This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft File: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft (raw, json) Hash identifier: 2FCKWOi/wfomKiYr8/bVZR7YAlu+7M7Ipy7D0W7IGcM= Subject key identifier: 73:89:4E:9C:0F:BE:F6:83:67:F9:F2:72:C2:D2:ED:03:35:9F:69:97 Authority key identifier: 9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61 Certificate issuer: /CN=9d0e2b9e69f562df14cf772bde05f7dacde25961 Certificate serial: 019C42B454C2B77E2D8B5781340FAAF88B4E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft Manifest number: 0EE3 Signing time: Mon 09 Feb 2026 14:00:40 +0000 Manifest this update: Mon 09 Feb 2026 14:00:40 +0000 Manifest next update: Tue 10 Feb 2026 14:00:40 +0000 Files and hashes: 1: _-WgAdeW2Y99K-sGrqhGfWbfEYA.roa (hash: 66pgLoCvktoVUaDGxvzDuDueB2STnHHTVeeS6krd+lc=) 2: nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl (hash: XVtc4pJz8e2u8O0iPjVFYeybWupT/N5Zc9Dikh2EG4U=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:54:c2:b7:7e:2d:8b:57:81:34:0f:aa:f8:8b:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9d0e2b9e69f562df14cf772bde05f7dacde25961 Validity Not Before: Feb 9 14:00:40 2026 GMT Not After : Feb 10 14:00:40 2026 GMT Subject: CN=73894e9c0fbef68367f9f272c2d2ed03359f6997 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:de:13:77:85:f1:84:8a:46:46:d4:e5:51:de: 47:91:25:79:a1:d2:90:1c:ad:50:ac:25:ca:a1:e2: 87:c9:69:72:9f:b6:5d:5a:d0:0f:5a:0c:89:5f:b7: d2:9f:66:e5:76:ab:1d:bf:13:92:a1:50:97:2a:16: 26:ac:12:cb:a4:f4:ef:c8:f4:f3:f3:fc:7b:10:0b: 34:ff:19:74:c3:18:74:af:56:96:08:4a:de:6e:ae: a3:11:17:55:f1:67:09:5e:77:6a:59:2b:61:e0:06: fc:ea:68:1a:89:13:45:4a:5f:91:7b:5c:1d:2e:89: 55:71:9c:d4:6d:d3:cf:fa:df:3b:46:d8:ec:21:54: 8c:d1:4e:05:b4:cc:d2:1c:9e:2a:0f:49:50:f6:b4: 39:48:5d:6c:87:2d:e3:b9:c1:33:4a:4d:95:0e:08: f8:7a:68:b0:3d:ee:34:52:0c:3d:fd:4a:ba:9c:80: 4b:ac:e0:c2:a0:7d:bf:03:30:f1:88:48:bd:37:57: 20:66:29:a5:9e:40:f4:9b:d0:7e:45:bb:7d:cd:cb: 81:e2:c3:61:26:a1:58:c1:05:b6:de:ab:3e:52:f5: bf:c9:fb:26:9d:54:27:58:1a:b3:56:f0:ef:57:16: 8b:02:bd:dd:17:f2:e8:e6:ef:1d:da:a5:ad:9a:b1: 9a:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:89:4E:9C:0F:BE:F6:83:67:F9:F2:72:C2:D2:ED:03:35:9F:69:97 X509v3 Authority Key Identifier: keyid:9D:0E:2B:9E:69:F5:62:DF:14:CF:77:2B:DE:05:F7:DA:CD:E2:59:61 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/25be2f-92eb-4cde-a247-d8dc34036ce7/1/nQ4rnmn1Yt8Uz3cr3gX32s3iWWE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:e6:92:2d:87:54:65:85:1f:5f:db:9e:9e:93:6e:40:c2:6c: 3f:61:4f:25:45:cc:fc:06:3b:4e:ff:0a:e6:f2:b1:b1:38:a5: 6b:87:78:c7:5f:2e:52:a3:37:9d:e9:41:c1:f9:b4:70:9a:3a: dd:4c:9e:d2:3a:99:ff:90:55:59:1a:c7:51:26:f9:2d:ae:35: c6:81:15:a3:8d:ee:67:50:38:05:14:0d:07:9f:41:64:56:26: 17:de:4d:72:26:5b:82:ec:c0:bc:dc:42:fc:7e:24:e2:c1:7b: ee:47:e0:91:ea:cf:ca:21:b2:88:b7:70:4e:02:8f:40:42:cd: a4:e2:c0:d1:1d:a1:fd:9a:f5:0c:4f:c9:e3:6e:79:77:af:11: a7:67:c8:b2:81:df:b6:6f:39:9d:5d:88:4f:f7:16:19:80:52: c0:14:04:33:68:95:a9:08:2c:f7:ba:5d:79:e1:ab:38:72:30: fe:ae:79:be:48:02:36:5f:17:4c:94:ac:18:58:b0:d5:4a:aa: 47:3a:06:d8:ef:e3:8c:65:71:78:78:9b:90:8b:d7:0a:7e:d1: 33:1b:d2:ae:8f:66:8c:3b:58:31:10:19:d1:5d:79:b9:8a:ad: f6:77:32:90:b3:5a:39:69:e5:97:b6:28:2d:0a:c9:47:5f:2c: 91:7c:c6:56 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtFTCt34ti1eBNA+q+ItOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlkMGUyYjllNjlmNTYyZGYxNGNmNzcyYmRlMDVmN2RhY2Rl MjU5NjEwHhcNMjYwMjA5MTQwMDQwWhcNMjYwMjEwMTQwMDQwWjAzMTEwLwYDVQQD Eyg3Mzg5NGU5YzBmYmVmNjgzNjdmOWYyNzJjMmQyZWQwMzM1OWY2OTk3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjt4Td4XxhIpGRtTlUd5HkSV5odKQ HK1QrCXKoeKHyWlyn7ZdWtAPWgyJX7fSn2bldqsdvxOSoVCXKhYmrBLLpPTvyPTz 8/x7EAs0/xl0wxh0r1aWCErebq6jERdV8WcJXndqWSth4Ab86mgaiRNFSl+Re1wd LolVcZzUbdPP+t87RtjsIVSM0U4FtMzSHJ4qD0lQ9rQ5SF1shy3jucEzSk2VDgj4 emiwPe40Ugw9/Uq6nIBLrODCoH2/AzDxiEi9N1cgZimlnkD0m9B+Rbt9zcuB4sNh JqFYwQW23qs+UvW/yfsmnVQnWBqzVvDvVxaLAr3dF/Lo5u8d2qWtmrGaJQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHOJTpwPvvaDZ/nycsLS7QM1n2mXMB8GA1UdIwQY MBaAFJ0OK55p9WLfFM93K94F99rN4llhMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDct ZDhkYzM0MDM2Y2U3LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS8yNWJlMmYtOTJlYi00Y2RlLWEyNDctZDhkYzM0MDM2Y2U3 LzEvblE0cm5tbjFZdDhVejNjcjNnWDMyczNpV1dFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVuaSLYdU ZYUfX9uenpNuQMJsP2FPJUXM/AY7Tv8K5vKxsTila4d4x18uUqM3nelBwfm0cJo6 3Uye0jqZ/5BVWRrHUSb5La41xoEVo43uZ1A4BRQNB59BZFYmF95NciZbguzAvNxC /H4k4sF77kfgkerPyiGyiLdwTgKPQELNpOLA0R2h/Zr1DE/J4255d68Rp2fIsoHf tm85nV2IT/cWGYBSwBQEM2iVqQgs97pdeeGrOHIw/q55vkgCNl8XTJSsGFiw1Uqq RzoG2O/jjGVxeHibkIvXCn7RMxvSro9mjDtYMRAZ0V15uYqt9ncykLNaOWnll7Yo LQrJR18skXzGVg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:41:31 2026 by rpki-client