This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft File: pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft (raw, json) Hash identifier: +a9Bn/DLfsef4zSRaNexjdp2qCUk6Owm30oStoR0aj0= Subject key identifier: 20:D6:6E:76:DF:7B:68:10:A4:89:A1:77:21:BC:F2:5A:DF:1E:D0:7A Authority key identifier: A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35 Certificate issuer: /CN=a4d32269302e1cbccbaac0e0e5af8a864498a135 Certificate serial: 019C42EB05C64FC27AFD8DB76BC38BA2D54C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft Manifest number: 10F6 Signing time: Mon 09 Feb 2026 15:00:24 +0000 Manifest this update: Mon 09 Feb 2026 15:00:24 +0000 Manifest next update: Tue 10 Feb 2026 15:00:24 +0000 Files and hashes: 1: LlCo-cr1TvaGSEsvi_aeztFDrsY.roa (hash: ONGlxNxuG7wwvZScxkyZsCMFDhxVuAnR+LQnLfg7tcI=) 2: pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl (hash: BT708NkcQJKLpL454p+aCZRvLyZfQPrRrLvkc0pT5oA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:00:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:eb:05:c6:4f:c2:7a:fd:8d:b7:6b:c3:8b:a2:d5:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a4d32269302e1cbccbaac0e0e5af8a864498a135 Validity Not Before: Feb 9 15:00:24 2026 GMT Not After : Feb 10 15:00:24 2026 GMT Subject: CN=20d66e76df7b6810a489a17721bcf25adf1ed07a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c9:e4:f0:6a:e1:31:2e:7e:da:6f:a4:81:a8: a3:ef:b5:b0:12:cc:d1:f3:cf:6c:42:ab:a7:02:f4: 71:36:fc:2d:ba:5e:13:53:58:bf:f5:01:9a:73:d1: 32:92:20:cd:87:b5:91:01:7b:23:1a:78:08:4e:94: f6:cc:c0:b9:ce:b8:24:23:b9:99:5e:38:f6:09:cf: e8:02:ed:80:54:5e:65:e8:c9:3b:c7:75:25:f9:5e: d9:bc:95:36:d4:aa:5e:10:51:76:10:d5:39:e1:d4: b1:84:ed:81:30:72:59:32:d0:a4:b7:3c:14:d9:45: 2d:74:06:aa:f2:5f:65:cc:d8:8d:70:bf:1a:55:fc: f0:49:46:db:c5:3c:ae:16:4e:91:73:85:27:cc:46: dd:e8:b9:a3:b3:31:03:bc:4e:00:c3:44:da:83:f2: 96:a8:f5:c9:a0:37:a3:9f:01:bc:aa:8f:f3:72:56: b1:14:75:0c:e1:28:36:c7:f7:50:2e:86:ee:05:09: f4:d1:c0:84:45:6c:c3:cb:34:20:96:0b:19:dd:2e: bd:ea:eb:fc:41:13:57:37:7e:79:dd:ee:11:6f:f1: 91:66:27:87:8f:14:56:39:cc:0d:c0:e2:af:a7:19: b6:03:0b:c8:14:ac:0f:3c:70:cc:8f:cb:c3:33:44: 59:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:D6:6E:76:DF:7B:68:10:A4:89:A1:77:21:BC:F2:5A:DF:1E:D0:7A X509v3 Authority Key Identifier: keyid:A4:D3:22:69:30:2E:1C:BC:CB:AA:C0:E0:E5:AF:8A:86:44:98:A1:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pNMiaTAuHLzLqsDg5a-KhkSYoTU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/9616ee-381d-4afe-890c-6ee514b29115/1/pNMiaTAuHLzLqsDg5a-KhkSYoTU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:bc:95:90:5b:5a:01:b0:95:34:e2:dc:1a:02:61:6f:3d:4e: 07:a1:41:bc:dd:b3:5c:74:5a:1e:96:06:de:d7:5f:15:bc:88: 70:28:15:5f:b7:bb:1d:a5:b5:28:88:cd:af:4d:cc:e4:84:b2: e4:ac:af:bd:ba:7e:36:19:19:7e:20:de:43:65:d7:df:e5:9a: 71:4a:f5:3c:31:81:40:ed:40:8f:3a:f8:39:18:f1:c1:02:35: 21:85:e7:fa:75:11:c4:1b:c1:50:c2:6e:09:d4:e4:81:aa:96: 03:58:c1:f3:ff:05:2a:a7:39:37:4f:26:72:fe:10:ba:86:7a: 04:fb:af:45:21:78:7f:55:44:cd:38:33:db:99:23:16:30:12: d5:11:56:72:2e:a4:80:32:56:c9:14:9a:6c:b4:bb:9c:b3:6e: b0:72:80:20:86:a1:73:5b:28:39:c8:7d:67:f2:9f:12:5a:07: f7:1b:c3:eb:50:ed:12:94:da:02:f5:6d:58:bd:6d:33:8c:7c: c5:06:f7:a3:5e:a8:c9:36:be:af:b7:32:80:34:5c:56:93:47: 9d:f1:82:a2:d4:a2:13:d1:66:63:49:56:65:ee:94:7e:88:5b: 89:12:6c:42:00:e5:c6:82:a3:77:e8:0d:09:65:38:64:3f:5b: 4c:26:7c:f9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxC6wXGT8J6/Y23a8OLotVMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE0ZDMyMjY5MzAyZTFjYmNjYmFhYzBlMGU1YWY4YTg2NDQ5 OGExMzUwHhcNMjYwMjA5MTUwMDI0WhcNMjYwMjEwMTUwMDI0WjAzMTEwLwYDVQQD EygyMGQ2NmU3NmRmN2I2ODEwYTQ4OWExNzcyMWJjZjI1YWRmMWVkMDdhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8nk8GrhMS5+2m+kgaij77WwEszR 889sQqunAvRxNvwtul4TU1i/9QGac9EykiDNh7WRAXsjGngITpT2zMC5zrgkI7mZ Xjj2Cc/oAu2AVF5l6Mk7x3Ul+V7ZvJU21KpeEFF2ENU54dSxhO2BMHJZMtCktzwU 2UUtdAaq8l9lzNiNcL8aVfzwSUbbxTyuFk6Rc4UnzEbd6LmjszEDvE4Aw0Tag/KW qPXJoDejnwG8qo/zclaxFHUM4Sg2x/dQLobuBQn00cCERWzDyzQglgsZ3S696uv8 QRNXN3553e4Rb/GRZieHjxRWOcwNwOKvpxm2AwvIFKwPPHDMj8vDM0RZZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCDWbnbfe2gQpImhdyG88lrfHtB6MB8GA1UdIwQY MBaAFKTTImkwLhy8y6rA4OWvioZEmKE1MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcE5NaWFUQXVITHpMcXNEZzVhLUtoa1NZb1RVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85Zi85NjE2ZWUtMzgxZC00YWZlLTg5MGMt NmVlNTE0YjI5MTE1LzEvcE5NaWFUQXVITHpMcXNEZzVhLUtoa1NZb1RVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC85Zi85NjE2ZWUtMzgxZC00YWZlLTg5MGMtNmVlNTE0YjI5MTE1 LzEvcE5NaWFUQXVITHpMcXNEZzVhLUtoa1NZb1RVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAibyVkFta AbCVNOLcGgJhbz1OB6FBvN2zXHRaHpYG3tdfFbyIcCgVX7e7HaW1KIjNr03M5ISy 5Kyvvbp+NhkZfiDeQ2XX3+WacUr1PDGBQO1Ajzr4ORjxwQI1IYXn+nURxBvBUMJu CdTkgaqWA1jB8/8FKqc5N08mcv4QuoZ6BPuvRSF4f1VEzTgz25kjFjAS1RFWci6k gDJWyRSabLS7nLNusHKAIIahc1soOch9Z/KfEloH9xvD61DtEpTaAvVtWL1tM4x8 xQb3o16oyTa+r7cygDRcVpNHnfGCotSiE9FmY0lWZe6UfohbiRJsQgDlxoKjd+gN CWU4ZD9bTCZ8+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 20:06:36 2026 by rpki-client