This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/115cd0-08dd-47ac-9848-cddcd1835516/1/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.mft File: Nfx0tXmMcFswvQ6vqY_9PVvUIrA.mft (raw, json) Hash identifier: y0OL8CSQQ2017jKxeTYzQv8X0xiIwwse6nCiF6SA59o= Subject key identifier: 2B:15:99:F6:DA:87:F8:DE:89:B3:8A:70:17:AA:20:87:F8:1C:79:53 Authority key identifier: 35:FC:74:B5:79:8C:70:5B:30:BD:0E:AF:A9:8F:FD:3D:5B:D4:22:B0 Certificate issuer: /CN=35fc74b5798c705b30bd0eafa98ffd3d5bd422b0 Certificate serial: 019C438FF534DA97E54007E8C7D87F18DC3B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/115cd0-08dd-47ac-9848-cddcd1835516/1/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.mft Manifest number: 05DB Signing time: Mon 09 Feb 2026 18:00:33 +0000 Manifest this update: Mon 09 Feb 2026 18:00:33 +0000 Manifest next update: Tue 10 Feb 2026 18:00:33 +0000 Files and hashes: 1: Nfx0tXmMcFswvQ6vqY_9PVvUIrA.crl (hash: hrNvXUSBMyEhEHhYHyfIIrZC0/Nx3yBSG/pBYdJSAuQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/115cd0-08dd-47ac-9848-cddcd1835516/1/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/115cd0-08dd-47ac-9848-cddcd1835516/1/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.mft rsync://rpki.ripe.net/repository/DEFAULT/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 18:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:8f:f5:34:da:97:e5:40:07:e8:c7:d8:7f:18:dc:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35fc74b5798c705b30bd0eafa98ffd3d5bd422b0 Validity Not Before: Feb 9 18:00:33 2026 GMT Not After : Feb 10 18:00:33 2026 GMT Subject: CN=2b1599f6da87f8de89b38a7017aa2087f81c7953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:e9:01:93:ed:11:9e:cd:42:6d:5a:6d:cb:50: df:14:96:c6:06:c2:f9:33:be:46:43:8b:9b:2a:8e: 3f:71:ca:2f:02:1f:af:71:52:ca:75:a6:26:e1:25: 94:8a:5c:ca:4c:7f:22:02:af:58:e2:ec:d4:6d:34: 55:b8:3e:09:c4:34:c2:69:88:ea:53:90:aa:c7:fa: 4b:3c:c4:91:c3:de:c6:49:18:dd:de:cc:6b:d0:21: 57:b7:75:43:d7:f2:1a:e6:99:07:a7:7a:43:19:87: a4:47:6a:ce:7c:b0:d5:8c:f8:45:ec:15:96:ea:97: 0f:65:ac:92:6b:b2:41:ea:a0:69:60:2a:cb:67:eb: 16:34:2e:ab:b3:bd:4d:3d:cf:c8:76:82:eb:4b:8a: 22:81:ce:40:86:62:95:37:b8:c3:89:da:40:e2:69: 2f:23:a8:05:27:9d:51:65:e5:d7:a4:23:a9:9f:00: c2:4b:e2:2f:f5:29:b9:e3:8b:df:fe:47:a0:9c:bf: c4:bb:46:b4:54:45:bf:a4:a0:d9:6f:5d:ef:18:3e: aa:6c:6a:cd:84:1d:92:c5:fa:bd:dd:58:ef:04:d7: 35:cd:ce:e0:c0:3c:30:99:d6:5c:3d:87:18:67:05: 8c:1f:4e:9f:97:cb:55:52:75:b1:10:51:5a:36:b3: 2e:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:15:99:F6:DA:87:F8:DE:89:B3:8A:70:17:AA:20:87:F8:1C:79:53 X509v3 Authority Key Identifier: keyid:35:FC:74:B5:79:8C:70:5B:30:BD:0E:AF:A9:8F:FD:3D:5B:D4:22:B0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/115cd0-08dd-47ac-9848-cddcd1835516/1/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/115cd0-08dd-47ac-9848-cddcd1835516/1/Nfx0tXmMcFswvQ6vqY_9PVvUIrA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:a1:4f:30:61:18:bc:37:7f:4d:16:c5:c6:ea:67:ea:90:bd: 01:03:d0:e0:ee:83:86:99:27:7f:60:11:8d:78:cb:8a:0f:ee: e8:f2:b7:e1:92:68:fc:d4:8c:cb:44:74:24:da:c1:cc:18:90: e9:fa:33:86:8e:22:0c:bf:0b:c5:1d:72:db:7d:71:9b:fe:31: b6:2e:f5:d8:01:09:c4:9c:1a:c2:b6:31:2e:a6:7b:15:36:06: 1d:0e:b1:95:8c:9a:2d:08:44:09:b3:bb:28:6a:6a:29:cc:79: 41:99:b1:da:10:60:a3:df:5f:e3:c5:39:54:5e:e5:70:93:4d: be:a2:89:13:81:80:1f:fb:bd:df:d0:cd:9a:ed:89:00:a0:23: ea:cd:4f:37:6a:88:34:a4:56:eb:6a:05:dc:f5:71:76:32:2d: 62:91:25:ca:2d:4f:39:71:be:6b:7c:19:b1:d9:f2:52:f0:28: c6:5d:09:af:18:11:51:11:d2:a9:9e:b4:dc:fa:0f:4d:d1:fe: 45:eb:36:f0:7e:bd:a9:e1:18:5a:08:2e:bc:36:41:e4:4d:6c: 3c:6a:78:13:07:8f:b6:ea:f2:aa:49:76:2a:dd:60:03:17:69: 98:9f:dd:86:b6:1a:5b:39:b5:8a:3e:01:61:da:70:72:dd:c0: 8f:ce:dd:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDj/U02pflQAfox9h/GNw7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1ZmM3NGI1Nzk4YzcwNWIzMGJkMGVhZmE5OGZmZDNkNWJk NDIyYjAwHhcNMjYwMjA5MTgwMDMzWhcNMjYwMjEwMTgwMDMzWjAzMTEwLwYDVQQD EygyYjE1OTlmNmRhODdmOGRlODliMzhhNzAxN2FhMjA4N2Y4MWM3OTUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjukBk+0Rns1CbVpty1DfFJbGBsL5 M75GQ4ubKo4/ccovAh+vcVLKdaYm4SWUilzKTH8iAq9Y4uzUbTRVuD4JxDTCaYjq U5Cqx/pLPMSRw97GSRjd3sxr0CFXt3VD1/Ia5pkHp3pDGYekR2rOfLDVjPhF7BWW 6pcPZaySa7JB6qBpYCrLZ+sWNC6rs71NPc/IdoLrS4oigc5AhmKVN7jDidpA4mkv I6gFJ51RZeXXpCOpnwDCS+Iv9Sm544vf/kegnL/Eu0a0VEW/pKDZb13vGD6qbGrN hB2Sxfq93VjvBNc1zc7gwDwwmdZcPYcYZwWMH06fl8tVUnWxEFFaNrMuQwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCsVmfbah/jeibOKcBeqIIf4HHlTMB8GA1UdIwQY MBaAFDX8dLV5jHBbML0Or6mP/T1b1CKwMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmZ4MHRYbU1jRnN3dlE2dnFZXzlQVnZVSXJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi8xMTVjZDAtMDhkZC00N2FjLTk4NDgt Y2RkY2QxODM1NTE2LzEvTmZ4MHRYbU1jRnN3dlE2dnFZXzlQVnZVSXJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi8xMTVjZDAtMDhkZC00N2FjLTk4NDgtY2RkY2QxODM1NTE2 LzEvTmZ4MHRYbU1jRnN3dlE2dnFZXzlQVnZVSXJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAc6FPMGEY vDd/TRbFxupn6pC9AQPQ4O6Dhpknf2ARjXjLig/u6PK34ZJo/NSMy0R0JNrBzBiQ 6fozho4iDL8LxR1y231xm/4xti712AEJxJwawrYxLqZ7FTYGHQ6xlYyaLQhECbO7 KGpqKcx5QZmx2hBgo99f48U5VF7lcJNNvqKJE4GAH/u939DNmu2JAKAj6s1PN2qI NKRW62oF3PVxdjItYpElyi1POXG+a3wZsdnyUvAoxl0JrxgRURHSqZ603PoPTdH+ Res28H69qeEYWgguvDZB5E1sPGp4EwePturyqkl2Kt1gAxdpmJ/dhrYaWzm1ij4B Ydpwct3Aj87dbA== -----END CERTIFICATE-----Generated at Tue Feb 10 04:19:46 2026 by rpki-client