This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft File: nEswhmFPR4OKPoCj5uBR09imkvk.mft (raw, json) Hash identifier: sdt+W9hKfjSAvSpvynVOYyfqgeTiNBC5di2UH5ch2Ps= Subject key identifier: 7D:CF:58:05:27:82:D2:40:EA:7E:C1:9D:E6:37:2A:EF:55:C3:67:F9 Authority key identifier: 9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9 Certificate issuer: /CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9 Certificate serial: 019C41A1874CCD27A8F4378611EB35327145 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft Manifest number: 085C Signing time: Mon 09 Feb 2026 09:00:30 +0000 Manifest this update: Mon 09 Feb 2026 09:00:30 +0000 Manifest next update: Tue 10 Feb 2026 09:00:30 +0000 Files and hashes: 1: AoPgCevjaet1nmHheuN6SeeL1kc.roa (hash: 6xkXeVfyM+lok9O6WIPuoQpZtpps9f90d+FFQVcYVr4=) 2: nEswhmFPR4OKPoCj5uBR09imkvk.crl (hash: rML+buo3ttKilMNbXWoq1SvfX5oAukeC+IdzlGakEQA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:87:4c:cd:27:a8:f4:37:86:11:eb:35:32:71:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9c4b3086614f47838a3e80a3e6e051d3d8a692f9 Validity Not Before: Feb 9 09:00:30 2026 GMT Not After : Feb 10 09:00:30 2026 GMT Subject: CN=7dcf58052782d240ea7ec19de6372aef55c367f9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:32:1a:27:e4:82:79:b7:ef:2f:eb:db:67:00: 31:9e:5c:5a:a0:45:3b:c3:c1:55:04:9d:90:35:d6: 3c:87:c0:c2:5f:7b:31:74:85:59:6b:26:99:28:17: b8:da:da:8f:12:fb:38:ad:6f:67:ff:42:44:35:65: 19:64:29:f6:a5:ac:8e:21:5c:1f:e1:91:ac:49:66: be:e3:f4:39:a3:71:73:e2:c9:53:6a:7c:99:3e:2a: 97:f8:b1:82:d1:93:fe:10:ca:f6:f9:5b:89:9a:a5: a3:3c:48:0c:da:a7:5b:56:b8:cc:3b:0d:9a:3c:a8: 88:6f:0c:1e:f4:12:02:92:85:74:f1:77:38:e7:a5: f2:a7:6d:7f:ed:c5:a9:c9:d2:81:18:90:bc:39:0f: 25:04:82:37:bd:a6:24:cb:a5:af:1a:d5:75:4d:b0: e4:43:0c:89:1a:d2:b6:0d:b2:64:ff:a7:03:72:ca: fe:bd:ef:ac:2c:ef:ed:52:e0:90:8d:6b:ed:8d:b3: 6d:08:2e:e8:31:4a:e9:c2:41:d0:06:6d:b5:66:59: 9a:6e:8e:25:52:68:ad:be:f9:e6:29:62:c7:e5:fc: 55:72:07:db:30:68:d4:c7:dc:c4:e5:b8:52:7a:cd: 22:6e:af:04:bd:76:2a:e0:14:4d:9f:82:4d:6c:2d: 9a:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:CF:58:05:27:82:D2:40:EA:7E:C1:9D:E6:37:2A:EF:55:C3:67:F9 X509v3 Authority Key Identifier: keyid:9C:4B:30:86:61:4F:47:83:8A:3E:80:A3:E6:E0:51:D3:D8:A6:92:F9 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nEswhmFPR4OKPoCj5uBR09imkvk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/78/6296d7-c008-4c31-ae7a-84ef9cabb9b6/1/nEswhmFPR4OKPoCj5uBR09imkvk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:e7:f8:cd:5c:bd:b5:4d:a7:5c:13:a7:de:40:00:30:a1:8c: c6:ce:66:bb:08:ef:c0:08:69:3b:c8:d9:d9:d1:13:e4:23:93: ae:3f:f8:b4:7f:77:28:99:34:c5:e4:1e:a2:5f:92:1d:39:a7: 94:8d:47:ca:51:10:f1:f8:3e:87:db:3b:a0:de:95:d0:4e:46: 3d:e9:79:03:fe:2a:84:10:86:64:df:80:08:e7:5b:c0:87:fb: 6c:a3:f0:19:8e:18:74:cb:c5:f0:9d:52:c9:bd:d3:99:f4:69: 05:0e:62:2c:51:58:ec:c8:76:95:6b:f8:4e:a7:5a:c4:05:3a: 1d:10:42:48:a9:24:b6:ba:37:c1:f4:f3:48:43:30:fa:1c:1d: fc:c2:7b:d2:07:54:77:8f:d2:3d:fb:1b:8e:84:5c:0c:42:a8: b3:d0:f5:4a:cc:25:43:68:0b:40:83:f8:bc:fe:f6:ee:61:a9: af:15:b6:50:a3:4d:39:b3:c7:5b:f8:84:e6:99:36:08:89:f9: d8:90:11:26:ff:fa:1c:eb:2c:05:47:01:30:f2:c8:97:89:30: 32:8f:73:c4:08:89:a8:16:7c:05:b6:7c:c7:91:27:69:50:e8: 5a:4e:d9:5a:b2:14:49:cf:61:21:3e:b6:82:4a:16:f2:5f:19: a9:a7:b1:26 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoYdMzSeo9DeGEes1MnFFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljNGIzMDg2NjE0ZjQ3ODM4YTNlODBhM2U2ZTA1MWQzZDhh NjkyZjkwHhcNMjYwMjA5MDkwMDMwWhcNMjYwMjEwMDkwMDMwWjAzMTEwLwYDVQQD Eyg3ZGNmNTgwNTI3ODJkMjQwZWE3ZWMxOWRlNjM3MmFlZjU1YzM2N2Y5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuTIaJ+SCebfvL+vbZwAxnlxaoEU7 w8FVBJ2QNdY8h8DCX3sxdIVZayaZKBe42tqPEvs4rW9n/0JENWUZZCn2payOIVwf 4ZGsSWa+4/Q5o3Fz4slTanyZPiqX+LGC0ZP+EMr2+VuJmqWjPEgM2qdbVrjMOw2a PKiIbwwe9BICkoV08Xc456Xyp21/7cWpydKBGJC8OQ8lBII3vaYky6WvGtV1TbDk QwyJGtK2DbJk/6cDcsr+ve+sLO/tUuCQjWvtjbNtCC7oMUrpwkHQBm21Zlmabo4l UmitvvnmKWLH5fxVcgfbMGjUx9zE5bhSes0ibq8EvXYq4BRNn4JNbC2aFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFH3PWAUngtJA6n7BneY3Ku9Vw2f5MB8GA1UdIwQY MBaAFJxLMIZhT0eDij6Ao+bgUdPYppL5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2Et ODRlZjljYWJiOWI2LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83OC82Mjk2ZDctYzAwOC00YzMxLWFlN2EtODRlZjljYWJiOWI2 LzEvbkVzd2htRlBSNE9LUG9DajV1QlIwOWlta3ZrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhuf4zVy9 tU2nXBOn3kAAMKGMxs5muwjvwAhpO8jZ2dET5COTrj/4tH93KJk0xeQeol+SHTmn lI1HylEQ8fg+h9s7oN6V0E5GPel5A/4qhBCGZN+ACOdbwIf7bKPwGY4YdMvF8J1S yb3TmfRpBQ5iLFFY7Mh2lWv4TqdaxAU6HRBCSKkktro3wfTzSEMw+hwd/MJ70gdU d4/SPfsbjoRcDEKos9D1SswlQ2gLQIP4vP727mGprxW2UKNNObPHW/iE5pk2CIn5 2JARJv/6HOssBUcBMPLIl4kwMo9zxAiJqBZ8BbZ8x5EnaVDoWk7ZWrIUSc9hIT62 gkoW8l8ZqaexJg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:48 2026 by rpki-client