This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json) Hash identifier: z8pTV7psmkaklieJAsziCs6u57aEsXr+9EzZvN1Ula4= Subject key identifier: D0:59:89:2C:9C:85:37:BC:1D:1C:7B:F1:9A:59:84:65:90:3F:8B:D0 Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0 Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0 Certificate serial: 019BF8080371651E386F921396FF158203AE Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft Manifest number: 0A62 Signing time: Mon 26 Jan 2026 02:00:33 +0000 Manifest this update: Mon 26 Jan 2026 02:00:33 +0000 Manifest next update: Tue 27 Jan 2026 02:00:33 +0000 Files and hashes: 1: KggeSoYJuTH0OsCrW287o_IBVIU.roa (hash: 3X9Kd87JdDMTWZvK8kLFjDZVe2SDW7wiUWXk0sGtCM8=) 2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: yqSPBfmbkb6xLH+2AAdKRfF+XfuCGCJ1lu8u1LeRs10=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:08:03:71:65:1e:38:6f:92:13:96:ff:15:82:03:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0 Validity Not Before: Jan 26 02:00:33 2026 GMT Not After : Jan 27 02:00:33 2026 GMT Subject: CN=d059892c9c8537bc1d1c7bf19a598465903f8bd0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e4:9a:30:7c:84:b2:b2:f9:10:ec:7b:c4:0f: 37:c6:05:35:f1:73:78:c3:4c:95:02:65:2d:2c:6b: 1a:94:24:67:99:0e:c5:88:1a:15:ec:16:87:a5:df: 2b:e4:0c:62:ff:be:10:4f:bf:36:82:2e:24:07:84: 73:88:10:6c:f0:50:34:3d:91:13:53:9e:1b:41:87: c0:43:5e:71:ce:37:09:e4:18:2e:85:22:10:46:74: 26:97:72:e9:0c:71:10:b6:7a:bf:31:31:72:c8:ee: 9a:30:08:ec:a2:ae:15:28:fe:65:ab:d7:19:ac:24: 6c:17:7d:f9:68:be:fb:1c:48:dc:a5:52:9c:98:83: 15:00:be:45:3b:db:c4:e6:eb:1d:e6:d1:b2:cb:d5: fb:4b:5d:35:16:3c:81:f2:19:ad:2f:33:8b:ea:74: a3:60:f6:bd:c2:b0:d9:12:46:a5:6b:79:3e:89:de: 3b:ae:d6:b7:97:7c:ff:3d:79:e2:80:2d:bd:3b:5f: 1a:6e:0f:95:18:5d:b2:44:7b:1c:64:26:af:18:8a: 83:82:34:fa:60:68:a1:df:c7:fd:fa:8a:60:de:24: 77:6d:1a:12:e1:71:35:e5:69:82:68:e8:32:e5:ce: a4:f2:d5:b8:4c:da:bc:f9:6e:93:f0:c7:8e:66:4e: a3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:59:89:2C:9C:85:37:BC:1D:1C:7B:F1:9A:59:84:65:90:3F:8B:D0 X509v3 Authority Key Identifier: keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:7c:a0:43:f9:12:6d:52:23:a6:9b:34:b3:15:e5:dc:4a:ec: 89:ad:af:1e:d6:5e:75:54:72:ba:ef:99:7f:be:41:b5:44:35: c8:16:07:04:ef:b7:77:f0:77:3b:c9:cd:0e:1c:93:a3:ce:56: 10:8c:12:83:22:2d:69:27:04:bb:60:b5:d3:dc:b4:16:e1:fd: 4e:dc:6e:16:5f:2f:6d:80:1d:9d:51:6a:e4:df:8f:20:34:c2: 05:fa:a7:c8:a6:1d:0b:5a:c9:17:c2:1c:7d:90:39:37:cc:ac: fb:88:03:7d:da:1d:f4:77:2a:35:a1:ef:17:8c:f9:27:26:76: d8:94:aa:e7:79:57:ca:00:2f:c2:92:28:24:cb:13:d0:9a:f4: 89:c3:f5:38:1a:fb:77:ee:93:62:45:77:ed:a2:67:24:2f:d8: 93:e7:48:5a:46:57:14:53:76:7a:ec:81:10:0b:d7:12:00:3f: 56:76:09:65:0e:b2:2b:e5:02:e7:93:33:b7:1c:6b:cb:3f:68: 21:a7:90:75:f5:d4:1b:f1:b1:9e:b7:f0:df:91:74:f8:4b:d3: 4e:3a:50:3a:47:21:03:d3:ce:c8:f6:dd:3a:8f:fd:2d:cd:5f: a9:01:39:24:1b:df:62:2e:ae:18:08:4a:92:4d:3e:3d:56:6f: ab:f9:fe:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4CANxZR44b5ITlv8VggOuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx ZTkxYTAwHhcNMjYwMTI2MDIwMDMzWhcNMjYwMTI3MDIwMDMzWjAzMTEwLwYDVQQD EyhkMDU5ODkyYzljODUzN2JjMWQxYzdiZjE5YTU5ODQ2NTkwM2Y4YmQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwuSaMHyEsrL5EOx7xA83xgU18XN4 w0yVAmUtLGsalCRnmQ7FiBoV7BaHpd8r5Axi/74QT782gi4kB4RziBBs8FA0PZET U54bQYfAQ15xzjcJ5BguhSIQRnQml3LpDHEQtnq/MTFyyO6aMAjsoq4VKP5lq9cZ rCRsF335aL77HEjcpVKcmIMVAL5FO9vE5usd5tGyy9X7S101FjyB8hmtLzOL6nSj YPa9wrDZEkala3k+id47rta3l3z/PXnigC29O18abg+VGF2yRHscZCavGIqDgjT6 YGih38f9+opg3iR3bRoS4XE15WmCaOgy5c6k8tW4TNq8+W6T8MeOZk6jiQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNBZiSychTe8HRx78ZpZhGWQP4vQMB8GA1UdIwQY MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0 LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb3ygQ/kS bVIjpps0sxXl3Ersia2vHtZedVRyuu+Zf75BtUQ1yBYHBO+3d/B3O8nNDhyTo85W EIwSgyItaScEu2C109y0FuH9TtxuFl8vbYAdnVFq5N+PIDTCBfqnyKYdC1rJF8Ic fZA5N8ys+4gDfdod9HcqNaHvF4z5JyZ22JSq53lXygAvwpIoJMsT0Jr0icP1OBr7 d+6TYkV37aJnJC/Yk+dIWkZXFFN2euyBEAvXEgA/VnYJZQ6yK+UC55Mztxxryz9o IaeQdfXUG/Gxnrfw35F0+EvTTjpQOkchA9POyPbdOo/9Lc1fqQE5JBvfYi6uGAhK kk0+PVZvq/n+HQ== -----END CERTIFICATE-----Generated at Mon Jan 26 06:07:31 2026 by rpki-client