This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft File: 5hbHsgGVYH8nsT2I-Svx0Os45g8.mft (raw, json) Hash identifier: ZxiA3aJfNl6wbajYbuRJE+AdYUB5K814yR+HdhXaD0U= Subject key identifier: 71:62:CE:4F:52:FD:A5:A3:9B:1F:55:5E:E4:49:9D:72:FD:71:FA:4B Authority key identifier: E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F Certificate issuer: /CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f Certificate serial: 019BFC8A66FDC5AC5F4CC2FD1746327D74E3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft Manifest number: 02A0 Signing time: Mon 26 Jan 2026 23:01:27 +0000 Manifest this update: Mon 26 Jan 2026 23:01:27 +0000 Manifest next update: Tue 27 Jan 2026 23:01:27 +0000 Files and hashes: 1: 5hbHsgGVYH8nsT2I-Svx0Os45g8.crl (hash: A/CEMliiD2rliXkXmlVs74DA9ek716FnPvB5yHQaIQ4=) 2: 72Y0w9pV82pI3wLwx96KwjAs5oU.roa (hash: c5hQXuvcKRBmbu9AlA38sraM6CQffUtGwob8NZ7WzZo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 20:39:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fc:8a:66:fd:c5:ac:5f:4c:c2:fd:17:46:32:7d:74:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e616c7b20195607f27b13d88f92bf1d0eb38e60f Validity Not Before: Jan 26 23:01:27 2026 GMT Not After : Jan 27 23:01:27 2026 GMT Subject: CN=7162ce4f52fda5a39b1f555ee4499d72fd71fa4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c2:39:77:0e:d6:b6:62:18:1c:d3:40:9d:a9: ca:e1:8d:2a:eb:ad:e3:a9:94:7f:fa:2c:7c:02:91: 8a:e2:a1:61:94:46:a9:75:ff:b5:41:37:04:a9:ce: e9:90:3a:44:6d:5c:db:c9:7f:eb:9b:f7:cd:9a:3e: ae:f6:2c:f5:62:67:85:a1:89:bd:4a:4d:1d:35:f3: b6:58:1d:99:ee:12:f6:98:73:31:73:08:95:ed:7b: fc:6e:fd:e3:17:5d:c6:4d:9c:1f:6e:3d:9d:fa:ed: cc:06:4f:04:d5:42:dc:57:ac:b2:cf:82:e6:ef:54: 61:37:15:ad:b2:58:9a:73:c5:a3:db:61:70:a2:fd: fc:59:7c:3f:e5:31:2f:db:f4:33:05:bd:1d:59:b8: 16:d5:11:fd:42:be:9a:aa:76:61:19:58:bb:53:f9: 1a:61:f0:6f:43:03:e8:e5:6a:69:36:bf:1c:84:81: d6:2a:15:c4:30:72:2a:d3:7b:60:8d:8b:65:f1:ad: 36:5c:c9:75:2a:dc:2d:65:65:1d:9b:72:9d:7e:22: 0a:9c:21:05:38:68:17:02:a2:8d:d2:12:25:02:1c: eb:b8:2b:87:8a:ed:ff:17:c6:5c:2b:b7:66:33:6b: 16:75:c3:b2:6c:31:b8:55:9f:80:ae:27:22:e0:75: 51:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:62:CE:4F:52:FD:A5:A3:9B:1F:55:5E:E4:49:9D:72:FD:71:FA:4B X509v3 Authority Key Identifier: keyid:E6:16:C7:B2:01:95:60:7F:27:B1:3D:88:F9:2B:F1:D0:EB:38:E6:0F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5hbHsgGVYH8nsT2I-Svx0Os45g8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/036380-7fbe-4444-84d9-5cd004d6e366/1/5hbHsgGVYH8nsT2I-Svx0Os45g8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 74:8b:03:f4:6c:4e:ae:21:e4:89:fa:60:70:dd:59:d5:a5:db: 1a:04:29:8c:9e:67:5f:cd:f5:86:34:82:b5:8a:9e:78:e9:e6: e2:44:27:8b:9d:ab:19:a0:52:83:29:a1:6d:7a:00:9a:2a:56: 65:91:62:3c:ae:01:ac:e7:76:bc:2d:1b:bc:c3:de:5e:68:c0: c6:34:d4:c4:5b:68:19:c2:16:3a:84:bb:34:8e:3c:2a:ec:8b: 00:9a:33:49:3b:dd:0e:3a:b3:4b:ed:89:c7:a3:2c:c6:72:c0: 3f:9b:76:26:80:6d:88:30:9b:c9:34:14:b0:2d:05:ec:58:0a: 33:4f:3f:0b:df:ea:4c:07:68:68:9f:c7:b0:a6:16:7e:78:5c: 3f:d9:30:4d:fe:16:17:70:02:eb:cc:26:04:9d:a9:41:38:bc: c0:f5:d6:04:fe:97:fa:77:ac:2f:92:ed:c4:ee:da:b4:58:e8: 97:8b:37:78:3c:20:4e:a0:1a:84:f3:b2:b2:7f:11:1c:2c:be: 6f:3b:dc:b1:cb:8f:6c:01:3d:99:8c:67:7e:15:9b:a9:9e:f3: 9f:da:bd:41:90:f0:0b:ef:df:13:1e:b1:a6:38:57:eb:b5:0f: 02:c7:a0:ba:a8:0f:20:87:d5:1f:8e:a4:c5:e4:74:5f:16:cf: cb:72:20:85 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv8imb9xaxfTML9F0YyfXTjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MTZjN2IyMDE5NTYwN2YyN2IxM2Q4OGY5MmJmMWQwZWIz OGU2MGYwHhcNMjYwMTI2MjMwMTI3WhcNMjYwMTI3MjMwMTI3WjAzMTEwLwYDVQQD Eyg3MTYyY2U0ZjUyZmRhNWEzOWIxZjU1NWVlNDQ5OWQ3MmZkNzFmYTRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsI5dw7WtmIYHNNAnanK4Y0q663j qZR/+ix8ApGK4qFhlEapdf+1QTcEqc7pkDpEbVzbyX/rm/fNmj6u9iz1YmeFoYm9 Sk0dNfO2WB2Z7hL2mHMxcwiV7Xv8bv3jF13GTZwfbj2d+u3MBk8E1ULcV6yyz4Lm 71RhNxWtsliac8Wj22Fwov38WXw/5TEv2/QzBb0dWbgW1RH9Qr6aqnZhGVi7U/ka YfBvQwPo5WppNr8chIHWKhXEMHIq03tgjYtl8a02XMl1KtwtZWUdm3KdfiIKnCEF OGgXAqKN0hIlAhzruCuHiu3/F8ZcK7dmM2sWdcOybDG4VZ+Arici4HVRQQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHFizk9S/aWjmx9VXuRJnXL9cfpLMB8GA1UdIwQY MBaAFOYWx7IBlWB/J7E9iPkr8dDrOOYPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWhiSHNnR1ZZSDhuc1QySS1TdngwT3M0NWc4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8wMzYzODAtN2ZiZS00NDQ0LTg0ZDkt NWNkMDA0ZDZlMzY2LzEvNWhiSHNnR1ZZSDhuc1QySS1TdngwT3M0NWc4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8wMzYzODAtN2ZiZS00NDQ0LTg0ZDktNWNkMDA0ZDZlMzY2 LzEvNWhiSHNnR1ZZSDhuc1QySS1TdngwT3M0NWc4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdIsD9GxO riHkifpgcN1Z1aXbGgQpjJ5nX831hjSCtYqeeOnm4kQni52rGaBSgymhbXoAmipW ZZFiPK4BrOd2vC0bvMPeXmjAxjTUxFtoGcIWOoS7NI48KuyLAJozSTvdDjqzS+2J x6MsxnLAP5t2JoBtiDCbyTQUsC0F7FgKM08/C9/qTAdoaJ/HsKYWfnhcP9kwTf4W F3AC68wmBJ2pQTi8wPXWBP6X+nesL5LtxO7atFjol4s3eDwgTqAahPOysn8RHCy+ bzvcscuPbAE9mYxnfhWbqZ7zn9q9QZDwC+/fEx6xpjhX67UPAseguqgPIIfVH46k xeR0XxbPy3IghQ== -----END CERTIFICATE-----Generated at Tue Jan 27 05:36:37 2026 by rpki-client