This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft File: nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft (raw, json) Hash identifier: OA/5e3XtQDNr889JlHILaZKHAst6BB4TnakILZTvwRA= Subject key identifier: E6:41:37:4F:92:C1:9E:47:31:16:3B:8F:95:54:87:82:CE:87:ED:3E Authority key identifier: 9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91 Certificate issuer: /CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991 Certificate serial: 019C42465F71808A940B6578DFF9538E5924 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft Manifest number: 1396 Signing time: Mon 09 Feb 2026 12:00:34 +0000 Manifest this update: Mon 09 Feb 2026 12:00:34 +0000 Manifest next update: Tue 10 Feb 2026 12:00:34 +0000 Files and hashes: 1: dXqJHsXxR-aG7OFxfLVmTOQ0LlE.roa (hash: y6lcuFolmZ4jWJsuhnKkZ1m94mf4BMO+drqZeVWCJUI=) 2: nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl (hash: H4gcANxfcbvxk1hvwaDlNzvmXYy6Sptr4Wwlewd8/l4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:5f:71:80:8a:94:0b:65:78:df:f9:53:8e:59:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9ca90e7daf15c17c1b9abc572157bc7d917b3991 Validity Not Before: Feb 9 12:00:34 2026 GMT Not After : Feb 10 12:00:34 2026 GMT Subject: CN=e641374f92c19e4731163b8f95548782ce87ed3e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:69:57:35:3f:e1:fa:f1:32:41:a7:44:5a:80: 99:34:40:e6:07:30:08:45:fb:41:e4:f5:ee:f6:8b: d5:e5:a9:2e:8f:76:e0:6d:8c:a4:17:28:1c:4f:56: a0:ea:80:82:3a:2c:e2:3f:e4:7c:73:34:e7:2e:4c: 84:de:98:d5:a9:5f:18:a3:a3:74:e5:1b:9b:5a:2d: 8f:36:41:7f:17:27:f2:e1:b1:c6:7a:8e:9b:18:21: 6e:be:bc:9a:6a:08:fe:18:64:f8:ac:8f:2f:0f:88: 07:d3:74:20:d4:aa:c3:03:bf:93:b1:4a:d2:ba:ec: 49:76:f1:71:8c:84:b1:e6:f5:3f:af:20:93:9b:89: 0b:01:30:f6:2e:00:76:dd:29:35:7f:46:91:ea:c1: 97:c3:03:ac:d7:cf:35:1d:8c:e5:bb:92:23:7d:c8: 76:88:c6:86:6d:8f:5e:3d:7a:9e:36:cc:0f:98:5a: 79:96:34:40:ce:8f:53:3c:b1:6d:f2:f7:33:55:40: 72:dd:32:37:0c:65:59:84:37:11:61:ca:38:87:1b: 72:4d:60:b3:36:10:4d:a6:fc:0c:da:43:c5:43:6c: 2a:1a:2f:d5:e6:24:54:19:c8:0b:63:dd:90:ee:18: 35:60:d6:56:46:69:f2:78:5d:ac:77:ac:cc:e9:ae: ce:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:41:37:4F:92:C1:9E:47:31:16:3B:8F:95:54:87:82:CE:87:ED:3E X509v3 Authority Key Identifier: keyid:9C:A9:0E:7D:AF:15:C1:7C:1B:9A:BC:57:21:57:BC:7D:91:7B:39:91 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nKkOfa8VwXwbmrxXIVe8fZF7OZE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/25f375-140f-46e9-967e-6e459a58e1d6/1/nKkOfa8VwXwbmrxXIVe8fZF7OZE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:11:e6:c8:da:2c:bf:97:01:7d:65:3f:8e:02:7b:bc:70:04: 3b:b5:d9:91:b2:f9:0e:5b:63:15:ed:75:b7:fb:89:a5:ea:f8: 18:8c:9f:09:77:f1:c5:a9:69:28:ff:da:8a:d7:de:e6:83:20: 19:02:bb:5a:98:5e:4d:c3:6b:8c:d5:1a:e7:f2:30:2b:f0:39: 0e:14:39:9c:67:33:a3:4e:c5:54:aa:5f:30:bd:74:7a:30:41: f3:8a:3f:c5:73:9a:50:b7:8b:69:94:52:37:29:2b:5e:12:fa: ff:68:65:11:59:c5:f1:61:8e:21:65:f1:45:84:67:c0:0b:33: d1:37:f7:68:9f:4c:0c:50:f6:91:5a:06:61:5c:48:22:aa:bc: 61:9b:bb:41:ee:7c:ac:ae:a4:ef:8d:24:0c:35:60:88:e8:b4: 1e:24:bc:b8:41:3f:5a:06:b6:63:4a:ef:e4:84:7b:b0:99:07: d9:25:19:43:6a:d7:3c:79:d1:59:6c:cb:b2:54:2b:6f:72:88: b8:ef:e4:6a:1d:93:0c:a7:37:ef:35:bc:6c:36:d6:bb:f0:1d: db:e7:ce:9a:d9:c1:28:de:dc:b6:50:e9:64:f5:8f:c8:41:a0: a3:63:0d:63:71:06:a2:c0:a8:aa:86:1b:68:56:f9:0d:ca:b3: d6:98:6d:f4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRl9xgIqUC2V43/lTjlkkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDljYTkwZTdkYWYxNWMxN2MxYjlhYmM1NzIxNTdiYzdkOTE3 YjM5OTEwHhcNMjYwMjA5MTIwMDM0WhcNMjYwMjEwMTIwMDM0WjAzMTEwLwYDVQQD EyhlNjQxMzc0ZjkyYzE5ZTQ3MzExNjNiOGY5NTU0ODc4MmNlODdlZDNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyWlXNT/h+vEyQadEWoCZNEDmBzAI RftB5PXu9ovV5akuj3bgbYykFygcT1ag6oCCOiziP+R8czTnLkyE3pjVqV8Yo6N0 5RubWi2PNkF/Fyfy4bHGeo6bGCFuvryaagj+GGT4rI8vD4gH03Qg1KrDA7+TsUrS uuxJdvFxjISx5vU/ryCTm4kLATD2LgB23Sk1f0aR6sGXwwOs1881HYzlu5Ijfch2 iMaGbY9ePXqeNswPmFp5ljRAzo9TPLFt8vczVUBy3TI3DGVZhDcRYco4hxtyTWCz NhBNpvwM2kPFQ2wqGi/V5iRUGcgLY92Q7hg1YNZWRmnyeF2sd6zM6a7O6QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOZBN0+SwZ5HMRY7j5VUh4LOh+0+MB8GA1UdIwQY MBaAFJypDn2vFcF8G5q8VyFXvH2RezmRMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2Ut NmU0NTlhNThlMWQ2LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMy8yNWYzNzUtMTQwZi00NmU5LTk2N2UtNmU0NTlhNThlMWQ2 LzEvbktrT2ZhOFZ3WHdibXJ4WElWZThmWkY3T1pFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBHmyNos v5cBfWU/jgJ7vHAEO7XZkbL5DltjFe11t/uJper4GIyfCXfxxalpKP/aitfe5oMg GQK7WpheTcNrjNUa5/IwK/A5DhQ5nGczo07FVKpfML10ejBB84o/xXOaULeLaZRS NykrXhL6/2hlEVnF8WGOIWXxRYRnwAsz0Tf3aJ9MDFD2kVoGYVxIIqq8YZu7Qe58 rK6k740kDDVgiOi0HiS8uEE/Wga2Y0rv5IR7sJkH2SUZQ2rXPHnRWWzLslQrb3KI uO/kah2TDKc37zW8bDbWu/Ad2+fOmtnBKN7ctlDpZPWPyEGgo2MNY3EGosCoqoYb aFb5Dcqz1pht9A== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:47 2026 by rpki-client