This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft File: NgAOvu0kK5VkrclUhTI7lr1vXAI.mft (raw, json) Hash identifier: iPqHZqaf9Px6H4Y4RARv+5M6jcDffRzgLjoQgn7F838= Subject key identifier: 40:4E:3D:2E:28:3F:D0:D8:AB:3E:A9:CA:A1:36:18:DE:60:C3:E2:45 Authority key identifier: 36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02 Certificate issuer: /CN=36000ebeed242b9564adc95485323b96bd6f5c02 Certificate serial: 019C4358C9F2E08DC955121687B9110F05B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft Manifest number: 137E Signing time: Mon 09 Feb 2026 17:00:18 +0000 Manifest this update: Mon 09 Feb 2026 17:00:18 +0000 Manifest next update: Tue 10 Feb 2026 17:00:18 +0000 Files and hashes: 1: BHf8SWUieWyp8CsFi-LkKjkwID0.roa (hash: r6mZHm7Sd1CEnMX4mNcO0XlOAIiIxrl1PQK5EqAyZj4=) 2: NgAOvu0kK5VkrclUhTI7lr1vXAI.crl (hash: H5kTRTG0cd5bAUqw9tUKPjy8s4Ipoa7Y1Ilk5LW9ffY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:c9:f2:e0:8d:c9:55:12:16:87:b9:11:0f:05:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36000ebeed242b9564adc95485323b96bd6f5c02 Validity Not Before: Feb 9 17:00:18 2026 GMT Not After : Feb 10 17:00:18 2026 GMT Subject: CN=404e3d2e283fd0d8ab3ea9caa13618de60c3e245 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:0c:da:e6:a5:7c:31:1f:c5:eb:d4:c3:12:a4: 02:26:fa:9a:17:92:85:88:18:57:1a:4a:5d:24:5a: 5f:4e:4c:74:8f:5f:57:bf:04:b7:13:56:7b:02:b6: da:c4:82:5c:6c:20:9b:01:d9:88:c5:80:36:fc:b6: f6:33:5d:8a:d4:6a:4d:d3:72:f3:66:f8:03:52:4b: ba:cf:e8:e8:f0:00:8c:4b:db:ea:dd:82:f2:73:42: 55:34:8b:3a:db:dd:7d:5c:4c:7d:5a:31:59:dc:16: 04:76:ec:ee:a3:38:84:c1:b1:ff:c3:a6:86:fd:83: b3:09:52:ef:ad:5b:59:6b:40:8d:9b:20:f2:8d:cb: 8d:18:44:67:04:4e:0f:94:5a:0b:13:4e:82:09:14: db:0b:55:14:85:f3:c5:8f:60:3d:d8:f0:da:54:4e: ac:02:20:07:16:00:cc:75:62:03:fd:a2:4c:9a:64: 98:9a:85:88:f2:ae:91:25:33:82:e0:50:36:22:6f: b3:3d:d4:b0:e6:38:32:e7:b3:72:a4:27:b2:be:80: 06:8f:9d:69:94:cc:cd:e2:84:26:b7:fc:d1:e1:95: 89:01:1d:b8:86:dc:5f:99:36:4f:9f:22:68:82:1c: 85:34:fa:71:c7:73:5b:0f:21:66:a3:a4:27:9d:18: ad:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:4E:3D:2E:28:3F:D0:D8:AB:3E:A9:CA:A1:36:18:DE:60:C3:E2:45 X509v3 Authority Key Identifier: keyid:36:00:0E:BE:ED:24:2B:95:64:AD:C9:54:85:32:3B:96:BD:6F:5C:02 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NgAOvu0kK5VkrclUhTI7lr1vXAI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/db/b77e1a-663a-445b-8e61-370150b669e4/1/NgAOvu0kK5VkrclUhTI7lr1vXAI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:04:79:1c:b9:8e:6e:b1:b5:5f:ea:16:ed:9d:cd:56:3c:ce: aa:83:3b:78:87:9f:19:ae:c7:71:f2:00:84:ce:c3:55:dc:56: e5:2d:ce:41:38:ce:43:d8:75:37:8f:f4:1f:6f:8d:43:70:57: 24:4e:f8:bd:0d:88:87:18:f3:60:24:ea:30:48:26:1a:e3:87: 73:83:0e:7e:17:8e:be:05:9d:ba:0c:ac:4a:d4:85:ca:78:af: cc:5d:48:6d:f5:da:03:53:70:e5:81:1b:01:b2:43:f1:ee:2b: cc:c9:db:60:76:1f:f4:55:91:98:a7:c1:06:ef:d2:e8:6e:94: b1:96:76:52:b1:96:b0:53:f8:07:b0:6d:5a:71:d5:f3:4d:20: ca:19:9d:1a:98:f5:23:77:20:51:b2:28:19:ee:43:db:aa:75: ed:31:30:bf:74:f7:ec:31:76:fa:37:6e:91:43:50:52:47:03: 80:7d:1f:7c:21:f8:1b:a0:25:04:3d:99:85:ca:61:b7:f2:af: 71:cd:d3:a1:f4:36:72:d8:e5:f3:15:01:49:07:ae:9f:69:e8: 00:42:93:bf:24:77:10:4b:a2:c2:8e:f3:0d:52:57:23:45:b6: e0:7b:d2:65:d7:7e:d0:53:25:e5:73:8d:d3:56:1b:bd:3d:67: 69:0b:3c:16 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWMny4I3JVRIWh7kRDwW1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDM2MDAwZWJlZWQyNDJiOTU2NGFkYzk1NDg1MzIzYjk2YmQ2 ZjVjMDIwHhcNMjYwMjA5MTcwMDE4WhcNMjYwMjEwMTcwMDE4WjAzMTEwLwYDVQQD Eyg0MDRlM2QyZTI4M2ZkMGQ4YWIzZWE5Y2FhMTM2MThkZTYwYzNlMjQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlwza5qV8MR/F69TDEqQCJvqaF5KF iBhXGkpdJFpfTkx0j19XvwS3E1Z7ArbaxIJcbCCbAdmIxYA2/Lb2M12K1GpN03Lz ZvgDUku6z+jo8ACMS9vq3YLyc0JVNIs62919XEx9WjFZ3BYEduzuoziEwbH/w6aG /YOzCVLvrVtZa0CNmyDyjcuNGERnBE4PlFoLE06CCRTbC1UUhfPFj2A92PDaVE6s AiAHFgDMdWID/aJMmmSYmoWI8q6RJTOC4FA2Im+zPdSw5jgy57NypCeyvoAGj51p lMzN4oQmt/zR4ZWJAR24htxfmTZPnyJoghyFNPpxx3NbDyFmo6QnnRit/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEBOPS4oP9DYqz6pyqE2GN5gw+JFMB8GA1UdIwQY MBaAFDYADr7tJCuVZK3JVIUyO5a9b1wCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvTmdBT3Z1MGtLNVZrcmNsVWhUSTdscjF2WEFJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYi9iNzdlMWEtNjYzYS00NDViLThlNjEt MzcwMTUwYjY2OWU0LzEvTmdBT3Z1MGtLNVZrcmNsVWhUSTdscjF2WEFJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYi9iNzdlMWEtNjYzYS00NDViLThlNjEtMzcwMTUwYjY2OWU0 LzEvTmdBT3Z1MGtLNVZrcmNsVWhUSTdscjF2WEFJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOAR5HLmO brG1X+oW7Z3NVjzOqoM7eIefGa7HcfIAhM7DVdxW5S3OQTjOQ9h1N4/0H2+NQ3BX JE74vQ2IhxjzYCTqMEgmGuOHc4MOfheOvgWdugysStSFynivzF1IbfXaA1Nw5YEb AbJD8e4rzMnbYHYf9FWRmKfBBu/S6G6UsZZ2UrGWsFP4B7BtWnHV800gyhmdGpj1 I3cgUbIoGe5D26p17TEwv3T37DF2+jdukUNQUkcDgH0ffCH4G6AlBD2Zhcpht/Kv cc3TofQ2ctjl8xUBSQeun2noAEKTvyR3EEuiwo7zDVJXI0W24HvSZdd+0FMl5XON 01YbvT1naQs8Fg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:45 2026 by rpki-client