This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft File: nDKfMzH1ND8pDrSkHxbENjooLJA.mft (raw, json) Hash identifier: Qbw6sXj4LJFvruPR08WKLh78t/Iq6TmtPYyTosgTsx8= Subject key identifier: 11:1D:21:0D:D2:BB:51:8C:AB:44:E4:43:1F:44:3D:ED:20:AF:75:3B Authority key identifier: 9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90 Certificate issuer: /CN=9c329f3331f5343f290eb4a41f16c4363a282c90 Certificate serial: 019C4246473FB959650B719BA8C8D8C98C2C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 12:00:27 +0000 Manifest this update: Mon 09 Feb 2026 12:00:27 +0000 Manifest next update: Tue 10 Feb 2026 12:00:27 +0000 Files and hashes: 1: eypzd6poG3jDCG2V-Hkvi0h-uqk.roa (hash: a6MGVLLBIxQKSFoYyBfEEcE09ol5itCNEXdRhC5N+Ao=) 2: nDKfMzH1ND8pDrSkHxbENjooLJA.crl (hash: qlinh5U3mVZHAF8ev7naQZkzgSl7FwwuUhcfSrYwgwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:47:3f:b9:59:65:0b:71:9b:a8:c8:d8:c9:8c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c329f3331f5343f290eb4a41f16c4363a282c90 Validity Not Before: Feb 9 12:00:27 2026 GMT Not After : Feb 10 12:00:27 2026 GMT Subject: CN=111d210dd2bb518cab44e4431f443ded20af753b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7e:c6:40:8a:0b:b2:af:d6:6b:08:67:df:bb: c0:c4:d2:a2:b0:dc:d6:c7:83:7a:a9:13:f0:2f:09: 6d:cf:26:7f:aa:46:24:fc:38:f4:6e:2f:f4:95:a7: 54:8a:e4:21:2c:0f:57:47:d0:06:c7:b4:9b:2e:0e: de:06:63:e8:16:35:63:4b:0c:85:e8:d8:c0:5e:4d: 00:a1:be:99:42:73:f0:42:5e:a2:82:9e:54:47:32: db:97:f9:cb:92:91:aa:c8:fa:a5:72:2a:5c:31:48: 4b:90:7e:63:4c:34:d7:b7:5c:37:ea:fb:fc:cd:d5: 55:b9:1f:4d:99:22:c1:1e:da:99:75:34:b0:aa:7a: e6:26:0f:1d:33:15:88:e5:69:a9:c9:b6:16:a3:5e: 5b:6b:8c:f7:47:18:5b:18:de:c0:93:5f:30:12:a0: 76:32:cc:9b:c6:74:7b:51:b9:63:40:32:3f:b7:ed: b1:21:cf:de:8a:fa:13:33:9b:9b:fc:fe:66:a3:32: 4b:b2:f3:da:7b:d8:0e:c2:f0:8a:85:bd:0c:16:00: 40:d6:62:77:24:8e:0f:ce:c8:22:0e:34:cc:7b:ff: 60:12:b4:ee:db:61:ef:19:86:03:2d:cb:4a:98:69: 2b:ec:9d:58:2c:ff:a0:67:80:e9:27:54:29:df:df: 9b:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:1D:21:0D:D2:BB:51:8C:AB:44:E4:43:1F:44:3D:ED:20:AF:75:3B X509v3 Authority Key Identifier: keyid:9C:32:9F:33:31:F5:34:3F:29:0E:B4:A4:1F:16:C4:36:3A:28:2C:90 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nDKfMzH1ND8pDrSkHxbENjooLJA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/42/624220-c076-4a1d-aefb-b7f5d4395cc0/1/nDKfMzH1ND8pDrSkHxbENjooLJA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:d4:5f:a6:58:3a:90:70:ca:01:84:e5:62:60:d3:0f:8d:2f: a6:e1:d8:7f:22:1b:5c:69:d1:b8:14:e4:a5:7d:9a:f1:1f:b3: 2c:1c:86:40:9f:69:8e:8f:16:76:a9:24:5f:69:e0:3a:ad:cb: 1c:c6:c0:19:4d:40:04:38:fb:70:f3:ad:71:48:a6:d6:c8:65: 18:ad:3c:ff:d9:e7:3e:22:13:20:08:13:12:b1:42:c2:7f:2f: 4b:15:ad:58:29:75:63:65:09:f8:25:22:7c:11:94:2f:7b:2b: dd:a6:6e:17:fb:28:17:fb:70:e3:cf:17:e6:b6:75:85:3d:4d: 40:a7:b6:12:16:c9:06:c3:d4:48:77:d4:2c:12:b3:ec:ea:4d: 21:9b:ed:ce:62:0a:8e:57:e3:97:df:e2:f7:65:94:43:f3:35: 84:e7:72:d0:00:7e:f9:d0:49:06:59:e8:57:e5:50:44:af:1a: 9e:c4:54:49:8e:dc:cd:0f:3d:37:fc:d2:1e:fd:92:9f:87:ed: 02:cd:ba:96:e1:76:31:a4:5e:23:b0:3f:48:3a:7a:d5:32:c6: 22:42:db:3d:28:cd:8f:71:73:cf:2c:7a:d1:35:bd:3b:55:8f: a9:69:10:d7:98:7b:ea:25:0e:fb:1b:f5:eb:8f:63:e2:d1:21: 87:9c:06:d6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRkc/uVllC3GbqMjYyYwsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljMzI5ZjMzMzFmNTM0M2YyOTBlYjRhNDFmMTZjNDM2M2Ey ODJjOTAwHhcNMjYwMjA5MTIwMDI3WhcNMjYwMjEwMTIwMDI3WjAzMTEwLwYDVQQD EygxMTFkMjEwZGQyYmI1MThjYWI0NGU0NDMxZjQ0M2RlZDIwYWY3NTNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApn7GQIoLsq/Wawhn37vAxNKisNzW x4N6qRPwLwltzyZ/qkYk/Dj0bi/0ladUiuQhLA9XR9AGx7SbLg7eBmPoFjVjSwyF 6NjAXk0Aob6ZQnPwQl6igp5URzLbl/nLkpGqyPqlcipcMUhLkH5jTDTXt1w36vv8 zdVVuR9NmSLBHtqZdTSwqnrmJg8dMxWI5WmpybYWo15ba4z3RxhbGN7Ak18wEqB2 MsybxnR7UbljQDI/t+2xIc/eivoTM5ub/P5mozJLsvPae9gOwvCKhb0MFgBA1mJ3 JI4PzsgiDjTMe/9gErTu22HvGYYDLctKmGkr7J1YLP+gZ4DpJ1Qp39+bwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBEdIQ3Su1GMq0TkQx9EPe0gr3U7MB8GA1UdIwQY MBaAFJwynzMx9TQ/KQ60pB8WxDY6KCyQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Mi82MjQyMjAtYzA3Ni00YTFkLWFlZmIt YjdmNWQ0Mzk1Y2MwLzEvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Mi82MjQyMjAtYzA3Ni00YTFkLWFlZmItYjdmNWQ0Mzk1Y2Mw LzEvbkRLZk16SDFORDhwRHJTa0h4YkVOam9vTEpBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAotRfplg6 kHDKAYTlYmDTD40vpuHYfyIbXGnRuBTkpX2a8R+zLByGQJ9pjo8WdqkkX2ngOq3L HMbAGU1ABDj7cPOtcUim1shlGK08/9nnPiITIAgTErFCwn8vSxWtWCl1Y2UJ+CUi fBGUL3sr3aZuF/soF/tw488X5rZ1hT1NQKe2EhbJBsPUSHfULBKz7OpNIZvtzmIK jlfjl9/i92WUQ/M1hOdy0AB++dBJBlnoV+VQRK8ansRUSY7czQ89N/zSHv2Sn4ft As26luF2MaReI7A/SDp61TLGIkLbPSjNj3Fzzyx60TW9O1WPqWkQ15h76iUO+xv1 649j4tEhh5wG1g== -----END CERTIFICATE-----Generated at Mon Feb 9 20:13:28 2026 by rpki-client