This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft File: NAahLsxTolGnXOe6yqyeQa7otMo.mft (raw, json) Hash identifier: bPiHKyvAZN9APoZCe6HQXzPXmhH/fFuNbgzA135MUt4= Subject key identifier: FD:03:0C:F8:83:CC:09:8D:F5:22:64:51:A7:28:50:42:DA:24:9E:7D Authority key identifier: 34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA Certificate issuer: /CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca Certificate serial: 019C42463772A18EF1699277A109FA21319C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft Manifest number: 180F Signing time: Mon 09 Feb 2026 12:00:23 +0000 Manifest this update: Mon 09 Feb 2026 12:00:23 +0000 Manifest next update: Tue 10 Feb 2026 12:00:23 +0000 Files and hashes: 1: NAahLsxTolGnXOe6yqyeQa7otMo.crl (hash: mfhuVb8e09XtNsCw5yEPG9tAFt4AY902EDOsd0H6bkQ=) 2: oCkrji-yhOLJX8VHxwbdTNBaxF4.roa (hash: vhMG86jwpjaLSfFs6ZRS9x4Io+mWCNdI1hjeUMa7cfs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:37:72:a1:8e:f1:69:92:77:a1:09:fa:21:31:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3406a12ecc53a251a75ce7bacaac9e41aee8b4ca Validity Not Before: Feb 9 12:00:23 2026 GMT Not After : Feb 10 12:00:23 2026 GMT Subject: CN=fd030cf883cc098df5226451a7285042da249e7d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:5c:a1:4b:71:7d:a7:1e:7b:43:58:9d:df:7c: 53:7c:3b:c6:3a:83:c1:71:0c:57:93:b0:dd:db:ff: 04:ef:9e:04:5d:ee:a0:38:9f:1b:82:52:ef:60:fa: 28:ba:7e:fc:08:da:14:31:02:17:d8:7d:5e:87:b0: 1d:dc:a5:05:f1:8e:ed:72:59:6f:01:85:0f:60:b1: c7:e0:ed:1b:7c:0e:1b:4d:33:52:3e:a1:42:8e:1d: 5f:7a:47:fa:ef:cd:76:56:a9:c7:1f:ee:b1:42:94: cc:4b:b7:bf:6a:84:27:23:07:79:b8:a8:0e:55:1c: 4e:45:7e:3c:a5:b9:64:8b:76:e4:6d:d7:c3:87:25: bc:6a:c0:96:37:de:8d:5b:b1:a2:21:94:4b:f5:31: 04:ec:08:16:a8:c6:4c:56:06:32:23:e0:c0:92:89: e7:e3:74:8d:33:4f:56:8b:b2:8d:01:8f:e0:87:5c: 06:16:58:e1:71:71:29:36:e3:7f:a2:6e:bc:05:82: 1c:85:1c:06:9b:b7:3f:69:8c:d5:52:fb:85:6c:68: 2d:d2:6f:14:14:12:40:8e:cd:1d:eb:bd:9b:e3:74: 1c:1f:97:97:20:46:d8:0d:0d:ea:56:eb:77:95:01: b8:58:b7:60:f6:31:6b:29:20:bf:ab:49:55:ca:8c: ae:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:03:0C:F8:83:CC:09:8D:F5:22:64:51:A7:28:50:42:DA:24:9E:7D X509v3 Authority Key Identifier: keyid:34:06:A1:2E:CC:53:A2:51:A7:5C:E7:BA:CA:AC:9E:41:AE:E8:B4:CA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NAahLsxTolGnXOe6yqyeQa7otMo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/72/87f92e-4e67-4ac9-96c5-a779baaa7599/1/NAahLsxTolGnXOe6yqyeQa7otMo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:0b:08:cc:85:c0:42:ae:a2:c4:4e:2c:48:59:56:bf:51:3b: bc:f3:db:b1:d7:21:44:d0:dd:cb:87:b7:83:ae:56:ab:bf:dd: 65:9a:7c:03:f1:b2:0a:80:d9:f7:0c:c8:b5:83:fb:46:1e:d5: 0f:9d:61:a7:8b:cb:4e:7a:7a:b1:10:e7:08:6c:f6:16:6d:ef: 7c:17:ff:3a:b4:5e:56:fd:bc:09:2f:d2:3b:fe:5a:e3:5a:a0: ac:91:2e:c2:0f:7c:17:b7:d0:43:c1:fc:f5:3d:2c:dc:6a:94: 5d:17:9c:b0:df:b8:99:22:f1:4a:43:73:28:22:a3:0b:33:8a: c8:65:97:c4:0c:57:67:e3:09:93:64:1c:9d:97:82:c6:1d:42: 3c:c8:94:ac:bf:17:22:0e:e9:e0:3e:d4:62:e4:06:72:1e:33: d0:81:d0:0b:ae:65:0c:a8:1b:00:ed:b8:22:8b:b0:bc:39:44: b2:30:f2:1d:67:63:9f:83:97:0e:e4:61:81:71:7e:ab:b2:27: f8:7d:dd:d7:19:d0:2c:6d:c5:e7:fd:65:5c:29:c8:90:a0:5e: b9:7f:3a:88:c8:f7:9c:d6:98:c6:2a:77:ad:4c:9c:fc:1f:69: cf:b2:f3:8f:49:76:02:65:7b:dd:50:83:88:f5:57:9f:a4:a9: ca:b3:29:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRjdyoY7xaZJ3oQn6ITGcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM0MDZhMTJlY2M1M2EyNTFhNzVjZTdiYWNhYWM5ZTQxYWVl OGI0Y2EwHhcNMjYwMjA5MTIwMDIzWhcNMjYwMjEwMTIwMDIzWjAzMTEwLwYDVQQD EyhmZDAzMGNmODgzY2MwOThkZjUyMjY0NTFhNzI4NTA0MmRhMjQ5ZTdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVyhS3F9px57Q1id33xTfDvGOoPB cQxXk7Dd2/8E754EXe6gOJ8bglLvYPooun78CNoUMQIX2H1eh7Ad3KUF8Y7tcllv AYUPYLHH4O0bfA4bTTNSPqFCjh1fekf67812VqnHH+6xQpTMS7e/aoQnIwd5uKgO VRxORX48pblki3bkbdfDhyW8asCWN96NW7GiIZRL9TEE7AgWqMZMVgYyI+DAkonn 43SNM09Wi7KNAY/gh1wGFljhcXEpNuN/om68BYIchRwGm7c/aYzVUvuFbGgt0m8U FBJAjs0d672b43QcH5eXIEbYDQ3qVut3lQG4WLdg9jFrKSC/q0lVyoyucwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFP0DDPiDzAmN9SJkUacoUELaJJ59MB8GA1UdIwQY MBaAFDQGoS7MU6JRp1znusqsnkGu6LTKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTkFhaExzeFRvbEduWE9lNnlxeWVRYTdvdE1vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Mi84N2Y5MmUtNGU2Ny00YWM5LTk2YzUt YTc3OWJhYWE3NTk5LzEvTkFhaExzeFRvbEduWE9lNnlxeWVRYTdvdE1vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Mi84N2Y5MmUtNGU2Ny00YWM5LTk2YzUtYTc3OWJhYWE3NTk5 LzEvTkFhaExzeFRvbEduWE9lNnlxeWVRYTdvdE1vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARAsIzIXA Qq6ixE4sSFlWv1E7vPPbsdchRNDdy4e3g65Wq7/dZZp8A/GyCoDZ9wzItYP7Rh7V D51hp4vLTnp6sRDnCGz2Fm3vfBf/OrReVv28CS/SO/5a41qgrJEuwg98F7fQQ8H8 9T0s3GqUXRecsN+4mSLxSkNzKCKjCzOKyGWXxAxXZ+MJk2QcnZeCxh1CPMiUrL8X Ig7p4D7UYuQGch4z0IHQC65lDKgbAO24IouwvDlEsjDyHWdjn4OXDuRhgXF+q7In +H3d1xnQLG3F5/1lXCnIkKBeuX86iMj3nNaYxip3rUyc/B9pz7Lzj0l2AmV73VCD iPVXn6SpyrMpPQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:25 2026 by rpki-client