This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft File: nzcg6XD6oOB_UKY4nnrlOvpDnas.mft (raw, json) Hash identifier: TAbkMfDe0BcoRFvuU1R7CuXbnDSy0Zta1jy2lF3i2Yw= Subject key identifier: BD:B2:CB:61:52:10:D9:18:58:D7:79:18:42:2B:51:34:17:9D:D1:5D Authority key identifier: 9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB Certificate issuer: /CN=9f3720e970faa0e07f50a6389e7ae53afa439dab Certificate serial: 019C41D8FCC0D4F1A5DE05F716B9EE5D18A0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft Manifest number: 1815 Signing time: Mon 09 Feb 2026 10:01:05 +0000 Manifest this update: Mon 09 Feb 2026 10:01:05 +0000 Manifest next update: Tue 10 Feb 2026 10:01:05 +0000 Files and hashes: 1: DwjBds5b0bny3-dZb3jOPo6oE6o.roa (hash: Rkq+xz9kCRAZI1zfzUNT6Gu5M/oAmAXmbyM5y+/YH1I=) 2: nzcg6XD6oOB_UKY4nnrlOvpDnas.crl (hash: JGPFguNEJG5dfmFpdTUFbqENlUxXqzSPLWP7pGBCA/k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:fc:c0:d4:f1:a5:de:05:f7:16:b9:ee:5d:18:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f3720e970faa0e07f50a6389e7ae53afa439dab Validity Not Before: Feb 9 10:01:05 2026 GMT Not After : Feb 10 10:01:05 2026 GMT Subject: CN=bdb2cb615210d91858d77918422b5134179dd15d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:dc:af:89:b7:8b:85:cd:10:99:b9:07:a0:90: 94:5a:ed:29:af:ff:e4:ae:26:ea:7a:bd:25:9d:54: 38:97:8e:51:73:c2:5c:46:1b:a8:33:5d:6f:03:53: 87:9f:0b:e0:10:39:7f:32:5c:25:9b:36:6b:97:bb: 87:19:b2:4c:3e:90:67:d1:f1:dd:c8:80:45:cd:ab: 95:a6:cd:71:9b:df:58:12:1f:01:3a:2f:ae:0c:6e: d0:25:09:77:11:f0:78:ea:f6:ef:34:db:28:82:b8: 57:c0:14:4d:3a:57:44:13:64:52:fb:06:2c:e2:eb: 58:64:8c:44:7c:19:f8:2d:ba:c5:8d:1f:8c:39:c6: 98:7f:99:9f:bd:ab:24:fa:b2:27:45:bf:25:88:2b: bf:1c:3d:f2:18:61:e5:8c:28:b2:bb:44:85:f5:a6: 17:70:03:f6:33:09:9b:95:c4:63:f1:33:b2:23:c1: 67:73:ab:e9:ab:f0:8b:8f:a5:e2:3d:b3:ef:6d:6f: d8:70:7d:8d:45:33:2d:c2:53:2e:77:4c:19:b2:4c: f0:e8:ed:a6:09:01:87:9a:25:9f:7b:b9:47:22:49: 49:e4:1d:df:22:83:39:06:61:b5:dc:74:af:0b:15: cf:fd:65:39:d9:b4:b5:4d:3b:95:23:ef:aa:21:ca: d0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B2:CB:61:52:10:D9:18:58:D7:79:18:42:2B:51:34:17:9D:D1:5D X509v3 Authority Key Identifier: keyid:9F:37:20:E9:70:FA:A0:E0:7F:50:A6:38:9E:7A:E5:3A:FA:43:9D:AB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nzcg6XD6oOB_UKY4nnrlOvpDnas.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/bb7c0e-ee68-4bf8-bb34-12e6a0d4318a/1/nzcg6XD6oOB_UKY4nnrlOvpDnas.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:ec:9a:d9:77:c9:7b:94:04:18:5a:03:45:d4:c5:7e:01:f4: 5f:ab:3d:14:cc:39:00:78:1b:b4:ae:66:a3:38:d8:70:0f:a3: db:e0:0e:e1:f5:ba:1c:6c:78:a1:42:fc:82:e7:83:9a:8f:5c: bc:b1:f1:cf:76:01:bf:8a:84:4c:69:dd:91:2d:90:4f:a3:e6: db:4a:ea:e3:4c:fb:84:7f:c7:e7:53:16:85:6f:5f:31:48:ee: 55:e4:a1:b4:0b:63:0d:91:05:74:c0:8b:00:2a:fb:a5:7e:42: fe:4f:50:8c:78:ae:f4:00:84:93:78:7d:e2:a9:01:8b:10:69: 53:c4:e4:d2:74:9a:f4:ea:b6:42:04:6f:54:d9:97:23:f5:3c: a6:b1:45:23:d9:fb:79:5d:18:dd:e7:5b:39:da:8f:bb:4e:ef: 65:7b:35:d9:9d:3d:f4:ee:2c:56:62:d1:98:54:5c:2a:83:03: 67:49:9c:d3:51:96:98:56:67:40:9a:6e:27:80:b1:d8:46:fc: 88:49:d7:15:57:17:a8:90:e0:06:22:dc:1a:d0:5e:8d:5d:76: f7:9d:eb:0d:e1:51:00:89:fa:9d:2e:84:cf:2a:4c:ce:e2:8d: cc:82:ad:a6:96:a4:7b:bb:9d:df:c3:ea:22:6d:00:6e:0b:f4: 86:1e:d8:be -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2PzA1PGl3gX3FrnuXRigMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMzcyMGU5NzBmYWEwZTA3ZjUwYTYzODllN2FlNTNhZmE0 MzlkYWIwHhcNMjYwMjA5MTAwMTA1WhcNMjYwMjEwMTAwMTA1WjAzMTEwLwYDVQQD EyhiZGIyY2I2MTUyMTBkOTE4NThkNzc5MTg0MjJiNTEzNDE3OWRkMTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7NyvibeLhc0QmbkHoJCUWu0pr//k ribqer0lnVQ4l45Rc8JcRhuoM11vA1OHnwvgEDl/MlwlmzZrl7uHGbJMPpBn0fHd yIBFzauVps1xm99YEh8BOi+uDG7QJQl3EfB46vbvNNsogrhXwBRNOldEE2RS+wYs 4utYZIxEfBn4LbrFjR+MOcaYf5mfvask+rInRb8liCu/HD3yGGHljCiyu0SF9aYX cAP2MwmblcRj8TOyI8Fnc6vpq/CLj6XiPbPvbW/YcH2NRTMtwlMud0wZskzw6O2m CQGHmiWfe7lHIklJ5B3fIoM5BmG13HSvCxXP/WU52bS1TTuVI++qIcrQCQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL2yy2FSENkYWNd5GEIrUTQXndFdMB8GA1UdIwQY MBaAFJ83IOlw+qDgf1CmOJ565Tr6Q52rMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kMC9iYjdjMGUtZWU2OC00YmY4LWJiMzQt MTJlNmEwZDQzMThhLzEvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kMC9iYjdjMGUtZWU2OC00YmY4LWJiMzQtMTJlNmEwZDQzMThh LzEvbnpjZzZYRDZvT0JfVUtZNG5ucmxPdnBEbmFzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfeya2XfJ e5QEGFoDRdTFfgH0X6s9FMw5AHgbtK5mozjYcA+j2+AO4fW6HGx4oUL8gueDmo9c vLHxz3YBv4qETGndkS2QT6Pm20rq40z7hH/H51MWhW9fMUjuVeShtAtjDZEFdMCL ACr7pX5C/k9QjHiu9ACEk3h94qkBixBpU8Tk0nSa9Oq2QgRvVNmXI/U8prFFI9n7 eV0Y3edbOdqPu07vZXs12Z099O4sVmLRmFRcKoMDZ0mc01GWmFZnQJpuJ4Cx2Eb8 iEnXFVcXqJDgBiLcGtBejV12953rDeFRAIn6nS6EzypMzuKNzIKtppake7ud38Pq Im0Abgv0hh7Yvg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:57:57 2026 by rpki-client