This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft File: NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft (raw, json) Hash identifier: /jC6qzsq+9eFzwNU1SaG0vOKbvh2flN/QTEn1PGKdB8= Subject key identifier: EE:35:39:40:9A:24:C1:1E:30:50:94:EA:47:F7:CD:D1:16:59:86:84 Authority key identifier: 35:F4:9B:5D:50:50:00:B9:09:93:2C:6B:4F:44:3E:7E:F8:1D:78:0D Certificate issuer: /CN=35f49b5d505000b909932c6b4f443e7ef81d780d Certificate serial: 019C438FDFEC79ABCC3E82AA11F241246143 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NfSbXVBQALkJkyxrT0Q-fvgdeA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft Manifest number: 180B Signing time: Mon 09 Feb 2026 18:00:28 +0000 Manifest this update: Mon 09 Feb 2026 18:00:28 +0000 Manifest next update: Tue 10 Feb 2026 18:00:28 +0000 Files and hashes: 1: NfSbXVBQALkJkyxrT0Q-fvgdeA0.crl (hash: E/19rr7vtEL5CDF+vyvAQ41h/rhgnAXJQdcPl5zEPKc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.crl rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft rsync://rpki.ripe.net/repository/DEFAULT/NfSbXVBQALkJkyxrT0Q-fvgdeA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:df:ec:79:ab:cc:3e:82:aa:11:f2:41:24:61:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35f49b5d505000b909932c6b4f443e7ef81d780d Validity Not Before: Feb 9 18:00:28 2026 GMT Not After : Feb 10 18:00:28 2026 GMT Subject: CN=ee3539409a24c11e305094ea47f7cdd116598684 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:dd:a1:05:b3:b5:26:f3:07:3e:3a:15:57:e2: e2:d3:0a:7e:5e:e3:dd:a8:9e:dc:c8:cd:d3:33:8d: 63:df:7e:d2:af:f4:c8:16:cd:e2:36:a6:18:71:2e: 08:18:65:e3:52:e9:ec:19:c2:35:1b:17:8a:c0:8d: ec:b4:c9:1c:16:0a:d6:84:0f:e3:ab:50:0a:3a:a8: c9:75:5d:43:78:cc:db:70:e2:bf:28:6f:0e:cc:72: 81:93:a2:f6:d3:5f:e0:18:47:f2:15:59:f9:3a:a6: e6:02:27:fc:58:f9:25:30:fd:e2:07:b3:df:5f:1c: fa:b0:e4:68:0a:3d:31:33:90:1c:f8:fa:37:6b:ee: 99:fe:bc:1e:fd:aa:06:33:8d:f7:56:af:ea:47:51: de:c7:37:70:26:89:e5:a4:1b:2b:91:a4:bd:c1:94: d6:94:3a:c9:34:9b:7d:44:24:4b:fd:f7:09:dc:ab: 8e:ee:2f:3f:e2:7b:85:1c:0e:ed:ce:1c:18:28:f3: 80:5f:0d:ba:50:c4:54:b5:72:a0:b9:5e:94:c8:99: f5:e0:90:a8:d4:aa:a6:69:30:14:b4:2c:c9:6f:c4: 97:e1:82:ae:10:4c:5e:32:d5:1b:03:70:04:62:21: 0a:f2:6e:34:97:8d:c1:d7:41:37:a6:ce:3b:dc:ae: aa:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:35:39:40:9A:24:C1:1E:30:50:94:EA:47:F7:CD:D1:16:59:86:84 X509v3 Authority Key Identifier: keyid:35:F4:9B:5D:50:50:00:B9:09:93:2C:6B:4F:44:3E:7E:F8:1D:78:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NfSbXVBQALkJkyxrT0Q-fvgdeA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/b39217-25d3-401d-a1d1-02b3de834bf4/1/NfSbXVBQALkJkyxrT0Q-fvgdeA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:d9:e0:c4:d2:ca:9d:56:cf:98:e5:b2:d4:3a:bf:43:3b:95: e4:8a:36:98:3f:f2:a6:c6:39:78:5f:c4:c3:b9:9a:63:ea:fa: 4a:20:ee:db:44:93:3b:8e:b9:1c:92:4f:d5:13:f2:e8:23:2b: bc:30:5b:cf:17:8d:34:fb:76:88:de:91:4b:f7:9e:4e:5c:04: 40:e9:9d:ad:1e:85:7f:2c:15:82:0d:44:b4:cc:be:f5:f6:4a: f2:17:d6:33:6d:67:bb:4a:a9:4e:e0:5c:5d:08:c6:ad:29:ac: b8:0c:af:b7:8d:3f:a5:a6:45:a6:eb:5a:68:d9:11:ac:e4:f0: 34:4a:5e:07:28:c8:02:88:7a:0a:3b:ae:5f:ab:51:82:cb:8e: ab:5d:ce:ed:d0:23:cc:74:66:29:a0:b0:b8:9a:8d:39:bf:e4: 51:2d:e6:bd:3b:fd:4a:99:ea:de:7d:be:83:9e:1c:7a:e5:32: a5:d8:0d:7e:83:b9:b2:be:3d:17:3b:17:92:a3:9d:a6:02:bb: b3:37:8b:af:ea:11:3a:ce:ac:bf:c4:df:e7:92:eb:ea:9e:7e: 0d:d4:ff:88:56:c8:0d:a1:de:6e:72:61:a6:7d:17:dd:45:58: c6:2b:89:70:92:64:4e:51:bb:8e:85:c4:e8:67:d2:46:b9:ba: b5:09:0a:c3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj9/seavMPoKqEfJBJGFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1ZjQ5YjVkNTA1MDAwYjkwOTkzMmM2YjRmNDQzZTdlZjgx ZDc4MGQwHhcNMjYwMjA5MTgwMDI4WhcNMjYwMjEwMTgwMDI4WjAzMTEwLwYDVQQD EyhlZTM1Mzk0MDlhMjRjMTFlMzA1MDk0ZWE0N2Y3Y2RkMTE2NTk4Njg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArN2hBbO1JvMHPjoVV+Li0wp+XuPd qJ7cyM3TM41j337Sr/TIFs3iNqYYcS4IGGXjUunsGcI1GxeKwI3stMkcFgrWhA/j q1AKOqjJdV1DeMzbcOK/KG8OzHKBk6L201/gGEfyFVn5OqbmAif8WPklMP3iB7Pf Xxz6sORoCj0xM5Ac+Po3a+6Z/rwe/aoGM433Vq/qR1HexzdwJonlpBsrkaS9wZTW lDrJNJt9RCRL/fcJ3KuO7i8/4nuFHA7tzhwYKPOAXw26UMRUtXKguV6UyJn14JCo 1KqmaTAUtCzJb8SX4YKuEExeMtUbA3AEYiEK8m40l43B10E3ps473K6qDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO41OUCaJMEeMFCU6kf3zdEWWYaEMB8GA1UdIwQY MBaAFDX0m11QUAC5CZMsa09EPn74HXgNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmZTYlhWQlFBTGtKa3l4clQwUS1mdmdkZUEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lMy9iMzkyMTctMjVkMy00MDFkLWExZDEt MDJiM2RlODM0YmY0LzEvTmZTYlhWQlFBTGtKa3l4clQwUS1mdmdkZUEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lMy9iMzkyMTctMjVkMy00MDFkLWExZDEtMDJiM2RlODM0YmY0 LzEvTmZTYlhWQlFBTGtKa3l4clQwUS1mdmdkZUEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfdngxNLK nVbPmOWy1Dq/QzuV5Io2mD/ypsY5eF/Ew7maY+r6SiDu20STO465HJJP1RPy6CMr vDBbzxeNNPt2iN6RS/eeTlwEQOmdrR6FfywVgg1EtMy+9fZK8hfWM21nu0qpTuBc XQjGrSmsuAyvt40/paZFputaaNkRrOTwNEpeByjIAoh6CjuuX6tRgsuOq13O7dAj zHRmKaCwuJqNOb/kUS3mvTv9Spnq3n2+g54ceuUypdgNfoO5sr49FzsXkqOdpgK7 szeLr+oROs6sv8Tf55Lr6p5+DdT/iFbIDaHebnJhpn0X3UVYxiuJcJJkTlG7joXE 6GfSRrm6tQkKww== -----END CERTIFICATE-----Generated at Mon Feb 9 19:59:25 2026 by rpki-client