This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft File: r5aNFt0rQdNStf0zxJs-xP2tQlg.mft (raw, json) Hash identifier: pudos2DBrhIw6rwl85yU2ZJmNDTxew3p55ssOWRdGXc= Subject key identifier: E4:C8:3F:30:BE:3C:01:30:6B:2A:EA:B2:96:2A:BF:65:FF:40:3D:9A Authority key identifier: AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58 Certificate issuer: /CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258 Certificate serial: 019C446B74D104B29C3E598F1F56132433F1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft Manifest number: 1121 Signing time: Mon 09 Feb 2026 22:00:18 +0000 Manifest this update: Mon 09 Feb 2026 22:00:18 +0000 Manifest next update: Tue 10 Feb 2026 22:00:18 +0000 Files and hashes: 1: r5aNFt0rQdNStf0zxJs-xP2tQlg.crl (hash: rb5nX9eWk+2JtKxl9+S8DaXIrAv7n46T6Mb3nzjUtYs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:44:6b:74:d1:04:b2:9c:3e:59:8f:1f:56:13:24:33:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af968d16dd2b41d352b5fd33c49b3ec4fdad4258 Validity Not Before: Feb 9 22:00:18 2026 GMT Not After : Feb 10 22:00:18 2026 GMT Subject: CN=e4c83f30be3c01306b2aeab2962abf65ff403d9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:60:6d:64:60:8f:5e:18:ec:a8:c8:bf:32:1e: ef:48:86:9c:3d:f6:df:3f:a5:8b:8a:f9:a1:df:5a: 11:dc:b7:d8:31:04:11:b5:52:d2:5f:44:03:80:bf: 6a:2a:18:f3:c0:95:98:8e:5e:2a:3e:de:70:52:18: 14:d2:99:b4:79:8d:18:f3:ee:89:d1:19:6a:24:ee: a0:84:d8:99:a8:60:d0:08:c4:ca:bd:33:a7:6f:54: 33:f7:66:e0:fc:5c:43:1c:f1:d1:69:40:4b:16:8b: bf:81:9a:4f:96:dd:49:78:70:43:35:fa:05:61:bd: 37:40:7c:15:7f:6a:2a:b4:c6:f8:bc:bf:bc:d2:4c: d4:96:93:7f:37:3f:6c:2e:35:90:e5:44:02:5a:29: 86:7a:a4:76:9f:54:e1:f2:8c:b9:43:a9:39:39:0c: 41:c2:18:49:86:61:ef:98:89:7f:e4:4d:ac:08:9e: c8:33:f7:50:a7:fd:88:90:54:1a:83:85:57:cb:85: cb:a5:3a:59:13:2c:e3:60:d1:4c:ef:20:3d:f6:3a: d1:76:da:18:10:57:27:03:97:97:26:ba:19:10:31: 4a:42:5c:b4:ab:d6:b2:fc:a6:86:0b:84:1d:be:c8: 34:ed:5f:63:7d:53:e4:de:59:9f:e1:3e:97:c1:65: dc:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:C8:3F:30:BE:3C:01:30:6B:2A:EA:B2:96:2A:BF:65:FF:40:3D:9A X509v3 Authority Key Identifier: keyid:AF:96:8D:16:DD:2B:41:D3:52:B5:FD:33:C4:9B:3E:C4:FD:AD:42:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5aNFt0rQdNStf0zxJs-xP2tQlg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/62/be439e-d3c8-48a1-a7b7-c296ec4b2170/1/r5aNFt0rQdNStf0zxJs-xP2tQlg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:31:84:ad:96:04:83:8e:0f:5e:59:e6:39:3b:96:7d:a0:10: 5a:08:1e:9f:e1:48:db:95:02:aa:eb:d7:1b:ec:b2:9f:b6:6a: 89:a0:ff:c7:75:de:39:cb:62:36:76:c4:e4:8f:05:23:63:0f: a6:60:31:00:54:ca:3d:dc:ae:e7:98:99:e4:9a:07:5c:7a:2b: 7d:cc:7e:25:9f:9f:ad:17:f7:74:78:5e:f7:31:20:c8:88:c2: 70:30:ac:5a:53:17:77:c3:11:28:a3:56:14:79:b3:04:b8:8b: a6:0d:8d:52:b8:30:60:3b:56:01:cb:83:84:00:8e:24:19:4c: f5:4e:98:b9:12:bf:75:4b:8c:ee:29:f1:dc:b8:ff:27:bb:24: 2b:2f:bd:8b:b3:9e:f6:77:54:b4:ce:ed:82:29:6e:5c:19:0a: b7:64:e6:1f:bf:e0:c4:e1:d3:de:d1:7d:5b:4d:93:b7:7e:d3: 10:42:d5:f3:91:7a:a0:b0:50:2d:ae:2c:10:06:f8:a2:68:2c: 97:43:fb:24:3b:16:5a:37:6b:25:5c:56:a8:e1:c3:31:b9:e4: 60:cc:04:41:ea:26:4d:2e:ec:d4:b6:39:34:4c:97:c2:fb:b4: bf:48:37:6e:d2:49:2b:57:01:50:03:56:61:f9:09:df:39:ff: 8f:9c:21:d5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxEa3TRBLKcPlmPH1YTJDPxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmOTY4ZDE2ZGQyYjQxZDM1MmI1ZmQzM2M0OWIzZWM0ZmRh ZDQyNTgwHhcNMjYwMjA5MjIwMDE4WhcNMjYwMjEwMjIwMDE4WjAzMTEwLwYDVQQD EyhlNGM4M2YzMGJlM2MwMTMwNmIyYWVhYjI5NjJhYmY2NWZmNDAzZDlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArmBtZGCPXhjsqMi/Mh7vSIacPfbf P6WLivmh31oR3LfYMQQRtVLSX0QDgL9qKhjzwJWYjl4qPt5wUhgU0pm0eY0Y8+6J 0RlqJO6ghNiZqGDQCMTKvTOnb1Qz92bg/FxDHPHRaUBLFou/gZpPlt1JeHBDNfoF Yb03QHwVf2oqtMb4vL+80kzUlpN/Nz9sLjWQ5UQCWimGeqR2n1Th8oy5Q6k5OQxB whhJhmHvmIl/5E2sCJ7IM/dQp/2IkFQag4VXy4XLpTpZEyzjYNFM7yA99jrRdtoY EFcnA5eXJroZEDFKQly0q9ay/KaGC4Qdvsg07V9jfVPk3lmf4T6XwWXcUQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFOTIPzC+PAEwayrqspYqv2X/QD2aMB8GA1UdIwQY MBaAFK+WjRbdK0HTUrX9M8SbPsT9rUJYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjVhTkZ0MHJRZE5TdGYwenhKcy14UDJ0UWxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Mi9iZTQzOWUtZDNjOC00OGExLWE3Yjct YzI5NmVjNGIyMTcwLzEvcjVhTkZ0MHJRZE5TdGYwenhKcy14UDJ0UWxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Mi9iZTQzOWUtZDNjOC00OGExLWE3YjctYzI5NmVjNGIyMTcw LzEvcjVhTkZ0MHJRZE5TdGYwenhKcy14UDJ0UWxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnzGErZYE g44PXlnmOTuWfaAQWggen+FI25UCquvXG+yyn7ZqiaD/x3XeOctiNnbE5I8FI2MP pmAxAFTKPdyu55iZ5JoHXHorfcx+JZ+frRf3dHhe9zEgyIjCcDCsWlMXd8MRKKNW FHmzBLiLpg2NUrgwYDtWAcuDhACOJBlM9U6YuRK/dUuM7inx3Lj/J7skKy+9i7Oe 9ndUtM7tgiluXBkKt2TmH7/gxOHT3tF9W02Tt37TEELV85F6oLBQLa4sEAb4omgs l0P7JDsWWjdrJVxWqOHDMbnkYMwEQeomTS7s1LY5NEyXwvu0v0g3btJJK1cBUANW YfkJ3zn/j5wh1Q== -----END CERTIFICATE-----Generated at Tue Feb 10 01:35:52 2026 by rpki-client