This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft File: nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft (raw, json) Hash identifier: EhjWWa1TYT71hGDjOeEziRl+Ta7926E3M0CepLAXvpA= Subject key identifier: 1E:A9:CE:6B:0E:F2:79:A4:7A:6D:CD:6A:28:51:87:1D:45:E5:5D:85 Authority key identifier: 9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E Certificate issuer: /CN=9d3627d9766514578942420050bf83a8b129166e Certificate serial: 019C427D2CC55B64DA49C919250A8ED49D99 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft Manifest number: 14A0 Signing time: Mon 09 Feb 2026 13:00:25 +0000 Manifest this update: Mon 09 Feb 2026 13:00:25 +0000 Manifest next update: Tue 10 Feb 2026 13:00:25 +0000 Files and hashes: 1: nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl (hash: 4bqT5CFY4JEHL1tSQSxuiZdPoBMSY+yNHRhuN3by5oo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:2c:c5:5b:64:da:49:c9:19:25:0a:8e:d4:9d:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d3627d9766514578942420050bf83a8b129166e Validity Not Before: Feb 9 13:00:25 2026 GMT Not After : Feb 10 13:00:25 2026 GMT Subject: CN=1ea9ce6b0ef279a47a6dcd6a2851871d45e55d85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:21:1e:d6:f6:f6:2c:ce:0a:12:39:d8:72:93: 66:54:43:06:1e:81:b5:c3:d0:dd:c1:e9:65:20:a4: 0f:64:cb:78:d4:f3:8e:20:47:f5:46:c1:5d:cf:8d: 79:15:ef:0c:11:59:9b:06:9c:6a:b2:61:93:52:04: 56:be:5a:4f:b0:ff:70:74:d9:6c:93:37:e2:20:e6: 25:70:00:1d:a1:a0:3e:32:0e:d7:02:84:52:19:ef: f9:f8:ae:e4:13:e5:ab:1d:f6:6c:6c:ea:1a:05:dc: ae:65:36:0d:ee:54:46:99:5e:21:e3:b2:09:db:d7: e7:11:12:a2:f3:87:d4:4e:1b:6f:ac:cb:a7:d9:5a: 0a:b6:d5:c4:cb:49:ab:9e:e4:72:d7:8d:82:50:f2: 77:45:e1:04:6e:a6:52:a8:09:71:5a:57:36:c7:de: 0e:a8:30:0f:12:9c:39:3b:67:e7:6f:2d:a8:0f:55: 23:58:61:f6:a1:b8:0a:8f:ac:0f:76:10:2d:5a:79: a5:9b:8e:26:08:cb:74:67:70:ae:2d:a3:d8:f0:76: 5c:c2:4c:02:07:55:fa:86:fc:a8:a1:27:9b:58:ed: e6:2f:1e:4d:64:20:45:7b:11:96:64:ae:1b:fc:21: 38:58:0f:ac:c3:22:3c:86:88:90:9f:f8:ba:55:49: 92:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:A9:CE:6B:0E:F2:79:A4:7A:6D:CD:6A:28:51:87:1D:45:E5:5D:85 X509v3 Authority Key Identifier: keyid:9D:36:27:D9:76:65:14:57:89:42:42:00:50:BF:83:A8:B1:29:16:6E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nTYn2XZlFFeJQkIAUL-DqLEpFm4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/df/38b8ba-df6c-486d-b6cd-1d5dd2258c4e/1/nTYn2XZlFFeJQkIAUL-DqLEpFm4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:26:b5:0d:b8:69:ce:a1:97:8e:48:88:e2:fe:a1:38:73:47: df:f3:70:9b:bd:8d:9e:a1:ed:5e:30:5b:7b:9e:90:a1:86:4c: 61:44:d5:33:4e:f8:a2:63:16:ea:6a:33:7b:dd:a3:05:22:e4: 75:5f:63:0c:f7:34:ec:e7:4a:9c:10:84:ff:f2:8e:df:69:5b: 4b:bf:9b:7f:11:3d:39:bc:b8:2d:ad:c1:48:bb:c0:39:f4:ab: 9b:97:2b:fa:b8:1d:22:9a:b5:26:40:c4:67:a0:66:c1:09:df: 77:ef:3b:f3:31:f7:78:16:63:8a:3f:25:ff:67:3e:f0:e6:65: e5:c9:de:b3:ff:0f:93:8b:75:a3:07:b3:26:43:a7:82:c7:a4: 51:2f:9e:41:88:4d:fc:00:51:10:08:5c:74:3d:74:ee:29:3a: a9:a4:a9:f0:e9:7d:b3:e6:55:d7:9f:f5:87:b9:14:9b:30:19: 9b:95:a6:0f:c0:cd:92:5a:3e:86:51:b1:bc:a2:6b:72:42:8f: 77:48:fc:7e:59:32:b5:97:0e:dd:ec:7f:ab:c2:30:6d:20:7d: 45:32:fe:98:68:27:33:39:65:45:de:68:64:0f:20:f6:27:c9: 12:36:ed:36:2f:ef:4b:53:f6:8e:43:fb:0a:1f:3e:7f:09:d8: cc:13:86:00 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfSzFW2TaSckZJQqO1J2ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMzYyN2Q5NzY2NTE0NTc4OTQyNDIwMDUwYmY4M2E4YjEy OTE2NmUwHhcNMjYwMjA5MTMwMDI1WhcNMjYwMjEwMTMwMDI1WjAzMTEwLwYDVQQD EygxZWE5Y2U2YjBlZjI3OWE0N2E2ZGNkNmEyODUxODcxZDQ1ZTU1ZDg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkiEe1vb2LM4KEjnYcpNmVEMGHoG1 w9DdwellIKQPZMt41POOIEf1RsFdz415Fe8MEVmbBpxqsmGTUgRWvlpPsP9wdNls kzfiIOYlcAAdoaA+Mg7XAoRSGe/5+K7kE+WrHfZsbOoaBdyuZTYN7lRGmV4h47IJ 29fnERKi84fUThtvrMun2VoKttXEy0mrnuRy142CUPJ3ReEEbqZSqAlxWlc2x94O qDAPEpw5O2fnby2oD1UjWGH2obgKj6wPdhAtWnmlm44mCMt0Z3CuLaPY8HZcwkwC B1X6hvyooSebWO3mLx5NZCBFexGWZK4b/CE4WA+swyI8hoiQn/i6VUmSAQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB6pzmsO8nmkem3NaihRhx1F5V2FMB8GA1UdIwQY MBaAFJ02J9l2ZRRXiUJCAFC/g6ixKRZuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblRZbjJYWmxGRmVKUWtJQVVMLURxTEVwRm00LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZi8zOGI4YmEtZGY2Yy00ODZkLWI2Y2Qt MWQ1ZGQyMjU4YzRlLzEvblRZbjJYWmxGRmVKUWtJQVVMLURxTEVwRm00Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kZi8zOGI4YmEtZGY2Yy00ODZkLWI2Y2QtMWQ1ZGQyMjU4YzRl LzEvblRZbjJYWmxGRmVKUWtJQVVMLURxTEVwRm00LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQSa1Dbhp zqGXjkiI4v6hOHNH3/Nwm72NnqHtXjBbe56QoYZMYUTVM074omMW6moze92jBSLk dV9jDPc07OdKnBCE//KO32lbS7+bfxE9Oby4La3BSLvAOfSrm5cr+rgdIpq1JkDE Z6BmwQnfd+878zH3eBZjij8l/2c+8OZl5cnes/8Pk4t1owezJkOngsekUS+eQYhN /ABREAhcdD107ik6qaSp8Ol9s+ZV15/1h7kUmzAZm5WmD8DNklo+hlGxvKJrckKP d0j8flkytZcO3ex/q8IwbSB9RTL+mGgnMzllRd5oZA8g9ifJEjbtNi/vS1P2jkP7 Ch8+fwnYzBOGAA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:22 2026 by rpki-client