This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft File: nfToC0ytTlC3iO3xaXZxLe7_bA0.mft (raw, json) Hash identifier: 4pOi4qLaEjEQRIKeZlLPtg4BnIJjUTPNrsi4u+XEDqw= Subject key identifier: D9:23:EC:ED:3A:BC:68:09:54:D9:99:C8:9D:9E:AC:8C:8C:5F:35:67 Authority key identifier: 9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D Certificate issuer: /CN=9df4e80b4cad4e50b788edf16976712deeff6c0d Certificate serial: 019C4210352CA028E85AC03C7362F110651E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft Manifest number: 10E4 Signing time: Mon 09 Feb 2026 11:01:24 +0000 Manifest this update: Mon 09 Feb 2026 11:01:24 +0000 Manifest next update: Tue 10 Feb 2026 11:01:24 +0000 Files and hashes: 1: 6qyreawZF4fVMyWkw4FMT5_E4Cs.roa (hash: KqH2FCJeUYV2BaDFAOaLAJqNcjNFt24zga0dBBMyQAY=) 2: nfToC0ytTlC3iO3xaXZxLe7_bA0.crl (hash: 14ftcYia6qZo2BVaJ/4Nm8cruQljq6Xtaj+c8D+0m8k=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:01:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:10:35:2c:a0:28:e8:5a:c0:3c:73:62:f1:10:65:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df4e80b4cad4e50b788edf16976712deeff6c0d Validity Not Before: Feb 9 11:01:24 2026 GMT Not After : Feb 10 11:01:24 2026 GMT Subject: CN=d923eced3abc680954d999c89d9eac8c8c5f3567 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:eb:06:89:f0:e9:df:a4:c2:23:fe:80:69:7e: d4:e2:d4:a6:e8:35:9c:46:7e:b0:43:44:2c:32:f6: 69:cf:e1:73:ce:7a:36:63:13:fe:0a:44:ef:32:6a: c4:3d:a7:6c:85:d4:bd:d0:5b:33:31:ac:bb:25:77: 4e:8a:85:78:c2:fa:9a:d4:99:90:dc:f8:e8:23:45: d7:82:24:ea:39:09:c4:da:25:c7:02:1d:93:d2:59: b4:7f:95:04:8a:18:1e:50:cd:9c:9a:cf:a4:e3:1a: 08:99:cb:bc:15:88:33:3c:f5:05:0d:d7:7a:34:c2: 8b:cc:dc:39:e7:20:59:ad:48:35:5d:00:e6:08:dc: a4:b4:32:ab:ef:96:1d:84:e6:f0:a1:20:eb:d4:27: 06:f1:9b:7b:ef:5b:27:23:34:e7:3f:78:ae:77:20: 0b:33:bd:89:dd:03:c5:2b:04:56:84:94:74:f9:9b: d7:67:c9:a7:f8:c7:8a:a7:42:17:0a:56:7f:0d:f0: fc:87:7a:94:19:88:62:05:48:c0:db:c3:8d:d6:6b: 0d:09:ef:ac:32:5b:74:f1:73:b1:1d:cb:a6:ee:76: 25:86:ce:15:2f:28:c2:70:48:59:28:88:6b:37:59: e4:7c:16:91:7a:a6:3c:96:8a:ff:bf:5e:f6:b1:45: 9a:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:23:EC:ED:3A:BC:68:09:54:D9:99:C8:9D:9E:AC:8C:8C:5F:35:67 X509v3 Authority Key Identifier: keyid:9D:F4:E8:0B:4C:AD:4E:50:B7:88:ED:F1:69:76:71:2D:EE:FF:6C:0D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfToC0ytTlC3iO3xaXZxLe7_bA0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/50/34011d-01bf-48a1-a8c3-c9fc5f452995/1/nfToC0ytTlC3iO3xaXZxLe7_bA0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:36:94:63:a6:fc:9b:93:4e:2d:49:79:7b:9e:3d:55:2c:cf: dc:61:df:76:61:34:41:f0:8f:a3:7f:93:ae:16:f0:14:47:d4: 0d:d4:f4:d2:79:f5:21:ea:49:42:dd:a2:a9:6d:29:b9:1a:53: 70:f7:bb:41:47:49:bd:fb:57:6c:f5:1f:79:15:e6:33:2c:2e: ab:f5:53:cf:4d:60:d5:15:4c:4c:3a:b4:ae:d5:c9:2e:c3:5c: 4d:29:7b:95:5e:0e:43:ac:d2:56:2a:b3:3b:13:3a:bb:9b:8c: f7:46:9a:13:42:c1:cf:c7:c9:b7:f9:02:70:05:19:dc:1e:08: 90:45:01:29:5a:43:a8:21:6a:9a:f2:bd:14:fe:9b:3a:57:fb: 12:b7:d8:53:3b:ea:c2:2e:2d:bd:bf:98:54:2d:ca:89:74:b6: c8:cb:b5:e9:b1:df:b1:80:17:7d:9b:d2:ca:83:0a:da:b2:b0: 3f:23:41:08:27:51:d3:28:89:39:fc:11:c0:fc:b2:39:c7:18: 42:08:fa:55:1b:c1:41:d7:ac:2a:c7:57:35:da:26:09:03:1f: 18:4a:5d:42:d2:66:69:c9:27:d5:96:1a:82:00:8b:14:86:88: b5:cd:da:94:47:2a:b1:06:e5:1c:d8:d0:be:04:a2:e5:29:fe: 19:6d:e3:9e -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCEDUsoCjoWsA8c2LxEGUeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkZjRlODBiNGNhZDRlNTBiNzg4ZWRmMTY5NzY3MTJkZWVm ZjZjMGQwHhcNMjYwMjA5MTEwMTI0WhcNMjYwMjEwMTEwMTI0WjAzMTEwLwYDVQQD EyhkOTIzZWNlZDNhYmM2ODA5NTRkOTk5Yzg5ZDllYWM4YzhjNWYzNTY3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7esGifDp36TCI/6AaX7U4tSm6DWc Rn6wQ0QsMvZpz+Fzzno2YxP+CkTvMmrEPadshdS90FszMay7JXdOioV4wvqa1JmQ 3PjoI0XXgiTqOQnE2iXHAh2T0lm0f5UEihgeUM2cms+k4xoImcu8FYgzPPUFDdd6 NMKLzNw55yBZrUg1XQDmCNyktDKr75YdhObwoSDr1CcG8Zt771snIzTnP3iudyAL M72J3QPFKwRWhJR0+ZvXZ8mn+MeKp0IXClZ/DfD8h3qUGYhiBUjA28ON1msNCe+s Mlt08XOxHcum7nYlhs4VLyjCcEhZKIhrN1nkfBaReqY8lor/v172sUWamQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNkj7O06vGgJVNmZyJ2erIyMXzVnMB8GA1UdIwQY MBaAFJ306AtMrU5Qt4jt8Wl2cS3u/2wNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbmZUb0MweXRUbEMzaU8zeGFYWnhMZTdfYkEwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81MC8zNDAxMWQtMDFiZi00OGExLWE4YzMt YzlmYzVmNDUyOTk1LzEvbmZUb0MweXRUbEMzaU8zeGFYWnhMZTdfYkEwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81MC8zNDAxMWQtMDFiZi00OGExLWE4YzMtYzlmYzVmNDUyOTk1 LzEvbmZUb0MweXRUbEMzaU8zeGFYWnhMZTdfYkEwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAazaUY6b8 m5NOLUl5e549VSzP3GHfdmE0QfCPo3+TrhbwFEfUDdT00nn1IepJQt2iqW0puRpT cPe7QUdJvftXbPUfeRXmMywuq/VTz01g1RVMTDq0rtXJLsNcTSl7lV4OQ6zSViqz OxM6u5uM90aaE0LBz8fJt/kCcAUZ3B4IkEUBKVpDqCFqmvK9FP6bOlf7ErfYUzvq wi4tvb+YVC3KiXS2yMu16bHfsYAXfZvSyoMK2rKwPyNBCCdR0yiJOfwRwPyyOccY Qgj6VRvBQdesKsdXNdomCQMfGEpdQtJmackn1ZYaggCLFIaItc3alEcqsQblHNjQ vgSi5Sn+GW3jng== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:35 2026 by rpki-client