This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft File: NTPUOQNczcXww50bP7FhlbVV_KM.mft (raw, json) Hash identifier: s4d6fnkCqSLyfXYt0hBhkPyZv7dWcln+Zi3L9nlckdA= Subject key identifier: 28:77:5D:95:B3:DA:92:36:E8:34:8E:8A:31:79:0A:63:47:94:73:8E Authority key identifier: 35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 Certificate issuer: /CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Certificate serial: 019C42B40DC8A179C75BDF5D14F4FA8C7407 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft Manifest number: 0D06 Signing time: Mon 09 Feb 2026 14:00:22 +0000 Manifest this update: Mon 09 Feb 2026 14:00:22 +0000 Manifest next update: Tue 10 Feb 2026 14:00:22 +0000 Files and hashes: 1: GkloadKipNGLxGdn49lnbZG57SQ.roa (hash: HQ8BBGVI4OetCOmU12/iTT2SoIrhzR4vqVTSloeX4A8=) 2: NTPUOQNczcXww50bP7FhlbVV_KM.crl (hash: 3AKv58cmS3CiDY2CRLBl4JKDpk2IDDqHsBQRCsmonbI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:0d:c8:a1:79:c7:5b:df:5d:14:f4:fa:8c:74:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3533d439035ccdc5f0c39d1b3fb16195b555fca3 Validity Not Before: Feb 9 14:00:22 2026 GMT Not After : Feb 10 14:00:22 2026 GMT Subject: CN=28775d95b3da9236e8348e8a31790a634794738e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:9f:6e:74:80:dd:08:ef:44:5e:5a:89:1e:29: 62:fb:55:3b:d7:5f:01:18:d1:8c:0b:10:ff:d3:ae: 0f:f9:7a:c2:9c:58:0d:58:4e:d7:7b:61:ef:bf:84: 22:a8:54:37:75:dc:b3:78:11:fa:86:a7:6e:20:e5: 91:58:05:67:09:64:56:26:53:c7:84:da:41:3e:a6: ed:f2:8c:a4:0c:42:3d:fd:54:13:0c:92:fb:06:b5: 88:2a:0d:7e:f5:37:2e:f5:f4:51:91:b4:78:ae:e0: 67:df:a0:1b:cf:2b:9d:8f:70:27:dd:6b:07:f1:7b: 2d:a6:fb:3f:b5:7d:fa:f4:35:ff:ea:80:f4:7e:6a: 3d:01:26:dd:43:2c:52:29:2d:67:46:34:c2:58:6c: 22:c9:43:0c:b4:98:dd:cc:4b:65:17:4e:34:4d:e2: 09:db:5b:46:b1:95:2a:f8:9c:3a:95:6f:96:a6:a1: 32:55:40:e1:10:39:56:d5:e5:9b:89:f9:7a:31:09: 16:49:80:44:7a:fa:ca:48:b0:17:01:f0:3b:af:d6: 5c:56:44:aa:68:b1:b9:c8:d6:e6:4e:90:27:2f:22: fd:59:74:b3:a7:29:9a:ac:69:d6:a2:7a:69:48:b8: 91:d6:16:09:7a:8e:0d:07:12:52:fc:30:55:9d:f3: a1:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:77:5D:95:B3:DA:92:36:E8:34:8E:8A:31:79:0A:63:47:94:73:8E X509v3 Authority Key Identifier: keyid:35:33:D4:39:03:5C:CD:C5:F0:C3:9D:1B:3F:B1:61:95:B5:55:FC:A3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NTPUOQNczcXww50bP7FhlbVV_KM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/37/8cf2a6-4529-43d9-b782-36e85abe52ff/1/NTPUOQNczcXww50bP7FhlbVV_KM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:a1:e4:12:c8:59:ed:a4:b7:0a:cb:5e:d1:eb:ea:85:59:52: da:3f:a6:4e:94:b5:24:7a:b6:af:58:0a:b0:e9:20:f9:4d:e0: 79:41:a1:d8:de:d3:8a:0c:bf:b3:07:26:d7:49:b4:46:8c:31: 7c:e2:d5:63:75:18:30:59:c1:29:bc:28:38:8a:59:48:f1:5b: 72:70:ac:57:54:69:b1:48:5c:b3:fc:b4:73:ef:21:86:ed:d4: 89:c9:8b:a8:59:f8:aa:13:0b:de:b9:10:a0:59:ee:23:6a:59: bb:95:29:b8:6f:42:b2:da:05:bd:da:54:6e:4c:28:12:43:6d: b8:1c:94:e9:f2:ba:f4:96:fa:aa:fb:0a:6e:94:1b:c4:19:7d: 65:39:f0:9f:4a:0c:76:85:c7:7c:f0:f1:22:09:2b:fa:68:41: cc:01:09:cb:3a:45:e5:a2:c6:ee:09:a1:55:29:29:4d:2e:9e: 6b:f6:e0:43:e5:26:6c:aa:a2:4e:07:1f:d8:7e:de:05:10:a4: 74:4d:2b:e2:f0:6e:0a:44:76:a7:97:25:90:2c:13:e9:00:79: ea:15:2a:cb:e4:ef:c4:5a:40:b7:02:66:e6:a7:41:c5:e4:50: 96:01:9c:ee:1b:ce:2d:06:25:14:b4:8d:b6:1e:7d:63:d9:6b: a7:42:ad:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtA3IoXnHW99dFPT6jHQHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MzNkNDM5MDM1Y2NkYzVmMGMzOWQxYjNmYjE2MTk1YjU1 NWZjYTMwHhcNMjYwMjA5MTQwMDIyWhcNMjYwMjEwMTQwMDIyWjAzMTEwLwYDVQQD EygyODc3NWQ5NWIzZGE5MjM2ZTgzNDhlOGEzMTc5MGE2MzQ3OTQ3MzhlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0Z9udIDdCO9EXlqJHili+1U7118B GNGMCxD/064P+XrCnFgNWE7Xe2Hvv4QiqFQ3ddyzeBH6hqduIOWRWAVnCWRWJlPH hNpBPqbt8oykDEI9/VQTDJL7BrWIKg1+9Tcu9fRRkbR4ruBn36Abzyudj3An3WsH 8Xstpvs/tX369DX/6oD0fmo9ASbdQyxSKS1nRjTCWGwiyUMMtJjdzEtlF040TeIJ 21tGsZUq+Jw6lW+WpqEyVUDhEDlW1eWbifl6MQkWSYBEevrKSLAXAfA7r9ZcVkSq aLG5yNbmTpAnLyL9WXSzpymarGnWonppSLiR1hYJeo4NBxJS/DBVnfOheQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCh3XZWz2pI26DSOijF5CmNHlHOOMB8GA1UdIwQY MBaAFDUz1DkDXM3F8MOdGz+xYZW1VfyjMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODIt MzZlODVhYmU1MmZmLzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNy84Y2YyYTYtNDUyOS00M2Q5LWI3ODItMzZlODVhYmU1MmZm LzEvTlRQVU9RTmN6Y1h3dzUwYlA3RmhsYlZWX0tNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATKHkEshZ 7aS3Cste0evqhVlS2j+mTpS1JHq2r1gKsOkg+U3geUGh2N7Tigy/swcm10m0Rowx fOLVY3UYMFnBKbwoOIpZSPFbcnCsV1RpsUhcs/y0c+8hhu3UicmLqFn4qhML3rkQ oFnuI2pZu5UpuG9CstoFvdpUbkwoEkNtuByU6fK69Jb6qvsKbpQbxBl9ZTnwn0oM doXHfPDxIgkr+mhBzAEJyzpF5aLG7gmhVSkpTS6ea/bgQ+UmbKqiTgcf2H7eBRCk dE0r4vBuCkR2p5clkCwT6QB56hUqy+TvxFpAtwJm5qdBxeRQlgGc7hvOLQYlFLSN th59Y9lrp0KtuQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:07 2026 by rpki-client