This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft File: NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft (raw, json) Hash identifier: Wzbx4EUPNiNfI6PjUSRnYlhKADabndnQHnC7WTffTao= Subject key identifier: A4:52:FC:35:18:B8:43:40:66:EA:1C:5A:40:F0:21:B7:3D:DF:36:53 Authority key identifier: 35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21 Certificate issuer: /CN=3501772457e0f827b9e920b00cd114824a5fa621 Certificate serial: 019C420FE4FC4091700AB4CFDE7A53F10434 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft Manifest number: 1810 Signing time: Mon 09 Feb 2026 11:01:03 +0000 Manifest this update: Mon 09 Feb 2026 11:01:03 +0000 Manifest next update: Tue 10 Feb 2026 11:01:03 +0000 Files and hashes: 1: CDtNseOhTSyvHnBtVtY8_yl_mqo.roa (hash: QVByv0+71qydMndfr8rOHWUwhEqYjIZJsdGpilbLsSU=) 2: NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl (hash: hs+RVYJk2JlF7/gxld34sROXcxjEqPhUx7HNTJTIlp0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:e4:fc:40:91:70:0a:b4:cf:de:7a:53:f1:04:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3501772457e0f827b9e920b00cd114824a5fa621 Validity Not Before: Feb 9 11:01:03 2026 GMT Not After : Feb 10 11:01:03 2026 GMT Subject: CN=a452fc3518b8434066ea1c5a40f021b73ddf3653 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:78:23:fc:20:76:85:e0:54:34:84:48:57:a2: 8c:1f:13:e4:a4:e6:cc:1e:e8:a3:93:f9:9d:77:91: 85:70:4b:0a:2f:2e:b1:04:a7:e0:d4:99:f4:dd:ef: 1f:a1:44:ea:ac:91:23:e7:e8:f1:53:bf:19:85:77: a6:99:55:d7:20:25:ff:3d:e6:63:77:41:7d:25:30: 0d:a9:0b:4c:e9:f7:26:60:a8:6b:67:58:99:29:82: 96:44:2e:58:32:70:31:a3:82:72:58:49:2a:2c:15: a8:ba:93:f4:a9:6f:3a:a4:8f:e5:16:8c:66:79:e8: 5c:04:0c:0d:6b:b8:8a:46:89:67:2d:cb:5d:0d:d2: 7c:01:86:f1:a6:33:e2:f2:8d:c9:44:fd:11:e6:e0: 65:42:f6:43:83:25:4b:09:55:32:ee:cc:54:fc:c0: a8:98:9d:ac:98:69:c1:c1:26:f4:1c:91:76:6b:24: 26:46:18:1d:c9:8b:29:60:c7:f7:2f:1a:9f:ac:15: aa:3d:4a:cd:cb:96:b4:45:6c:7b:72:cc:11:81:41: ea:15:f8:12:16:7f:d4:63:f7:49:56:d4:13:69:39: c9:9e:c9:1d:9b:df:d8:dd:fd:be:06:53:bc:d7:55: e7:28:13:34:b3:9c:75:75:84:c7:6b:9f:00:4f:f5: 27:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:52:FC:35:18:B8:43:40:66:EA:1C:5A:40:F0:21:B7:3D:DF:36:53 X509v3 Authority Key Identifier: keyid:35:01:77:24:57:E0:F8:27:B9:E9:20:B0:0C:D1:14:82:4A:5F:A6:21 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQF3JFfg-Ce56SCwDNEUgkpfpiE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/903931-1698-41b7-af34-9dd82735da3d/1/NQF3JFfg-Ce56SCwDNEUgkpfpiE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:6b:81:23:e2:b6:0c:a2:fe:5a:da:ae:d1:45:b7:7d:86:fa: df:69:f1:7d:58:19:4d:e7:ca:61:74:58:55:65:68:44:99:f0: 57:3f:ac:e6:e5:65:ce:84:92:07:56:e1:67:07:f9:55:21:eb: 93:f4:77:3e:6c:e3:8a:89:0f:67:28:91:21:05:e5:92:95:50: 61:7c:58:a8:45:f0:4a:ca:cc:bf:f4:97:d3:6e:1b:bb:ac:30: 7c:db:4c:bb:41:94:bf:a4:3f:5d:da:e0:e2:35:0f:da:d3:e3: 8b:c7:f6:41:7f:86:1a:93:b1:95:e3:3f:14:06:2a:76:1e:85: 3a:c5:a5:06:ed:88:ba:21:37:d4:76:a0:48:01:4e:74:90:f1: c2:1e:59:8b:09:88:79:ca:b8:90:03:3b:ec:f3:a3:3f:54:d3: c0:a0:26:c1:4a:ea:d5:5e:39:d8:88:b0:79:0d:39:0d:26:3c: ce:c1:cb:6e:60:79:a7:c5:04:e6:61:54:37:78:b0:09:67:93: de:2b:2d:e3:24:cf:ff:9e:68:10:62:12:a1:d9:a0:e9:42:ce: 55:21:7c:62:5a:46:83:dc:5f:2b:b7:fc:ce:f6:d6:93:22:c0: af:55:40:25:04:04:5a:00:68:b3:8f:81:87:80:2b:aa:ad:23: 64:8f:33:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD+T8QJFwCrTP3npT8QQ0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MDE3NzI0NTdlMGY4MjdiOWU5MjBiMDBjZDExNDgyNGE1 ZmE2MjEwHhcNMjYwMjA5MTEwMTAzWhcNMjYwMjEwMTEwMTAzWjAzMTEwLwYDVQQD EyhhNDUyZmMzNTE4Yjg0MzQwNjZlYTFjNWE0MGYwMjFiNzNkZGYzNjUzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwngj/CB2heBUNIRIV6KMHxPkpObM Huijk/mdd5GFcEsKLy6xBKfg1Jn03e8foUTqrJEj5+jxU78ZhXemmVXXICX/PeZj d0F9JTANqQtM6fcmYKhrZ1iZKYKWRC5YMnAxo4JyWEkqLBWoupP0qW86pI/lFoxm eehcBAwNa7iKRolnLctdDdJ8AYbxpjPi8o3JRP0R5uBlQvZDgyVLCVUy7sxU/MCo mJ2smGnBwSb0HJF2ayQmRhgdyYspYMf3LxqfrBWqPUrNy5a0RWx7cswRgUHqFfgS Fn/UY/dJVtQTaTnJnskdm9/Y3f2+BlO811XnKBM0s5x1dYTHa58AT/UnIQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKRS/DUYuENAZuocWkDwIbc93zZTMB8GA1UdIwQY MBaAFDUBdyRX4PgnuekgsAzRFIJKX6YhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlFGM0pGZmctQ2U1NlNDd0RORVVna3BmcGlFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi85MDM5MzEtMTY5OC00MWI3LWFmMzQt OWRkODI3MzVkYTNkLzEvTlFGM0pGZmctQ2U1NlNDd0RORVVna3BmcGlFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi85MDM5MzEtMTY5OC00MWI3LWFmMzQtOWRkODI3MzVkYTNk LzEvTlFGM0pGZmctQ2U1NlNDd0RORVVna3BmcGlFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMGuBI+K2 DKL+Wtqu0UW3fYb632nxfVgZTefKYXRYVWVoRJnwVz+s5uVlzoSSB1bhZwf5VSHr k/R3PmzjiokPZyiRIQXlkpVQYXxYqEXwSsrMv/SX024bu6wwfNtMu0GUv6Q/Xdrg 4jUP2tPji8f2QX+GGpOxleM/FAYqdh6FOsWlBu2IuiE31HagSAFOdJDxwh5ZiwmI ecq4kAM77POjP1TTwKAmwUrq1V452IiweQ05DSY8zsHLbmB5p8UE5mFUN3iwCWeT 3ist4yTP/55oEGISodmg6ULOVSF8YlpGg9xfK7f8zvbWkyLAr1VAJQQEWgBos4+B h4Arqq0jZI8zkQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:49:09 2026 by rpki-client