This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft File: nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft (raw, json) Hash identifier: gPSs/YsjdH/2UFj7q4wLHNyOJu+ri1Emp8TGrWz+Fp0= Subject key identifier: 39:EB:70:23:4D:7A:48:5E:C0:4E:BA:43:BB:04:F8:62:75:D5:0D:AD Authority key identifier: 9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC Certificate issuer: /CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec Certificate serial: 019C427D2185C39047F3F38C40BC9C54AB2B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft Manifest number: 180D Signing time: Mon 09 Feb 2026 13:00:22 +0000 Manifest this update: Mon 09 Feb 2026 13:00:22 +0000 Manifest next update: Tue 10 Feb 2026 13:00:22 +0000 Files and hashes: 1: GF0MLu9rUCMKqqUs-tw36g9XAm8.roa (hash: CGs8wTMFQfIv83nixyW2lwUi4DwWo83SvcVxQaC6KDo=) 2: nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl (hash: Pu6pdss4ohavusUT0mUGCEhgiDgMDd7vetema/L+gss=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:21:85:c3:90:47:f3:f3:8c:40:bc:9c:54:ab:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9dfe30a014784625db2c9dc90ae3ce15e54a88ec Validity Not Before: Feb 9 13:00:22 2026 GMT Not After : Feb 10 13:00:22 2026 GMT Subject: CN=39eb70234d7a485ec04eba43bb04f86275d50dad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b3:26:48:8d:52:ca:2b:16:dd:2f:ae:de:94: e3:f6:7c:c3:14:30:51:5f:45:2e:6e:73:68:79:48: d8:62:64:39:96:8b:89:85:9d:d4:7f:5c:3b:5e:86: 4c:1c:da:69:a6:bb:d2:ad:29:4d:34:87:be:75:af: 70:6f:91:e0:8d:4a:03:27:31:41:9a:c4:9e:70:ac: dd:89:72:69:81:96:6d:ef:de:83:ef:a0:c4:31:2d: b5:d1:7b:f5:8c:7d:23:67:95:e3:30:60:bb:81:49: d2:b9:60:54:a7:a7:fb:b3:f4:27:cc:d9:ad:5e:e6: 38:f4:1a:90:f3:3b:b5:e5:1b:6a:42:cd:d6:4e:57: 1b:8e:7e:a0:ea:19:87:0d:99:6d:e7:bb:88:d9:33: dd:0a:80:df:46:0b:e7:ba:e2:53:6b:03:b9:1b:99: 17:82:a7:8e:78:1f:64:e1:03:c2:c8:cb:2f:bf:e1: 83:db:66:81:87:8e:52:74:ae:13:89:d8:be:71:4d: 7c:9a:2e:05:c7:89:5b:5b:5f:80:4a:6c:7d:2d:92: e6:82:ff:e4:31:81:d1:24:6d:22:99:fa:df:98:6c: 3f:31:c0:a7:8e:8b:ce:00:f2:57:8b:7f:b1:f7:ef: b0:9b:81:0d:00:45:94:ff:15:7a:4e:46:0d:6d:c2: ce:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:EB:70:23:4D:7A:48:5E:C0:4E:BA:43:BB:04:F8:62:75:D5:0D:AD X509v3 Authority Key Identifier: keyid:9D:FE:30:A0:14:78:46:25:DB:2C:9D:C9:0A:E3:CE:15:E5:4A:88:EC X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nf4woBR4RiXbLJ3JCuPOFeVKiOw.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/3d1495-0ef8-49b1-99e2-604e23747769/1/nf4woBR4RiXbLJ3JCuPOFeVKiOw.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:1d:e0:dc:e9:ec:a5:ce:7d:61:9f:81:a0:4f:86:a0:de:18: 05:af:a0:ac:a8:f4:61:8b:05:88:28:d2:2c:bf:fc:a1:b7:51: a1:2b:ec:07:2b:15:4a:99:5c:14:c3:27:9f:8f:9c:5a:24:4c: 7f:ce:60:8e:bd:63:35:eb:ce:e9:c2:57:41:cd:92:74:41:6f: 67:2b:72:c6:03:98:90:4f:63:0a:66:0d:d0:5c:1e:9f:0e:f6: 90:a0:ed:70:df:ac:83:04:13:1e:e9:8b:75:bd:88:ff:33:9f: e2:cc:01:95:d8:b7:a0:8a:56:5f:64:1b:ca:d5:bd:60:3d:c1: c9:a3:32:14:f0:5d:ff:19:0a:53:4c:14:ef:a8:f8:e5:17:b6: 40:b8:a3:c8:3c:a9:5d:dc:46:5b:ae:b6:f7:ca:56:20:d4:af: 95:b4:0e:7f:0a:7f:6a:57:56:28:2e:b4:54:f4:1f:64:35:19: 83:43:88:4b:f5:c8:03:77:8b:62:9c:6e:c1:66:ab:17:ad:c3: cf:49:91:21:99:5f:d1:15:46:77:3c:7d:07:6d:da:67:89:9a: ef:41:be:ef:2a:f5:db:84:b1:93:e0:0a:3f:f2:7f:99:a6:5b: 57:71:17:e8:5c:e0:59:13:16:fc:92:b6:e5:9f:31:08:e9:a4: a8:a4:dd:7e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfSGFw5BH8/OMQLycVKsrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkZmUzMGEwMTQ3ODQ2MjVkYjJjOWRjOTBhZTNjZTE1ZTU0 YTg4ZWMwHhcNMjYwMjA5MTMwMDIyWhcNMjYwMjEwMTMwMDIyWjAzMTEwLwYDVQQD EygzOWViNzAyMzRkN2E0ODVlYzA0ZWJhNDNiYjA0Zjg2Mjc1ZDUwZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbMmSI1SyisW3S+u3pTj9nzDFDBR X0UubnNoeUjYYmQ5louJhZ3Uf1w7XoZMHNppprvSrSlNNIe+da9wb5HgjUoDJzFB msSecKzdiXJpgZZt796D76DEMS210Xv1jH0jZ5XjMGC7gUnSuWBUp6f7s/QnzNmt XuY49BqQ8zu15RtqQs3WTlcbjn6g6hmHDZlt57uI2TPdCoDfRgvnuuJTawO5G5kX gqeOeB9k4QPCyMsvv+GD22aBh45SdK4Tidi+cU18mi4Fx4lbW1+ASmx9LZLmgv/k MYHRJG0imfrfmGw/McCnjovOAPJXi3+x9++wm4ENAEWU/xV6TkYNbcLOxwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDnrcCNNekhewE66Q7sE+GJ11Q2tMB8GA1UdIwQY MBaAFJ3+MKAUeEYl2yydyQrjzhXlSojsMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmY0d29CUjRSaVhiTEozSkN1UE9GZVZLaU93LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zYi8zZDE0OTUtMGVmOC00OWIxLTk5ZTIt NjA0ZTIzNzQ3NzY5LzEvbmY0d29CUjRSaVhiTEozSkN1UE9GZVZLaU93Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zYi8zZDE0OTUtMGVmOC00OWIxLTk5ZTItNjA0ZTIzNzQ3NzY5 LzEvbmY0d29CUjRSaVhiTEozSkN1UE9GZVZLaU93LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALx3g3Ons pc59YZ+BoE+GoN4YBa+grKj0YYsFiCjSLL/8obdRoSvsBysVSplcFMMnn4+cWiRM f85gjr1jNevO6cJXQc2SdEFvZytyxgOYkE9jCmYN0Fwenw72kKDtcN+sgwQTHumL db2I/zOf4swBldi3oIpWX2QbytW9YD3ByaMyFPBd/xkKU0wU76j45Re2QLijyDyp XdxGW66298pWINSvlbQOfwp/aldWKC60VPQfZDUZg0OIS/XIA3eLYpxuwWarF63D z0mRIZlf0RVGdzx9B23aZ4ma70G+7yr124Sxk+AKP/J/maZbV3EX6FzgWRMW/JK2 5Z8xCOmkqKTdfg== -----END CERTIFICATE-----Generated at Mon Feb 9 21:08:50 2026 by rpki-client