This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft File: 5-aiybui7N1AdLMVN1mDXoI6uOQ.mft (raw, json) Hash identifier: bUC9qjLjf+5x7rwOFCCAnoJSlh9+Yt5nrJhmxnkJNy4= Subject key identifier: 2A:89:6A:AE:E6:F0:44:4A:1D:13:D5:8E:B0:F4:08:EE:01:DE:A8:55 Authority key identifier: E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4 Certificate issuer: /CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4 Certificate serial: 019C432252902544134E910782A71A68874D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft Manifest number: 0EF0 Signing time: Mon 09 Feb 2026 16:00:48 +0000 Manifest this update: Mon 09 Feb 2026 16:00:48 +0000 Manifest next update: Tue 10 Feb 2026 16:00:48 +0000 Files and hashes: 1: 5-aiybui7N1AdLMVN1mDXoI6uOQ.crl (hash: xuLVrkK5ilYhELjaCcVwohJVhS1GfbRUlOi2K/AwjJs=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:52:90:25:44:13:4e:91:07:82:a7:1a:68:87:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7e6a2c9bba2ecdd4074b3153759835e823ab8e4 Validity Not Before: Feb 9 16:00:48 2026 GMT Not After : Feb 10 16:00:48 2026 GMT Subject: CN=2a896aaee6f0444a1d13d58eb0f408ee01dea855 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:8d:06:a9:b7:5d:1a:85:cd:cd:cb:cc:e0:f2: 5e:3e:85:aa:dd:a2:c7:fd:85:0f:86:ef:7d:e8:e2: 2c:ea:8f:74:e8:93:99:e0:7b:35:a2:3b:f7:20:bd: 64:f1:5d:0f:1d:6c:95:51:3f:44:de:b8:53:e7:83: 6f:dc:04:68:ec:02:b6:0a:59:7a:58:25:8a:06:6b: 86:e3:ef:77:69:6a:9f:88:f1:d7:02:8b:94:aa:8d: d6:7a:e5:6a:19:78:aa:2f:43:db:57:32:a2:86:4f: 34:ba:8e:f8:26:2a:eb:36:f9:94:a3:08:b1:54:dc: d1:af:4e:eb:cb:c7:c5:a1:3b:98:2e:16:16:6e:70: 2c:84:cd:06:3f:8e:c8:4d:e6:c8:9d:26:54:9d:86: e7:69:88:1e:f5:f0:57:2d:ee:67:25:05:c9:b0:ea: 84:ae:8b:0a:09:db:b1:52:2a:e2:51:d6:a5:bf:a0: 1a:ce:9c:f3:30:4e:66:1b:3f:40:de:fc:09:6d:12: 22:ca:aa:f8:15:5a:7b:ac:02:2c:46:17:21:2b:be: 7a:85:01:00:fc:a5:ff:f5:79:b4:94:2c:04:a1:83: ff:1f:76:20:1b:cb:5e:bc:e8:ef:4b:62:bd:fe:8e: 82:00:31:eb:34:8a:5b:bf:46:b5:4f:f9:17:dc:c6: c4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:89:6A:AE:E6:F0:44:4A:1D:13:D5:8E:B0:F4:08:EE:01:DE:A8:55 X509v3 Authority Key Identifier: keyid:E7:E6:A2:C9:BB:A2:EC:DD:40:74:B3:15:37:59:83:5E:82:3A:B8:E4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5-aiybui7N1AdLMVN1mDXoI6uOQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/7b/35b59e-bc27-4206-a7d9-53569aca3a5f/1/5-aiybui7N1AdLMVN1mDXoI6uOQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption af:ea:85:f9:a3:00:27:cc:72:18:95:78:b3:45:e1:5e:ce:9b: 5b:4b:75:62:5c:b1:02:ed:cd:a2:fd:e6:e7:bf:fa:e8:31:95: f2:ea:1e:b9:6e:e4:01:46:36:16:ab:6e:d5:a7:1c:86:52:27: 68:86:98:22:08:9d:04:b6:81:64:92:d4:bb:e4:a3:ed:13:4b: dd:bc:e3:9a:61:92:be:3e:78:26:da:5c:01:58:86:b7:52:13: 8f:ed:69:7a:ad:94:bf:79:da:ac:17:ef:79:e6:9c:3b:8b:4f: 10:7f:26:da:0a:d6:1c:7b:5a:42:18:b0:65:e6:5a:75:fa:47: 1d:14:77:75:29:49:16:45:d9:1e:d8:ca:35:f4:bb:45:27:c1: c3:ee:c6:cf:00:6b:49:dc:eb:49:98:54:e4:f5:89:11:d7:d1: ce:cd:1f:66:47:d3:cf:1c:04:7f:84:98:7d:ab:47:7c:4a:d4: 73:f9:0a:b0:7f:80:32:0a:64:81:f5:73:8e:3c:f8:d8:f3:47: 16:85:05:60:fa:e8:06:1f:ee:b4:d1:d1:9b:10:fe:eb:37:76: e6:8c:3b:62:84:3e:a7:74:d1:1c:b1:07:b2:65:f0:8e:43:be: c7:6f:cf:60:22:58:a2:bb:b5:3b:cb:89:5d:04:89:d9:4d:a9: 40:93:6a:ba -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIlKQJUQTTpEHgqcaaIdNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3ZTZhMmM5YmJhMmVjZGQ0MDc0YjMxNTM3NTk4MzVlODIz YWI4ZTQwHhcNMjYwMjA5MTYwMDQ4WhcNMjYwMjEwMTYwMDQ4WjAzMTEwLwYDVQQD EygyYTg5NmFhZWU2ZjA0NDRhMWQxM2Q1OGViMGY0MDhlZTAxZGVhODU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoo0GqbddGoXNzcvM4PJePoWq3aLH /YUPhu996OIs6o906JOZ4Hs1ojv3IL1k8V0PHWyVUT9E3rhT54Nv3ARo7AK2Cll6 WCWKBmuG4+93aWqfiPHXAouUqo3WeuVqGXiqL0PbVzKihk80uo74JirrNvmUowix VNzRr07ry8fFoTuYLhYWbnAshM0GP47ITebInSZUnYbnaYge9fBXLe5nJQXJsOqE rosKCduxUiriUdalv6AazpzzME5mGz9A3vwJbRIiyqr4FVp7rAIsRhchK756hQEA /KX/9Xm0lCwEoYP/H3YgG8tevOjvS2K9/o6CADHrNIpbv0a1T/kX3MbEoQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCqJaq7m8ERKHRPVjrD0CO4B3qhVMB8GA1UdIwQY MBaAFOfmosm7ouzdQHSzFTdZg16COrjkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Yi8zNWI1OWUtYmMyNy00MjA2LWE3ZDkt NTM1NjlhY2EzYTVmLzEvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Yi8zNWI1OWUtYmMyNy00MjA2LWE3ZDktNTM1NjlhY2EzYTVm LzEvNS1haXlidWk3TjFBZExNVk4xbURYb0k2dU9RLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAr+qF+aMA J8xyGJV4s0XhXs6bW0t1YlyxAu3Nov3m57/66DGV8uoeuW7kAUY2Fqtu1acchlIn aIaYIgidBLaBZJLUu+Sj7RNL3bzjmmGSvj54JtpcAViGt1ITj+1peq2Uv3narBfv eeacO4tPEH8m2grWHHtaQhiwZeZadfpHHRR3dSlJFkXZHtjKNfS7RSfBw+7GzwBr SdzrSZhU5PWJEdfRzs0fZkfTzxwEf4SYfatHfErUc/kKsH+AMgpkgfVzjjz42PNH FoUFYProBh/utNHRmxD+6zd25ow7YoQ+p3TRHLEHsmXwjkO+x2/PYCJYoru1O8uJ XQSJ2U2pQJNqug== -----END CERTIFICATE-----Generated at Mon Feb 9 18:32:03 2026 by rpki-client