This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft File: l5SL1vKtFY5iT9jonp718b2x05o.mft (raw, json) Hash identifier: 8KHBkrV0Aw03A4yTixqVSLFWmT4Gpnis5BhCuwcmWwA= Subject key identifier: 52:E9:98:5E:DB:D2:6B:75:95:A6:A6:22:34:9A:DF:D3:C5:12:E8:4C Authority key identifier: 97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A Certificate issuer: /CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a Certificate serial: 019C4322786AB275CD97B53DAA6E85DA464C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft Manifest number: 053F Signing time: Mon 09 Feb 2026 16:00:58 +0000 Manifest this update: Mon 09 Feb 2026 16:00:58 +0000 Manifest next update: Tue 10 Feb 2026 16:00:58 +0000 Files and hashes: 1: l5SL1vKtFY5iT9jonp718b2x05o.crl (hash: twSaAI6LR7tR1VTtdwNHfkNW5nX0x52pb4F1tIBHlgU=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:78:6a:b2:75:cd:97:b5:3d:aa:6e:85:da:46:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=97948bd6f2ad158e624fd8e89e9ef5f1bdb1d39a Validity Not Before: Feb 9 16:00:58 2026 GMT Not After : Feb 10 16:00:58 2026 GMT Subject: CN=52e9985edbd26b7595a6a622349adfd3c512e84c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:1d:b6:d0:45:fd:66:44:29:ef:28:65:5a:e0: a7:36:0b:b6:c5:95:29:0c:9b:ec:e4:01:93:9d:9f: f1:46:5c:3e:d9:93:1b:7f:51:8a:93:19:2f:0a:d9: 4a:b9:ab:b0:9d:ba:cd:06:0c:9d:57:5d:12:c8:6d: 8c:75:a4:9b:04:86:3f:77:28:89:a0:67:4e:2c:10: 55:f8:d8:e9:72:dd:f5:ed:5c:ff:23:bf:80:52:d0: 42:c2:09:89:aa:9b:89:86:10:09:49:e1:c0:95:3d: b5:c3:8b:99:71:8b:ed:b6:22:b5:a2:8d:3c:4f:33: 1a:a4:28:af:e8:13:10:48:82:7a:0c:36:17:9f:39: 74:ad:51:29:52:b1:5f:43:83:e5:7f:50:aa:6d:81: 52:9e:73:d5:da:d4:ba:fe:65:30:7f:5d:ef:a7:15: a8:57:a6:08:2a:70:45:cc:cf:07:95:77:a9:ac:de: 27:61:35:02:28:58:8d:56:03:71:51:bc:3a:d8:ae: 0b:7c:4c:62:05:f2:7a:2b:8f:64:07:87:af:9f:0c: 49:8b:0a:d4:71:64:77:1f:50:52:e0:29:77:29:93: 29:7d:3a:c1:47:9e:f2:df:1b:81:e5:c3:67:89:1b: 15:15:5d:a6:83:28:98:98:03:42:85:f7:eb:c7:01: bf:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:E9:98:5E:DB:D2:6B:75:95:A6:A6:22:34:9A:DF:D3:C5:12:E8:4C X509v3 Authority Key Identifier: keyid:97:94:8B:D6:F2:AD:15:8E:62:4F:D8:E8:9E:9E:F5:F1:BD:B1:D3:9A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/l5SL1vKtFY5iT9jonp718b2x05o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c727bf-7709-4b33-b618-a6c5000c7184/1/l5SL1vKtFY5iT9jonp718b2x05o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:ef:cf:36:e7:fc:13:e3:85:3b:97:c0:7a:5f:b2:40:30:f3: a1:38:c4:e8:b5:5d:73:45:db:92:8d:5b:50:54:dd:73:a2:b5: 4c:cf:55:f6:0c:bb:be:0f:4d:5b:79:27:ae:3b:48:01:bc:aa: b8:d4:ff:30:77:eb:0c:d3:2c:79:ac:ad:41:a8:60:1b:1c:d7: a3:05:12:a7:b8:85:c1:be:b4:dd:6c:b7:37:09:b2:78:09:f2: 1a:84:fd:81:16:b0:36:11:c4:f4:61:f9:25:c0:43:49:00:56: 50:30:66:e7:23:48:e6:c4:74:b3:d2:86:86:f9:78:83:cc:2e: d6:47:b1:10:8b:9b:ba:9d:c0:84:c8:b9:a0:97:0a:c3:83:d3: 0b:96:71:9b:41:b1:0e:a5:74:17:a2:bd:f7:be:22:da:18:7d: ee:bc:e7:07:27:09:93:0f:41:72:6b:84:d4:d2:17:b0:b8:23: f5:08:b0:48:65:dd:11:ab:c7:14:9d:fb:a0:0c:b2:dc:c4:07: 63:95:57:8c:0d:a7:5f:a4:9e:5e:dd:80:6b:53:43:84:a7:e8: 7d:ce:5b:f5:77:b6:46:62:ac:06:f0:27:6c:11:68:77:96:97: e6:b2:68:ca:fa:5e:8b:4a:c5:ca:c0:51:7d:10:43:82:d8:3c: 1a:fc:ce:3a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDInhqsnXNl7U9qm6F2kZMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk3OTQ4YmQ2ZjJhZDE1OGU2MjRmZDhlODllOWVmNWYxYmRi MWQzOWEwHhcNMjYwMjA5MTYwMDU4WhcNMjYwMjEwMTYwMDU4WjAzMTEwLwYDVQQD Eyg1MmU5OTg1ZWRiZDI2Yjc1OTVhNmE2MjIzNDlhZGZkM2M1MTJlODRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArx220EX9ZkQp7yhlWuCnNgu2xZUp DJvs5AGTnZ/xRlw+2ZMbf1GKkxkvCtlKuauwnbrNBgydV10SyG2MdaSbBIY/dyiJ oGdOLBBV+Njpct317Vz/I7+AUtBCwgmJqpuJhhAJSeHAlT21w4uZcYvttiK1oo08 TzMapCiv6BMQSIJ6DDYXnzl0rVEpUrFfQ4Plf1CqbYFSnnPV2tS6/mUwf13vpxWo V6YIKnBFzM8HlXeprN4nYTUCKFiNVgNxUbw62K4LfExiBfJ6K49kB4evnwxJiwrU cWR3H1BS4Cl3KZMpfTrBR57y3xuB5cNniRsVFV2mgyiYmANChffrxwG/5QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFLpmF7b0mt1laamIjSa39PFEuhMMB8GA1UdIwQY MBaAFJeUi9byrRWOYk/Y6J6e9fG9sdOaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbDVTTDF2S3RGWTVpVDlqb25wNzE4YjJ4MDVvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMC9jNzI3YmYtNzcwOS00YjMzLWI2MTgt YTZjNTAwMGM3MTg0LzEvbDVTTDF2S3RGWTVpVDlqb25wNzE4YjJ4MDVvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMC9jNzI3YmYtNzcwOS00YjMzLWI2MTgtYTZjNTAwMGM3MTg0 LzEvbDVTTDF2S3RGWTVpVDlqb25wNzE4YjJ4MDVvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX+/PNuf8 E+OFO5fAel+yQDDzoTjE6LVdc0Xbko1bUFTdc6K1TM9V9gy7vg9NW3knrjtIAbyq uNT/MHfrDNMseaytQahgGxzXowUSp7iFwb603Wy3NwmyeAnyGoT9gRawNhHE9GH5 JcBDSQBWUDBm5yNI5sR0s9KGhvl4g8wu1kexEIubup3AhMi5oJcKw4PTC5Zxm0Gx DqV0F6K9974i2hh97rznBycJkw9BcmuE1NIXsLgj9QiwSGXdEavHFJ37oAyy3MQH Y5VXjA2nX6SeXt2Aa1NDhKfofc5b9Xe2RmKsBvAnbBFod5aX5rJoyvpei0rFysBR fRBDgtg8GvzOOg== -----END CERTIFICATE-----Generated at Mon Feb 9 22:44:26 2026 by rpki-client