This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft File: nwAKfifXFIcphPrjeIda9lvkBWw.mft (raw, json) Hash identifier: QkQY4Q/aaggC5Eyg75pTuDL1VEcAIe9A/TarLlEr8nI= Subject key identifier: 70:EA:33:6E:43:96:E5:00:B8:E5:31:B9:A3:51:7E:DA:76:6C:CF:B5 Authority key identifier: 9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C Certificate issuer: /CN=9f000a7e27d714872984fae378875af65be4056c Certificate serial: 019C416AF46D480824425B456294FEA4069B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft Manifest number: 0263 Signing time: Mon 09 Feb 2026 08:00:54 +0000 Manifest this update: Mon 09 Feb 2026 08:00:54 +0000 Manifest next update: Tue 10 Feb 2026 08:00:54 +0000 Files and hashes: 1: nwAKfifXFIcphPrjeIda9lvkBWw.crl (hash: JxjchuHNOEJAcjgrLF7Kk2mtn3BlbCM5v6uZo8Ommdw=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:f4:6d:48:08:24:42:5b:45:62:94:fe:a4:06:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f000a7e27d714872984fae378875af65be4056c Validity Not Before: Feb 9 08:00:54 2026 GMT Not After : Feb 10 08:00:54 2026 GMT Subject: CN=70ea336e4396e500b8e531b9a3517eda766ccfb5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e4:e5:c5:f0:cc:42:b0:7e:af:61:6a:f8:0d: 3d:73:58:01:61:28:e5:50:d8:30:45:fb:4d:3a:c0: ea:78:ca:27:f9:cb:d7:38:e7:bf:b1:3a:c6:e5:b2: 3e:9f:ad:df:f8:5e:a7:c0:98:73:e3:84:b0:f5:8c: cc:e4:90:ab:dd:6f:30:d5:2c:97:7d:d6:d0:59:9d: 22:43:73:99:b2:c8:93:a2:1c:b5:cc:cc:ae:3e:70: 45:bc:c1:aa:74:05:c3:3d:27:bc:51:b7:10:72:ac: b3:35:27:e5:91:34:89:8d:94:a5:9b:c3:6a:66:2a: 40:38:f2:a4:e9:3c:6b:10:b4:54:b9:97:43:c0:4e: 86:42:c0:9a:ae:91:db:a1:9c:80:c8:9c:f2:6d:52: b8:25:dc:50:f0:cf:fe:c2:70:70:c5:ed:46:eb:08: d9:a5:b8:c3:b5:48:40:c1:74:1e:b8:eb:1b:3c:a4: ac:23:f1:c3:67:b8:10:be:44:9d:2e:41:0b:b9:69: 30:5e:c8:68:1c:82:fd:cd:5f:41:92:0e:61:d3:52: 75:79:7a:90:7b:f4:a9:d2:a0:9a:9a:11:52:ab:4e: 82:66:03:c4:b9:fd:66:9a:41:b6:5c:1d:63:9a:25: 83:2f:20:85:88:96:fe:57:57:83:db:a2:fb:38:90: 09:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:EA:33:6E:43:96:E5:00:B8:E5:31:B9:A3:51:7E:DA:76:6C:CF:B5 X509v3 Authority Key Identifier: keyid:9F:00:0A:7E:27:D7:14:87:29:84:FA:E3:78:87:5A:F6:5B:E4:05:6C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nwAKfifXFIcphPrjeIda9lvkBWw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/09/6b2a58-becc-49bc-8d84-a03892fc340b/1/nwAKfifXFIcphPrjeIda9lvkBWw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3e:1d:5e:98:d7:8a:a7:ed:9b:09:d5:9c:82:79:78:2d:18: d1:a9:44:d1:1b:31:fb:f8:ad:0e:f2:56:00:41:98:a0:ef:3b: 28:b1:4f:60:79:c5:af:97:38:71:f9:1f:c6:aa:1b:1e:c7:ff: 6d:63:9e:f7:6b:40:bd:39:f7:76:86:41:2f:fa:c2:c3:5d:41: 80:13:4e:5d:9f:24:a4:a8:c7:77:f8:7b:1b:90:c8:80:35:2d: ab:44:d1:b5:33:21:7c:b1:89:cb:99:a6:4d:a3:39:fb:12:2a: 19:5b:2e:ef:05:b4:96:bd:2f:d7:13:41:69:b0:39:78:39:a7: 83:e1:a4:ed:15:5f:e3:7b:f8:2d:f0:7d:34:14:e9:c4:b7:c0: 48:00:a1:f7:39:ad:59:f1:d4:ab:51:80:74:34:62:0e:e2:cd: ee:19:af:4d:13:c3:1e:f2:4f:63:86:41:c7:ca:d9:83:20:9e: b2:9c:df:57:0c:af:e1:8b:73:66:69:b5:39:51:78:4d:35:71: a9:00:70:2c:c9:d9:7a:ff:d6:1e:ae:e3:89:bf:cc:cc:f4:3e: fc:15:5a:e2:69:74:21:35:19:d6:75:c7:52:68:df:3f:b5:8e: 14:5f:01:d7:15:7d:2e:4d:b2:6a:b0:6c:6e:40:d7:fc:88:bf: 09:1a:25:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBavRtSAgkQltFYpT+pAabMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMDAwYTdlMjdkNzE0ODcyOTg0ZmFlMzc4ODc1YWY2NWJl NDA1NmMwHhcNMjYwMjA5MDgwMDU0WhcNMjYwMjEwMDgwMDU0WjAzMTEwLwYDVQQD Eyg3MGVhMzM2ZTQzOTZlNTAwYjhlNTMxYjlhMzUxN2VkYTc2NmNjZmI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuTlxfDMQrB+r2Fq+A09c1gBYSjl UNgwRftNOsDqeMon+cvXOOe/sTrG5bI+n63f+F6nwJhz44Sw9YzM5JCr3W8w1SyX fdbQWZ0iQ3OZssiTohy1zMyuPnBFvMGqdAXDPSe8UbcQcqyzNSflkTSJjZSlm8Nq ZipAOPKk6TxrELRUuZdDwE6GQsCarpHboZyAyJzybVK4JdxQ8M/+wnBwxe1G6wjZ pbjDtUhAwXQeuOsbPKSsI/HDZ7gQvkSdLkELuWkwXshoHIL9zV9Bkg5h01J1eXqQ e/Sp0qCamhFSq06CZgPEuf1mmkG2XB1jmiWDLyCFiJb+V1eD26L7OJAJXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHDqM25DluUAuOUxuaNRftp2bM+1MB8GA1UdIwQY MBaAFJ8ACn4n1xSHKYT643iHWvZb5AVsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbndBS2ZpZlhGSWNwaFByamVJZGE5bHZrQld3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wOS82YjJhNTgtYmVjYy00OWJjLThkODQt YTAzODkyZmMzNDBiLzEvbndBS2ZpZlhGSWNwaFByamVJZGE5bHZrQld3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wOS82YjJhNTgtYmVjYy00OWJjLThkODQtYTAzODkyZmMzNDBi LzEvbndBS2ZpZlhGSWNwaFByamVJZGE5bHZrQld3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGj4dXpjX iqftmwnVnIJ5eC0Y0alE0Rsx+/itDvJWAEGYoO87KLFPYHnFr5c4cfkfxqobHsf/ bWOe92tAvTn3doZBL/rCw11BgBNOXZ8kpKjHd/h7G5DIgDUtq0TRtTMhfLGJy5mm TaM5+xIqGVsu7wW0lr0v1xNBabA5eDmng+Gk7RVf43v4LfB9NBTpxLfASACh9zmt WfHUq1GAdDRiDuLN7hmvTRPDHvJPY4ZBx8rZgyCespzfVwyv4YtzZmm1OVF4TTVx qQBwLMnZev/WHq7jib/MzPQ+/BVa4ml0ITUZ1nXHUmjfP7WOFF8B1xV9Lk2yarBs bkDX/Ii/CRolTA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:43 2026 by rpki-client