This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft File: nGCyJ8t1doofV4Vuw1M8loSCYZw.mft (raw, json) Hash identifier: QEBwpcunuyuysq4Wfda9f1RW9bHmA1vT9q5kz8eDyts= Subject key identifier: 91:02:C3:E8:03:B0:EC:FA:95:A2:3D:26:9B:97:9E:2E:14:88:CC:11 Authority key identifier: 9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C Certificate issuer: /CN=9c60b227cb75768a1f57856ec3533c968482619c Certificate serial: 019C43909EB1D04BB340BA539080C3E563A1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft Manifest number: 16C2 Signing time: Mon 09 Feb 2026 18:01:17 +0000 Manifest this update: Mon 09 Feb 2026 18:01:17 +0000 Manifest next update: Tue 10 Feb 2026 18:01:17 +0000 Files and hashes: 1: nGCyJ8t1doofV4Vuw1M8loSCYZw.crl (hash: hHwW/I7c6uxV0+bwsepJNQZCQH57zcOo+sevY1P1YnA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:9e:b1:d0:4b:b3:40:ba:53:90:80:c3:e5:63:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c60b227cb75768a1f57856ec3533c968482619c Validity Not Before: Feb 9 18:01:17 2026 GMT Not After : Feb 10 18:01:17 2026 GMT Subject: CN=9102c3e803b0ecfa95a23d269b979e2e1488cc11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:14:f8:5b:85:0f:dc:a7:fb:c5:ff:64:7e:3c: 46:4f:c0:b7:21:95:8a:58:42:c0:2e:94:68:77:11: 64:f7:23:37:50:d9:c0:e0:6b:aa:87:7c:19:7b:b4: cd:03:df:18:5d:b0:2e:62:4b:72:dd:b8:0d:91:7e: b1:e9:06:1f:cd:b6:14:92:29:b5:05:eb:d7:39:49: ca:c5:da:f3:99:52:5e:54:af:f0:51:cb:7a:73:3d: fe:00:db:ca:f5:1c:d2:4c:e1:f6:65:fd:3a:22:38: 5b:49:4a:1a:14:8d:fd:4f:ee:e2:b4:50:45:1b:4b: bc:d3:60:04:03:23:cc:4b:77:00:cb:41:29:9e:d0: 9d:73:5a:77:69:1d:e1:6b:f4:05:6e:4c:9c:6f:ea: 87:aa:e1:75:31:41:28:1e:eb:82:85:b6:e8:48:8e: 60:1c:cf:f4:83:e6:fe:02:20:c5:46:85:69:d4:a2: 76:c6:a0:e8:7f:a0:36:f8:97:f2:0b:11:73:81:dd: de:78:dc:90:b4:a4:24:71:e5:57:52:2a:08:2c:f8: 8a:40:0a:d5:91:0d:2b:1b:09:00:c4:84:4d:7f:43: ab:f1:04:14:a3:fc:4b:39:2f:14:61:c7:63:bb:20: 87:7e:fa:cf:aa:f0:88:d4:89:07:9a:11:97:d3:31: 1c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:02:C3:E8:03:B0:EC:FA:95:A2:3D:26:9B:97:9E:2E:14:88:CC:11 X509v3 Authority Key Identifier: keyid:9C:60:B2:27:CB:75:76:8A:1F:57:85:6E:C3:53:3C:96:84:82:61:9C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGCyJ8t1doofV4Vuw1M8loSCYZw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/11c99f-4fd5-4522-85c4-8918a28c4f7c/1/nGCyJ8t1doofV4Vuw1M8loSCYZw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:08:82:5f:c7:bb:9f:3a:ad:f2:59:2a:a7:a3:f6:1d:d3:d5: 40:a3:cc:84:d5:ea:98:ec:6f:e1:eb:94:d7:7e:21:3b:41:4d: 15:a7:a4:cf:19:e4:a6:df:99:ba:64:f2:58:97:e9:64:22:56: 6b:01:a5:62:1d:76:ac:9f:f7:34:d4:a6:90:3b:75:c1:7d:cf: ef:54:e1:61:42:53:aa:0b:36:c3:ea:6a:50:17:63:de:0f:f3: 27:f0:20:d7:1c:f8:fa:af:8e:84:7e:e6:c0:64:fe:b5:41:05: 2f:6b:65:65:80:19:75:13:ad:14:ff:56:44:18:bb:9e:64:f5: c9:7c:ed:50:cc:19:63:6b:4c:9a:e8:e3:a9:c1:f0:c5:f7:35: 50:f8:0a:93:e7:8e:84:58:bb:e7:36:d4:4b:d0:49:03:c0:43: 8c:0f:7c:72:31:1d:b3:1e:c2:38:54:5c:d1:25:73:76:4a:6a: 46:1e:1a:47:bd:93:77:86:3c:7c:5c:05:9b:52:ba:0c:e1:07: 5a:c7:96:73:bb:a1:b4:4e:f5:37:1b:db:97:01:e8:75:2f:76: 5e:c9:a3:60:47:1e:8a:17:ee:20:1c:10:72:76:c8:6b:0d:37: b8:d0:b3:ca:58:0d:54:71:f2:a4:d7:ff:85:34:9d:c4:36:51: 4f:24:17:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkJ6x0EuzQLpTkIDD5WOhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNjBiMjI3Y2I3NTc2OGExZjU3ODU2ZWMzNTMzYzk2ODQ4 MjYxOWMwHhcNMjYwMjA5MTgwMTE3WhcNMjYwMjEwMTgwMTE3WjAzMTEwLwYDVQQD Eyg5MTAyYzNlODAzYjBlY2ZhOTVhMjNkMjY5Yjk3OWUyZTE0ODhjYzExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqBT4W4UP3Kf7xf9kfjxGT8C3IZWK WELALpRodxFk9yM3UNnA4Guqh3wZe7TNA98YXbAuYkty3bgNkX6x6QYfzbYUkim1 BevXOUnKxdrzmVJeVK/wUct6cz3+ANvK9RzSTOH2Zf06IjhbSUoaFI39T+7itFBF G0u802AEAyPMS3cAy0EpntCdc1p3aR3ha/QFbkycb+qHquF1MUEoHuuChbboSI5g HM/0g+b+AiDFRoVp1KJ2xqDof6A2+JfyCxFzgd3eeNyQtKQkceVXUioILPiKQArV kQ0rGwkAxIRNf0Or8QQUo/xLOS8UYcdjuyCHfvrPqvCI1IkHmhGX0zEc1wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJECw+gDsOz6laI9JpuXni4UiMwRMB8GA1UdIwQY MBaAFJxgsifLdXaKH1eFbsNTPJaEgmGcMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkdDeUo4dDFkb29mVjRWdXcxTThsb1NDWVp3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mNC8xMWM5OWYtNGZkNS00NTIyLTg1YzQt ODkxOGEyOGM0ZjdjLzEvbkdDeUo4dDFkb29mVjRWdXcxTThsb1NDWVp3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mNC8xMWM5OWYtNGZkNS00NTIyLTg1YzQtODkxOGEyOGM0Zjdj LzEvbkdDeUo4dDFkb29mVjRWdXcxTThsb1NDWVp3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUwiCX8e7 nzqt8lkqp6P2HdPVQKPMhNXqmOxv4euU134hO0FNFaekzxnkpt+ZumTyWJfpZCJW awGlYh12rJ/3NNSmkDt1wX3P71ThYUJTqgs2w+pqUBdj3g/zJ/Ag1xz4+q+OhH7m wGT+tUEFL2tlZYAZdROtFP9WRBi7nmT1yXztUMwZY2tMmujjqcHwxfc1UPgKk+eO hFi75zbUS9BJA8BDjA98cjEdsx7COFRc0SVzdkpqRh4aR72Td4Y8fFwFm1K6DOEH WseWc7uhtE71NxvblwHodS92XsmjYEceihfuIBwQcnbIaw03uNCzylgNVHHypNf/ hTSdxDZRTyQXJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:58:11 2026 by rpki-client