This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft File: nGfqNKARpHc4cVg-w5VOeR2MAo0.mft (raw, json) Hash identifier: z5fwJGnTZqv0a1wLB3SlPfRq/e/OqwJ5/MBb9RNoQWM= Subject key identifier: BF:15:8E:96:4B:F2:2A:8E:45:E4:30:D1:53:F9:67:78:6B:6B:F8:86 Authority key identifier: 9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D Certificate issuer: /CN=9c67ea34a011a4773871583ec3954e791d8c028d Certificate serial: 019C42EBBD4B5A7C337F0B2243DA6BBF1741 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft Manifest number: 0EF5 Signing time: Mon 09 Feb 2026 15:01:11 +0000 Manifest this update: Mon 09 Feb 2026 15:01:11 +0000 Manifest next update: Tue 10 Feb 2026 15:01:11 +0000 Files and hashes: 1: 8QeOnl1jSGn4_0NxM6NuGpN-0Jo.roa (hash: J4omMw3D0N9tMXhiPZ3E3pOd7uQCU3TjcYrnPrhAQ04=) 2: nGfqNKARpHc4cVg-w5VOeR2MAo0.crl (hash: Pv8mjIInhfOTVNcwK+pt7zfRWXhL8Ed0AyiWQ4YuIJQ=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:bd:4b:5a:7c:33:7f:0b:22:43:da:6b:bf:17:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c67ea34a011a4773871583ec3954e791d8c028d Validity Not Before: Feb 9 15:01:11 2026 GMT Not After : Feb 10 15:01:11 2026 GMT Subject: CN=bf158e964bf22a8e45e430d153f967786b6bf886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:53:63:73:ce:48:fd:ed:42:7d:d3:17:b2:ee: fd:e1:92:a2:4d:d0:b7:d9:3c:db:ce:ef:d0:e0:2f: dd:8e:12:2a:f8:a7:9e:2a:bf:65:f5:3b:6c:8b:e4: c2:80:0b:13:2a:3e:85:e2:27:45:bd:c5:e8:6a:11: f7:05:9d:e2:41:70:d5:17:12:f9:22:50:ea:7a:7a: 40:3b:48:b5:0e:eb:32:dc:f2:ef:e7:28:33:81:b3: 08:8f:21:ad:51:86:2d:2d:90:9e:82:8a:a6:5a:03: 98:fd:a7:53:83:7f:6c:78:9b:a9:f0:7d:70:47:1f: a4:de:cb:07:9b:a4:81:05:e5:52:09:4f:66:c5:1f: 60:11:b9:6e:f3:b4:13:05:7e:7e:f8:18:e0:07:84: 6e:8d:68:f1:f0:6b:d0:eb:75:86:b5:00:d2:22:a3: 76:b1:74:06:3c:67:e0:61:e6:f9:96:5e:1c:f5:15: 39:a3:45:42:4c:8a:9c:13:c7:ac:84:93:72:ae:ff: 39:57:57:c8:bd:09:9a:30:61:f2:f2:e6:4a:31:4b: dc:a7:d7:8c:9e:d5:fd:c7:ca:d0:79:ff:03:3b:01: d6:a8:d8:92:d5:e2:68:36:f0:69:92:64:2c:91:e0: 97:3b:f6:ac:ca:d9:f7:5f:d4:ca:e3:83:ce:d6:a4: 8b:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:15:8E:96:4B:F2:2A:8E:45:E4:30:D1:53:F9:67:78:6B:6B:F8:86 X509v3 Authority Key Identifier: keyid:9C:67:EA:34:A0:11:A4:77:38:71:58:3E:C3:95:4E:79:1D:8C:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nGfqNKARpHc4cVg-w5VOeR2MAo0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/8669d3-76cd-4cb0-8278-82c67c69e923/1/nGfqNKARpHc4cVg-w5VOeR2MAo0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 16:47:35:05:91:2f:46:b9:7e:11:2b:09:41:d7:19:c1:98:89: b7:aa:ab:f4:69:a7:01:c9:d3:8c:08:d5:ca:bf:d2:1e:98:3e: 6e:a3:b4:dd:95:7a:b6:ae:8d:87:be:52:d9:15:d4:e0:9f:1c: 93:4f:31:f7:84:f0:46:69:8e:86:27:85:a0:8a:94:fb:f4:74: 03:12:59:d4:9b:5d:5f:20:be:f3:65:86:a4:44:dc:26:39:41: a3:3e:06:e2:04:ef:e1:40:96:1e:79:54:dd:7c:f9:e7:58:62: c7:32:97:e3:d4:4b:3d:2b:47:5a:1a:ba:c1:59:f5:e6:e3:2a: 57:82:28:b8:52:b1:0d:11:49:13:44:d9:12:a3:79:9c:96:63: ff:14:35:f6:b3:4a:1d:81:fe:72:ce:f3:fe:3d:a4:13:4d:80: e0:dc:23:20:ee:c3:c2:b0:5d:74:eb:28:00:51:d4:9d:f2:d9: a6:be:e1:7d:63:47:77:77:27:fe:cd:17:98:ae:42:06:f8:ca: 34:5a:ba:68:f2:61:4d:eb:94:80:d5:cf:c6:56:6b:e1:e9:ec: 14:81:c9:9f:de:ad:b8:ae:cb:28:db:b6:87:1e:e9:b6:7a:02: 0d:13:91:45:11:a1:6f:b7:24:f0:04:b5:7f:2f:4d:5f:42:a5: bd:1a:2f:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC671LWnwzfwsiQ9prvxdBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNjdlYTM0YTAxMWE0NzczODcxNTgzZWMzOTU0ZTc5MWQ4 YzAyOGQwHhcNMjYwMjA5MTUwMTExWhcNMjYwMjEwMTUwMTExWjAzMTEwLwYDVQQD EyhiZjE1OGU5NjRiZjIyYThlNDVlNDMwZDE1M2Y5Njc3ODZiNmJmODg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8FNjc85I/e1CfdMXsu794ZKiTdC3 2Tzbzu/Q4C/djhIq+KeeKr9l9Ttsi+TCgAsTKj6F4idFvcXoahH3BZ3iQXDVFxL5 IlDqenpAO0i1Dusy3PLv5ygzgbMIjyGtUYYtLZCegoqmWgOY/adTg39seJup8H1w Rx+k3ssHm6SBBeVSCU9mxR9gEblu87QTBX5++BjgB4RujWjx8GvQ63WGtQDSIqN2 sXQGPGfgYeb5ll4c9RU5o0VCTIqcE8eshJNyrv85V1fIvQmaMGHy8uZKMUvcp9eM ntX9x8rQef8DOwHWqNiS1eJoNvBpkmQskeCXO/asytn3X9TK44PO1qSL9wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL8VjpZL8iqOReQw0VP5Z3hra/iGMB8GA1UdIwQY MBaAFJxn6jSgEaR3OHFYPsOVTnkdjAKNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgt ODJjNjdjNjllOTIzLzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS84NjY5ZDMtNzZjZC00Y2IwLTgyNzgtODJjNjdjNjllOTIz LzEvbkdmcU5LQVJwSGM0Y1ZnLXc1Vk9lUjJNQW8wLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAFkc1BZEv Rrl+ESsJQdcZwZiJt6qr9GmnAcnTjAjVyr/SHpg+bqO03ZV6tq6Nh75S2RXU4J8c k08x94TwRmmOhieFoIqU+/R0AxJZ1JtdXyC+82WGpETcJjlBoz4G4gTv4UCWHnlU 3Xz551hixzKX49RLPStHWhq6wVn15uMqV4IouFKxDRFJE0TZEqN5nJZj/xQ19rNK HYH+cs7z/j2kE02A4NwjIO7DwrBddOsoAFHUnfLZpr7hfWNHd3cn/s0XmK5CBvjK NFq6aPJhTeuUgNXPxlZr4ensFIHJn96tuK7LKNu2hx7ptnoCDRORRRGhb7ck8AS1 fy9NX0KlvRovwA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:45 2026 by rpki-client