This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft File: NVyaW8uDQBCKQchiduHLlKYefak.mft (raw, json) Hash identifier: bAqUKtng1haKNED+W6qGzaNMTlm9T+SUbmFJg1KmGpE= Subject key identifier: 10:65:2C:1A:F9:37:E0:B7:72:AB:0A:87:E7:3D:F6:DB:AA:FE:F2:57 Authority key identifier: 35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9 Certificate issuer: /CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9 Certificate serial: 019C4246270D61378C7FBD88F9E0D7D90DBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft Manifest number: 10A9 Signing time: Mon 09 Feb 2026 12:00:19 +0000 Manifest this update: Mon 09 Feb 2026 12:00:19 +0000 Manifest next update: Tue 10 Feb 2026 12:00:19 +0000 Files and hashes: 1: NVyaW8uDQBCKQchiduHLlKYefak.crl (hash: sH4HeBNodSYgtbBFozADGF8A4cA9roEdJ2V30hk0roA=) 2: wvN6kWBv9-WIzYsvm-bSWdFrGOY.roa (hash: CKPOzucBQdx5H4UpPqvBTwUGJcxs2W6ttGR5J1M+c5s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:27:0d:61:37:8c:7f:bd:88:f9:e0:d7:d9:0d:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=355c9a5bcb8340108a41c86276e1cb94a61e7da9 Validity Not Before: Feb 9 12:00:19 2026 GMT Not After : Feb 10 12:00:19 2026 GMT Subject: CN=10652c1af937e0b772ab0a87e73df6dbaafef257 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:4b:bf:b7:e7:b4:12:e0:9a:71:cf:c8:c5:e8: b8:e2:10:45:e2:a7:68:c5:c9:a1:c0:1d:06:14:46: 84:55:4f:76:5c:3c:dd:20:54:b8:05:2f:e6:41:96: f3:52:a4:74:c9:8f:54:02:4a:dd:57:90:74:51:71: 75:93:75:db:1c:ce:e9:a9:11:08:3c:58:d3:b7:28: 97:94:53:20:08:d3:fd:4f:15:8e:9e:be:d6:9a:ac: 6e:44:fe:b9:14:ce:56:ba:50:a5:8c:ba:62:99:69: 21:5e:5d:67:5a:46:72:72:af:d6:49:64:37:4e:02: bd:67:fc:6c:27:5b:fe:61:ad:b5:21:fa:cf:5c:c4: a7:c0:64:2e:64:75:8e:4a:e1:60:3e:a8:a7:18:94: 31:3e:39:7a:18:dd:77:31:64:90:da:b3:7c:32:da: 82:34:00:78:13:51:b9:03:34:3e:f0:44:af:b2:be: 0b:1a:48:fb:ae:26:19:b9:e2:c2:d2:90:d6:5e:79: d5:f3:45:90:22:d1:0d:15:fc:58:23:e8:44:a2:c6: 86:e5:b3:11:5d:bd:9e:56:02:43:60:6f:70:ce:98: 1b:57:14:4c:87:25:fc:6a:97:77:4a:87:2f:e6:3b: 21:32:a2:e7:a0:e0:ae:3a:51:9a:84:f1:7e:47:48: 51:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:65:2C:1A:F9:37:E0:B7:72:AB:0A:87:E7:3D:F6:DB:AA:FE:F2:57 X509v3 Authority Key Identifier: keyid:35:5C:9A:5B:CB:83:40:10:8A:41:C8:62:76:E1:CB:94:A6:1E:7D:A9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NVyaW8uDQBCKQchiduHLlKYefak.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/71/3f426f-79ee-4cb2-ab17-30d64ff70b90/1/NVyaW8uDQBCKQchiduHLlKYefak.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:62:09:8a:3b:4f:3e:55:62:1a:90:71:0c:db:07:49:f6:1a: 7c:80:59:c9:b4:95:b3:bc:39:50:0b:81:2c:ce:fe:ba:e8:18: 93:9b:56:fc:a7:79:cf:e9:d9:f8:74:1a:46:04:cd:e5:5a:cf: 9e:37:66:c9:f8:20:c8:eb:12:59:3a:72:c2:59:5f:69:f8:89: 73:72:5f:d5:65:46:46:03:cd:52:e0:97:54:b3:90:7f:9a:b2: 57:9c:ac:0a:11:30:4a:65:4f:61:b9:e0:bb:41:14:79:c0:19: 52:4f:99:3e:90:7d:e2:3f:57:7c:23:32:5b:52:b0:b0:72:9c: 06:ab:41:93:62:b4:f0:e0:4f:aa:a8:96:bb:18:59:45:f6:fa: b0:5b:dc:b6:b5:a4:5b:74:42:47:95:36:2f:6f:c2:1e:76:34: e7:c8:79:7c:6a:e2:bf:02:fc:e4:40:82:47:0d:b8:73:a2:b0: 0e:52:b9:21:64:af:b3:5a:e2:76:ca:8e:21:92:2a:46:83:19: be:c1:9f:2b:36:59:62:fb:93:fd:8f:b8:64:27:7d:e7:3c:78: 2c:22:fd:72:c0:77:18:b4:88:07:10:53:43:b6:86:20:a7:c1: dc:8f:e8:68:73:27:fe:17:88:27:2e:dd:f6:da:9a:02:13:0a: e7:98:fb:76 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRicNYTeMf72I+eDX2Q2/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1NWM5YTViY2I4MzQwMTA4YTQxYzg2Mjc2ZTFjYjk0YTYx ZTdkYTkwHhcNMjYwMjA5MTIwMDE5WhcNMjYwMjEwMTIwMDE5WjAzMTEwLwYDVQQD EygxMDY1MmMxYWY5MzdlMGI3NzJhYjBhODdlNzNkZjZkYmFhZmVmMjU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq0u/t+e0EuCacc/Ixei44hBF4qdo xcmhwB0GFEaEVU92XDzdIFS4BS/mQZbzUqR0yY9UAkrdV5B0UXF1k3XbHM7pqREI PFjTtyiXlFMgCNP9TxWOnr7WmqxuRP65FM5WulCljLpimWkhXl1nWkZycq/WSWQ3 TgK9Z/xsJ1v+Ya21IfrPXMSnwGQuZHWOSuFgPqinGJQxPjl6GN13MWSQ2rN8MtqC NAB4E1G5AzQ+8ESvsr4LGkj7riYZueLC0pDWXnnV80WQItENFfxYI+hEosaG5bMR Xb2eVgJDYG9wzpgbVxRMhyX8apd3Socv5jshMqLnoOCuOlGahPF+R0hR7wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBBlLBr5N+C3cqsKh+c99tuq/vJXMB8GA1UdIwQY MBaAFDVcmlvLg0AQikHIYnbhy5SmHn2pMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83MS8zZjQyNmYtNzllZS00Y2IyLWFiMTct MzBkNjRmZjcwYjkwLzEvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83MS8zZjQyNmYtNzllZS00Y2IyLWFiMTctMzBkNjRmZjcwYjkw LzEvTlZ5YVc4dURRQkNLUWNoaWR1SExsS1llZmFrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEmIJijtP PlViGpBxDNsHSfYafIBZybSVs7w5UAuBLM7+uugYk5tW/Kd5z+nZ+HQaRgTN5VrP njdmyfggyOsSWTpywllfafiJc3Jf1WVGRgPNUuCXVLOQf5qyV5ysChEwSmVPYbng u0EUecAZUk+ZPpB94j9XfCMyW1KwsHKcBqtBk2K08OBPqqiWuxhZRfb6sFvctrWk W3RCR5U2L2/CHnY058h5fGrivwL85ECCRw24c6KwDlK5IWSvs1ridsqOIZIqRoMZ vsGfKzZZYvuT/Y+4ZCd95zx4LCL9csB3GLSIBxBTQ7aGIKfB3I/oaHMn/heIJy7d 9tqaAhMK55j7dg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:45 2026 by rpki-client