This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft File: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft (raw, json) Hash identifier: G4r3nW/Px54WFjL5d7Ul032hQNABkxkAkZLLERLQ+pM= Subject key identifier: CD:3F:32:07:52:00:E6:D7:5A:A8:F3:54:BE:A1:1B:4D:65:AE:7B:A3 Authority key identifier: E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2 Certificate issuer: /CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2 Certificate serial: 019C41A1DF68316E8E105A9AAB6034E03717 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft Manifest number: 1750 Signing time: Mon 09 Feb 2026 09:00:53 +0000 Manifest this update: Mon 09 Feb 2026 09:00:53 +0000 Manifest next update: Tue 10 Feb 2026 09:00:53 +0000 Files and hashes: 1: 5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl (hash: Fa4gj23k3Z9Vbxovj0pzrlxAgXiVXLoElvjVWcuJqdY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 09:00:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:a1:df:68:31:6e:8e:10:5a:9a:ab:60:34:e0:37:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4d09e8ef171e9ae21627cca76ed64fd17e6eed2 Validity Not Before: Feb 9 09:00:53 2026 GMT Not After : Feb 10 09:00:53 2026 GMT Subject: CN=cd3f32075200e6d75aa8f354bea11b4d65ae7ba3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:99:68:3c:1f:50:83:d8:c6:d7:26:1b:7d:4b: a6:eb:b1:6f:f8:e7:d9:6e:02:a4:e2:1d:60:03:ae: 1d:57:e0:09:4b:ff:59:07:1e:20:12:d1:46:64:24: e3:47:3b:d3:7c:59:13:7a:b9:b9:e9:46:0f:b8:14: 36:6c:5f:e7:e9:7e:02:fd:26:6c:e1:5d:74:83:08: b3:d3:9d:49:0d:2e:8f:e7:80:29:1b:b1:e5:f7:ba: 3d:7b:63:48:b2:72:43:2f:a0:ba:18:5c:44:dc:38: d5:03:6d:a7:9d:50:ec:8f:9d:da:46:80:15:5d:15: 0f:50:39:df:18:26:ba:29:79:50:51:0b:e4:13:8a: 98:61:8d:32:61:a6:2d:63:b1:ba:0b:5e:04:8c:6e: 49:2a:f7:a3:a8:1d:3f:c5:be:d9:87:79:07:5c:22: 2f:76:13:38:3e:f0:21:a1:77:58:e8:c4:c7:65:03: be:74:b9:ff:1a:30:4b:e3:96:68:8c:28:e3:37:a2: 8d:47:93:8d:98:38:49:af:6c:39:ff:7b:2f:d8:fb: 8a:20:bd:29:8d:cf:b1:6d:f5:99:e2:73:71:34:92: 6e:79:9a:31:5c:55:71:bd:b6:fc:4f:45:eb:42:1d: 0d:16:18:d2:d6:c8:35:e7:68:aa:88:88:1b:3b:9f: 86:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:3F:32:07:52:00:E6:D7:5A:A8:F3:54:BE:A1:1B:4D:65:AE:7B:A3 X509v3 Authority Key Identifier: keyid:E4:D0:9E:8E:F1:71:E9:AE:21:62:7C:CA:76:ED:64:FD:17:E6:EE:D2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5NCejvFx6a4hYnzKdu1k_Rfm7tI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/58/8c8811-01c6-47c2-b5f0-3c1624100752/1/5NCejvFx6a4hYnzKdu1k_Rfm7tI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:e9:e2:56:f0:7a:44:ec:41:1b:53:84:eb:f7:90:0d:d7:77: ea:36:c4:f6:16:ec:bf:62:f2:bd:6b:8f:09:f0:23:d1:12:74: 40:2d:b2:a0:97:ee:86:f7:75:2b:41:37:f6:e0:8c:25:2f:7c: d2:4a:6b:42:f5:f5:f8:2e:03:60:dd:d6:af:e1:d1:9a:88:90: 6e:97:45:23:31:86:f4:81:f6:fe:e4:a5:9e:2e:9d:94:a0:31: 9c:66:b9:8b:7f:01:d2:23:9f:d3:0a:18:09:68:54:e7:be:5c: ce:d4:7a:48:89:f3:40:1a:be:64:07:52:fc:11:6d:30:3c:e4: e1:5d:db:8d:5d:4c:de:c3:51:7b:2f:b1:36:30:c1:ad:54:af: 28:03:05:04:4d:be:46:07:cc:e6:64:21:88:49:fd:df:fa:eb: 8d:bf:32:ca:12:42:e7:5f:f7:51:f6:d3:fe:c9:05:a9:01:a0: 67:56:8d:e6:23:41:d0:40:7a:83:31:43:45:ea:33:0a:0d:05: c7:43:cb:5f:3e:c0:a3:80:b1:be:95:4f:81:7d:86:35:5d:ce: c3:42:a7:c8:db:74:fc:e8:d5:83:33:b3:29:0a:95:3d:e1:c3: 93:c0:31:75:24:31:59:0a:96:9b:b7:41:f0:76:eb:0f:a4:1c: 99:78:a1:d2 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBod9oMW6OEFqaq2A04DcXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0ZDA5ZThlZjE3MWU5YWUyMTYyN2NjYTc2ZWQ2NGZkMTdl NmVlZDIwHhcNMjYwMjA5MDkwMDUzWhcNMjYwMjEwMDkwMDUzWjAzMTEwLwYDVQQD EyhjZDNmMzIwNzUyMDBlNmQ3NWFhOGYzNTRiZWExMWI0ZDY1YWU3YmEzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJloPB9Qg9jG1yYbfUum67Fv+OfZ bgKk4h1gA64dV+AJS/9ZBx4gEtFGZCTjRzvTfFkTerm56UYPuBQ2bF/n6X4C/SZs 4V10gwiz051JDS6P54ApG7Hl97o9e2NIsnJDL6C6GFxE3DjVA22nnVDsj53aRoAV XRUPUDnfGCa6KXlQUQvkE4qYYY0yYaYtY7G6C14EjG5JKvejqB0/xb7Zh3kHXCIv dhM4PvAhoXdY6MTHZQO+dLn/GjBL45ZojCjjN6KNR5ONmDhJr2w5/3sv2PuKIL0p jc+xbfWZ4nNxNJJueZoxXFVxvbb8T0XrQh0NFhjS1sg152iqiIgbO5+GMwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFM0/MgdSAObXWqjzVL6hG01lrnujMB8GA1UdIwQY MBaAFOTQno7xcemuIWJ8ynbtZP0X5u7SMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81OC84Yzg4MTEtMDFjNi00N2MyLWI1ZjAt M2MxNjI0MTAwNzUyLzEvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81OC84Yzg4MTEtMDFjNi00N2MyLWI1ZjAtM2MxNjI0MTAwNzUy LzEvNU5DZWp2Rng2YTRoWW56S2R1MWtfUmZtN3RJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAkeniVvB6 ROxBG1OE6/eQDdd36jbE9hbsv2LyvWuPCfAj0RJ0QC2yoJfuhvd1K0E39uCMJS98 0kprQvX1+C4DYN3Wr+HRmoiQbpdFIzGG9IH2/uSlni6dlKAxnGa5i38B0iOf0woY CWhU575cztR6SInzQBq+ZAdS/BFtMDzk4V3bjV1M3sNRey+xNjDBrVSvKAMFBE2+ RgfM5mQhiEn93/rrjb8yyhJC51/3UfbT/skFqQGgZ1aN5iNB0EB6gzFDReozCg0F x0PLXz7Ao4CxvpVPgX2GNV3Ow0KnyNt0/OjVgzOzKQqVPeHDk8AxdSQxWQqWm7dB 8HbrD6QcmXih0g== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:30 2026 by rpki-client