This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/14b5c1-a333-449b-b280-251a7b13c118/1/p_555OY70WvEI3WStoTQBDPL0PY.mft File: p_555OY70WvEI3WStoTQBDPL0PY.mft (raw, json) Hash identifier: bTT5spN0qxlI9rf+UbINEIZyI3A2QutF8xiM+Cmyurk= Subject key identifier: 48:B8:26:6E:5C:2A:9F:1A:34:9F:B5:6D:EC:70:57:D2:4E:37:C1:DB Authority key identifier: A7:FE:79:E4:E6:3B:D1:6B:C4:23:75:92:B6:84:D0:04:33:CB:D0:F6 Certificate issuer: /CN=a7fe79e4e63bd16bc4237592b684d00433cbd0f6 Certificate serial: 019C41341074764BD8E5574D16C55F5F6532 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/p_555OY70WvEI3WStoTQBDPL0PY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/68/14b5c1-a333-449b-b280-251a7b13c118/1/p_555OY70WvEI3WStoTQBDPL0PY.mft Manifest number: 0951 Signing time: Mon 09 Feb 2026 07:00:56 +0000 Manifest this update: Mon 09 Feb 2026 07:00:56 +0000 Manifest next update: Tue 10 Feb 2026 07:00:56 +0000 Files and hashes: 1: p_555OY70WvEI3WStoTQBDPL0PY.crl (hash: LCXcnpS1dMsT1JItXSbmXiRLbebqiTK0xec7zwQAJtA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/68/14b5c1-a333-449b-b280-251a7b13c118/1/p_555OY70WvEI3WStoTQBDPL0PY.crl rsync://rpki.ripe.net/repository/DEFAULT/68/14b5c1-a333-449b-b280-251a7b13c118/1/p_555OY70WvEI3WStoTQBDPL0PY.mft rsync://rpki.ripe.net/repository/DEFAULT/p_555OY70WvEI3WStoTQBDPL0PY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:34:10:74:76:4b:d8:e5:57:4d:16:c5:5f:5f:65:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a7fe79e4e63bd16bc4237592b684d00433cbd0f6 Validity Not Before: Feb 9 07:00:56 2026 GMT Not After : Feb 10 07:00:56 2026 GMT Subject: CN=48b8266e5c2a9f1a349fb56dec7057d24e37c1db Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:76:57:3d:67:7c:11:8b:1a:8a:42:bd:0a:9c: 66:50:ae:a4:fe:94:83:c0:c4:75:e3:48:7d:ef:9b: d9:63:df:e7:4f:93:c6:11:d6:55:82:8f:14:2a:94: c3:5d:d3:b4:ba:98:9d:09:53:ae:c5:35:93:c6:e0: c7:f7:b1:12:52:2d:b0:9e:37:5b:5f:df:a6:24:f7: e8:cd:f6:25:75:d9:d1:7c:35:fb:ba:37:16:35:93: fb:1c:3f:5f:41:3c:55:02:91:aa:be:a9:c2:a8:81: d0:af:d5:b0:a6:f6:97:c9:da:d2:63:14:01:a1:78: 23:a8:7d:28:b3:74:96:44:77:21:40:42:6f:dd:55: ef:cf:48:d7:0d:cf:d1:1d:bf:ce:1d:68:45:4a:40: 48:e7:c3:31:a1:52:85:50:e1:92:b8:52:a7:ad:95: 86:cc:68:a5:b2:05:a9:91:f3:5b:c8:6e:60:5b:04: 60:d9:ab:c3:7d:9a:ca:b5:ef:3d:b4:2e:d0:62:54: 91:cb:56:e6:ca:37:ab:f2:70:35:9a:11:e0:b3:4d: 14:f3:9a:aa:af:80:cd:ed:1c:0c:79:ee:bc:00:53: 89:89:3c:03:47:44:46:44:78:f8:c7:06:a1:26:92: 54:df:1e:cc:af:7e:4c:0e:cc:0b:63:f8:c8:6f:0d: 45:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:B8:26:6E:5C:2A:9F:1A:34:9F:B5:6D:EC:70:57:D2:4E:37:C1:DB X509v3 Authority Key Identifier: keyid:A7:FE:79:E4:E6:3B:D1:6B:C4:23:75:92:B6:84:D0:04:33:CB:D0:F6 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/p_555OY70WvEI3WStoTQBDPL0PY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/14b5c1-a333-449b-b280-251a7b13c118/1/p_555OY70WvEI3WStoTQBDPL0PY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/68/14b5c1-a333-449b-b280-251a7b13c118/1/p_555OY70WvEI3WStoTQBDPL0PY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:be:86:21:ff:4d:54:69:e9:55:cd:e3:26:44:5a:18:b4:85: 02:3f:e4:1a:06:12:97:54:c8:ca:ce:24:fa:5e:14:40:86:a5: e2:c6:20:0d:01:c8:9c:ed:9c:f4:6c:f5:30:a3:e7:5b:96:af: dd:9d:9b:cc:9b:5c:9b:8e:96:50:29:93:1b:d9:86:91:ed:ba: e8:74:5b:10:4a:1b:cb:6f:3e:26:fc:7f:7b:02:29:b7:05:4a: ea:43:b5:6b:04:72:a9:9b:cc:c0:a3:75:80:33:25:16:50:99: ac:f6:c4:45:09:71:47:fb:bd:73:50:18:5c:ea:da:68:b1:1f: ea:28:18:f4:00:a1:53:be:68:d4:1c:d1:5b:67:05:ed:2e:09: 57:38:3e:0c:29:20:ed:4d:cd:af:1b:80:75:a2:36:10:7e:2c: 4e:0b:1f:2e:4c:ac:23:17:bf:ef:78:97:f5:2f:5c:39:7b:26: 3d:73:c4:f2:5f:85:a9:8d:39:d2:fa:4d:06:79:33:13:06:55: 47:11:51:36:56:c5:67:9f:8a:33:99:60:59:4e:25:be:08:52: 27:18:bf:5d:ba:40:77:6e:99:35:97:e2:b3:72:cf:98:0d:fa: 00:db:e1:19:b5:fb:38:b9:30:cc:1f:c4:15:7e:8c:b8:ca:72: 90:35:7f:2f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBNBB0dkvY5VdNFsVfX2UyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE3ZmU3OWU0ZTYzYmQxNmJjNDIzNzU5MmI2ODRkMDA0MzNj YmQwZjYwHhcNMjYwMjA5MDcwMDU2WhcNMjYwMjEwMDcwMDU2WjAzMTEwLwYDVQQD Eyg0OGI4MjY2ZTVjMmE5ZjFhMzQ5ZmI1NmRlYzcwNTdkMjRlMzdjMWRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnZXPWd8EYsaikK9CpxmUK6k/pSD wMR140h975vZY9/nT5PGEdZVgo8UKpTDXdO0upidCVOuxTWTxuDH97ESUi2wnjdb X9+mJPfozfYlddnRfDX7ujcWNZP7HD9fQTxVApGqvqnCqIHQr9WwpvaXydrSYxQB oXgjqH0os3SWRHchQEJv3VXvz0jXDc/RHb/OHWhFSkBI58MxoVKFUOGSuFKnrZWG zGilsgWpkfNbyG5gWwRg2avDfZrKte89tC7QYlSRy1bmyjer8nA1mhHgs00U85qq r4DN7RwMee68AFOJiTwDR0RGRHj4xwahJpJU3x7Mr35MDswLY/jIbw1FZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEi4Jm5cKp8aNJ+1bexwV9JON8HbMB8GA1UdIwQY MBaAFKf+eeTmO9FrxCN1kraE0AQzy9D2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcF81NTVPWTcwV3ZFSTNXU3RvVFFCRFBMMFBZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82OC8xNGI1YzEtYTMzMy00NDliLWIyODAt MjUxYTdiMTNjMTE4LzEvcF81NTVPWTcwV3ZFSTNXU3RvVFFCRFBMMFBZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82OC8xNGI1YzEtYTMzMy00NDliLWIyODAtMjUxYTdiMTNjMTE4 LzEvcF81NTVPWTcwV3ZFSTNXU3RvVFFCRFBMMFBZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxb6GIf9N VGnpVc3jJkRaGLSFAj/kGgYSl1TIys4k+l4UQIal4sYgDQHInO2c9Gz1MKPnW5av 3Z2bzJtcm46WUCmTG9mGke266HRbEEoby28+Jvx/ewIptwVK6kO1awRyqZvMwKN1 gDMlFlCZrPbERQlxR/u9c1AYXOraaLEf6igY9AChU75o1BzRW2cF7S4JVzg+DCkg 7U3NrxuAdaI2EH4sTgsfLkysIxe/73iX9S9cOXsmPXPE8l+FqY050vpNBnkzEwZV RxFRNlbFZ5+KM5lgWU4lvghSJxi/XbpAd26ZNZfis3LPmA36ANvhGbX7OLkwzB/E FX6MuMpykDV/Lw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:17 2026 by rpki-client