This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft File: NQtAztNuMfkF4abo4DxiHp-_yyk.mft (raw, json) Hash identifier: pmWXOIgjRaoL5BMEtsam/cHDcDb+wNrgEDnZhZnPbPs= Subject key identifier: D3:AA:A7:E0:F2:49:A8:A1:79:97:F6:B1:9E:B0:D2:0B:C8:DA:63:AB Authority key identifier: 35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29 Certificate issuer: /CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29 Certificate serial: 019C427D9D2056EFF8B58C2EFE05E1E7B9AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft Manifest number: 154D Signing time: Mon 09 Feb 2026 13:00:54 +0000 Manifest this update: Mon 09 Feb 2026 13:00:54 +0000 Manifest next update: Tue 10 Feb 2026 13:00:54 +0000 Files and hashes: 1: FGksGgzRp3dqx5JNslhPDHOeSF8.roa (hash: Ae+SgijVIMWeitkLixTQZhBAwcIx6R8bn51UQHedapk=) 2: NQtAztNuMfkF4abo4DxiHp-_yyk.crl (hash: +9l9tHTo4c+CqDXmz/qDroCgrQ78pyNJ/pRAHIjEQbo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:9d:20:56:ef:f8:b5:8c:2e:fe:05:e1:e7:b9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=350b40ced36e31f905e1a6e8e03c621e9fbfcb29 Validity Not Before: Feb 9 13:00:54 2026 GMT Not After : Feb 10 13:00:54 2026 GMT Subject: CN=d3aaa7e0f249a8a17997f6b19eb0d20bc8da63ab Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:91:6f:5b:4c:b3:2f:57:e7:6b:99:b2:4d:9e: 75:1f:2e:67:48:12:79:48:09:93:e7:45:ad:c3:f6: bc:d8:bf:b1:78:ce:91:fa:ef:e5:d1:81:cb:11:87: 9b:78:e6:95:b1:32:9a:f7:fe:dd:25:90:ec:24:3c: 74:cf:77:1f:59:61:4d:79:dd:bb:c2:0f:56:e6:8e: c5:43:15:49:23:70:62:8c:31:9d:1a:a1:b1:83:b2: bc:1a:56:0f:61:31:92:15:f0:58:89:16:a7:90:10: cd:70:14:7d:75:c5:ab:a7:b9:c0:3e:20:34:7d:61: f6:14:d5:43:da:c3:65:7a:e2:1a:da:55:6c:1d:97: c3:c0:4f:55:90:f9:c5:e2:3d:0c:72:de:60:70:4d: bf:cb:b8:9f:c7:68:1a:8e:65:67:ec:a6:7d:12:7a: 93:f0:05:fc:9e:4a:17:20:32:18:a2:75:f5:04:76: 27:45:9e:9d:ef:36:1a:b4:9e:c4:07:07:92:f1:d9: 21:8f:48:96:6a:82:9b:54:03:e5:29:ce:58:b6:d8: 1d:47:9a:57:8e:95:16:53:76:b3:f3:4f:53:ef:90: 8a:e8:18:f7:60:f8:71:b2:24:d2:2d:ee:07:c1:75: 65:04:4d:55:3e:21:25:87:15:bf:b9:94:ce:8c:34: 3b:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:AA:A7:E0:F2:49:A8:A1:79:97:F6:B1:9E:B0:D2:0B:C8:DA:63:AB X509v3 Authority Key Identifier: keyid:35:0B:40:CE:D3:6E:31:F9:05:E1:A6:E8:E0:3C:62:1E:9F:BF:CB:29 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NQtAztNuMfkF4abo4DxiHp-_yyk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/221fcd-61e5-4b45-a359-72f6ca757a08/1/NQtAztNuMfkF4abo4DxiHp-_yyk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:92:cb:1d:ed:a7:0b:61:92:cf:1b:89:ce:fe:dd:7b:d9:18: 69:3a:33:45:53:6c:ae:eb:13:eb:46:72:c9:1b:7b:8a:61:38: 74:15:78:5c:13:78:44:43:c0:06:f1:e1:89:f2:78:3c:63:5c: 8e:71:c8:0c:12:ac:e0:a6:c4:63:ff:23:4e:6f:ec:f9:71:ad: ec:90:0e:b9:54:48:8a:6f:ec:88:bc:ad:f6:41:20:44:78:a8: 58:55:85:78:ca:79:ee:d4:6d:6f:95:eb:4f:0d:ea:54:b0:c0: 99:ae:d6:d3:6e:2e:03:7f:f7:62:d4:3b:3e:ed:5a:1a:b7:53: f3:0a:16:0c:9e:cc:a9:a0:2d:75:cc:19:23:d7:17:58:56:5d: 97:63:e6:81:1a:75:c5:a6:a2:a5:ba:43:70:fa:4e:d0:86:81: 3b:9d:ba:93:33:b7:e5:6c:93:e4:2f:cf:51:15:7c:7f:0d:2c: a1:2b:6e:01:97:06:11:68:73:83:30:e8:1d:2d:dd:40:e1:90: 4b:09:ef:09:7f:b6:53:28:ec:f7:9a:33:95:1f:e9:c1:fd:d1: 79:4b:70:2e:ef:42:c2:ad:13:8b:cc:77:42:46:1f:99:f4:a8: d5:bb:ed:44:27:6e:6a:d9:ea:53:b5:00:9f:d8:61:5d:5b:c3: d4:50:d2:ec -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfZ0gVu/4tYwu/gXh57mtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM1MGI0MGNlZDM2ZTMxZjkwNWUxYTZlOGUwM2M2MjFlOWZi ZmNiMjkwHhcNMjYwMjA5MTMwMDU0WhcNMjYwMjEwMTMwMDU0WjAzMTEwLwYDVQQD EyhkM2FhYTdlMGYyNDlhOGExNzk5N2Y2YjE5ZWIwZDIwYmM4ZGE2M2FiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAspFvW0yzL1fna5myTZ51Hy5nSBJ5 SAmT50Wtw/a82L+xeM6R+u/l0YHLEYebeOaVsTKa9/7dJZDsJDx0z3cfWWFNed27 wg9W5o7FQxVJI3BijDGdGqGxg7K8GlYPYTGSFfBYiRankBDNcBR9dcWrp7nAPiA0 fWH2FNVD2sNleuIa2lVsHZfDwE9VkPnF4j0Mct5gcE2/y7ifx2gajmVn7KZ9EnqT 8AX8nkoXIDIYonX1BHYnRZ6d7zYatJ7EBweS8dkhj0iWaoKbVAPlKc5YttgdR5pX jpUWU3az809T75CK6Bj3YPhxsiTSLe4HwXVlBE1VPiElhxW/uZTOjDQ7bQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNOqp+DySaiheZf2sZ6w0gvI2mOrMB8GA1UdIwQY MBaAFDULQM7TbjH5BeGm6OA8Yh6fv8spMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yMjFmY2QtNjFlNS00YjQ1LWEzNTkt NzJmNmNhNzU3YTA4LzEvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yMjFmY2QtNjFlNS00YjQ1LWEzNTktNzJmNmNhNzU3YTA4 LzEvTlF0QXp0TnVNZmtGNGFibzREeGlIcC1feXlrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQJLLHe2n C2GSzxuJzv7de9kYaTozRVNsrusT60ZyyRt7imE4dBV4XBN4REPABvHhifJ4PGNc jnHIDBKs4KbEY/8jTm/s+XGt7JAOuVRIim/siLyt9kEgRHioWFWFeMp57tRtb5Xr Tw3qVLDAma7W024uA3/3YtQ7Pu1aGrdT8woWDJ7MqaAtdcwZI9cXWFZdl2PmgRp1 xaaipbpDcPpO0IaBO526kzO35WyT5C/PURV8fw0soStuAZcGEWhzgzDoHS3dQOGQ SwnvCX+2Uyjs95ozlR/pwf3ReUtwLu9Cwq0Ti8x3QkYfmfSo1bvtRCduatnqU7UA n9hhXVvD1FDS7A== -----END CERTIFICATE-----Generated at Mon Feb 9 21:06:37 2026 by rpki-client