This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft File: 5PKoZiAvS4y8MzgtboLYHYlkyA4.mft (raw, json) Hash identifier: 9JCV3wHbUT1il4tHCou5Y6VynPybT6aPTuyco3uh6+M= Subject key identifier: 42:9B:49:CC:BF:DD:52:3D:7F:11:A3:18:F9:8B:F2:C8:2F:D5:54:F6 Authority key identifier: E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E Certificate issuer: /CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e Certificate serial: 019C435930BB7B9AFC10133220D3E7E72A5E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 17:00:44 +0000 Manifest this update: Mon 09 Feb 2026 17:00:44 +0000 Manifest next update: Tue 10 Feb 2026 17:00:44 +0000 Files and hashes: 1: 0_tFJYeiflxsIJ9bhjlTeIiAEJc.roa (hash: USV70Tn6bwMKjWSZ09NQefEfFL6vsHQ3fPX3IL9JI1s=) 2: 5PKoZiAvS4y8MzgtboLYHYlkyA4.crl (hash: oxetFNQLovyCNlyN8wF7MoYDzzbiDyjD6OksCju+E+s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:30:bb:7b:9a:fc:10:13:32:20:d3:e7:e7:2a:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e4f2a866202f4b8cbc33382d6e82d81d8964c80e Validity Not Before: Feb 9 17:00:44 2026 GMT Not After : Feb 10 17:00:44 2026 GMT Subject: CN=429b49ccbfdd523d7f11a318f98bf2c82fd554f6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:4e:db:d4:53:10:97:93:d3:1b:94:e6:f3:fc: 9c:30:40:53:b8:61:c5:60:56:73:d5:49:9e:be:e7: d9:d9:7f:53:49:85:81:76:13:a7:37:36:2b:72:91: 41:6c:81:e6:2a:32:4b:80:1c:1b:05:7d:04:97:97: ab:3d:90:8f:a8:7f:9c:fa:ca:6c:56:33:21:bf:b3: b2:82:ba:ed:27:3b:3d:e9:a2:6b:6a:38:1c:3d:4e: ad:33:88:16:ce:87:f8:ff:06:e6:39:00:a3:96:de: 30:fe:e9:27:3d:21:f6:6f:8e:fc:1c:08:d9:87:80: 5c:20:0d:89:25:9a:39:31:18:72:d1:3e:42:55:10: 22:d5:7d:59:af:37:e6:7b:a3:00:a1:0a:c0:57:80: e6:37:c7:72:d7:85:1b:98:4f:52:e5:20:01:dc:29: e8:58:c1:87:f6:7b:83:4f:b7:cc:43:fd:63:1f:47: b5:bb:d2:fd:62:bb:24:c7:83:90:ea:a0:69:bb:01: fb:65:e7:3b:51:2c:47:ed:23:80:59:a7:03:e7:5f: 07:9f:be:62:ff:21:90:5c:ab:a2:0d:ea:5c:19:1c: 37:66:cc:dc:55:91:39:12:76:5b:c1:b3:1c:0d:ba: d6:08:79:48:6b:20:e5:3c:a8:20:57:f0:9a:6b:8a: 82:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:9B:49:CC:BF:DD:52:3D:7F:11:A3:18:F9:8B:F2:C8:2F:D5:54:F6 X509v3 Authority Key Identifier: keyid:E4:F2:A8:66:20:2F:4B:8C:BC:33:38:2D:6E:82:D8:1D:89:64:C8:0E X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5PKoZiAvS4y8MzgtboLYHYlkyA4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/8791a1-e679-4663-a2da-1a513df069fc/1/5PKoZiAvS4y8MzgtboLYHYlkyA4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ad:f4:b8:ea:4b:ce:3e:e3:b3:08:5c:9e:34:56:68:78:1b: 8e:95:f9:86:b1:13:40:95:4c:72:7e:3f:18:ef:f0:6d:98:8e: 95:ab:6c:be:c0:1f:d5:27:d9:16:1f:31:82:b9:7f:5c:aa:5b: f3:0a:22:47:ba:cb:db:a8:45:4d:a8:7b:cc:61:2c:de:88:ad: 9a:72:ce:ea:f4:e5:33:39:60:f0:c0:8c:f0:26:fa:e4:61:32: 51:9b:1c:93:77:fb:1d:5b:02:22:2f:9d:40:26:28:9b:6f:f4: b6:73:b5:e4:19:7c:6b:6a:45:de:53:e8:55:6e:ae:80:06:5d: b1:f4:c2:df:d4:5c:5f:a0:09:8c:24:a0:d9:9f:38:6c:62:17: 03:b7:0f:14:aa:bd:05:64:dd:11:18:60:06:96:d7:5b:34:4c: 46:78:0a:7f:e7:99:9a:bb:61:63:98:c5:ef:78:98:35:4b:62: 45:b8:21:d6:cb:af:dd:c3:8d:1b:5a:d4:f5:d4:5c:b9:06:40: 0b:36:82:e4:12:cc:bd:27:49:76:7d:55:f2:5d:6e:05:0e:39: a1:cc:f2:52:d7:d5:2a:39:d2:21:bd:2b:b3:e8:1d:5a:2e:d3: 8a:2c:11:b8:2a:d1:95:ab:fe:5e:04:27:9a:ff:55:e2:39:ce: 32:9f:b8:8c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWTC7e5r8EBMyINPn5ypeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU0ZjJhODY2MjAyZjRiOGNiYzMzMzgyZDZlODJkODFkODk2 NGM4MGUwHhcNMjYwMjA5MTcwMDQ0WhcNMjYwMjEwMTcwMDQ0WjAzMTEwLwYDVQQD Eyg0MjliNDljY2JmZGQ1MjNkN2YxMWEzMThmOThiZjJjODJmZDU1NGY2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwE7b1FMQl5PTG5Tm8/ycMEBTuGHF YFZz1UmevufZ2X9TSYWBdhOnNzYrcpFBbIHmKjJLgBwbBX0El5erPZCPqH+c+sps VjMhv7OygrrtJzs96aJrajgcPU6tM4gWzof4/wbmOQCjlt4w/uknPSH2b478HAjZ h4BcIA2JJZo5MRhy0T5CVRAi1X1Zrzfme6MAoQrAV4DmN8dy14UbmE9S5SAB3Cno WMGH9nuDT7fMQ/1jH0e1u9L9Yrskx4OQ6qBpuwH7Zec7USxH7SOAWacD518Hn75i /yGQXKuiDepcGRw3ZszcVZE5EnZbwbMcDbrWCHlIayDlPKggV/Caa4qCsQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEKbScy/3VI9fxGjGPmL8sgv1VT2MB8GA1UdIwQY MBaAFOTyqGYgL0uMvDM4LW6C2B2JZMgOMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEt MWE1MTNkZjA2OWZjLzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNy84NzkxYTEtZTY3OS00NjYzLWEyZGEtMWE1MTNkZjA2OWZj LzEvNVBLb1ppQXZTNHk4TXpndGJvTFlIWWxreUE0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL630uOpL zj7jswhcnjRWaHgbjpX5hrETQJVMcn4/GO/wbZiOlatsvsAf1SfZFh8xgrl/XKpb 8woiR7rL26hFTah7zGEs3oitmnLO6vTlMzlg8MCM8Cb65GEyUZsck3f7HVsCIi+d QCYom2/0tnO15Bl8a2pF3lPoVW6ugAZdsfTC39RcX6AJjCSg2Z84bGIXA7cPFKq9 BWTdERhgBpbXWzRMRngKf+eZmrthY5jF73iYNUtiRbgh1suv3cONG1rU9dRcuQZA CzaC5BLMvSdJdn1V8l1uBQ45oczyUtfVKjnSIb0rs+gdWi7TiiwRuCrRlav+XgQn mv9V4jnOMp+4jA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:01 2026 by rpki-client