This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft File: NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft (raw, json) Hash identifier: p9ekx3SlsVuOFS8wfPCPAAElUb9vdHQo15KxeBY4T1w= Subject key identifier: BE:07:C9:40:24:84:03:99:A2:8E:DB:43:0B:23:22:D9:E0:05:13:57 Authority key identifier: 35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D Certificate issuer: /CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d Certificate serial: 019C4390089CF2082C8A20248266F4BEA4CF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft Manifest number: 108F Signing time: Mon 09 Feb 2026 18:00:38 +0000 Manifest this update: Mon 09 Feb 2026 18:00:38 +0000 Manifest next update: Tue 10 Feb 2026 18:00:38 +0000 Files and hashes: 1: 1dnMq6ZCcFb70edGxGmL0hiobfI.roa (hash: +vsRlNxh8n7NYthhGysqntNveXYKCA8nzfq82JjmeCw=) 2: NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl (hash: r9a+D1S2iGIoRcYMzYSETA5PWMJBdjHymh2G0m5J0e8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:08:9c:f2:08:2c:8a:20:24:82:66:f4:be:a4:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=353f17f4bbb19346dc5afc0c235879fbe6357c6d Validity Not Before: Feb 9 18:00:38 2026 GMT Not After : Feb 10 18:00:38 2026 GMT Subject: CN=be07c94024840399a28edb430b2322d9e0051357 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:2e:5c:f7:0c:be:7e:2a:fe:cc:ef:27:a1:83: 83:7a:f5:4a:59:d9:e8:37:9e:90:49:17:fa:02:2f: aa:40:e4:c3:08:fb:4d:ae:72:3e:dd:03:42:cf:4a: 84:61:29:db:46:3c:12:da:59:70:d7:7b:13:bb:c9: 4b:73:a1:e4:d9:80:62:3d:80:71:17:90:f0:76:0a: ed:61:02:d5:43:54:9a:16:c4:dc:0d:9a:f2:2a:b3: c6:95:59:0f:ef:cf:9e:f1:b4:b0:83:db:f9:f0:b3: e5:92:71:67:7f:25:b4:8f:e2:86:af:28:67:93:af: 9e:55:ed:0b:01:74:81:bb:b3:39:34:f1:c7:46:66: 91:9f:6a:d2:17:74:69:fa:43:31:40:cf:ea:a4:bc: 13:4a:3b:8e:1b:8c:df:32:93:0e:3e:20:62:df:c2: 24:bc:2f:28:10:81:98:78:11:94:e4:01:cb:bb:7e: d7:f1:1e:22:0f:9c:34:16:43:39:66:aa:bb:c1:98: 42:c0:d6:bd:59:75:53:29:1e:64:0d:59:84:f6:9a: 27:9e:28:69:42:4b:7d:c4:00:8c:95:31:61:02:11: 01:8f:2c:8c:85:10:88:0b:4f:dd:76:c1:4a:3a:6e: 1c:b4:d4:85:0e:6c:74:23:0a:04:da:0c:0e:57:28: 84:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:07:C9:40:24:84:03:99:A2:8E:DB:43:0B:23:22:D9:E0:05:13:57 X509v3 Authority Key Identifier: keyid:35:3F:17:F4:BB:B1:93:46:DC:5A:FC:0C:23:58:79:FB:E6:35:7C:6D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NT8X9Luxk0bcWvwMI1h5--Y1fG0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5c/0a24b5-b9ad-48a6-adf7-9fd84c79b0ef/1/NT8X9Luxk0bcWvwMI1h5--Y1fG0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:4b:cc:3e:f9:c0:67:a0:8d:ed:54:65:83:68:83:a9:5a:30: f1:39:14:37:70:b6:23:5b:25:5e:f6:72:45:fe:98:7c:0c:6c: e0:a3:05:f3:64:6e:83:4e:fe:83:c6:ac:4f:cb:86:f0:8b:af: d5:df:7d:7f:21:9b:61:26:a5:87:65:46:a6:46:f4:47:05:39: 96:c5:15:ce:bf:1d:b3:30:b6:ac:90:c6:b2:c3:b6:2d:69:e5: 79:f7:4d:8a:81:2c:30:ab:57:1c:fb:cd:8f:4a:28:6a:ce:fd: 14:4f:0a:7f:a3:ce:e6:85:82:41:8c:df:4a:ba:01:3a:72:f3: 44:a1:85:4c:f0:31:c2:83:26:83:90:a3:14:41:1a:b0:56:cf: 1a:3a:c0:ea:7f:6c:1a:32:a0:90:f5:99:55:16:ab:dc:8b:63: ab:18:e4:f4:19:d3:ce:39:6e:a1:31:0c:2f:95:68:6a:b9:b1: 0a:bd:c9:99:1e:ba:3c:bb:17:24:61:80:4c:9c:2f:25:85:bd: af:97:6d:40:68:95:f1:a5:28:cc:fa:76:2d:62:5e:2f:00:2e: 75:bb:ce:ac:7d:c5:6b:3e:fe:13:eb:96:9c:e9:96:98:f1:83: d8:c6:dd:0b:0a:b3:ab:5d:81:e9:2e:a8:49:ae:65:ec:e3:c9: 7e:e0:00:fe -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkAic8ggsiiAkgmb0vqTPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1M2YxN2Y0YmJiMTkzNDZkYzVhZmMwYzIzNTg3OWZiZTYz NTdjNmQwHhcNMjYwMjA5MTgwMDM4WhcNMjYwMjEwMTgwMDM4WjAzMTEwLwYDVQQD EyhiZTA3Yzk0MDI0ODQwMzk5YTI4ZWRiNDMwYjIzMjJkOWUwMDUxMzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1y5c9wy+fir+zO8noYODevVKWdno N56QSRf6Ai+qQOTDCPtNrnI+3QNCz0qEYSnbRjwS2llw13sTu8lLc6Hk2YBiPYBx F5DwdgrtYQLVQ1SaFsTcDZryKrPGlVkP78+e8bSwg9v58LPlknFnfyW0j+KGryhn k6+eVe0LAXSBu7M5NPHHRmaRn2rSF3Rp+kMxQM/qpLwTSjuOG4zfMpMOPiBi38Ik vC8oEIGYeBGU5AHLu37X8R4iD5w0FkM5Zqq7wZhCwNa9WXVTKR5kDVmE9ponnihp Qkt9xACMlTFhAhEBjyyMhRCIC0/ddsFKOm4ctNSFDmx0IwoE2gwOVyiEPwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL4HyUAkhAOZoo7bQwsjItngBRNXMB8GA1UdIwQY MBaAFDU/F/S7sZNG3Fr8DCNYefvmNXxtMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Yy8wYTI0YjUtYjlhZC00OGE2LWFkZjct OWZkODRjNzliMGVmLzEvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Yy8wYTI0YjUtYjlhZC00OGE2LWFkZjctOWZkODRjNzliMGVm LzEvTlQ4WDlMdXhrMGJjV3Z3TUkxaDUtLVkxZkcwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjkvMPvnA Z6CN7VRlg2iDqVow8TkUN3C2I1slXvZyRf6YfAxs4KMF82Rug07+g8asT8uG8Iuv 1d99fyGbYSalh2VGpkb0RwU5lsUVzr8dszC2rJDGssO2LWnlefdNioEsMKtXHPvN j0ooas79FE8Kf6PO5oWCQYzfSroBOnLzRKGFTPAxwoMmg5CjFEEasFbPGjrA6n9s GjKgkPWZVRar3Itjqxjk9BnTzjluoTEML5VoarmxCr3JmR66PLsXJGGATJwvJYW9 r5dtQGiV8aUozPp2LWJeLwAudbvOrH3Faz7+E+uWnOmWmPGD2MbdCwqzq12B6S6o Sa5l7OPJfuAA/g== -----END CERTIFICATE-----Generated at Tue Feb 10 00:31:05 2026 by rpki-client