This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft File: NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft (raw, json) Hash identifier: Iq/f52bzU93aRIOaImhLduApqaqt8BOBp94EiaEL3PA= Subject key identifier: BC:64:65:78:BA:FA:C4:2F:7F:A1:F9:D9:6F:22:67:6C:D5:96:88:7B Authority key identifier: 35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05 Certificate issuer: /CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05 Certificate serial: 019C446BE209025F6EED9905FAE40D0F225F Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft Manifest number: 0BBD Signing time: Mon 09 Feb 2026 22:00:46 +0000 Manifest this update: Mon 09 Feb 2026 22:00:46 +0000 Manifest next update: Tue 10 Feb 2026 22:00:46 +0000 Files and hashes: 1: NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl (hash: anytuAdq5F+VhL1LnDFJ5CH5jyCwYCcHIVmzWu4xWR4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:e2:09:02:5f:6e:ed:99:05:fa:e4:0d:0f:22:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35a555e146be4ae5f7ccfe5a3c12d3f2a2543b05 Validity Not Before: Feb 9 22:00:46 2026 GMT Not After : Feb 10 22:00:46 2026 GMT Subject: CN=bc646578bafac42f7fa1f9d96f22676cd596887b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d9:8b:9c:38:16:68:08:ed:6a:af:29:15:f4: 8f:65:b5:72:92:c2:ed:b5:69:ed:a7:3f:ec:80:4f: 6f:75:71:e0:df:f6:cc:bd:c7:28:f3:14:a6:9f:51: 6d:fb:55:a3:61:9a:b8:a1:78:40:87:8a:eb:d3:29: 6c:70:e5:86:72:ad:26:68:ba:a3:28:87:e2:0f:5b: e0:ee:36:a2:cd:c1:86:b0:02:79:15:b5:e7:ae:da: ec:1d:97:cd:26:21:e3:b0:23:ae:54:91:42:47:23: cc:e5:82:4e:82:c1:f8:14:d2:ca:20:34:f1:6a:b2: b6:7b:f4:1f:e5:90:11:62:02:04:31:57:05:2e:86: 5e:83:a0:ff:65:02:f9:9f:99:5e:70:c3:27:b3:3d: 5d:cc:86:68:33:fc:22:56:e3:9f:5e:43:bf:50:3d: e0:94:0c:45:6e:14:26:0a:92:d7:e0:de:dd:df:00: f4:ba:b3:df:d8:19:e8:6c:9a:7a:37:43:80:22:93: d7:71:87:e4:23:d9:68:9b:44:c9:e9:a9:4b:b3:3b: 29:d5:c9:09:d3:82:de:78:6b:95:77:90:75:54:07: 22:8a:e2:7f:c6:a5:fd:36:36:5d:42:85:4f:f1:2d: 16:c5:c0:7e:41:9a:7c:00:b8:e3:70:6d:6f:a0:b7: 68:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:64:65:78:BA:FA:C4:2F:7F:A1:F9:D9:6F:22:67:6C:D5:96:88:7B X509v3 Authority Key Identifier: keyid:35:A5:55:E1:46:BE:4A:E5:F7:CC:FE:5A:3C:12:D3:F2:A2:54:3B:05 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/549744-bdde-42e8-87a8-051cd30cbcf1/1/NaVV4Ua-SuX3zP5aPBLT8qJUOwU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:1b:b1:ac:fe:72:18:f0:02:13:3c:38:84:99:a3:c5:52:b1: 30:c3:d1:d4:2e:33:2a:f3:5d:69:8b:50:54:dc:bb:79:f0:71: e0:5a:ab:fb:ff:6b:e7:0d:3a:27:55:6a:d7:4c:8f:c6:7e:8a: ea:b8:64:5d:25:23:ec:c3:58:f8:75:b2:67:94:ed:3e:bb:48: b0:d8:db:cc:0e:dd:c3:a9:01:81:bf:71:1e:7d:13:2b:f8:49: 59:09:55:df:72:08:8f:80:b4:a6:45:d6:4f:6d:05:cf:b8:19: fa:a1:be:64:bb:55:14:3b:30:56:67:71:64:28:07:27:d6:0b: 16:c5:09:a3:64:10:e7:fb:bb:2c:fd:72:9f:f0:cc:05:2a:49: 67:50:2c:c5:ce:9e:23:b6:d3:b0:b3:c4:63:1a:bd:31:f4:d7: e4:fc:ef:36:54:ce:d9:1c:c1:81:97:e1:00:71:a9:43:4e:9f: 19:10:72:45:29:9a:23:64:1e:69:6d:2e:d7:d9:73:39:80:d9: ab:b7:ef:bd:76:2e:98:25:7c:6f:39:47:6a:39:e3:37:48:73: b5:d2:d2:84:49:4f:2a:ae:c7:af:95:01:42:a6:76:36:97:9a: ed:55:4e:a8:02:1a:b4:73:b5:39:ed:7a:43:35:6f:c2:21:c8: 87:83:1c:92 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa+IJAl9u7ZkF+uQNDyJfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1YTU1NWUxNDZiZTRhZTVmN2NjZmU1YTNjMTJkM2YyYTI1 NDNiMDUwHhcNMjYwMjA5MjIwMDQ2WhcNMjYwMjEwMjIwMDQ2WjAzMTEwLwYDVQQD EyhiYzY0NjU3OGJhZmFjNDJmN2ZhMWY5ZDk2ZjIyNjc2Y2Q1OTY4ODdiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp9mLnDgWaAjtaq8pFfSPZbVyksLt tWntpz/sgE9vdXHg3/bMvcco8xSmn1Ft+1WjYZq4oXhAh4rr0ylscOWGcq0maLqj KIfiD1vg7jaizcGGsAJ5FbXnrtrsHZfNJiHjsCOuVJFCRyPM5YJOgsH4FNLKIDTx arK2e/Qf5ZARYgIEMVcFLoZeg6D/ZQL5n5lecMMnsz1dzIZoM/wiVuOfXkO/UD3g lAxFbhQmCpLX4N7d3wD0urPf2BnobJp6N0OAIpPXcYfkI9lom0TJ6alLszsp1ckJ 04LeeGuVd5B1VAciiuJ/xqX9NjZdQoVP8S0WxcB+QZp8ALjjcG1voLdoDwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLxkZXi6+sQvf6H52W8iZ2zVloh7MB8GA1UdIwQY MBaAFDWlVeFGvkrl98z+WjwS0/KiVDsFMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmFWVjRVYS1TdVgzelA1YVBCTFQ4cUpVT3dVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC81NDk3NDQtYmRkZS00MmU4LTg3YTgt MDUxY2QzMGNiY2YxLzEvTmFWVjRVYS1TdVgzelA1YVBCTFQ4cUpVT3dVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC81NDk3NDQtYmRkZS00MmU4LTg3YTgtMDUxY2QzMGNiY2Yx LzEvTmFWVjRVYS1TdVgzelA1YVBCTFQ4cUpVT3dVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmRuxrP5y GPACEzw4hJmjxVKxMMPR1C4zKvNdaYtQVNy7efBx4Fqr+/9r5w06J1Vq10yPxn6K 6rhkXSUj7MNY+HWyZ5TtPrtIsNjbzA7dw6kBgb9xHn0TK/hJWQlV33IIj4C0pkXW T20Fz7gZ+qG+ZLtVFDswVmdxZCgHJ9YLFsUJo2QQ5/u7LP1yn/DMBSpJZ1Asxc6e I7bTsLPEYxq9MfTX5PzvNlTO2RzBgZfhAHGpQ06fGRByRSmaI2QeaW0u19lzOYDZ q7fvvXYumCV8bzlHajnjN0hztdLShElPKq7Hr5UBQqZ2Npea7VVOqAIatHO1Oe16 QzVvwiHIh4Mckg== -----END CERTIFICATE-----Generated at Tue Feb 10 01:21:30 2026 by rpki-client