This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft File: 5zfJpEKotKTJEvEbwrbTzxAK30I.mft (raw, json) Hash identifier: D0sFnkExaM7hKsN6Um62kaTpUHr9zPg74ppiRzpIt2w= Subject key identifier: 4A:5A:CD:0C:8D:C7:0B:9D:26:84:06:F2:60:EB:CA:F2:96:55:E6:13 Authority key identifier: E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42 Certificate issuer: /CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42 Certificate serial: 019C41D8FE19CF18D09660CEDD626FACB9AD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:01:05 +0000 Manifest this update: Mon 09 Feb 2026 10:01:05 +0000 Manifest next update: Tue 10 Feb 2026 10:01:05 +0000 Files and hashes: 1: 5zfJpEKotKTJEvEbwrbTzxAK30I.crl (hash: 6vsvUAQZ/8rd7P+OO9wwFVYUGIVQ7p+g8XaEKmT5gfU=) 2: fAH5HGr0FJnwVfimBME1mjRTR6I.roa (hash: JoiS3vBcWeJyqI74VLwhU1NQ94a4ip5InVm6CERVHPg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:01:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:fe:19:cf:18:d0:96:60:ce:dd:62:6f:ac:b9:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e737c9a442a8b4a4c912f11bc2b6d3cf100adf42 Validity Not Before: Feb 9 10:01:05 2026 GMT Not After : Feb 10 10:01:05 2026 GMT Subject: CN=4a5acd0c8dc70b9d268406f260ebcaf29655e613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c4:fe:cb:ab:49:55:77:aa:2e:b2:10:e8:51: 74:0f:8d:54:25:7e:ac:23:20:3c:59:d4:48:22:19: 08:44:37:f8:f7:b0:1d:3b:27:12:7e:f8:a1:21:8f: d4:b5:c0:03:c7:8e:35:06:d9:f2:1b:bb:85:97:2e: f6:84:34:cd:0f:21:67:89:66:6d:71:3a:2e:1f:6e: 8c:e7:98:27:af:9e:66:1c:c8:da:5d:29:c1:86:bf: 88:f1:a8:a3:2c:55:3d:0e:d4:96:a8:24:98:8b:60: 7c:f4:65:86:77:a7:4d:4b:97:a0:03:02:fa:4c:3d: 3d:31:9e:c4:f1:85:d5:53:b6:7a:f9:fe:02:3e:ff: 05:93:a3:fd:2a:14:a9:76:94:f4:fc:e7:3f:3a:f0: 06:3c:1a:ee:f8:ff:2e:f3:fc:72:9a:00:9e:af:bb: c2:e3:eb:5e:11:99:34:06:da:f7:0a:8d:b1:89:a3: 66:98:cb:b2:6f:e8:84:7b:a9:32:a1:01:b8:84:10: c5:bf:26:41:52:f2:55:71:9a:4c:b2:53:09:f0:31: 66:db:fe:37:88:33:82:31:25:93:9e:ec:b4:ec:9a: 8c:1f:f0:92:4b:39:97:90:97:c5:83:92:43:29:3f: ea:0f:53:86:eb:5d:cb:76:7c:e6:76:8a:9c:c7:c0: a9:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5A:CD:0C:8D:C7:0B:9D:26:84:06:F2:60:EB:CA:F2:96:55:E6:13 X509v3 Authority Key Identifier: keyid:E7:37:C9:A4:42:A8:B4:A4:C9:12:F1:1B:C2:B6:D3:CF:10:0A:DF:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5zfJpEKotKTJEvEbwrbTzxAK30I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/17667e-0219-421e-8412-31f60373a092/1/5zfJpEKotKTJEvEbwrbTzxAK30I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:9f:3b:07:bc:7b:94:1d:0a:0f:d8:9f:a0:a5:ba:db:dd:d2: c5:f9:e6:90:e5:95:77:d2:80:80:52:d4:38:6d:41:4a:7b:01: 0f:46:2b:e7:08:d5:27:fd:9b:e1:af:4a:90:23:94:66:f6:19: 32:9c:a0:38:ef:dd:11:86:04:b8:f7:e0:dc:57:57:d8:5f:f8: ae:7e:b7:36:b9:b0:de:3b:44:ed:19:b8:e6:90:93:dc:d6:6c: 30:0b:c6:f7:dd:27:7b:4d:b3:32:67:cc:ec:19:3e:79:59:09: 9a:00:de:9a:a1:5c:e8:66:e7:94:ef:f4:60:eb:2a:a0:f7:c1: 05:3a:2c:17:17:75:be:a2:05:53:3d:86:5c:56:60:33:93:c4: 07:31:c5:aa:78:a3:db:34:dd:be:65:26:26:4c:86:73:f5:89: 02:ff:78:64:2f:b0:17:7d:30:37:aa:a7:b9:09:c7:b0:f1:86: 09:7d:c6:5b:da:7e:59:94:07:4a:6d:69:ad:f5:44:47:eb:eb: 54:05:e2:f1:02:4d:9a:77:37:eb:1d:9e:09:f3:c7:5f:f1:cf: 91:7c:08:d4:d6:23:30:51:a0:23:d3:65:54:bd:38:0a:69:66: 1d:55:c2:85:d6:c7:d1:4d:b7:c6:c5:8e:c0:2e:0a:04:0e:bd: 33:52:33:69 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2P4ZzxjQlmDO3WJvrLmtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3MzdjOWE0NDJhOGI0YTRjOTEyZjExYmMyYjZkM2NmMTAw YWRmNDIwHhcNMjYwMjA5MTAwMTA1WhcNMjYwMjEwMTAwMTA1WjAzMTEwLwYDVQQD Eyg0YTVhY2QwYzhkYzcwYjlkMjY4NDA2ZjI2MGViY2FmMjk2NTVlNjEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcT+y6tJVXeqLrIQ6FF0D41UJX6s IyA8WdRIIhkIRDf497AdOycSfvihIY/UtcADx441BtnyG7uFly72hDTNDyFniWZt cTouH26M55gnr55mHMjaXSnBhr+I8aijLFU9DtSWqCSYi2B89GWGd6dNS5egAwL6 TD09MZ7E8YXVU7Z6+f4CPv8Fk6P9KhSpdpT0/Oc/OvAGPBru+P8u8/xymgCer7vC 4+teEZk0Btr3Co2xiaNmmMuyb+iEe6kyoQG4hBDFvyZBUvJVcZpMslMJ8DFm2/43 iDOCMSWTnuy07JqMH/CSSzmXkJfFg5JDKT/qD1OG613Ldnzmdoqcx8CpRwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEpazQyNxwudJoQG8mDryvKWVeYTMB8GA1UdIwQY MBaAFOc3yaRCqLSkyRLxG8K2088QCt9CMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8xNzY2N2UtMDIxOS00MjFlLTg0MTIt MzFmNjAzNzNhMDkyLzEvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8xNzY2N2UtMDIxOS00MjFlLTg0MTItMzFmNjAzNzNhMDky LzEvNXpmSnBFS290S1RKRXZFYndyYlR6eEFLMzBJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE587B7x7 lB0KD9ifoKW6293SxfnmkOWVd9KAgFLUOG1BSnsBD0Yr5wjVJ/2b4a9KkCOUZvYZ MpygOO/dEYYEuPfg3FdX2F/4rn63Nrmw3jtE7Rm45pCT3NZsMAvG990ne02zMmfM 7Bk+eVkJmgDemqFc6GbnlO/0YOsqoPfBBTosFxd1vqIFUz2GXFZgM5PEBzHFqnij 2zTdvmUmJkyGc/WJAv94ZC+wF30wN6qnuQnHsPGGCX3GW9p+WZQHSm1prfVER+vr VAXi8QJNmnc36x2eCfPHX/HPkXwI1NYjMFGgI9NlVL04CmlmHVXChdbH0U23xsWO wC4KBA69M1IzaQ== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:34 2026 by rpki-client