This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft File: 5aiGWRTezNyYByQf1wtrsIOkRLM.mft (raw, json) Hash identifier: S67ddk/B2W8xF280oyw1njrLAvL5MtFOk7NIUHbXfs8= Subject key identifier: EE:7E:60:E1:A7:51:5C:34:35:05:1F:74:86:5D:63:B1:B0:7A:06:76 Authority key identifier: E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3 Certificate issuer: /CN=e5a8865914deccdc9807241fd70b6bb083a444b3 Certificate serial: 019BD87D327E3AAA2722DDEA020A8A207EC9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft Manifest number: 1155 Signing time: Mon 19 Jan 2026 23:00:42 +0000 Manifest this update: Mon 19 Jan 2026 23:00:42 +0000 Manifest next update: Tue 20 Jan 2026 23:00:42 +0000 Files and hashes: 1: 5aiGWRTezNyYByQf1wtrsIOkRLM.crl (hash: fwswQsulf1MEwmanFL32osfd3kcfZmdkS1SiO+WbQOw=) 2: wnKKZs8CL5sITpd1bsL8mCN_whw.roa (hash: x/oWyELUEfox1cdM+OjmJcPeW5wZ59veRKaEMseu1OM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 23:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:d8:7d:32:7e:3a:aa:27:22:dd:ea:02:0a:8a:20:7e:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5a8865914deccdc9807241fd70b6bb083a444b3 Validity Not Before: Jan 19 23:00:42 2026 GMT Not After : Jan 20 23:00:42 2026 GMT Subject: CN=ee7e60e1a7515c3435051f74865d63b1b07a0676 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:eb:19:bb:66:a6:da:be:0c:92:68:d8:ca:65: df:cb:23:0d:9e:ca:f6:75:ef:5d:63:68:c8:6a:73: 0a:d4:de:35:6c:85:9a:02:43:d2:d1:79:91:6a:d1: b0:e8:ed:d9:53:a2:c6:21:09:33:a7:18:84:0d:e4: bb:98:8b:9a:58:99:96:3e:a9:8d:b4:0b:c7:9b:3f: c5:8d:ea:68:65:cf:f1:40:67:db:41:b6:56:7d:d0: 0e:77:6f:16:92:60:8e:9e:ae:0e:09:cd:da:27:c2: 62:c3:79:33:79:b3:37:1d:98:97:27:47:5c:62:ff: 43:5c:d9:26:e0:45:01:9d:ee:35:7c:59:6b:24:8d: d6:87:e7:a9:a9:41:34:5e:f9:bc:ac:33:48:c3:22: 03:79:5b:16:2d:d7:bd:a6:e6:d0:9d:5a:45:e2:8e: 99:b8:f9:3b:17:ed:4d:55:37:b7:cd:11:65:48:c7: d0:87:59:37:87:c3:be:8f:3e:da:b3:70:f9:fe:40: 54:f8:88:25:20:7a:af:b6:d4:f3:6e:79:ab:a4:2e: 63:2e:86:e5:3b:ab:43:dc:82:15:50:8c:2d:e1:53: 24:46:58:21:ca:90:d4:6a:be:fa:20:b2:bf:14:06: 25:b0:e7:5c:1a:32:14:0d:e8:c8:f8:5a:a6:ff:dc: 1a:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:7E:60:E1:A7:51:5C:34:35:05:1F:74:86:5D:63:B1:B0:7A:06:76 X509v3 Authority Key Identifier: keyid:E5:A8:86:59:14:DE:CC:DC:98:07:24:1F:D7:0B:6B:B0:83:A4:44:B3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5aiGWRTezNyYByQf1wtrsIOkRLM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/3afc81-30e6-4b8e-8d3b-57f54ea43e16/1/5aiGWRTezNyYByQf1wtrsIOkRLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:8b:98:3e:34:1b:ae:f6:49:4f:29:cb:3f:df:23:9e:db:e5: 16:2a:d6:96:b6:52:3e:1c:d5:11:cc:9b:fb:c6:7b:46:4b:4a: f3:f9:07:8c:1e:16:97:c3:7b:8a:18:b6:ac:5f:cb:87:92:3b: cf:20:9b:63:d5:db:af:b3:b4:28:46:8d:2f:a4:a3:b1:64:1e: 79:49:3f:c5:5b:bf:cf:31:a3:11:9c:7c:b1:c1:48:cd:61:08: 87:9b:28:10:d3:2a:fd:54:e2:86:a4:2f:ab:84:22:69:a0:3c: 1f:5a:17:e8:12:4f:aa:75:7d:42:70:74:8b:7d:e5:f3:25:48: 73:a4:c8:13:25:af:74:90:48:6a:84:a9:90:53:a3:e8:38:77: 65:48:56:e2:c5:73:78:98:f1:ef:74:9d:74:85:48:1c:f1:06: d7:e4:4b:18:53:e8:b8:15:4d:44:b4:5d:eb:bd:ad:3a:8f:07: 08:8e:d9:22:f3:4d:9c:3d:cf:63:20:f0:3d:17:d0:00:b6:01: 05:fe:8b:82:09:49:5c:0f:f9:4c:66:e8:11:28:34:f5:2d:96: a6:4d:56:4a:28:18:52:7a:bb:3a:1c:c8:f4:0a:cb:31:5e:d6: 9f:97:1c:89:87:30:3c:d5:61:45:fa:97:1b:55:e4:be:80:41: e4:99:70:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvYfTJ+OqonIt3qAgqKIH7JMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1YTg4NjU5MTRkZWNjZGM5ODA3MjQxZmQ3MGI2YmIwODNh NDQ0YjMwHhcNMjYwMTE5MjMwMDQyWhcNMjYwMTIwMjMwMDQyWjAzMTEwLwYDVQQD EyhlZTdlNjBlMWE3NTE1YzM0MzUwNTFmNzQ4NjVkNjNiMWIwN2EwNjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsesZu2am2r4MkmjYymXfyyMNnsr2 de9dY2jIanMK1N41bIWaAkPS0XmRatGw6O3ZU6LGIQkzpxiEDeS7mIuaWJmWPqmN tAvHmz/FjepoZc/xQGfbQbZWfdAOd28WkmCOnq4OCc3aJ8Jiw3kzebM3HZiXJ0dc Yv9DXNkm4EUBne41fFlrJI3Wh+epqUE0Xvm8rDNIwyIDeVsWLde9pubQnVpF4o6Z uPk7F+1NVTe3zRFlSMfQh1k3h8O+jz7as3D5/kBU+IglIHqvttTzbnmrpC5jLobl O6tD3IIVUIwt4VMkRlghypDUar76ILK/FAYlsOdcGjIUDejI+Fqm/9waNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO5+YOGnUVw0NQUfdIZdY7GwegZ2MB8GA1UdIwQY MBaAFOWohlkU3szcmAckH9cLa7CDpESzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zYWZjODEtMzBlNi00YjhlLThkM2It NTdmNTRlYTQzZTE2LzEvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8zYWZjODEtMzBlNi00YjhlLThkM2ItNTdmNTRlYTQzZTE2 LzEvNWFpR1dSVGV6TnlZQnlRZjF3dHJzSU9rUkxNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAR4uYPjQb rvZJTynLP98jntvlFirWlrZSPhzVEcyb+8Z7RktK8/kHjB4Wl8N7ihi2rF/Lh5I7 zyCbY9Xbr7O0KEaNL6SjsWQeeUk/xVu/zzGjEZx8scFIzWEIh5soENMq/VTihqQv q4QiaaA8H1oX6BJPqnV9QnB0i33l8yVIc6TIEyWvdJBIaoSpkFOj6Dh3ZUhW4sVz eJjx73SddIVIHPEG1+RLGFPouBVNRLRd672tOo8HCI7ZIvNNnD3PYyDwPRfQALYB Bf6LgglJXA/5TGboESg09S2Wpk1WSigYUnq7OhzI9ArLMV7Wn5cciYcwPNVhRfqX G1XkvoBB5JlwYw== -----END CERTIFICATE-----Generated at Tue Jan 20 07:37:12 2026 by rpki-client