This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft File: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft (raw, json) Hash identifier: G3JF5DMjv0qrEgkl2+JDexS8uwk0YAHDSAR4JvNe1C8= Subject key identifier: 36:88:4B:08:35:1B:D7:E3:F6:FD:CD:39:6F:75:9F:00:58:0B:73:B3 Authority key identifier: E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04 Certificate issuer: /CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04 Certificate serial: 019C420F6BAE181EF5B77A7F502DCA992FBF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft Manifest number: 180C Signing time: Mon 09 Feb 2026 11:00:32 +0000 Manifest this update: Mon 09 Feb 2026 11:00:32 +0000 Manifest next update: Tue 10 Feb 2026 11:00:32 +0000 Files and hashes: 1: 5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl (hash: SHGXH4EOPuN9/e8OMyfLfYV1mONIfhCr1OB+KiLQdgE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:6b:ae:18:1e:f5:b7:7a:7f:50:2d:ca:99:2f:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e61b9a5d6d98703c3872a1bb3f90d103685cbd04 Validity Not Before: Feb 9 11:00:32 2026 GMT Not After : Feb 10 11:00:32 2026 GMT Subject: CN=36884b08351bd7e3f6fdcd396f759f00580b73b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c6:cf:71:53:73:63:55:81:3b:54:f6:33:b6: 6d:06:88:0f:15:e4:46:08:0e:67:1b:5a:34:7d:61: d9:fe:7f:b6:38:e9:0d:c8:b6:42:64:8e:7e:ea:fa: 5f:14:2a:53:86:7d:31:6c:12:39:19:43:6d:ec:bb: 3a:41:d1:87:8a:b5:23:3d:e0:a9:4a:19:cc:f4:99: fc:a0:28:61:5e:60:5e:de:56:31:f6:be:3a:ef:53: d2:04:ed:46:14:b7:20:79:57:90:fc:f4:a9:40:15: 4f:74:11:9f:9a:c0:15:3b:93:d1:ae:1c:7d:da:56: b6:b8:32:fd:0e:a2:98:f7:3c:17:9c:d5:fe:05:44: c3:ee:22:1f:58:33:29:4f:48:b6:5f:1b:cd:bf:f9: 45:e6:f5:ce:c0:d4:67:77:e8:e9:dc:01:f7:31:2e: b7:76:2a:4b:a6:c4:15:65:06:57:45:7d:be:74:34: 89:cf:d1:d9:29:4d:70:4e:45:0f:34:d5:d2:6d:fb: d2:6b:72:50:75:ca:56:1b:75:88:7a:81:f5:ea:44: 9f:e8:f7:62:2e:18:18:8f:b9:3c:13:07:f6:df:bc: 03:25:f6:09:3a:b9:3e:01:26:7b:e2:29:08:4c:a6: 98:ff:aa:26:55:d5:1b:47:ce:f3:97:08:aa:23:df: e1:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:88:4B:08:35:1B:D7:E3:F6:FD:CD:39:6F:75:9F:00:58:0B:73:B3 X509v3 Authority Key Identifier: keyid:E6:1B:9A:5D:6D:98:70:3C:38:72:A1:BB:3F:90:D1:03:68:5C:BD:04 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5huaXW2YcDw4cqG7P5DRA2hcvQQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/cb879b-9c96-429a-9bb3-e18d998c64ef/1/5huaXW2YcDw4cqG7P5DRA2hcvQQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:f4:a6:75:0e:d2:ff:0f:c9:b6:48:79:b4:17:e8:a2:5a:ca: 8e:83:dc:68:10:ab:71:f0:e4:96:73:35:5f:76:28:60:69:03: 10:3b:b7:bb:43:2b:ac:88:20:28:fe:93:61:82:d6:06:64:d8: 6b:3e:4d:bf:a8:50:a0:10:ab:81:2e:08:19:1a:3a:b6:7d:a2: 7a:2b:9e:2f:f5:df:4a:ba:85:b3:dc:a5:5a:6f:fd:9f:05:8b: 99:a1:01:9b:1d:a3:97:f1:36:18:4f:5f:ea:5a:08:cc:11:79: e6:db:0f:97:e6:d8:67:ef:63:12:e0:e5:49:a0:9f:43:fe:52: b2:8f:7e:ca:f0:a8:4e:f6:09:f9:41:dc:9b:87:cb:2f:4d:29: db:47:7f:91:54:7f:58:33:e0:63:a8:dc:42:02:cb:92:79:6c: f0:f6:69:8f:d8:d1:10:64:91:17:d6:f8:a0:f9:c2:83:e7:ef: e3:94:45:0a:97:e0:69:94:20:dc:fe:09:fb:61:a4:13:d2:1f: 12:01:89:51:05:07:7d:42:fd:31:34:28:73:19:8c:de:6d:3e: 39:cd:a9:59:d4:f4:8d:8b:8f:bf:1d:0f:67:7d:dc:93:e3:db: bf:fc:e7:6b:6b:57:a0:89:1f:cd:62:ff:de:dc:f0:6c:75:05: 6e:8d:fc:ab -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD2uuGB71t3p/UC3KmS+/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2MWI5YTVkNmQ5ODcwM2MzODcyYTFiYjNmOTBkMTAzNjg1 Y2JkMDQwHhcNMjYwMjA5MTEwMDMyWhcNMjYwMjEwMTEwMDMyWjAzMTEwLwYDVQQD EygzNjg4NGIwODM1MWJkN2UzZjZmZGNkMzk2Zjc1OWYwMDU4MGI3M2IzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuMbPcVNzY1WBO1T2M7ZtBogPFeRG CA5nG1o0fWHZ/n+2OOkNyLZCZI5+6vpfFCpThn0xbBI5GUNt7Ls6QdGHirUjPeCp ShnM9Jn8oChhXmBe3lYx9r4671PSBO1GFLcgeVeQ/PSpQBVPdBGfmsAVO5PRrhx9 2la2uDL9DqKY9zwXnNX+BUTD7iIfWDMpT0i2XxvNv/lF5vXOwNRnd+jp3AH3MS63 dipLpsQVZQZXRX2+dDSJz9HZKU1wTkUPNNXSbfvSa3JQdcpWG3WIeoH16kSf6Pdi LhgYj7k8Ewf237wDJfYJOrk+ASZ74ikITKaY/6omVdUbR87zlwiqI9/hCwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDaISwg1G9fj9v3NOW91nwBYC3OzMB8GA1UdIwQY MBaAFOYbml1tmHA8OHKhuz+Q0QNoXL0EMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNWh1YVhXMlljRHc0Y3FHN1A1RFJBMmhjdlFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZC9jYjg3OWItOWM5Ni00MjlhLTliYjMt ZTE4ZDk5OGM2NGVmLzEvNWh1YVhXMlljRHc0Y3FHN1A1RFJBMmhjdlFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZC9jYjg3OWItOWM5Ni00MjlhLTliYjMtZTE4ZDk5OGM2NGVm LzEvNWh1YVhXMlljRHc0Y3FHN1A1RFJBMmhjdlFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhvSmdQ7S /w/Jtkh5tBfoolrKjoPcaBCrcfDklnM1X3YoYGkDEDu3u0MrrIggKP6TYYLWBmTY az5Nv6hQoBCrgS4IGRo6tn2ieiueL/XfSrqFs9ylWm/9nwWLmaEBmx2jl/E2GE9f 6loIzBF55tsPl+bYZ+9jEuDlSaCfQ/5Sso9+yvCoTvYJ+UHcm4fLL00p20d/kVR/ WDPgY6jcQgLLknls8PZpj9jREGSRF9b4oPnCg+fv45RFCpfgaZQg3P4J+2GkE9If EgGJUQUHfUL9MTQocxmM3m0+Oc2pWdT0jYuPvx0PZ33ck+Pbv/zna2tXoIkfzWL/ 3tzwbHUFbo38qw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:59:33 2026 by rpki-client