This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft File: 5DWo9PNqSBGpLRlhc-HEmarMd9U.mft (raw, json) Hash identifier: czl5vR19vFHExm177Zl+NUJ2hPiMEcl2SsknOuZhE6o= Subject key identifier: 61:1F:93:7F:78:BE:63:33:29:0C:4C:97:99:60:37:29:5C:AB:0F:01 Authority key identifier: E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5 Certificate issuer: /CN=e435a8f4f36a4811a92d196173e1c499aacc77d5 Certificate serial: 019C427D87BCC0522D8ECD481425B6C78EE3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft Manifest number: 0EED Signing time: Mon 09 Feb 2026 13:00:48 +0000 Manifest this update: Mon 09 Feb 2026 13:00:48 +0000 Manifest next update: Tue 10 Feb 2026 13:00:48 +0000 Files and hashes: 1: 5DWo9PNqSBGpLRlhc-HEmarMd9U.crl (hash: aZui/kHgQhJgMHWtrb31bGjKZI5EDlWGAXsmznKLsPI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:00:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:87:bc:c0:52:2d:8e:cd:48:14:25:b6:c7:8e:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e435a8f4f36a4811a92d196173e1c499aacc77d5 Validity Not Before: Feb 9 13:00:48 2026 GMT Not After : Feb 10 13:00:48 2026 GMT Subject: CN=611f937f78be6333290c4c97996037295cab0f01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:6d:5d:94:a1:f5:fd:6f:c6:99:a5:6b:4e:45: 86:ad:8d:b5:68:e6:16:d5:77:21:de:23:20:b5:0c: 4b:5b:a9:af:64:89:26:ee:79:76:ff:4a:b2:57:1d: 9a:bc:2e:bb:de:63:91:1a:7c:24:be:f8:c4:3d:9d: d7:a8:41:23:57:65:15:3f:11:fa:d0:2f:22:c3:48: 78:5f:47:e9:97:11:29:71:b4:78:9c:3c:7e:af:65: 27:b9:70:c0:df:8b:3b:82:10:2a:47:2e:35:a5:82: 26:54:52:b7:b0:b5:37:ef:28:ee:29:2a:90:4f:04: 84:66:41:dc:8d:cb:d4:4f:2d:2c:21:07:94:a5:28: 84:40:d4:de:84:ed:c0:45:47:f3:f2:a7:fd:c7:b4: bc:b9:3c:36:5d:6c:d6:13:46:c6:9c:61:b1:2a:8c: b7:56:53:71:99:f1:e2:bf:34:6a:aa:81:77:20:1f: 4a:26:77:35:67:90:33:04:80:3e:07:50:27:7d:2a: 9c:f9:bd:94:2f:f7:92:57:f4:f8:87:1f:75:b9:6f: 82:51:39:a3:d2:4f:94:09:2a:9b:36:e0:2e:71:46: 3b:4c:55:8d:a1:09:c6:6d:61:e8:00:2e:c2:0d:d3: 5d:07:32:f3:1e:5b:f6:11:62:39:28:15:9f:e0:e6: b1:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:1F:93:7F:78:BE:63:33:29:0C:4C:97:99:60:37:29:5C:AB:0F:01 X509v3 Authority Key Identifier: keyid:E4:35:A8:F4:F3:6A:48:11:A9:2D:19:61:73:E1:C4:99:AA:CC:77:D5 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5DWo9PNqSBGpLRlhc-HEmarMd9U.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/42ba75-92e6-4793-8ad9-b80e9fa42dfb/1/5DWo9PNqSBGpLRlhc-HEmarMd9U.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:55:60:be:b3:c7:1b:de:ab:92:b8:87:de:55:44:05:4c:04: 88:97:09:7b:0a:92:85:7c:26:b5:80:a6:82:83:b7:4c:5c:24: b8:ec:a2:99:3e:8f:38:e6:16:58:cb:2a:06:e9:b1:47:90:7e: 79:2e:57:ce:6a:9d:ae:c8:3d:fe:08:15:d5:eb:fe:93:90:0c: 3e:82:fc:df:50:0f:e1:73:db:34:8a:c8:c4:50:cd:3b:71:e6: e0:42:f0:9f:e9:6a:39:cf:cc:67:01:2f:5e:8e:a3:67:31:8a: 2e:cd:ad:30:06:ff:84:f5:27:b6:3e:2f:21:e3:3f:e2:c5:9b: 9f:77:20:bc:a8:f7:a4:d0:a3:25:76:b8:47:73:de:5a:58:47: 26:61:f2:df:33:43:be:05:ea:23:3b:5f:90:82:94:2a:d3:35: 58:2d:e7:59:96:29:b8:db:29:44:6c:4c:ce:d3:20:1f:ff:e5: 21:b0:dd:c5:c1:81:ce:9f:6f:87:8f:e3:fe:29:23:6b:dd:cb: a4:53:7c:8e:d7:d8:bd:e0:4a:bb:b4:b2:dc:0b:0b:63:62:3b: d9:6b:34:3a:cb:48:b6:ff:3d:d0:e1:29:61:ae:2b:36:6c:89: c7:41:ae:82:25:ae:12:7c:cf:99:4e:c1:43:dc:1d:6c:c7:06: 86:80:33:81 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfYe8wFItjs1IFCW2x47jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0MzVhOGY0ZjM2YTQ4MTFhOTJkMTk2MTczZTFjNDk5YWFj Yzc3ZDUwHhcNMjYwMjA5MTMwMDQ4WhcNMjYwMjEwMTMwMDQ4WjAzMTEwLwYDVQQD Eyg2MTFmOTM3Zjc4YmU2MzMzMjkwYzRjOTc5OTYwMzcyOTVjYWIwZjAxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA021dlKH1/W/GmaVrTkWGrY21aOYW 1Xch3iMgtQxLW6mvZIkm7nl2/0qyVx2avC673mORGnwkvvjEPZ3XqEEjV2UVPxH6 0C8iw0h4X0fplxEpcbR4nDx+r2UnuXDA34s7ghAqRy41pYImVFK3sLU37yjuKSqQ TwSEZkHcjcvUTy0sIQeUpSiEQNTehO3ARUfz8qf9x7S8uTw2XWzWE0bGnGGxKoy3 VlNxmfHivzRqqoF3IB9KJnc1Z5AzBIA+B1AnfSqc+b2UL/eSV/T4hx91uW+CUTmj 0k+UCSqbNuAucUY7TFWNoQnGbWHoAC7CDdNdBzLzHlv2EWI5KBWf4OaxRQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGEfk394vmMzKQxMl5lgNylcqw8BMB8GA1UdIwQY MBaAFOQ1qPTzakgRqS0ZYXPhxJmqzHfVMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDkt YjgwZTlmYTQyZGZiLzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iOS80MmJhNzUtOTJlNi00NzkzLThhZDktYjgwZTlmYTQyZGZi LzEvNURXbzlQTnFTQkdwTFJsaGMtSEVtYXJNZDlVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQlVgvrPH G96rkriH3lVEBUwEiJcJewqShXwmtYCmgoO3TFwkuOyimT6POOYWWMsqBumxR5B+ eS5Xzmqdrsg9/ggV1ev+k5AMPoL831AP4XPbNIrIxFDNO3Hm4ELwn+lqOc/MZwEv Xo6jZzGKLs2tMAb/hPUntj4vIeM/4sWbn3cgvKj3pNCjJXa4R3PeWlhHJmHy3zND vgXqIztfkIKUKtM1WC3nWZYpuNspRGxMztMgH//lIbDdxcGBzp9vh4/j/ikja93L pFN8jtfYveBKu7Sy3AsLY2I72Ws0OstItv890OEpYa4rNmyJx0GugiWuEnzPmU7B Q9wdbMcGhoAzgQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:30:56 2026 by rpki-client