This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft File: 5D7dxEvG9TRFds9ZrwATXGtiwB0.mft (raw, json) Hash identifier: B8tG52JEhBGbgmq0msHmEll0LRqD1xQYvWUpcX9WbcE= Subject key identifier: 22:35:CB:0E:71:88:48:1D:9B:C5:A2:6C:C9:C9:13:F8:CB:5B:F6:D9 Authority key identifier: E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D Certificate issuer: /CN=e43eddc44bc6f5344576cf59af00135c6b62c01d Certificate serial: 019C41A1E3103C7DDB616FFB08FB1E9BB417 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft Manifest number: 0E76 Signing time: Mon 09 Feb 2026 09:00:54 +0000 Manifest this update: Mon 09 Feb 2026 09:00:54 +0000 Manifest next update: Tue 10 Feb 2026 09:00:54 +0000 Files and hashes: 1: 5D7dxEvG9TRFds9ZrwATXGtiwB0.crl (hash: grtPfD4mUcvsmg8qvILkOze41/hIn+jGtEeI+idUTe4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:e3:10:3c:7d:db:61:6f:fb:08:fb:1e:9b:b4:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e43eddc44bc6f5344576cf59af00135c6b62c01d Validity Not Before: Feb 9 09:00:54 2026 GMT Not After : Feb 10 09:00:54 2026 GMT Subject: CN=2235cb0e7188481d9bc5a26cc9c913f8cb5bf6d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:17:44:93:cb:80:ef:0f:1f:5d:d0:2e:a0:05: 4b:5b:9c:6f:7e:b4:52:76:dc:1b:cc:69:03:d9:48: 8a:86:85:ed:f7:19:62:42:4d:05:11:ea:2d:a2:1e: 02:a8:d0:ae:a6:41:ec:5b:fd:25:08:01:45:35:07: ae:2e:fc:ef:93:75:56:6e:81:ab:a2:31:e9:17:1a: 69:35:46:52:db:d9:09:35:41:f0:90:09:ce:0e:0a: cc:38:ea:95:ca:a9:27:27:28:3c:a3:83:88:3d:ec: 92:89:63:c1:f9:d8:2a:c3:b1:3a:75:c3:00:6a:26: a2:c4:33:e3:65:b3:43:f2:e0:c3:25:6e:92:24:e5: cc:13:e8:46:f2:35:03:7d:3b:a8:29:2c:3d:d8:69: 42:66:0c:23:19:5d:da:62:9e:33:62:c1:aa:e0:62: b8:38:ee:e5:32:c1:8f:71:3c:a0:3f:43:33:65:02: 40:80:d0:a5:c7:68:38:01:26:1f:66:cc:52:a2:c2: 08:51:a0:2e:0d:f2:66:a6:33:25:9f:6b:a8:8b:54: a6:15:93:e0:62:da:0d:a9:95:65:ff:e9:c0:13:28: 7f:a7:5c:24:44:05:44:b1:5e:1f:8c:82:53:83:5c: 9b:fb:2a:91:a9:ec:b1:14:36:ef:60:47:af:d3:54: c0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:35:CB:0E:71:88:48:1D:9B:C5:A2:6C:C9:C9:13:F8:CB:5B:F6:D9 X509v3 Authority Key Identifier: keyid:E4:3E:DD:C4:4B:C6:F5:34:45:76:CF:59:AF:00:13:5C:6B:62:C0:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5D7dxEvG9TRFds9ZrwATXGtiwB0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/2daa72-0314-46c5-be5b-9a69304258a0/1/5D7dxEvG9TRFds9ZrwATXGtiwB0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:0e:d5:99:e5:15:f8:8c:58:ce:81:10:46:b7:f1:1f:7b:ca: 35:38:e5:c0:ef:ca:83:f2:3d:e2:9a:92:ea:96:a1:e3:9d:f3: 7a:da:7f:a5:3e:21:47:7a:99:bb:cb:4c:03:f8:10:e8:21:81: 79:53:3c:b5:d6:72:a4:9f:6c:2f:45:4f:fb:9d:52:77:b6:ee: eb:77:b4:74:f8:52:4b:1a:b5:69:c3:85:eb:b2:a2:0c:ff:d0: 1c:99:bf:f1:b4:56:31:a5:21:30:c6:3f:10:84:c7:7d:59:0f: 3c:d5:85:6b:ac:3c:e0:08:b7:2b:36:da:bd:f9:9e:31:66:19: 5f:76:f6:6b:cf:11:8f:52:90:40:4f:25:9b:00:10:62:5e:fb: 99:b6:be:b1:4c:7e:cf:ed:cb:87:c2:3c:41:53:57:f9:9b:9a: 2d:a2:c7:6e:95:b5:1e:cc:46:5e:39:d9:c0:9b:82:8e:76:67: d6:f3:bd:2f:45:60:97:a6:8b:9c:e9:f3:83:b6:cf:33:c6:a1: 77:ef:a1:31:cb:94:e6:0f:28:23:19:7f:70:4b:f8:a6:d2:49: ab:85:e4:03:4a:62:20:45:f7:14:74:19:cb:53:fe:fc:62:32: cb:45:88:68:fa:8e:a9:80:3a:33:24:b3:d3:c9:18:ac:96:0c: 44:7a:ec:59 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBoeMQPH3bYW/7CPsem7QXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0M2VkZGM0NGJjNmY1MzQ0NTc2Y2Y1OWFmMDAxMzVjNmI2 MmMwMWQwHhcNMjYwMjA5MDkwMDU0WhcNMjYwMjEwMDkwMDU0WjAzMTEwLwYDVQQD EygyMjM1Y2IwZTcxODg0ODFkOWJjNWEyNmNjOWM5MTNmOGNiNWJmNmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuhdEk8uA7w8fXdAuoAVLW5xvfrRS dtwbzGkD2UiKhoXt9xliQk0FEeotoh4CqNCupkHsW/0lCAFFNQeuLvzvk3VWboGr ojHpFxppNUZS29kJNUHwkAnODgrMOOqVyqknJyg8o4OIPeySiWPB+dgqw7E6dcMA aiaixDPjZbND8uDDJW6SJOXME+hG8jUDfTuoKSw92GlCZgwjGV3aYp4zYsGq4GK4 OO7lMsGPcTygP0MzZQJAgNClx2g4ASYfZsxSosIIUaAuDfJmpjMln2uoi1SmFZPg YtoNqZVl/+nAEyh/p1wkRAVEsV4fjIJTg1yb+yqRqeyxFDbvYEev01TATQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCI1yw5xiEgdm8WibMnJE/jLW/bZMB8GA1UdIwQY MBaAFOQ+3cRLxvU0RXbPWa8AE1xrYsAdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC8yZGFhNzItMDMxNC00NmM1LWJlNWIt OWE2OTMwNDI1OGEwLzEvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC8yZGFhNzItMDMxNC00NmM1LWJlNWItOWE2OTMwNDI1OGEw LzEvNUQ3ZHhFdkc5VFJGZHM5WnJ3QVRYR3Rpd0IwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAQ7VmeUV +IxYzoEQRrfxH3vKNTjlwO/Kg/I94pqS6pah453zetp/pT4hR3qZu8tMA/gQ6CGB eVM8tdZypJ9sL0VP+51Sd7bu63e0dPhSSxq1acOF67KiDP/QHJm/8bRWMaUhMMY/ EITHfVkPPNWFa6w84Ai3KzbavfmeMWYZX3b2a88Rj1KQQE8lmwAQYl77mba+sUx+ z+3Lh8I8QVNX+ZuaLaLHbpW1HsxGXjnZwJuCjnZn1vO9L0Vgl6aLnOnzg7bPM8ah d++hMcuU5g8oIxl/cEv4ptJJq4XkA0piIEX3FHQZy1P+/GIyy0WIaPqOqYA6MySz 08kYrJYMRHrsWQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:00 2026 by rpki-client