This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft File: 5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft (raw, json) Hash identifier: Cfqhxti6scW4DnlDkeMML/NOo+rWLfBMNijAKsj6fxI= Subject key identifier: 40:E1:C5:62:6B:5F:31:DE:31:7D:4E:BF:6D:5C:F5:1C:88:C9:A1:A4 Authority key identifier: E5:2C:B8:5C:A7:93:FA:D5:65:B4:60:8E:26:D8:2A:6A:E2:7D:C2:32 Certificate issuer: /CN=e52cb85ca793fad565b4608e26d82a6ae27dc232 Certificate serial: 019C416AA9F014446F2D2C5C96F56CFA3B0D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft Manifest number: 0E94 Signing time: Mon 09 Feb 2026 08:00:35 +0000 Manifest this update: Mon 09 Feb 2026 08:00:35 +0000 Manifest next update: Tue 10 Feb 2026 08:00:35 +0000 Files and hashes: 1: 5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl (hash: IDYZUsl/WoHyjG4AorLrfj0FEaAGxAIPMyzVteGGSHs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:a9:f0:14:44:6f:2d:2c:5c:96:f5:6c:fa:3b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e52cb85ca793fad565b4608e26d82a6ae27dc232 Validity Not Before: Feb 9 08:00:35 2026 GMT Not After : Feb 10 08:00:35 2026 GMT Subject: CN=40e1c5626b5f31de317d4ebf6d5cf51c88c9a1a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:1e:01:29:dc:21:09:32:cb:79:1c:ab:e1: df:37:68:e1:c2:02:74:d1:6c:b8:a6:d2:02:4a:62: 4f:fd:2a:a4:74:c6:62:12:7e:58:98:2a:3a:1d:4a: 95:41:d5:14:43:c6:4e:95:66:29:fb:db:9f:ea:f7: eb:64:45:c7:6c:b9:89:f9:44:42:f4:92:55:ed:3e: ec:5a:2c:57:d0:15:4d:38:69:93:00:69:53:56:ea: 15:44:d3:a6:0a:7e:63:41:1b:34:88:03:1e:d9:ef: 80:1c:7b:82:2a:4e:0e:bd:c4:1a:e7:e6:c5:10:f2: 54:96:b3:d8:3e:7f:e7:f1:32:74:ce:35:68:25:a1: fd:4e:51:e1:48:3d:62:dd:7f:65:b7:7a:b6:0d:51: 47:ca:2a:22:b1:bc:48:9f:83:29:03:74:76:22:1c: 99:e9:e1:8a:13:5e:a4:e4:63:01:99:85:3b:7c:c2: cd:bd:e6:d6:09:b3:a9:65:35:b4:06:ae:f4:ed:5a: 2c:66:62:6d:73:df:20:c8:b3:f9:ba:c8:7b:45:8d: 6d:47:c1:96:88:32:db:8b:bd:50:6d:59:ae:8a:0d: b7:9a:63:40:96:f5:b2:72:f1:bb:aa:50:67:bc:17: 4f:f6:31:76:ed:17:26:ab:80:75:db:d6:9a:3d:b6: bb:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:E1:C5:62:6B:5F:31:DE:31:7D:4E:BF:6D:5C:F5:1C:88:C9:A1:A4 X509v3 Authority Key Identifier: keyid:E5:2C:B8:5C:A7:93:FA:D5:65:B4:60:8E:26:D8:2A:6A:E2:7D:C2:32 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Sy4XKeT-tVltGCOJtgqauJ9wjI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/02/95bad9-20fe-4b8d-8f03-9c2999d09b8f/1/5Sy4XKeT-tVltGCOJtgqauJ9wjI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:3b:30:95:56:d9:3e:0d:89:e2:7f:41:e1:ec:8a:8c:57:e2: 10:59:c0:7e:8c:0a:c8:0b:5d:cf:45:f4:45:1a:07:2f:98:73: 57:db:a5:f0:f9:41:21:68:ea:5b:52:ad:65:93:42:99:cb:63: d6:ef:bb:20:d4:ce:19:7e:e7:7e:68:82:8f:f3:c4:aa:c7:77: 71:76:a4:12:60:81:12:4b:01:64:09:b5:62:bd:d4:43:76:78: 7e:9e:fb:cd:71:4d:df:32:24:0e:f6:e9:84:13:d5:41:a8:a2: 04:70:c1:c3:93:17:cf:7f:81:4d:a4:1f:da:17:93:84:56:3b: 8c:c2:5b:9a:81:5b:1f:6e:20:c1:dd:ee:66:f0:86:ab:1c:32: 75:8a:ee:d5:33:b3:c6:d7:c1:f5:0f:1b:29:1c:4a:82:cf:9f: 6a:86:86:c3:80:7f:9e:12:e3:e8:9d:56:68:76:f4:b0:ed:e5: d0:08:80:62:0b:cf:3e:46:ac:e4:18:44:0f:f4:02:d0:75:0c: 3a:6e:92:b3:d9:30:b2:aa:85:74:d4:17:c0:2b:3d:df:db:e6: d8:a6:09:f5:ec:b7:70:35:6c:ca:b4:47:4d:bf:19:14:6b:98: a2:2c:d8:77:7d:9c:f2:bb:12:ac:11:53:27:08:6b:72:a2:6a: 36:8d:d6:f1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBaqnwFERvLSxclvVs+jsNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1MmNiODVjYTc5M2ZhZDU2NWI0NjA4ZTI2ZDgyYTZhZTI3 ZGMyMzIwHhcNMjYwMjA5MDgwMDM1WhcNMjYwMjEwMDgwMDM1WjAzMTEwLwYDVQQD Eyg0MGUxYzU2MjZiNWYzMWRlMzE3ZDRlYmY2ZDVjZjUxYzg4YzlhMWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtQseASncIQkyy3kcq+HfN2jhwgJ0 0Wy4ptICSmJP/SqkdMZiEn5YmCo6HUqVQdUUQ8ZOlWYp+9uf6vfrZEXHbLmJ+URC 9JJV7T7sWixX0BVNOGmTAGlTVuoVRNOmCn5jQRs0iAMe2e+AHHuCKk4OvcQa5+bF EPJUlrPYPn/n8TJ0zjVoJaH9TlHhSD1i3X9lt3q2DVFHyioisbxIn4MpA3R2IhyZ 6eGKE16k5GMBmYU7fMLNvebWCbOpZTW0Bq707VosZmJtc98gyLP5ush7RY1tR8GW iDLbi71QbVmuig23mmNAlvWycvG7qlBnvBdP9jF27Rcmq4B129aaPba7kQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEDhxWJrXzHeMX1Ov21c9RyIyaGkMB8GA1UdIwQY MBaAFOUsuFynk/rVZbRgjibYKmrifcIyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVN5NFhLZVQtdFZsdEdDT0p0Z3FhdUo5d2pJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMi85NWJhZDktMjBmZS00YjhkLThmMDMt OWMyOTk5ZDA5YjhmLzEvNVN5NFhLZVQtdFZsdEdDT0p0Z3FhdUo5d2pJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMi85NWJhZDktMjBmZS00YjhkLThmMDMtOWMyOTk5ZDA5Yjhm LzEvNVN5NFhLZVQtdFZsdEdDT0p0Z3FhdUo5d2pJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAejswlVbZ Pg2J4n9B4eyKjFfiEFnAfowKyAtdz0X0RRoHL5hzV9ul8PlBIWjqW1KtZZNCmctj 1u+7INTOGX7nfmiCj/PEqsd3cXakEmCBEksBZAm1Yr3UQ3Z4fp77zXFN3zIkDvbp hBPVQaiiBHDBw5MXz3+BTaQf2heThFY7jMJbmoFbH24gwd3uZvCGqxwydYru1TOz xtfB9Q8bKRxKgs+faoaGw4B/nhLj6J1WaHb0sO3l0AiAYgvPPkas5BhED/QC0HUM Om6Ss9kwsqqFdNQXwCs939vm2KYJ9ey3cDVsyrRHTb8ZFGuYoizYd32c8rsSrBFT JwhrcqJqNo3W8Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:29 2026 by rpki-client