This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft File: 5_y3rNVfY0m52BRheGwSRY-G9y4.mft (raw, json) Hash identifier: ppd/STqBqLyti8L5b5kJnql81OGN0rAA2K1vDVF94xY= Subject key identifier: 23:61:13:D8:3A:7C:DA:27:A5:79:95:74:C6:EE:10:6F:A3:82:AA:55 Authority key identifier: E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E Certificate issuer: /CN=e7fcb7acd55f6349b9d81461786c12458f86f72e Certificate serial: 019C427D4F7F8BC8FED4F7AAF18E65651055 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 13:00:34 +0000 Manifest this update: Mon 09 Feb 2026 13:00:34 +0000 Manifest next update: Tue 10 Feb 2026 13:00:34 +0000 Files and hashes: 1: 5_y3rNVfY0m52BRheGwSRY-G9y4.crl (hash: mmDWkdOmOSzxl6GzrpcjAUKUVpzb6/WrjvIyLAQPlzg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:4f:7f:8b:c8:fe:d4:f7:aa:f1:8e:65:65:10:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7fcb7acd55f6349b9d81461786c12458f86f72e Validity Not Before: Feb 9 13:00:34 2026 GMT Not After : Feb 10 13:00:34 2026 GMT Subject: CN=236113d83a7cda27a5799574c6ee106fa382aa55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:c9:64:f7:f1:ff:1a:4d:ac:85:f5:d3:87:ea: 9c:4b:06:70:38:08:87:d9:2c:c3:31:b9:5a:51:52: dd:df:28:0a:7a:e4:12:01:08:9e:65:7b:da:ab:28: 2b:7e:5d:a7:15:48:6a:79:0c:a0:3c:b0:a2:e2:4e: 4a:a3:0a:17:71:4a:76:9a:9d:29:82:67:86:94:11: 54:10:6d:e8:ff:01:43:06:03:5a:44:38:be:36:68: fd:f8:c1:0f:16:d8:cb:38:4c:2b:dc:60:04:f8:f6: df:67:d7:23:32:5b:d3:73:98:42:9b:51:e5:a6:45: 9d:02:84:11:82:0b:ea:fb:39:e2:29:77:f8:ac:01: d0:bf:67:a0:f2:ce:25:d1:91:7e:f8:0c:c3:98:7c: e7:8b:dd:f0:3a:83:4c:38:32:1d:71:d2:63:ff:45: ac:be:8d:45:ce:9c:aa:ea:51:d4:bc:e8:54:16:6b: 49:91:cc:05:7b:9e:93:e1:5f:64:4f:ee:15:a9:44: 73:d7:90:18:bf:33:08:bb:c2:77:4d:7b:8e:3d:28: f9:9b:4c:5f:69:a9:0d:4b:62:fd:6e:d5:6c:61:3c: b4:1d:95:5f:86:89:65:e3:e9:2f:0c:cc:8d:c8:93: 1e:50:a4:07:55:14:20:8e:85:16:f9:a2:a2:a5:26: 49:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:61:13:D8:3A:7C:DA:27:A5:79:95:74:C6:EE:10:6F:A3:82:AA:55 X509v3 Authority Key Identifier: keyid:E7:FC:B7:AC:D5:5F:63:49:B9:D8:14:61:78:6C:12:45:8F:86:F7:2E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5_y3rNVfY0m52BRheGwSRY-G9y4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/48/698339-5905-4637-b983-cdb3a657d9ee/1/5_y3rNVfY0m52BRheGwSRY-G9y4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:3b:9a:b7:9e:cc:66:f8:a9:7e:51:83:1a:93:50:d1:50:43: 7d:fb:df:ad:75:71:d1:39:f7:7f:b7:2a:c6:51:2b:a3:05:0f: f8:a7:82:4e:13:f0:06:6a:3f:03:ef:35:cc:9c:95:2a:bc:14: 25:84:bc:fb:a4:77:84:86:1c:60:10:da:25:a9:89:76:90:7e: 28:6a:fb:8f:bb:e9:e7:ed:0d:e7:92:6a:2c:fb:89:98:d9:94: ab:5f:3e:ca:81:0a:24:e3:73:01:b7:8a:c4:73:fb:9e:42:ca: 3f:d9:3f:b7:35:b2:a0:50:d3:2a:6c:72:22:83:c5:de:46:71: bf:73:4c:8a:c8:32:81:da:7a:ab:a5:c8:f4:5e:6a:07:ae:a2: 1d:5a:ab:1f:f1:d3:9d:ed:35:c7:76:a1:17:a1:f0:cc:eb:5f: 1b:79:2b:6f:8e:f8:47:3d:dc:59:6e:a6:22:95:3c:58:07:79: 3c:94:73:cd:bb:12:8c:bc:76:f2:5b:00:02:de:a7:5c:48:c0: 55:db:19:b1:d4:14:9a:ad:56:ab:1a:2d:11:95:18:f4:03:c2: 52:f4:db:6f:c3:23:a7:d4:44:91:fd:62:b0:45:52:25:f4:20: 5c:cb:15:8c:98:69:74:8a:9c:db:0a:ce:b3:ad:c5:db:27:d2: 3a:21:de:18 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfU9/i8j+1Peq8Y5lZRBVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3ZmNiN2FjZDU1ZjYzNDliOWQ4MTQ2MTc4NmMxMjQ1OGY4 NmY3MmUwHhcNMjYwMjA5MTMwMDM0WhcNMjYwMjEwMTMwMDM0WjAzMTEwLwYDVQQD EygyMzYxMTNkODNhN2NkYTI3YTU3OTk1NzRjNmVlMTA2ZmEzODJhYTU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmMlk9/H/Gk2shfXTh+qcSwZwOAiH 2SzDMblaUVLd3ygKeuQSAQieZXvaqygrfl2nFUhqeQygPLCi4k5KowoXcUp2mp0p gmeGlBFUEG3o/wFDBgNaRDi+Nmj9+MEPFtjLOEwr3GAE+PbfZ9cjMlvTc5hCm1Hl pkWdAoQRggvq+zniKXf4rAHQv2eg8s4l0ZF++AzDmHzni93wOoNMODIdcdJj/0Ws vo1Fzpyq6lHUvOhUFmtJkcwFe56T4V9kT+4VqURz15AYvzMIu8J3TXuOPSj5m0xf aakNS2L9btVsYTy0HZVfholl4+kvDMyNyJMeUKQHVRQgjoUW+aKipSZJ8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCNhE9g6fNonpXmVdMbuEG+jgqpVMB8GA1UdIwQY MBaAFOf8t6zVX2NJudgUYXhsEkWPhvcuMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNV95M3JOVmZZMG01MkJSaGVHd1NSWS1HOXk0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80OC82OTgzMzktNTkwNS00NjM3LWI5ODMt Y2RiM2E2NTdkOWVlLzEvNV95M3JOVmZZMG01MkJSaGVHd1NSWS1HOXk0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80OC82OTgzMzktNTkwNS00NjM3LWI5ODMtY2RiM2E2NTdkOWVl LzEvNV95M3JOVmZZMG01MkJSaGVHd1NSWS1HOXk0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAajuat57M ZvipflGDGpNQ0VBDffvfrXVx0Tn3f7cqxlErowUP+KeCThPwBmo/A+81zJyVKrwU JYS8+6R3hIYcYBDaJamJdpB+KGr7j7vp5+0N55JqLPuJmNmUq18+yoEKJONzAbeK xHP7nkLKP9k/tzWyoFDTKmxyIoPF3kZxv3NMisgygdp6q6XI9F5qB66iHVqrH/HT ne01x3ahF6HwzOtfG3krb474Rz3cWW6mIpU8WAd5PJRzzbsSjLx28lsAAt6nXEjA VdsZsdQUmq1WqxotEZUY9APCUvTbb8Mjp9REkf1isEVSJfQgXMsVjJhpdIqc2wrO s63F2yfSOiHeGA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:48:04 2026 by rpki-client