This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft File: ds5jfUe3gATQzPrjceaBh2isP6U.mft (raw, json) Hash identifier: afmV5nmoCw1ijZuFUtaf0CD0qj9hu3HglXz6MIAzJqQ= Subject key identifier: CD:BA:66:92:1C:92:CA:2E:F7:36:44:26:FB:F0:1D:43:F6:55:F3:A6 Authority key identifier: 76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5 Certificate issuer: /CN=76ce637d47b78004d0ccfae371e6818768ac3fa5 Certificate serial: 019C427D6505144D394E97AF46F9A183AF82 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft Manifest number: 1632 Signing time: Mon 09 Feb 2026 13:00:39 +0000 Manifest this update: Mon 09 Feb 2026 13:00:39 +0000 Manifest next update: Tue 10 Feb 2026 13:00:39 +0000 Files and hashes: 1: ds5jfUe3gATQzPrjceaBh2isP6U.crl (hash: whWF2HEwsOjACwv/rqsKPiy1gJk29PjJYzdPH29hAhM=) 2: huM-GkqhBk0Re8XPHSnKFpnI1VQ.roa (hash: yMEbieQN4mmr0B4PHYgIfIopNkBH4Ovpl20WF2oTeLc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:65:05:14:4d:39:4e:97:af:46:f9:a1:83:af:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=76ce637d47b78004d0ccfae371e6818768ac3fa5 Validity Not Before: Feb 9 13:00:39 2026 GMT Not After : Feb 10 13:00:39 2026 GMT Subject: CN=cdba66921c92ca2ef7364426fbf01d43f655f3a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:03:2e:22:aa:a7:51:38:45:23:44:8d:53:d4: ec:47:7e:72:c2:22:0d:ec:0f:10:58:f9:b3:94:61: 37:58:05:d9:c4:b1:97:05:af:b4:5f:cc:c2:78:95: 86:93:a8:2e:2e:ff:5c:8f:2b:87:7f:1a:33:f2:41: 6a:94:83:c9:5c:51:32:69:1f:d8:4d:00:62:b5:c9: df:cc:ed:34:fe:14:ef:2d:0c:fa:18:65:b7:8e:25: ad:c4:9e:d8:e8:f7:1d:69:6e:ec:bc:3f:0e:0b:36: 48:c6:49:bf:df:c7:4f:2f:ee:5e:37:ad:e8:50:11: d1:8b:cb:5b:8d:87:bc:db:e8:9a:e2:23:1f:16:b5: 9b:ab:4e:78:64:81:cd:b9:e1:c6:76:5d:87:d7:5f: 3a:92:5f:8c:a3:00:97:dc:19:1a:8e:f6:2d:2a:6b: d6:ed:63:b3:f5:85:c4:df:aa:00:ef:ac:19:10:78: 99:e6:9b:b5:7e:78:d4:0b:5c:b6:e4:e8:4b:39:6c: 55:56:c3:d8:a4:1d:40:80:40:f1:f5:a2:9a:a0:45: 16:1a:92:c5:07:f9:73:85:f3:be:bb:ed:f4:0c:ab: 54:9f:d6:df:84:33:fc:25:83:c7:0b:c3:b4:0c:0c: 4f:9c:c7:3f:5e:4f:8e:97:87:b5:67:04:fb:a6:86: c3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:BA:66:92:1C:92:CA:2E:F7:36:44:26:FB:F0:1D:43:F6:55:F3:A6 X509v3 Authority Key Identifier: keyid:76:CE:63:7D:47:B7:80:04:D0:CC:FA:E3:71:E6:81:87:68:AC:3F:A5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ds5jfUe3gATQzPrjceaBh2isP6U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4e/7309a9-46c8-4240-afef-840881a4d30d/1/ds5jfUe3gATQzPrjceaBh2isP6U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:32:b1:5c:b2:8c:1e:57:94:1b:d2:42:21:87:5d:bf:c2:63: b0:2c:71:d5:da:f8:39:d1:23:78:8d:e5:a3:06:cf:a0:60:77: 83:5b:30:94:6d:9d:f2:25:b7:df:d2:33:d1:44:91:fd:6d:a2: b9:87:bf:01:0f:66:ce:9d:14:44:e8:93:18:a0:00:11:a8:1c: 82:1e:6d:df:71:2e:21:85:b4:a4:4e:5f:03:d0:71:b2:1c:14: c7:f0:35:31:df:4b:ce:98:42:9d:19:8b:39:87:69:ee:b0:f5: c2:4e:c1:f7:23:43:5a:a7:35:81:2e:9f:74:b9:e8:79:2e:bd: 59:34:af:8f:55:25:d8:d8:8d:4b:77:86:b3:fe:5d:ab:2e:fa: 89:99:5a:c0:b0:0d:4b:ca:d4:e3:8c:96:34:1b:b7:85:b5:f5: cf:58:54:4c:60:44:ce:c0:a2:28:0f:08:af:61:05:22:f3:86: 35:03:8e:84:e8:71:4f:72:c0:62:a3:cc:36:15:c2:6f:77:9a: c2:6f:40:fe:59:2e:b9:84:40:5e:c6:c5:60:f4:6b:31:2a:e4: 4d:92:cf:1f:29:47:61:c6:42:57:9b:a8:75:72:d6:54:94:51: 29:6c:64:0e:12:51:46:e7:e0:7a:03:4d:d9:c3:88:27:d5:eb: 5c:cf:2c:ee -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfWUFFE05TpevRvmhg6+CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc2Y2U2MzdkNDdiNzgwMDRkMGNjZmFlMzcxZTY4MTg3Njhh YzNmYTUwHhcNMjYwMjA5MTMwMDM5WhcNMjYwMjEwMTMwMDM5WjAzMTEwLwYDVQQD EyhjZGJhNjY5MjFjOTJjYTJlZjczNjQ0MjZmYmYwMWQ0M2Y2NTVmM2E2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkgMuIqqnUThFI0SNU9TsR35ywiIN 7A8QWPmzlGE3WAXZxLGXBa+0X8zCeJWGk6guLv9cjyuHfxoz8kFqlIPJXFEyaR/Y TQBitcnfzO00/hTvLQz6GGW3jiWtxJ7Y6PcdaW7svD8OCzZIxkm/38dPL+5eN63o UBHRi8tbjYe82+ia4iMfFrWbq054ZIHNueHGdl2H1186kl+MowCX3BkajvYtKmvW 7WOz9YXE36oA76wZEHiZ5pu1fnjUC1y25OhLOWxVVsPYpB1AgEDx9aKaoEUWGpLF B/lzhfO+u+30DKtUn9bfhDP8JYPHC8O0DAxPnMc/Xk+Ol4e1ZwT7pobDUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM26ZpIcksou9zZEJvvwHUP2VfOmMB8GA1UdIwQY MBaAFHbOY31Ht4AE0Mz643HmgYdorD+lMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYt ODQwODgxYTRkMzBkLzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80ZS83MzA5YTktNDZjOC00MjQwLWFmZWYtODQwODgxYTRkMzBk LzEvZHM1amZVZTNnQVRRelByamNlYUJoMmlzUDZVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGzKxXLKM HleUG9JCIYddv8JjsCxx1dr4OdEjeI3lowbPoGB3g1swlG2d8iW339Iz0USR/W2i uYe/AQ9mzp0UROiTGKAAEagcgh5t33EuIYW0pE5fA9BxshwUx/A1Md9LzphCnRmL OYdp7rD1wk7B9yNDWqc1gS6fdLnoeS69WTSvj1Ul2NiNS3eGs/5dqy76iZlawLAN S8rU44yWNBu3hbX1z1hUTGBEzsCiKA8Ir2EFIvOGNQOOhOhxT3LAYqPMNhXCb3ea wm9A/lkuuYRAXsbFYPRrMSrkTZLPHylHYcZCV5uodXLWVJRRKWxkDhJRRufgegNN 2cOIJ9XrXM8s7g== -----END CERTIFICATE-----Generated at Mon Feb 9 23:52:39 2026 by rpki-client