This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft File: Nir0h5VMm5am51wljQQ3o4RJupA.mft (raw, json) Hash identifier: 0BiOg52RAlirVPypWn12ieqiv4xzFwsWVSNp+NVngyg= Subject key identifier: 35:BB:E5:8B:73:14:5B:3D:9B:D0:ED:D6:81:73:06:1F:FB:32:03:3F Authority key identifier: 36:2A:F4:87:95:4C:9B:96:A6:E7:5C:25:8D:04:37:A3:84:49:BA:90 Certificate issuer: /CN=362af487954c9b96a6e75c258d0437a38449ba90 Certificate serial: 019C41A1AA7E36299BCDDDF2BF26B1E31D35 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nir0h5VMm5am51wljQQ3o4RJupA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft Manifest number: 16BB Signing time: Mon 09 Feb 2026 09:00:39 +0000 Manifest this update: Mon 09 Feb 2026 09:00:39 +0000 Manifest next update: Tue 10 Feb 2026 09:00:39 +0000 Files and hashes: 1: Nir0h5VMm5am51wljQQ3o4RJupA.crl (hash: xfYwa9iJBmCEhl5sPtHjjAi28cJ88CgZZcNQ79JXnsM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.crl rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft rsync://rpki.ripe.net/repository/DEFAULT/Nir0h5VMm5am51wljQQ3o4RJupA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:aa:7e:36:29:9b:cd:dd:f2:bf:26:b1:e3:1d:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=362af487954c9b96a6e75c258d0437a38449ba90 Validity Not Before: Feb 9 09:00:39 2026 GMT Not After : Feb 10 09:00:39 2026 GMT Subject: CN=35bbe58b73145b3d9bd0edd68173061ffb32033f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:51:e8:21:1a:29:63:ec:42:6c:20:4f:b5:9b: 5c:f5:7e:43:c2:0c:82:46:34:d0:eb:80:36:22:34: 33:43:70:c5:b9:95:12:57:09:b2:2c:10:27:a6:bc: 14:e4:92:ed:5f:5a:e6:d8:2e:88:23:16:ca:a5:1d: f4:95:95:03:8a:83:2b:a3:1f:8e:bd:2f:bd:1a:ee: d0:e1:0b:2b:d8:6f:20:ab:13:3a:d3:03:08:93:39: 80:52:68:5e:67:d7:ff:1c:38:b1:91:b0:76:29:2b: a1:09:66:f7:92:45:19:79:be:7e:e4:06:f5:b4:46: 01:ac:8a:37:98:a0:8f:58:5d:28:bf:71:4d:d4:c2: fd:2d:55:57:ac:b3:c2:37:54:8b:30:e0:31:af:d5: f4:27:f2:10:a5:d1:c3:3a:8d:50:07:3f:f8:d2:bb: 92:74:7a:c1:f0:e0:b0:b8:ad:de:f0:60:80:3b:f9: 19:41:9e:5e:27:b4:cc:6f:06:4c:54:01:e0:53:ec: bb:c5:7d:66:79:ed:7e:68:e4:2c:74:8a:ba:cb:cf: 98:f9:c4:d6:5e:ac:4b:7a:a8:af:71:e4:55:51:25: ac:a3:85:1c:c3:b1:96:cc:f1:19:df:f9:b3:5b:43: fd:ff:29:48:5b:34:6b:5b:95:4d:f1:63:73:6a:b9: 94:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:BB:E5:8B:73:14:5B:3D:9B:D0:ED:D6:81:73:06:1F:FB:32:03:3F X509v3 Authority Key Identifier: keyid:36:2A:F4:87:95:4C:9B:96:A6:E7:5C:25:8D:04:37:A3:84:49:BA:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nir0h5VMm5am51wljQQ3o4RJupA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/d9/ba20ed-e70f-4733-9545-5113b7429f86/1/Nir0h5VMm5am51wljQQ3o4RJupA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:e6:de:a9:0b:28:1d:bd:3b:58:c6:01:a3:b1:b3:3e:dc:1a: a6:86:31:ff:c1:10:ec:a8:74:54:04:10:03:cb:0f:b2:85:f4: e0:f3:84:85:fa:5d:72:7a:13:5e:af:3d:12:89:27:d5:0d:c9: 78:e4:a9:8b:68:4c:61:cf:c0:13:67:1f:fa:14:49:9e:35:b5: 90:ca:15:56:fc:b3:6d:40:72:c5:70:30:a4:f1:5e:8c:d9:02: 29:83:b4:7f:3e:1b:6a:d7:36:36:b5:2e:c5:ff:1b:f3:18:10: 69:1a:0f:15:9c:ab:e4:df:41:dc:20:68:d1:11:a7:3e:6e:61: f3:53:f5:d2:38:7f:32:83:53:32:80:e9:0d:dc:74:e3:dc:c7: 1c:66:ca:9f:55:80:ba:43:8f:51:6e:bf:17:10:23:45:9e:eb: 74:ca:19:c7:7f:b0:26:ab:f6:cc:60:33:87:18:b8:89:3f:3e: 04:49:be:d7:2a:ce:08:81:87:aa:57:e4:00:f2:9d:b2:3f:f5: df:68:2e:98:3f:cc:0c:07:b3:99:90:95:2b:08:4d:db:5b:8e: 7c:22:2c:69:64:5e:12:d9:d5:d6:32:28:f7:91:fa:8b:21:d4: 93:54:ba:24:44:b9:76:bf:57:26:4b:2c:4e:f2:e4:2c:96:85: 36:24:64:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoap+Nimbzd3yvyax4x01MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MmFmNDg3OTU0YzliOTZhNmU3NWMyNThkMDQzN2EzODQ0 OWJhOTAwHhcNMjYwMjA5MDkwMDM5WhcNMjYwMjEwMDkwMDM5WjAzMTEwLwYDVQQD EygzNWJiZTU4YjczMTQ1YjNkOWJkMGVkZDY4MTczMDYxZmZiMzIwMzNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmlHoIRopY+xCbCBPtZtc9X5DwgyC RjTQ64A2IjQzQ3DFuZUSVwmyLBAnprwU5JLtX1rm2C6IIxbKpR30lZUDioMrox+O vS+9Gu7Q4Qsr2G8gqxM60wMIkzmAUmheZ9f/HDixkbB2KSuhCWb3kkUZeb5+5Ab1 tEYBrIo3mKCPWF0ov3FN1ML9LVVXrLPCN1SLMOAxr9X0J/IQpdHDOo1QBz/40ruS dHrB8OCwuK3e8GCAO/kZQZ5eJ7TMbwZMVAHgU+y7xX1mee1+aOQsdIq6y8+Y+cTW XqxLeqivceRVUSWso4Ucw7GWzPEZ3/mzW0P9/ylIWzRrW5VN8WNzarmUqQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDW75YtzFFs9m9Dt1oFzBh/7MgM/MB8GA1UdIwQY MBaAFDYq9IeVTJuWpudcJY0EN6OESbqQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmlyMGg1Vk1tNWFtNTF3bGpRUTNvNFJKdXBBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kOS9iYTIwZWQtZTcwZi00NzMzLTk1NDUt NTExM2I3NDI5Zjg2LzEvTmlyMGg1Vk1tNWFtNTF3bGpRUTNvNFJKdXBBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kOS9iYTIwZWQtZTcwZi00NzMzLTk1NDUtNTExM2I3NDI5Zjg2 LzEvTmlyMGg1Vk1tNWFtNTF3bGpRUTNvNFJKdXBBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASubeqQso Hb07WMYBo7GzPtwapoYx/8EQ7Kh0VAQQA8sPsoX04POEhfpdcnoTXq89Eokn1Q3J eOSpi2hMYc/AE2cf+hRJnjW1kMoVVvyzbUByxXAwpPFejNkCKYO0fz4batc2NrUu xf8b8xgQaRoPFZyr5N9B3CBo0RGnPm5h81P10jh/MoNTMoDpDdx049zHHGbKn1WA ukOPUW6/FxAjRZ7rdMoZx3+wJqv2zGAzhxi4iT8+BEm+1yrOCIGHqlfkAPKdsj/1 32gumD/MDAezmZCVKwhN21uOfCIsaWReEtnV1jIo95H6iyHUk1S6JES5dr9XJkss TvLkLJaFNiRkbw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:02 2026 by rpki-client