This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft File: 5J1E2IEnX8osC2s_fs7i0iIUb9I.mft (raw, json) Hash identifier: aAVE/jTOD65vjQL/ffLqe+o3PoVWXQOit5QiUiucfbw= Subject key identifier: 30:07:A6:55:30:7E:EE:05:16:A1:56:17:C9:D1:46:3D:79:43:0B:C1 Authority key identifier: E4:9D:44:D8:81:27:5F:CA:2C:0B:6B:3F:7E:CE:E2:D2:22:14:6F:D2 Certificate issuer: /CN=e49d44d881275fca2c0b6b3f7ecee2d222146fd2 Certificate serial: 019C424695F24567FB40F939ADC74938D702 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5J1E2IEnX8osC2s_fs7i0iIUb9I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft Manifest number: 1539 Signing time: Mon 09 Feb 2026 12:00:47 +0000 Manifest this update: Mon 09 Feb 2026 12:00:47 +0000 Manifest next update: Tue 10 Feb 2026 12:00:47 +0000 Files and hashes: 1: 5J1E2IEnX8osC2s_fs7i0iIUb9I.crl (hash: 4K2mwNXt5ZrSXLTyMUm+XwQdouIqKCOCEXudMguHCyY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.crl rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft rsync://rpki.ripe.net/repository/DEFAULT/5J1E2IEnX8osC2s_fs7i0iIUb9I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:95:f2:45:67:fb:40:f9:39:ad:c7:49:38:d7:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e49d44d881275fca2c0b6b3f7ecee2d222146fd2 Validity Not Before: Feb 9 12:00:47 2026 GMT Not After : Feb 10 12:00:47 2026 GMT Subject: CN=3007a655307eee0516a15617c9d1463d79430bc1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:c7:67:5f:ea:08:84:a0:11:30:9c:90:97:fd: c0:ff:2a:a8:19:f3:07:96:ce:d7:14:e7:34:e0:24: 4b:57:19:f1:d7:a3:eb:6c:21:b4:cf:7f:7b:3d:88: 0d:b5:27:1d:03:fc:8c:cf:74:0c:95:a7:1d:b6:f5: bc:80:4b:15:e7:b1:5c:3c:8a:6d:cc:5d:92:db:54: 74:5a:c4:a6:0b:15:da:a0:ba:3b:5f:68:58:1a:01: 2e:64:d1:bd:6a:20:42:03:5b:2c:ba:51:ee:5a:bf: 0a:5e:b5:b1:64:25:f3:52:cb:90:32:4c:8e:86:3b: e1:19:07:38:df:df:0a:8a:1e:16:67:9f:eb:a7:b9: 27:37:e2:cd:1b:ee:db:6b:ab:41:d4:cb:d2:fd:2c: 34:45:7a:ef:dd:85:b7:62:5f:06:9f:33:a4:a4:44: ab:53:67:c6:b3:16:9b:71:65:80:2b:d4:69:4c:e7: a3:04:b7:97:3a:dd:30:0c:6b:71:c5:17:f0:a5:90: 93:9e:69:9e:07:bc:05:fd:65:e3:21:49:e1:72:c2: d4:66:f7:46:8a:ae:93:09:c0:56:c3:c4:60:3e:20: 34:d4:3f:d3:79:77:64:d0:e4:99:1f:a9:9b:57:c6: 2a:ea:c8:16:cc:8a:80:78:94:9f:4b:1a:55:a8:ae: 57:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:07:A6:55:30:7E:EE:05:16:A1:56:17:C9:D1:46:3D:79:43:0B:C1 X509v3 Authority Key Identifier: keyid:E4:9D:44:D8:81:27:5F:CA:2C:0B:6B:3F:7E:CE:E2:D2:22:14:6F:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5J1E2IEnX8osC2s_fs7i0iIUb9I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/28/050d7f-8455-465f-b239-c32d10c7ea1f/1/5J1E2IEnX8osC2s_fs7i0iIUb9I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:1b:e4:d4:f6:5f:64:4f:21:a2:e6:96:71:c9:5b:42:50:f7: 22:7e:4d:bb:35:ed:a4:00:76:8c:6e:49:ca:2b:81:1a:78:d3: 49:fa:76:71:96:dc:ed:86:60:ce:6d:ef:3c:5b:ae:04:ea:56: 07:38:11:ab:78:5d:f9:55:51:c1:49:82:e6:c3:23:7c:87:c2: 48:c9:42:98:3c:81:6d:12:5e:5e:bc:a2:02:c2:dc:5c:a2:83: a0:6e:56:96:b5:20:39:83:4b:96:d4:0c:84:7c:74:e1:f7:bd: da:aa:eb:d5:b7:34:5a:f8:80:9c:67:55:71:70:ee:04:3b:be: a2:eb:cb:9a:cf:91:31:7f:88:d2:6a:d3:bb:e9:bf:1a:3d:4d: fc:60:de:f3:15:a4:01:33:9f:29:da:c9:5f:36:4f:4e:d3:07: f0:22:f6:4e:b3:d8:ba:47:e8:f3:f4:24:d8:8d:d4:b8:d5:20: 7c:89:2d:12:07:e2:73:5d:09:55:16:1e:ac:f5:71:11:ee:39: 89:d1:fb:a0:4a:6c:01:b5:db:1e:1c:99:da:30:6d:17:bf:61: 74:f3:e7:1c:eb:e6:e3:87:e0:10:24:bc:7b:2f:53:7a:bc:bc: a7:f8:ed:64:7f:01:fc:80:38:bd:ec:7d:c7:c2:35:38:2e:79: b0:0c:55:3d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRpXyRWf7QPk5rcdJONcCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0OWQ0NGQ4ODEyNzVmY2EyYzBiNmIzZjdlY2VlMmQyMjIx NDZmZDIwHhcNMjYwMjA5MTIwMDQ3WhcNMjYwMjEwMTIwMDQ3WjAzMTEwLwYDVQQD EygzMDA3YTY1NTMwN2VlZTA1MTZhMTU2MTdjOWQxNDYzZDc5NDMwYmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwcdnX+oIhKARMJyQl/3A/yqoGfMH ls7XFOc04CRLVxnx16PrbCG0z397PYgNtScdA/yMz3QMlacdtvW8gEsV57FcPIpt zF2S21R0WsSmCxXaoLo7X2hYGgEuZNG9aiBCA1ssulHuWr8KXrWxZCXzUsuQMkyO hjvhGQc4398Kih4WZ5/rp7knN+LNG+7ba6tB1MvS/Sw0RXrv3YW3Yl8GnzOkpESr U2fGsxabcWWAK9RpTOejBLeXOt0wDGtxxRfwpZCTnmmeB7wF/WXjIUnhcsLUZvdG iq6TCcBWw8RgPiA01D/TeXdk0OSZH6mbV8Yq6sgWzIqAeJSfSxpVqK5X5wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDAHplUwfu4FFqFWF8nRRj15QwvBMB8GA1UdIwQY MBaAFOSdRNiBJ1/KLAtrP37O4tIiFG/SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNUoxRTJJRW5YOG9zQzJzX2ZzN2kwaUlVYjlJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOC8wNTBkN2YtODQ1NS00NjVmLWIyMzkt YzMyZDEwYzdlYTFmLzEvNUoxRTJJRW5YOG9zQzJzX2ZzN2kwaUlVYjlJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOC8wNTBkN2YtODQ1NS00NjVmLWIyMzktYzMyZDEwYzdlYTFm LzEvNUoxRTJJRW5YOG9zQzJzX2ZzN2kwaUlVYjlJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEhvk1PZf ZE8houaWcclbQlD3In5NuzXtpAB2jG5JyiuBGnjTSfp2cZbc7YZgzm3vPFuuBOpW BzgRq3hd+VVRwUmC5sMjfIfCSMlCmDyBbRJeXryiAsLcXKKDoG5WlrUgOYNLltQM hHx04fe92qrr1bc0WviAnGdVcXDuBDu+ouvLms+RMX+I0mrTu+m/Gj1N/GDe8xWk ATOfKdrJXzZPTtMH8CL2TrPYukfo8/Qk2I3UuNUgfIktEgfic10JVRYerPVxEe45 idH7oEpsAbXbHhyZ2jBtF79hdPPnHOvm44fgECS8ey9Tery8p/jtZH8B/IA4vex9 x8I1OC55sAxVPQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:42:06 2026 by rpki-client