This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft File: N5fgOfAlolqm6ZI5HZJCYGmbpns.mft (raw, json) Hash identifier: dACQGDKO9KxYkiiUbGuwi99wXIM1oKD3b4ZQ0c8X894= Subject key identifier: 2F:9C:17:F5:95:F4:05:D8:F2:47:6E:D1:64:5C:03:6E:D5:D3:83:5E Authority key identifier: 37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B Certificate issuer: /CN=3797e039f025a25aa6e992391d924260699ba67b Certificate serial: 019C43FE0BF66ACBB483FDB2E0023133E1D3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft Manifest number: 118B Signing time: Mon 09 Feb 2026 20:00:48 +0000 Manifest this update: Mon 09 Feb 2026 20:00:48 +0000 Manifest next update: Tue 10 Feb 2026 20:00:48 +0000 Files and hashes: 1: N5fgOfAlolqm6ZI5HZJCYGmbpns.crl (hash: ItIoNHKMs53Z4rfMo+XRNPAMn/WRYUmCyo9ED2GeNo0=) 2: NIPM7aKL5uexVcL90KLAP5wDjZQ.roa (hash: 9ZYrM11j7nntBzeZqvmkRCiHqz1k+TWVJfFzgJNUNng=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fe:0b:f6:6a:cb:b4:83:fd:b2:e0:02:31:33:e1:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3797e039f025a25aa6e992391d924260699ba67b Validity Not Before: Feb 9 20:00:48 2026 GMT Not After : Feb 10 20:00:48 2026 GMT Subject: CN=2f9c17f595f405d8f2476ed1645c036ed5d3835e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:a1:05:08:7e:d5:2c:d2:dd:2e:38:fb:64:63: 51:6c:56:77:db:02:d1:44:0a:ad:d2:e3:c9:02:bb: 1c:b2:96:d3:d5:63:f7:f3:6f:42:45:c6:1f:1e:d6: 87:8d:da:cd:18:ca:79:e0:70:16:d3:72:2e:06:4d: 12:26:fa:e1:0f:95:bd:1d:4b:f7:6c:2b:9a:fa:35: 00:3d:35:14:8a:b3:82:35:70:b7:50:50:7a:af:d4: fd:c1:24:9f:99:e4:83:55:dc:12:a6:cb:33:c3:14: b1:44:83:83:cc:13:c8:1c:0b:08:5d:16:59:41:32: 41:f4:b0:4f:23:c4:c2:68:86:ed:5c:ba:07:68:43: 99:69:6b:77:0c:22:98:8c:9e:f6:a4:91:11:5c:6a: 15:9f:8f:e8:a5:92:97:dc:3c:0c:54:61:5b:fe:c6: fa:7d:1c:73:d9:25:f5:6b:61:0c:20:0f:a6:e4:a6: 72:d0:24:30:06:77:51:20:7a:38:65:3e:b8:c2:5d: 18:8e:76:b8:02:19:72:91:72:9a:90:07:5a:c9:1a: 86:69:0c:4c:6e:21:91:ac:32:bc:20:76:0c:d6:dc: e1:8f:b4:8e:4e:07:31:7e:57:46:af:8d:96:88:1e: d6:ff:eb:0e:b7:52:e3:38:2f:a4:58:ea:32:fa:44: c3:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:9C:17:F5:95:F4:05:D8:F2:47:6E:D1:64:5C:03:6E:D5:D3:83:5E X509v3 Authority Key Identifier: keyid:37:97:E0:39:F0:25:A2:5A:A6:E9:92:39:1D:92:42:60:69:9B:A6:7B X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/N5fgOfAlolqm6ZI5HZJCYGmbpns.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/61/0abb8a-9798-4bf8-bae1-c1c05cdb7841/1/N5fgOfAlolqm6ZI5HZJCYGmbpns.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:79:92:58:b9:09:f6:7e:a2:ce:51:59:80:09:e6:5f:a5:69: c0:1a:64:bb:52:f3:f9:4f:5f:19:f9:9f:32:e8:3f:2b:ba:fd: 44:46:d7:b7:81:7a:8b:09:44:36:60:34:e9:d0:37:46:7b:cc: a7:f5:fa:ae:2d:90:a5:5f:60:bb:6b:12:09:b5:8a:b6:ee:25: 7e:8a:bc:48:75:0b:09:ad:45:42:9c:29:c3:94:52:54:60:17: e3:5e:85:54:e0:a0:d7:36:4f:6b:9f:ac:fe:82:a4:05:a6:11: 6c:2d:c6:43:80:0f:b2:37:2c:69:32:94:5f:0b:2d:a9:6d:dd: 14:d3:8e:4f:d3:a7:2b:a5:7e:08:bb:84:6d:ce:24:e3:c8:12: 65:31:b3:71:c4:b9:bf:4a:76:0c:6c:ba:94:12:e4:46:20:24: c7:2e:bd:b7:af:62:4d:01:21:2f:c2:10:cf:25:db:5b:42:3b: c5:f4:40:c6:7f:4d:80:6a:d7:c2:0d:bd:0c:97:e5:41:b5:d9: 00:72:f8:b4:a6:88:d5:07:db:21:8f:93:87:f5:c3:fa:64:1c: ea:bd:f8:22:42:73:60:eb:3e:0f:30:dd:1c:22:68:4d:cd:b0: 20:cf:c3:4b:8f:b8:04:91:8e:0c:96:3c:41:bd:31:86:1a:96: ee:75:81:3b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/gv2asu0g/2y4AIxM+HTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM3OTdlMDM5ZjAyNWEyNWFhNmU5OTIzOTFkOTI0MjYwNjk5 YmE2N2IwHhcNMjYwMjA5MjAwMDQ4WhcNMjYwMjEwMjAwMDQ4WjAzMTEwLwYDVQQD EygyZjljMTdmNTk1ZjQwNWQ4ZjI0NzZlZDE2NDVjMDM2ZWQ1ZDM4MzVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi6EFCH7VLNLdLjj7ZGNRbFZ32wLR RAqt0uPJArscspbT1WP3829CRcYfHtaHjdrNGMp54HAW03IuBk0SJvrhD5W9HUv3 bCua+jUAPTUUirOCNXC3UFB6r9T9wSSfmeSDVdwSpsszwxSxRIODzBPIHAsIXRZZ QTJB9LBPI8TCaIbtXLoHaEOZaWt3DCKYjJ72pJERXGoVn4/opZKX3DwMVGFb/sb6 fRxz2SX1a2EMIA+m5KZy0CQwBndRIHo4ZT64wl0Yjna4AhlykXKakAdayRqGaQxM biGRrDK8IHYM1tzhj7SOTgcxfldGr42WiB7W/+sOt1LjOC+kWOoy+kTD8wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC+cF/WV9AXY8kdu0WRcA27V04NeMB8GA1UdIwQY MBaAFDeX4DnwJaJapumSOR2SQmBpm6Z7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MS8wYWJiOGEtOTc5OC00YmY4LWJhZTEt YzFjMDVjZGI3ODQxLzEvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82MS8wYWJiOGEtOTc5OC00YmY4LWJhZTEtYzFjMDVjZGI3ODQx LzEvTjVmZ09mQWxvbHFtNlpJNUhaSkNZR21icG5zLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAU3mSWLkJ 9n6izlFZgAnmX6VpwBpku1Lz+U9fGfmfMug/K7r9REbXt4F6iwlENmA06dA3RnvM p/X6ri2QpV9gu2sSCbWKtu4lfoq8SHULCa1FQpwpw5RSVGAX416FVOCg1zZPa5+s /oKkBaYRbC3GQ4APsjcsaTKUXwstqW3dFNOOT9OnK6V+CLuEbc4k48gSZTGzccS5 v0p2DGy6lBLkRiAkxy69t69iTQEhL8IQzyXbW0I7xfRAxn9NgGrXwg29DJflQbXZ AHL4tKaI1QfbIY+Th/XD+mQc6r34IkJzYOs+DzDdHCJoTc2wIM/DS4+4BJGODJY8 Qb0xhhqW7nWBOw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:32 2026 by rpki-client