This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft File: nFVnZyAcUPayqVXbah5uAR36XUQ.mft (raw, json) Hash identifier: 0spuHL+3lYd0DMk4NQ2E9h4kykoLY7xWWbukoWpSERk= Subject key identifier: 2D:48:33:20:C1:D0:39:A2:3E:4B:CA:A6:8D:12:A6:E3:DE:76:69:65 Authority key identifier: 9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44 Certificate issuer: /CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44 Certificate serial: 019C4246270C77E15EB94AC3F01CD52E3F38 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft Manifest number: 0D38 Signing time: Mon 09 Feb 2026 12:00:19 +0000 Manifest this update: Mon 09 Feb 2026 12:00:19 +0000 Manifest next update: Tue 10 Feb 2026 12:00:19 +0000 Files and hashes: 1: AaDplZOBjFP44WCq4B011KFt3wk.roa (hash: cc1qcanaelqIhqY1IjMuQU7pXZ3q+cEr4hq8dhQwh3g=) 2: nFVnZyAcUPayqVXbah5uAR36XUQ.crl (hash: ILzhKqg611+nKOrDyPsDtecPGf4y7e9vMamDO3XDFpc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:27:0c:77:e1:5e:b9:4a:c3:f0:1c:d5:2e:3f:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c556767201c50f6b2a955db6a1e6e011dfa5d44 Validity Not Before: Feb 9 12:00:19 2026 GMT Not After : Feb 10 12:00:19 2026 GMT Subject: CN=2d483320c1d039a23e4bcaa68d12a6e3de766965 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0a:71:48:31:3b:69:cc:62:22:ca:c7:d7:37: 6b:d7:79:df:d2:58:a6:b9:e5:c3:cb:43:55:98:85: 89:04:de:e9:2c:98:ef:7c:07:59:5d:0a:01:99:3e: 13:70:de:ed:63:9d:b1:c8:1e:d8:20:e6:9c:5a:1f: 37:4e:d3:cd:03:1b:75:9a:4d:60:c6:1f:56:4c:b5: 09:23:cb:1e:1e:b7:4e:f5:2d:b4:c8:bd:57:ff:b9: 70:17:a4:34:7f:5a:e2:91:af:a9:93:ce:4a:b0:52: 87:41:1b:62:a1:7d:38:db:84:6d:c2:61:13:11:9e: 09:c9:e3:f5:f7:fb:34:85:d0:5c:d0:bf:65:76:3a: f9:83:b9:7a:25:d9:5e:f3:db:c3:fc:9b:ac:9d:71: 92:4c:51:39:81:eb:18:33:78:53:7d:b9:bd:02:29: 92:ac:46:80:43:11:7c:3a:22:37:eb:72:cb:3c:6b: cb:31:6d:1f:79:67:1e:34:73:9b:7d:86:88:c6:88: a7:af:ae:62:f0:98:08:20:c0:f8:c2:23:d1:3e:97: 89:d1:59:b9:1b:b2:56:47:75:32:5e:d6:ea:ae:81: 35:3d:77:0a:b1:aa:8a:0e:eb:6d:3b:de:83:8d:ea: 84:62:b9:c9:e8:ac:48:c7:bb:ee:fa:16:11:35:ea: fd:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:48:33:20:C1:D0:39:A2:3E:4B:CA:A6:8D:12:A6:E3:DE:76:69:65 X509v3 Authority Key Identifier: keyid:9C:55:67:67:20:1C:50:F6:B2:A9:55:DB:6A:1E:6E:01:1D:FA:5D:44 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nFVnZyAcUPayqVXbah5uAR36XUQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/6dac86-224b-4ae5-b2a8-496ba82492ce/1/nFVnZyAcUPayqVXbah5uAR36XUQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:4b:ab:2d:1f:af:21:7c:bf:d7:bd:f5:00:70:d3:a0:e2:d3: 57:7d:c2:00:72:f9:c9:2e:f8:5f:d1:4b:bb:97:00:a3:82:71: b8:1c:91:95:6a:de:ef:de:5b:4f:df:88:67:02:bf:a0:5a:88: d3:df:ce:08:cf:ed:e2:0e:f9:95:00:43:ba:39:50:3f:43:ff: 0f:a5:e9:27:0f:79:3d:59:e4:17:e4:54:8d:56:76:94:de:53: 5d:a9:21:56:65:10:c7:fb:9b:26:1d:aa:9f:b2:0d:85:99:e9: 4e:da:f7:c6:53:68:7f:93:1a:fe:f0:91:3b:3a:2e:97:64:93: 2c:bd:4a:eb:14:91:68:d8:c2:73:c4:f2:a9:8a:e1:fa:1b:34: fc:0c:de:49:92:c9:a3:89:2a:a3:8f:37:8e:e0:99:85:9c:e7: 4b:81:99:12:92:78:a9:e0:52:7e:79:22:22:38:9b:06:ae:b9: bf:20:08:dc:c8:b3:b1:27:2d:b1:e3:12:24:e0:b3:4c:00:08: 98:2d:3b:fd:b8:f2:11:a6:f8:f2:87:19:0f:9b:76:74:8b:32: 0d:06:20:6e:9b:8d:6f:7d:c6:5b:19:b2:21:06:b9:74:5e:2a: b6:31:e2:71:b8:3a:ab:f1:8f:6e:25:9d:23:f2:59:5f:e7:2d: 41:df:53:a5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRicMd+FeuUrD8BzVLj84MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNTU2NzY3MjAxYzUwZjZiMmE5NTVkYjZhMWU2ZTAxMWRm YTVkNDQwHhcNMjYwMjA5MTIwMDE5WhcNMjYwMjEwMTIwMDE5WjAzMTEwLwYDVQQD EygyZDQ4MzMyMGMxZDAzOWEyM2U0YmNhYTY4ZDEyYTZlM2RlNzY2OTY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArwpxSDE7acxiIsrH1zdr13nf0lim ueXDy0NVmIWJBN7pLJjvfAdZXQoBmT4TcN7tY52xyB7YIOacWh83TtPNAxt1mk1g xh9WTLUJI8seHrdO9S20yL1X/7lwF6Q0f1rika+pk85KsFKHQRtioX0424RtwmET EZ4JyeP19/s0hdBc0L9ldjr5g7l6Jdle89vD/JusnXGSTFE5gesYM3hTfbm9AimS rEaAQxF8OiI363LLPGvLMW0feWceNHObfYaIxoinr65i8JgIIMD4wiPRPpeJ0Vm5 G7JWR3UyXtbqroE1PXcKsaqKDuttO96DjeqEYrnJ6KxIx7vu+hYRNer94QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC1IMyDB0DmiPkvKpo0SpuPedmllMB8GA1UdIwQY MBaAFJxVZ2cgHFD2sqlV22oebgEd+l1EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yZi82ZGFjODYtMjI0Yi00YWU1LWIyYTgt NDk2YmE4MjQ5MmNlLzEvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yZi82ZGFjODYtMjI0Yi00YWU1LWIyYTgtNDk2YmE4MjQ5MmNl LzEvbkZWblp5QWNVUGF5cVZYYmFoNXVBUjM2WFVRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcEurLR+v IXy/1731AHDToOLTV33CAHL5yS74X9FLu5cAo4JxuByRlWre795bT9+IZwK/oFqI 09/OCM/t4g75lQBDujlQP0P/D6XpJw95PVnkF+RUjVZ2lN5TXakhVmUQx/ubJh2q n7INhZnpTtr3xlNof5Ma/vCROzoul2STLL1K6xSRaNjCc8TyqYrh+hs0/AzeSZLJ o4kqo483juCZhZznS4GZEpJ4qeBSfnkiIjibBq65vyAI3MizsSctseMSJOCzTAAI mC07/bjyEab48ocZD5t2dIsyDQYgbpuNb33GWxmyIQa5dF4qtjHicbg6q/GPbiWd I/JZX+ctQd9TpQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:00:30 2026 by rpki-client