This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft File: nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft (raw, json) Hash identifier: dQOaqAq1H38ReAIzdyYz7BIZ5BTFX8IBtq45jHVq9M4= Subject key identifier: D9:52:F7:80:8E:9F:72:6D:91:20:97:39:E2:32:B4:72:AF:8E:7A:5D Authority key identifier: 9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10 Certificate issuer: /CN=9f24064f95331cf1f315dc50de4db05ff95aa410 Certificate serial: 019C43FDF99E08E1DBFCF70E38A29D0EAB5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft Manifest number: 1137 Signing time: Mon 09 Feb 2026 20:00:43 +0000 Manifest this update: Mon 09 Feb 2026 20:00:43 +0000 Manifest next update: Tue 10 Feb 2026 20:00:43 +0000 Files and hashes: 1: By9XwpaaIZ1vbKoC0EMkQI8xFME.roa (hash: rVTno30bTxW1UXGkTngYyYx+U1Aa9CBafc0WRSX3D0M=) 2: nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl (hash: I8VmMw6GONA3i+IGauPxelZxPfmbDHpIDPCLPi47zns=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:fd:f9:9e:08:e1:db:fc:f7:0e:38:a2:9d:0e:ab:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9f24064f95331cf1f315dc50de4db05ff95aa410 Validity Not Before: Feb 9 20:00:43 2026 GMT Not After : Feb 10 20:00:43 2026 GMT Subject: CN=d952f7808e9f726d91209739e232b472af8e7a5d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a5:2b:b9:98:71:46:e8:4c:3a:32:ea:88:4f: f4:34:62:29:1d:58:4b:30:ea:97:cf:56:18:33:3c: 81:3b:70:e2:45:09:b5:26:b8:b1:c1:99:b5:c5:9d: 78:90:33:ca:b4:d2:a5:08:d1:32:2d:f7:f2:f2:64: a8:19:9f:be:66:cf:f4:0a:ec:60:e1:f0:95:83:63: 0b:a2:89:7d:f8:35:52:40:3f:11:68:fc:01:f7:c7: fd:ba:2c:d3:3a:76:17:36:f1:5d:03:25:5e:28:a6: 5f:26:46:01:1a:54:90:d2:c9:e3:6c:4e:18:93:3c: 12:78:c6:f1:19:8e:c1:f6:18:a8:6b:b9:48:4a:70: 18:53:d9:4d:84:84:ac:70:0d:87:16:41:aa:34:cb: b7:d3:2c:fc:fb:f3:e9:79:7f:48:48:bc:fc:97:1e: 82:d7:f8:44:ad:00:0f:20:85:5a:0e:bc:76:96:b6: 8c:08:51:4a:65:90:76:8a:46:98:c5:68:03:65:ab: f4:84:60:2b:8a:1e:c6:0b:73:d7:41:60:b1:36:02: b0:ca:00:9a:bd:cf:73:14:4b:9e:2e:06:3d:4b:27: e8:d5:0e:9f:f3:4c:53:da:6a:ef:d2:01:dd:20:62: ad:1b:64:89:cd:d1:f3:36:94:cc:ea:4a:ca:2b:08: b4:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:52:F7:80:8E:9F:72:6D:91:20:97:39:E2:32:B4:72:AF:8E:7A:5D X509v3 Authority Key Identifier: keyid:9F:24:06:4F:95:33:1C:F1:F3:15:DC:50:DE:4D:B0:5F:F9:5A:A4:10 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nyQGT5UzHPHzFdxQ3k2wX_lapBA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/40079b-fcaa-46d9-8161-66a6c80d26a5/1/nyQGT5UzHPHzFdxQ3k2wX_lapBA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 39:00:16:31:38:85:4a:77:4b:10:88:a9:67:e2:fe:8e:af:f9: 8a:93:09:04:48:0e:d1:ff:8c:bc:3a:91:19:7c:94:b6:94:30: 4e:97:6d:db:eb:6b:aa:63:8c:b1:0d:a2:1e:ef:92:bb:f6:97: dd:bd:a2:72:8f:be:70:a4:df:a4:90:61:4b:c5:46:43:5d:84: d7:b1:09:52:b3:a7:75:a7:34:5b:6a:0a:b5:79:76:13:02:30: f0:f2:db:4a:2c:40:67:c8:b5:c1:5d:ed:6a:74:a0:d3:aa:f1: e1:ad:91:eb:48:ea:36:ad:a2:73:23:45:23:ea:d6:18:02:25: 45:f6:51:d6:46:5a:8f:29:9f:79:a3:aa:f6:c5:f2:53:bf:a0: 68:26:60:01:91:05:15:24:1b:8c:cc:ab:f8:91:0b:65:1f:ee: 27:68:4f:86:06:c5:8b:98:1f:f6:86:90:71:53:e3:9a:10:98: ba:73:c6:16:dd:18:ea:3a:bc:39:2c:f1:14:0e:b1:67:43:43: 87:59:66:9d:06:ed:7b:f4:f1:94:7f:55:34:5e:8a:d3:7e:40: b6:05:a6:b6:fc:54:7e:46:b2:92:1b:e2:74:cd:9f:cb:bd:15: 5d:e5:72:26:0b:bd:e1:b1:a6:0a:71:50:50:a6:13:ea:a6:bd: 47:6d:09:5a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxD/fmeCOHb/PcOOKKdDqteMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlmMjQwNjRmOTUzMzFjZjFmMzE1ZGM1MGRlNGRiMDVmZjk1 YWE0MTAwHhcNMjYwMjA5MjAwMDQzWhcNMjYwMjEwMjAwMDQzWjAzMTEwLwYDVQQD EyhkOTUyZjc4MDhlOWY3MjZkOTEyMDk3MzllMjMyYjQ3MmFmOGU3YTVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KUruZhxRuhMOjLqiE/0NGIpHVhL MOqXz1YYMzyBO3DiRQm1JrixwZm1xZ14kDPKtNKlCNEyLffy8mSoGZ++Zs/0Cuxg 4fCVg2MLool9+DVSQD8RaPwB98f9uizTOnYXNvFdAyVeKKZfJkYBGlSQ0snjbE4Y kzwSeMbxGY7B9hioa7lISnAYU9lNhISscA2HFkGqNMu30yz8+/PpeX9ISLz8lx6C 1/hErQAPIIVaDrx2lraMCFFKZZB2ikaYxWgDZav0hGArih7GC3PXQWCxNgKwygCa vc9zFEueLgY9Syfo1Q6f80xT2mrv0gHdIGKtG2SJzdHzNpTM6krKKwi0UQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNlS94COn3JtkSCXOeIytHKvjnpdMB8GA1UdIwQY MBaAFJ8kBk+VMxzx8xXcUN5NsF/5WqQQMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMi80MDA3OWItZmNhYS00NmQ5LTgxNjEt NjZhNmM4MGQyNmE1LzEvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMi80MDA3OWItZmNhYS00NmQ5LTgxNjEtNjZhNmM4MGQyNmE1 LzEvbnlRR1Q1VXpIUEh6RmR4UTNrMndYX2xhcEJBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOQAWMTiF SndLEIipZ+L+jq/5ipMJBEgO0f+MvDqRGXyUtpQwTpdt2+trqmOMsQ2iHu+Su/aX 3b2ico++cKTfpJBhS8VGQ12E17EJUrOndac0W2oKtXl2EwIw8PLbSixAZ8i1wV3t anSg06rx4a2R60jqNq2icyNFI+rWGAIlRfZR1kZajymfeaOq9sXyU7+gaCZgAZEF FSQbjMyr+JELZR/uJ2hPhgbFi5gf9oaQcVPjmhCYunPGFt0Y6jq8OSzxFA6xZ0ND h1lmnQbte/TxlH9VNF6K035AtgWmtvxUfkaykhvidM2fy70VXeVyJgu94bGmCnFQ UKYT6qa9R20JWg== -----END CERTIFICATE-----Generated at Tue Feb 10 00:16:52 2026 by rpki-client