This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft File: NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft (raw, json) Hash identifier: utBjhT92lVygcKD1NKzGOBr8achY+yEUdVfhjq/0SE4= Subject key identifier: C0:47:E8:23:1A:6E:8A:46:48:18:E3:2B:D6:5B:76:39:E6:B7:90:76 Authority key identifier: 35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB Certificate issuer: /CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb Certificate serial: 019C43FDE43126BD47BEC8617D3CD75B6D8D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft Manifest number: 05E2 Signing time: Mon 09 Feb 2026 20:00:38 +0000 Manifest this update: Mon 09 Feb 2026 20:00:38 +0000 Manifest next update: Tue 10 Feb 2026 20:00:38 +0000 Files and hashes: 1: NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl (hash: 3vT9SVVdWLsroZuRQ1L8mrHtT6H2K7rrRRZ5o9gxTSw=) 2: V0FXBHF7zd7eoSFLKhrjKxi24vc.roa (hash: Ku0lrgk8w0+7zmhpvQbPryOCwIndLIyVecGBgi9w3MY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 20:00:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:e4:31:26:bd:47:be:c8:61:7d:3c:d7:5b:6d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35d7dbaa75ef3420d8d9459130ed01dc535136fb Validity Not Before: Feb 9 20:00:38 2026 GMT Not After : Feb 10 20:00:38 2026 GMT Subject: CN=c047e8231a6e8a464818e32bd65b7639e6b79076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:11:76:2c:a1:6e:e0:a1:6f:31:c2:44:45:3e: 70:cc:65:2d:9b:25:62:d5:c0:ef:75:ed:33:6e:0e: ee:ed:75:df:aa:7c:d3:99:c2:76:73:ba:07:76:74: c6:8e:82:8a:4d:2b:88:e7:3a:b4:6b:bf:78:ea:6b: 83:2d:7c:7c:51:eb:c0:3b:30:38:52:c5:79:1a:38: 6d:16:e0:70:18:86:b2:2b:e8:b2:e7:57:b4:6c:e8: bc:0e:be:f4:12:38:6c:c5:9f:b7:41:13:bf:01:45: 91:74:e4:ae:9d:aa:92:af:c4:e2:a8:6f:cb:48:03: 3d:c8:d9:13:bc:fc:b7:84:35:7b:85:86:73:10:31: e9:c6:d3:a7:6f:5e:cb:70:87:b5:f4:7c:05:ad:6d: 65:1d:32:e9:25:ff:bd:91:e9:54:7d:0d:ca:0f:45: eb:95:0a:23:27:0a:18:9b:91:4d:a8:74:e7:da:16: 56:3f:9a:de:7f:fd:9c:0b:8d:bf:e0:89:06:80:f1: d4:54:79:93:f9:66:9a:c3:43:6a:1d:05:b4:8e:43: d0:e5:f1:c8:7d:a6:7a:f6:d7:f1:98:a2:fb:66:bc: b4:38:0d:d4:48:23:81:7e:65:3e:9c:9d:23:df:52: 3a:d7:60:66:e8:7a:05:dc:bc:80:d1:32:c0:fb:c8: ba:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:47:E8:23:1A:6E:8A:46:48:18:E3:2B:D6:5B:76:39:E6:B7:90:76 X509v3 Authority Key Identifier: keyid:35:D7:DB:AA:75:EF:34:20:D8:D9:45:91:30:ED:01:DC:53:51:36:FB X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NdfbqnXvNCDY2UWRMO0B3FNRNvs.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/9a8a3b-9b44-49ca-b674-d92c9380af33/1/NdfbqnXvNCDY2UWRMO0B3FNRNvs.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:05:0c:a6:ba:29:61:d4:cd:51:3d:d7:ed:fc:01:97:4c:5f: 09:d5:04:d9:7a:9a:98:5d:27:f6:51:ad:e4:00:8f:b9:37:82: 1b:fa:fc:9d:66:3a:d4:3e:cd:80:05:9a:f1:4e:d5:00:b3:ba: 26:3a:8f:a4:67:03:8f:de:a1:f5:26:cd:64:ff:18:67:b0:c8: c4:df:fa:fa:93:86:8c:ac:1d:7e:26:c3:eb:63:db:dd:be:2a: d4:d1:c0:83:e9:27:6d:f5:a8:c8:12:b7:c4:2d:ac:71:4c:9e: 37:66:c6:a8:ed:6b:09:bd:db:01:46:c6:f4:c7:4a:47:e8:eb: 7b:b9:e0:59:32:c0:9e:c8:b1:43:c7:6c:62:3f:a5:2f:c1:60: 62:18:70:c5:39:12:44:5c:b4:8d:54:76:da:59:ed:c8:0c:80: c7:68:41:79:50:89:13:21:e8:8d:b2:62:6f:92:42:35:4b:d8: 84:63:54:59:a5:0d:0a:9f:7b:1c:0a:55:a5:2b:e8:5a:95:15: 8f:18:27:e6:d1:fd:f4:cf:eb:74:70:a3:2d:f9:df:06:43:16: 21:dc:ed:bf:89:0c:df:95:b7:90:10:81:69:cd:ec:69:d5:fc: c9:5a:9a:d0:15:3c:fb:99:3a:35:95:27:6d:f4:aa:a4:56:67: 57:85:5b:25 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/eQxJr1HvshhfTzXW22NMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1ZDdkYmFhNzVlZjM0MjBkOGQ5NDU5MTMwZWQwMWRjNTM1 MTM2ZmIwHhcNMjYwMjA5MjAwMDM4WhcNMjYwMjEwMjAwMDM4WjAzMTEwLwYDVQQD EyhjMDQ3ZTgyMzFhNmU4YTQ2NDgxOGUzMmJkNjViNzYzOWU2Yjc5MDc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2hF2LKFu4KFvMcJERT5wzGUtmyVi 1cDvde0zbg7u7XXfqnzTmcJ2c7oHdnTGjoKKTSuI5zq0a7946muDLXx8UevAOzA4 UsV5GjhtFuBwGIayK+iy51e0bOi8Dr70EjhsxZ+3QRO/AUWRdOSunaqSr8TiqG/L SAM9yNkTvPy3hDV7hYZzEDHpxtOnb17LcIe19HwFrW1lHTLpJf+9kelUfQ3KD0Xr lQojJwoYm5FNqHTn2hZWP5ref/2cC42/4IkGgPHUVHmT+Waaw0NqHQW0jkPQ5fHI faZ69tfxmKL7Zry0OA3USCOBfmU+nJ0j31I612Bm6HoF3LyA0TLA+8i6lwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFMBH6CMabopGSBjjK9Zbdjnmt5B2MB8GA1UdIwQY MBaAFDXX26p17zQg2NlFkTDtAdxTUTb7MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmRmYnFuWHZOQ0RZMlVXUk1PMEIzRk5STnZzLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Zi85YThhM2ItOWI0NC00OWNhLWI2NzQt ZDkyYzkzODBhZjMzLzEvTmRmYnFuWHZOQ0RZMlVXUk1PMEIzRk5STnZzLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Zi85YThhM2ItOWI0NC00OWNhLWI2NzQtZDkyYzkzODBhZjMz LzEvTmRmYnFuWHZOQ0RZMlVXUk1PMEIzRk5STnZzLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdQUMprop YdTNUT3X7fwBl0xfCdUE2XqamF0n9lGt5ACPuTeCG/r8nWY61D7NgAWa8U7VALO6 JjqPpGcDj96h9SbNZP8YZ7DIxN/6+pOGjKwdfibD62Pb3b4q1NHAg+knbfWoyBK3 xC2scUyeN2bGqO1rCb3bAUbG9MdKR+jre7ngWTLAnsixQ8dsYj+lL8FgYhhwxTkS RFy0jVR22lntyAyAx2hBeVCJEyHojbJib5JCNUvYhGNUWaUNCp97HApVpSvoWpUV jxgn5tH99M/rdHCjLfnfBkMWIdztv4kM35W3kBCBac3sadX8yVqa0BU8+5k6NZUn bfSqpFZnV4VbJQ== -----END CERTIFICATE-----Generated at Tue Feb 10 01:46:56 2026 by rpki-client