This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft File: nB7k05z6obOseZwX94grjOTigSA.mft (raw, json) Hash identifier: E6pkdVdlUYVUbHc+HBGDILkD9BSm4EUG1qifN/deusc= Subject key identifier: AD:36:AF:6C:28:23:8F:08:DE:2C:22:C5:46:78:7C:1B:2B:70:05:98 Authority key identifier: 9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20 Certificate issuer: /CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120 Certificate serial: 019C42B41F68A7E504829F7C5D307EE9EAAE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft Manifest number: 0AC3 Signing time: Mon 09 Feb 2026 14:00:26 +0000 Manifest this update: Mon 09 Feb 2026 14:00:26 +0000 Manifest next update: Tue 10 Feb 2026 14:00:26 +0000 Files and hashes: 1: D6BGr-5dJZvETpMbA__Q61SK3f4.roa (hash: zOFmPuRjAmwk6FKGKP0FAzMgJQg9lT91lc24vYQHaUc=) 2: nB7k05z6obOseZwX94grjOTigSA.crl (hash: TBs3+DgibOj/dblw+h38nPcuqT+3wP1mA66Tim2IAV4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:1f:68:a7:e5:04:82:9f:7c:5d:30:7e:e9:ea:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c1ee4d39cfaa1b3ac799c17f7882b8ce4e28120 Validity Not Before: Feb 9 14:00:26 2026 GMT Not After : Feb 10 14:00:26 2026 GMT Subject: CN=ad36af6c28238f08de2c22c546787c1b2b700598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:e2:4d:e0:d9:24:28:94:44:bf:9e:44:90:eb: 6f:a6:6f:d5:a9:8e:87:0c:c7:02:63:5d:42:b8:2a: 4d:2a:6a:2a:25:ed:4f:0a:11:61:49:bd:b9:f9:1b: 52:08:96:3d:cc:a7:b9:96:f6:42:cd:b0:4e:7a:2c: ff:a0:de:62:b6:cf:e4:3a:31:39:b2:cb:b1:79:cd: 68:ce:67:56:60:db:45:c3:0f:fe:49:36:9b:95:bd: 7f:3e:49:2b:3b:27:45:9c:a6:ff:d8:a4:1c:aa:5d: 70:8b:f9:7d:17:19:6e:c5:6a:0f:22:ac:50:36:81: c8:58:c1:9a:78:50:43:b8:49:c4:51:b6:5e:88:be: 2a:7d:6c:ef:9f:99:34:ba:9a:3f:96:41:5e:05:7d: ab:a4:2b:b2:71:f5:8e:32:78:65:66:e3:1f:e8:d2: a7:ad:73:9a:ac:94:2d:a1:a6:65:fd:f7:34:aa:a7: fc:33:22:d8:2b:f3:a6:d4:fb:15:f2:98:8f:d3:27: d5:0d:01:6c:cc:50:e0:41:fe:e2:a5:ac:53:bc:3c: 9e:38:b6:0f:09:df:88:36:ae:18:0a:e2:41:bb:cd: 78:9c:6d:59:73:9e:8e:5a:5f:d8:6c:ad:90:a7:c1: c9:a7:eb:2f:d0:b8:62:f7:49:cf:63:cf:58:d3:63: fc:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:36:AF:6C:28:23:8F:08:DE:2C:22:C5:46:78:7C:1B:2B:70:05:98 X509v3 Authority Key Identifier: keyid:9C:1E:E4:D3:9C:FA:A1:B3:AC:79:9C:17:F7:88:2B:8C:E4:E2:81:20 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nB7k05z6obOseZwX94grjOTigSA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bb/bb97d9-7b81-449f-9060-bd465ce711bb/1/nB7k05z6obOseZwX94grjOTigSA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:8a:47:7f:ce:ce:74:32:fa:5c:6a:d9:e3:af:b2:99:c3:df: 66:5c:8a:fc:a7:1d:09:27:53:bb:10:10:ba:31:b9:10:4d:49: 40:8a:56:73:1b:5a:94:32:fd:f4:61:49:06:f3:da:06:ba:8b: 50:00:14:6b:d4:77:e6:f3:7e:f2:b1:c0:fc:e8:cc:af:c6:4d: 1a:02:b7:83:2f:ae:43:f5:7c:04:d5:33:85:a2:5f:56:ac:34: 03:13:47:7d:a7:0d:19:3d:22:5d:29:ed:aa:21:05:ff:42:1f: 8e:9b:d2:6f:23:b1:f3:9f:05:d5:69:90:fa:7b:4a:5a:09:bd: 20:98:de:b3:c6:29:58:ff:43:77:0e:78:f5:20:a8:41:68:1f: 67:6c:6c:35:1f:52:65:6e:4d:c5:3c:02:49:8b:1e:e9:1f:c2: 35:99:42:23:b2:45:35:85:e1:b9:f5:0f:65:7a:bb:08:c6:cd: cc:f2:18:c5:8d:de:90:da:53:3a:51:6c:95:ac:d2:3e:9c:1f: cb:97:d0:1e:1c:a3:4a:04:db:0c:ea:1c:9a:70:62:8d:64:34: 87:67:5b:65:f4:cf:fa:a3:de:4b:5e:71:7e:2d:f2:89:c1:4b: 76:68:f6:fb:77:1c:85:82:73:76:f0:ad:40:25:08:6d:22:2f: 8e:06:14:a1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtB9op+UEgp98XTB+6equMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMWVlNGQzOWNmYWExYjNhYzc5OWMxN2Y3ODgyYjhjZTRl MjgxMjAwHhcNMjYwMjA5MTQwMDI2WhcNMjYwMjEwMTQwMDI2WjAzMTEwLwYDVQQD EyhhZDM2YWY2YzI4MjM4ZjA4ZGUyYzIyYzU0Njc4N2MxYjJiNzAwNTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OJN4NkkKJREv55EkOtvpm/VqY6H DMcCY11CuCpNKmoqJe1PChFhSb25+RtSCJY9zKe5lvZCzbBOeiz/oN5its/kOjE5 ssuxec1ozmdWYNtFww/+STablb1/PkkrOydFnKb/2KQcql1wi/l9FxluxWoPIqxQ NoHIWMGaeFBDuEnEUbZeiL4qfWzvn5k0upo/lkFeBX2rpCuycfWOMnhlZuMf6NKn rXOarJQtoaZl/fc0qqf8MyLYK/Om1PsV8piP0yfVDQFszFDgQf7ipaxTvDyeOLYP Cd+INq4YCuJBu814nG1Zc56OWl/YbK2Qp8HJp+sv0Lhi90nPY89Y02P8qwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK02r2woI48I3iwixUZ4fBsrcAWYMB8GA1UdIwQY MBaAFJwe5NOc+qGzrHmcF/eIK4zk4oEgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAt YmQ0NjVjZTcxMWJiLzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYi9iYjk3ZDktN2I4MS00NDlmLTkwNjAtYmQ0NjVjZTcxMWJi LzEvbkI3azA1ejZvYk9zZVp3WDk0Z3JqT1RpZ1NBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAh4pHf87O dDL6XGrZ46+ymcPfZlyK/KcdCSdTuxAQujG5EE1JQIpWcxtalDL99GFJBvPaBrqL UAAUa9R35vN+8rHA/OjMr8ZNGgK3gy+uQ/V8BNUzhaJfVqw0AxNHfacNGT0iXSnt qiEF/0IfjpvSbyOx858F1WmQ+ntKWgm9IJjes8YpWP9Ddw549SCoQWgfZ2xsNR9S ZW5NxTwCSYse6R/CNZlCI7JFNYXhufUPZXq7CMbNzPIYxY3ekNpTOlFslazSPpwf y5fQHhyjSgTbDOocmnBijWQ0h2dbZfTP+qPeS15xfi3yicFLdmj2+3cchYJzdvCt QCUIbSIvjgYUoQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:54:56 2026 by rpki-client