This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.


Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
File:                     5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft (raw, json)
Hash identifier:          5AmpYvXzmbJAkz8Tl5JRZvF045O/y65+3UHSlKMu6e8=
Subject key identifier:   DF:95:92:A9:2B:9B:E3:2E:53:85:35:87:8A:4F:24:4C:CD:98:B3:25
Authority key identifier: E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9
Certificate issuer:       /CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
Certificate serial:       019C451150CF7369C5537E6976A5DBCB3E33
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
Manifest number:          05F5
Signing time:             Tue 10 Feb 2026 01:01:28 +0000
Manifest this update:     Tue 10 Feb 2026 01:01:28 +0000
Manifest next update:     Wed 11 Feb 2026 01:01:28 +0000
Files and hashes:         1: 5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl (hash: 9xr7pOReRM9Iy4tAom0jQLP2eJ4D5MJdVbGJNeIrFec=)
Validation:               OK
Signature path:           rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft
                          rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
                          rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
                          rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
                          rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
                          rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
                          rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
                          rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires:   Tue 10 Feb 2026 21:05:12 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9c:45:11:50:cf:73:69:c5:53:7e:69:76:a5:db:cb:3e:33
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=e418cddc39d347563c6dc1e5ec5e59621e40e4d9
        Validity
            Not Before: Feb 10 01:01:28 2026 GMT
            Not After : Feb 11 01:01:28 2026 GMT
        Subject: CN=df9592a92b9be32e538535878a4f244ccd98b325
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d0:60:09:69:e1:6e:e2:4d:0d:7e:20:46:21:92:
                    47:36:2f:38:cb:d0:7b:ee:67:f7:b4:a1:4c:d8:87:
                    6b:f7:bd:68:de:79:91:0b:16:40:66:38:61:0f:26:
                    61:47:53:3e:c0:14:cd:6a:89:e8:bd:0d:77:bf:81:
                    dd:33:7d:7d:7a:ce:a6:3a:8c:94:24:06:8e:12:41:
                    87:ab:84:0e:26:91:25:96:36:cb:a1:af:81:d1:d1:
                    2b:6e:c4:37:90:20:04:2f:59:0f:c4:2e:33:a7:71:
                    6c:9c:63:79:eb:d6:3b:13:49:a3:10:bb:20:72:54:
                    37:da:78:c2:d5:71:36:67:ce:4f:16:10:51:37:d5:
                    ac:73:94:db:b9:45:b7:d6:7e:0f:72:c7:3e:f6:38:
                    64:6b:69:34:06:21:19:14:3b:ec:a3:ad:f2:a2:21:
                    58:87:90:92:22:23:15:84:57:09:2b:ca:ae:70:b3:
                    f3:43:8f:de:d1:72:2a:41:ce:2f:cc:ee:64:24:fd:
                    84:59:42:13:5b:cf:01:31:23:a9:53:4c:68:90:07:
                    f9:ae:24:a8:0c:d9:75:f1:08:b2:02:e9:a7:ba:88:
                    57:9e:10:fd:a8:b9:35:5e:02:1f:c4:1a:21:46:6e:
                    08:4d:68:ae:df:20:cf:f0:00:88:e3:f7:29:b0:b2:
                    b0:7f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                DF:95:92:A9:2B:9B:E3:2E:53:85:35:87:8A:4F:24:4C:CD:98:B3:25
            X509v3 Authority Key Identifier:
                keyid:E4:18:CD:DC:39:D3:47:56:3C:6D:C1:E5:EC:5E:59:62:1E:40:E4:D9

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/68/3eed28-230c-4b9f-904c-777e6ca4eff6/1/5BjN3DnTR1Y8bcHl7F5ZYh5A5Nk.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         81:9f:97:49:f7:1c:eb:52:44:8a:97:86:e0:3e:66:63:0f:26:
         d4:56:60:e7:1a:02:24:5c:da:e7:66:e5:e8:6f:80:01:66:ee:
         60:eb:23:3d:38:e7:ec:88:f9:0f:3a:93:f8:f7:59:85:72:11:
         0c:f4:43:c4:23:c3:1c:3c:d8:ba:f2:22:44:4e:26:65:cd:92:
         52:ef:94:53:64:05:9b:61:81:8f:0f:f2:3b:e7:df:8d:9e:29:
         92:8e:b8:c4:0c:64:ef:66:14:40:f7:c5:8f:e8:71:0e:e6:c4:
         68:d0:cc:ea:46:af:c7:41:d9:dd:95:12:99:a8:17:fe:4b:44:
         f0:64:38:43:b4:69:aa:a8:3b:0b:de:bb:d1:aa:a5:fa:0f:e4:
         4c:87:f4:ad:81:b8:75:b0:b9:43:85:f6:e9:31:ca:42:58:6e:
         d3:98:54:b9:b7:cf:e5:9b:75:28:b7:19:c1:59:6d:11:03:f5:
         86:f8:54:0a:73:da:0d:07:d3:53:a4:c2:65:e8:b4:b8:88:39:
         3f:00:91:ac:9a:e0:7e:9d:c4:a9:76:b1:3b:33:73:53:99:d2:
         a7:ed:49:dc:5b:f6:2d:e0:6e:60:26:31:ec:61:7a:54:42:c7:
         c6:45:f1:3d:8a:ae:7d:54:e6:84:3b:73:4d:0e:16:27:42:bd:
         1a:1d:8d:86
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Feb 10 04:22:47 2026 by rpki-client