This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft File: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft (raw, json) Hash identifier: dO8tPHotTX3vUaW3+OJ/8znQi2Y8DZlipRV3mnufJYY= Subject key identifier: 9F:62:8D:5A:E0:4F:82:5F:11:3D:37:ED:FF:5B:C8:FC:71:6E:48:9E Authority key identifier: E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33 Certificate issuer: /CN=e57731ea857b903aa40a8e5fd8d88446505b5233 Certificate serial: 019C41D83E7E65717F35B50E4014B9E9D33A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 10:00:16 +0000 Manifest this update: Mon 09 Feb 2026 10:00:16 +0000 Manifest next update: Tue 10 Feb 2026 10:00:16 +0000 Files and hashes: 1: 5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl (hash: ZDONRzSYoih7X1SXFeROmEjcaos9QehXZrv62rV5R2A=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 10:00:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:d8:3e:7e:65:71:7f:35:b5:0e:40:14:b9:e9:d3:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e57731ea857b903aa40a8e5fd8d88446505b5233 Validity Not Before: Feb 9 10:00:16 2026 GMT Not After : Feb 10 10:00:16 2026 GMT Subject: CN=9f628d5ae04f825f113d37edff5bc8fc716e489e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:90:46:e2:21:f4:4e:15:2a:05:f9:7d:ae:2f: a9:21:29:44:7b:46:77:05:21:9c:d2:51:82:40:f9: b1:55:94:4a:65:ff:38:21:69:6c:6b:a4:40:e4:e6: 5e:b1:16:8a:e6:d9:fb:2d:69:c4:76:a7:22:c0:30: c0:f2:65:1d:3a:1f:e4:bd:e4:72:da:99:10:3e:f9: bc:26:e9:ba:aa:76:16:35:85:35:d3:8d:dd:a7:2b: ba:ac:57:30:01:ff:51:64:c8:5f:2e:47:1f:73:f4: 56:63:10:f0:2e:c0:d4:58:ca:d6:72:1a:86:56:03: 5f:14:37:17:70:47:0a:b2:f6:b2:e8:fc:18:9e:88: 2b:87:15:9a:a5:cc:b6:28:88:6a:d1:da:50:3d:1c: 62:2b:4f:1a:62:1c:9a:19:49:d1:0c:24:e2:49:61: 9b:24:6f:89:12:b2:f8:80:4d:b1:65:e2:78:50:ca: 87:ba:95:c1:8a:d4:f4:78:82:ae:b9:55:48:4d:cb: e9:4d:a2:3e:99:79:26:87:89:da:50:7f:69:38:b9: da:f3:6e:78:36:d2:12:68:67:91:0c:ad:3d:86:02: e3:9c:c1:76:6c:84:86:0e:73:69:bd:f5:0d:ef:13: ab:8a:cf:30:b2:28:e4:72:f2:bb:56:b5:fb:99:d6: 51:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:62:8D:5A:E0:4F:82:5F:11:3D:37:ED:FF:5B:C8:FC:71:6E:48:9E X509v3 Authority Key Identifier: keyid:E5:77:31:EA:85:7B:90:3A:A4:0A:8E:5F:D8:D8:84:46:50:5B:52:33 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5Xcx6oV7kDqkCo5f2NiERlBbUjM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ca/afbb62-0098-42b3-81ae-f0bb2e15f6d0/1/5Xcx6oV7kDqkCo5f2NiERlBbUjM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:e3:50:a0:03:18:8c:85:80:ba:68:ea:b1:4c:6a:c8:4e:50: ba:30:aa:6b:6e:d8:c6:9d:58:83:33:92:e5:d4:4b:7e:3f:54: 79:77:92:7f:66:e3:8f:88:77:27:de:34:f3:90:5c:33:ee:6a: f4:b9:f2:6e:bb:9a:65:4e:15:fc:26:14:3f:b8:a0:4b:ac:4d: dc:73:a7:ce:d9:1a:95:08:16:55:13:ec:73:3e:2f:17:28:6f: f0:75:03:22:9d:21:54:9f:32:3d:81:74:c7:db:6d:e2:ef:06: 98:5f:0a:ea:58:d3:25:34:18:92:f1:a9:d3:06:4f:06:cd:36: 48:68:29:2c:55:a9:e2:91:a9:92:b3:8d:44:8a:22:e6:9f:05: dc:b5:32:f0:d3:83:0f:bd:ec:53:c3:73:f8:4f:45:88:c5:3c: af:f7:68:d4:14:b5:bd:0a:75:de:d5:32:eb:39:25:94:c6:3d: 84:e1:23:72:6e:c6:72:01:fb:8f:7d:bb:37:18:48:c6:37:ee: 40:aa:7e:c8:f9:b2:5f:22:1d:90:60:d3:79:27:6a:39:ad:b9: ef:77:cb:0d:9d:7e:97:01:cb:33:47:4b:dd:7c:18:b1:cc:7a: 79:0d:e9:38:4a:b0:66:7a:8c:14:a1:67:41:c2:03:a2:69:e4: 46:a0:7c:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxB2D5+ZXF/NbUOQBS56dM6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NzczMWVhODU3YjkwM2FhNDBhOGU1ZmQ4ZDg4NDQ2NTA1 YjUyMzMwHhcNMjYwMjA5MTAwMDE2WhcNMjYwMjEwMTAwMDE2WjAzMTEwLwYDVQQD Eyg5ZjYyOGQ1YWUwNGY4MjVmMTEzZDM3ZWRmZjViYzhmYzcxNmU0ODllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pBG4iH0ThUqBfl9ri+pISlEe0Z3 BSGc0lGCQPmxVZRKZf84IWlsa6RA5OZesRaK5tn7LWnEdqciwDDA8mUdOh/kveRy 2pkQPvm8Jum6qnYWNYU1043dpyu6rFcwAf9RZMhfLkcfc/RWYxDwLsDUWMrWchqG VgNfFDcXcEcKsvay6PwYnogrhxWapcy2KIhq0dpQPRxiK08aYhyaGUnRDCTiSWGb JG+JErL4gE2xZeJ4UMqHupXBitT0eIKuuVVITcvpTaI+mXkmh4naUH9pOLna8254 NtISaGeRDK09hgLjnMF2bISGDnNpvfUN7xOris8wsijkcvK7VrX7mdZR2QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFJ9ijVrgT4JfET037f9byPxxbkieMB8GA1UdIwQY MBaAFOV3MeqFe5A6pAqOX9jYhEZQW1IzMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVhjeDZvVjdrRHFrQ281ZjJOaUVSbEJiVWpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYS9hZmJiNjItMDA5OC00MmIzLTgxYWUt ZjBiYjJlMTVmNmQwLzEvNVhjeDZvVjdrRHFrQ281ZjJOaUVSbEJiVWpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYS9hZmJiNjItMDA5OC00MmIzLTgxYWUtZjBiYjJlMTVmNmQw LzEvNVhjeDZvVjdrRHFrQ281ZjJOaUVSbEJiVWpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIeNQoAMY jIWAumjqsUxqyE5QujCqa27Yxp1YgzOS5dRLfj9UeXeSf2bjj4h3J94085BcM+5q 9LnybruaZU4V/CYUP7igS6xN3HOnztkalQgWVRPscz4vFyhv8HUDIp0hVJ8yPYF0 x9tt4u8GmF8K6ljTJTQYkvGp0wZPBs02SGgpLFWp4pGpkrONRIoi5p8F3LUy8NOD D73sU8Nz+E9FiMU8r/do1BS1vQp13tUy6zkllMY9hOEjcm7GcgH7j327NxhIxjfu QKp+yPmyXyIdkGDTeSdqOa2573fLDZ1+lwHLM0dL3XwYscx6eQ3pOEqwZnqMFKFn QcIDomnkRqB8mw== -----END CERTIFICATE-----Generated at Mon Feb 9 17:02:00 2026 by rpki-client