This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft File: nhuhZT_KfIAXI8pG_0Qua6wekaA.mft (raw, json) Hash identifier: 0u/0MbZtzpwSwbEf0XhQmspG+KH8PfMZaQaOdbfvi0o= Subject key identifier: A6:00:89:94:B7:6F:7B:53:AE:F4:50:B6:B5:85:5F:F6:27:C9:D6:14 Authority key identifier: 9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0 Certificate issuer: /CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0 Certificate serial: 019BAAC9379F27C55C278EC185F3A560C7C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft Manifest number: 0A3A Signing time: Sun 11 Jan 2026 02:01:12 +0000 Manifest this update: Sun 11 Jan 2026 02:01:12 +0000 Manifest next update: Mon 12 Jan 2026 02:01:12 +0000 Files and hashes: 1: KggeSoYJuTH0OsCrW287o_IBVIU.roa (hash: 3X9Kd87JdDMTWZvK8kLFjDZVe2SDW7wiUWXk0sGtCM8=) 2: nhuhZT_KfIAXI8pG_0Qua6wekaA.crl (hash: +qRk9+ZW76L0qgq6KGAd+B3uKVcYQ/N7k2zWx6xn9jw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 11 Jan 2026 20:58:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:aa:c9:37:9f:27:c5:5c:27:8e:c1:85:f3:a5:60:c7:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9e1ba1653fca7c801723ca46ff442e6bac1e91a0 Validity Not Before: Jan 11 02:01:12 2026 GMT Not After : Jan 12 02:01:12 2026 GMT Subject: CN=a6008994b76f7b53aef450b6b5855ff627c9d614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:26:9f:7c:86:99:24:d1:86:6d:e7:cd:4a:15: 8a:74:18:25:cc:6f:da:71:20:88:59:74:7d:30:4e: 82:9d:0a:06:7a:97:f5:ef:09:a0:ef:bf:57:29:be: 3e:0f:1d:ec:78:15:33:b0:90:61:12:06:59:65:bc: 8d:75:a3:79:1e:15:0f:b0:62:45:9b:71:0c:26:35: 1b:96:56:a9:d5:84:19:29:d9:02:aa:a7:69:a6:87: 1e:33:5e:fe:cc:fb:c2:a6:e2:e0:81:ac:09:d9:c7: ae:cd:d6:82:b9:38:62:10:86:01:92:73:9f:d2:72: e3:24:0c:15:d5:da:2c:30:97:f3:61:58:40:22:8b: b5:8f:3d:5f:72:d3:90:eb:ad:92:d0:1e:eb:91:ae: cb:fb:dd:3f:55:4d:6c:23:88:d0:8f:b9:67:3b:d8: 3f:9b:7c:f5:cf:f5:bd:f7:13:5a:b8:e6:c8:9c:0e: 70:7e:b6:ad:5f:56:8f:9b:e5:6b:cf:45:d3:a5:ea: 78:80:7b:2d:fa:d2:e0:36:0c:82:b0:a0:00:41:12: 89:07:27:9a:10:33:5c:df:87:cb:5b:2e:0c:ec:1e: 2f:bf:80:19:d8:40:75:58:2e:9b:af:eb:0f:d0:f3: 3d:a9:67:50:9d:c4:c0:fa:07:9d:44:26:15:32:56: df:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:00:89:94:B7:6F:7B:53:AE:F4:50:B6:B5:85:5F:F6:27:C9:D6:14 X509v3 Authority Key Identifier: keyid:9E:1B:A1:65:3F:CA:7C:80:17:23:CA:46:FF:44:2E:6B:AC:1E:91:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nhuhZT_KfIAXI8pG_0Qua6wekaA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/23/389424-aaba-4491-9fba-fcb43d4f6714/1/nhuhZT_KfIAXI8pG_0Qua6wekaA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:b3:77:a0:06:9e:bd:a4:69:3d:08:bc:ac:69:c5:bd:0b:dc: 29:8b:b5:b1:d0:1f:fa:cf:84:c8:38:2d:58:98:42:b4:6f:b1: 09:bf:81:a3:2c:58:89:59:67:8d:72:25:8c:22:f6:4d:29:c7: 9e:aa:61:11:af:9c:5b:bb:67:f6:ac:e8:d3:45:57:5b:cf:d7: 0b:11:83:aa:9b:32:a2:c6:fe:1f:18:a7:54:c3:cb:2d:df:39: f7:7c:95:e8:c8:0f:49:19:49:7c:05:79:72:88:e4:6e:3b:e4: 31:8f:35:fd:c9:c4:8b:45:b2:b3:8d:ac:86:d6:c4:d0:6d:c0: 19:77:6a:54:2f:06:9a:6b:17:d7:c2:a2:ef:76:0e:89:ea:78: c7:97:4c:f3:24:5b:cb:3a:94:da:53:a1:89:bb:9e:cc:85:f6: fe:d8:91:d2:17:ef:b8:fa:75:6d:a4:be:4b:8b:00:05:55:96: 32:b9:ff:23:0c:33:62:e7:cf:66:9c:75:cd:1d:7f:9f:66:65: e0:26:62:f7:ac:f8:53:9a:b9:4b:e7:cd:05:49:c4:86:8f:44: f0:40:7a:ed:85:8b:63:e8:27:92:89:df:e1:e9:70:1f:c5:c1: 14:40:d8:09:cc:6f:30:b1:2c:c0:f2:86:e6:09:91:21:7b:ab: 2d:6a:24:36 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZuqyTefJ8VcJ47BhfOlYMfAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDllMWJhMTY1M2ZjYTdjODAxNzIzY2E0NmZmNDQyZTZiYWMx ZTkxYTAwHhcNMjYwMTExMDIwMTEyWhcNMjYwMTEyMDIwMTEyWjAzMTEwLwYDVQQD EyhhNjAwODk5NGI3NmY3YjUzYWVmNDUwYjZiNTg1NWZmNjI3YzlkNjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSaffIaZJNGGbefNShWKdBglzG/a cSCIWXR9ME6CnQoGepf17wmg779XKb4+Dx3seBUzsJBhEgZZZbyNdaN5HhUPsGJF m3EMJjUbllap1YQZKdkCqqdppoceM17+zPvCpuLggawJ2ceuzdaCuThiEIYBknOf 0nLjJAwV1dosMJfzYVhAIou1jz1fctOQ662S0B7rka7L+90/VU1sI4jQj7lnO9g/ m3z1z/W99xNauObInA5wfratX1aPm+Vrz0XTpep4gHst+tLgNgyCsKAAQRKJByea EDNc34fLWy4M7B4vv4AZ2EB1WC6br+sP0PM9qWdQncTA+gedRCYVMlbftQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKYAiZS3b3tTrvRQtrWFX/YnydYUMB8GA1UdIwQY MBaAFJ4boWU/ynyAFyPKRv9ELmusHpGgMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEt ZmNiNDNkNGY2NzE0LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yMy8zODk0MjQtYWFiYS00NDkxLTlmYmEtZmNiNDNkNGY2NzE0 LzEvbmh1aFpUX0tmSUFYSThwR18wUXVhNndla2FBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsrN3oAae vaRpPQi8rGnFvQvcKYu1sdAf+s+EyDgtWJhCtG+xCb+BoyxYiVlnjXIljCL2TSnH nqphEa+cW7tn9qzo00VXW8/XCxGDqpsyosb+HxinVMPLLd8593yV6MgPSRlJfAV5 cojkbjvkMY81/cnEi0Wys42shtbE0G3AGXdqVC8GmmsX18Ki73YOiep4x5dM8yRb yzqU2lOhibuezIX2/tiR0hfvuPp1baS+S4sABVWWMrn/IwwzYufPZpx1zR1/n2Zl 4CZi96z4U5q5S+fNBUnEho9E8EB67YWLY+gnkonf4elwH8XBFEDYCcxvMLEswPKG 5gmRIXurLWokNg== -----END CERTIFICATE-----Generated at Sun Jan 11 06:49:02 2026 by rpki-client