dc:54:65:31:a0:74:28:60:bd:48: f4:aa:61:ed:2e:9a:db:99:bd:90:3b:cf:74:e6:02: 2e:5a:5f:a7:01:15:06:ad:5d:d0:6c:a1:60:5f:63: 97:e2:af:60:3d:dd:51:0d:dc:19:26:69:50:19:7f: 88:83:9f:d1:cd:24:cf:18:90:fc:b5:e1:40:b4:50: ab:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:FD:10:58:98:18:7D:FF:31:63:74:99:24:F6:54:45:C7:ED:56:14 X509v3 Authority Key Identifier: keyid:9D:23:9C:08:EA:D9:4B:B0:4F:C3:E6:B4:A6:5E:6E:1C:7D:CF:38:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nSOcCOrZS7BPw-a0pl5uHH3POPQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/060859-7707-412a-9810-dbb2931a0f64/1/nSOcCOrZS7BPw-a0pl5uHH3POPQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:20:7f:35:32:ba:dd:b1:a2:b0:10:0b:a8:15:4d:7d:00:be: 17:5d:19:1a:a1:1f:36:75:1f:2e:ec:73:1d:57:76:b3:5b:ce: 92:51:8c:be:b7:87:b9:8a:3e:0c:5b:33:5b:e5:ce:7a:7b:25: 57:14:c5:75:68:d0:fe:c3:3e:18:c3:0c:3c:ba:46:6a:19:93: e4:9f:14:c2:55:bc:ef:96:b1:e0:72:cf:f3:e0:1c:ae:6c:c4: db:77:8c:64:ab:77:69:21:7a:4c:d8:55:f8:fd:bb:8d:12:b8: 1a:86:84:66:74:a9:79:38:52:d0:a7:b3:3c:37:dc:e5:93:aa: 39:df:1a:89:ee:fd:c4:17:8c:69:80:71:25:7d:7c:f3:a5:08: e7:71:de:e7:9a:2d:c9:a0:31:3e:92:8b:d0:44:be:7e:0e:cb: 7e:b2:d3:30:97:5e:29:07:de:a2:e7:2a:04:05:c2:15:11:cd: 97:3d:24:71:5e:b2:75:99:8c:65:17:33:a1:aa:df:79:de:e5: 45:0a:88:ac:37:67:71:79:d4:6b:4d:1f:c1:27:1e:f6:ee:f9: 0e:d3:a0:f2:ea:b7:ff:48:7b:4d:7d:b0:c1:ed:ab:06:c7:51: 97:e2:c1:6b:c0:cf:94:74:4a:8a:fb:e9:b7:ee:9e:7c:a8:09: 6c:1b:45:0c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfS/LiSdTW2w7LYs4zEpwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMjM5YzA4ZWFkOTRiYjA0ZmMzZTZiNGE2NWU2ZTFjN2Rj ZjM4ZjQwHhcNMjYwMjA5MTMwMDI2WhcNMjYwMjEwMTMwMDI2WjAzMTEwLwYDVQQD EyhjY2ZkMTA1ODk4MTg3ZGZmMzE2Mzc0OTkyNGY2NTQ0NWM3ZWQ1NjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWX7QIGgXZC5mWv/Rymt7W2ivzx7 GiPfdWBEDnIXOgMuTTYrRQ9wCVmDVVmkmMM7u7P0We/2nJHpiL9PexbkVtWeX0/W fjqK+RNmVls/8UDtWG1XPijSBNbxDECRqcIaQfgM/N8qTYCV2wcar8myCWI8YIyJ LYuoRzUpr6/LEuWj21zSiazxvA5JUG2BwqJ5NoZM3oVFpnk2LevMj6o2Dk8zOddM uIbXnWfYGUMk90X7uiPLS5y9ytxUZTGgdChgvUj0qmHtLprbmb2QO8905gIuWl+n ARUGrV3QbKFgX2OX4q9gPd1RDdwZJmlQGX+Ig5/RzSTPGJD8teFAtFCrcwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMz9EFiYGH3/MWN0mST2VEXH7VYUMB8GA1UdIwQY MBaAFJ0jnAjq2UuwT8PmtKZebhx9zzj0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAt ZGJiMjkzMWEwZjY0LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS8wNjA4NTktNzcwNy00MTJhLTk4MTAtZGJiMjkzMWEwZjY0 LzEvblNPY0NPclpTN0JQdy1hMHBsNXVISDNQT1BRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKiB/NTK6 3bGisBALqBVNfQC+F10ZGqEfNnUfLuxzHVd2s1vOklGMvreHuYo+DFszW+XOensl VxTFdWjQ/sM+GMMMPLpGahmT5J8UwlW875ax4HLP8+AcrmzE23eMZKt3aSF6TNhV +P27jRK4GoaEZnSpeThS0KezPDfc5ZOqOd8aie79xBeMaYBxJX1886UI53He55ot yaAxPpKL0ES+fg7LfrLTMJdeKQfeoucqBAXCFRHNlz0kcV6ydZmMZRczoarfed7l RQqIrDdncXnUa00fwSce9u75DtOg8uq3/0h7TX2wwe2rBsdRl+LBa8DPlHRKivvp t+6efKgJbBtFDA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:10 2026 by rpki-client