This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft File: 5qi5LUxZf2wET3clKFSPnJEpoNM.mft (raw, json) Hash identifier: 9xuZYjKkYvONw23FKLS3tj9TM9DYIdkbEMdh9nxukiA= Subject key identifier: DF:69:D1:E3:E2:34:9B:A9:A1:33:2E:B9:6F:94:AF:22:0D:50:63:82 Authority key identifier: E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3 Certificate issuer: /CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3 Certificate serial: 019C439030C2477FF8CD1580EDFC9549EAF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft Manifest number: 14EE Signing time: Mon 09 Feb 2026 18:00:48 +0000 Manifest this update: Mon 09 Feb 2026 18:00:48 +0000 Manifest next update: Tue 10 Feb 2026 18:00:48 +0000 Files and hashes: 1: 5qi5LUxZf2wET3clKFSPnJEpoNM.crl (hash: 8C8xVjikjrmSrKnFG34SJUO2nOf9rKtBNoaUNjd8HkE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:30:c2:47:7f:f8:cd:15:80:ed:fc:95:49:ea:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e6a8b92d4c597f6c044f772528548f9c9129a0d3 Validity Not Before: Feb 9 18:00:48 2026 GMT Not After : Feb 10 18:00:48 2026 GMT Subject: CN=df69d1e3e2349ba9a1332eb96f94af220d506382 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:36:69:8e:43:60:ee:2b:d1:31:a6:2f:aa:53: 38:50:de:76:5c:4a:a4:de:70:0c:a7:86:08:1b:6d: e3:ca:40:fd:21:0e:8d:9b:80:8c:43:39:20:57:bb: 0d:6a:a0:c1:f4:53:8a:66:a0:f3:27:03:2f:de:f6: 44:a3:0e:f3:b6:2c:a9:75:56:40:48:36:91:1c:dd: c2:91:3c:c2:0b:17:7b:5a:d4:6f:f5:35:20:84:42: a0:a3:54:62:32:8e:36:e1:71:41:a2:a4:50:81:e4: 02:7c:41:6b:13:5f:f0:0f:1e:05:5e:91:a5:69:c8: 11:02:a7:57:d4:3d:fe:12:0f:81:da:60:3f:b0:b1: ac:75:78:9b:9d:b0:fa:41:8e:12:31:7d:ad:c9:84: c7:20:f8:70:8a:e0:de:a9:df:13:4d:16:69:97:79: 26:7f:3f:e5:5e:8c:ab:16:17:b7:92:9e:23:de:1d: 25:c1:d9:c6:e4:55:25:20:a0:bc:f6:34:d0:34:4a: 36:4e:0a:dd:48:26:0b:ed:d8:28:ea:3b:38:13:f2: e0:a5:49:cb:9d:8b:8c:a2:cc:1c:fa:7f:f9:15:eb: 1d:6d:78:be:9c:18:37:96:af:76:95:bc:5f:33:a7: 96:54:a8:88:c9:08:c2:b9:16:ba:92:0f:a0:81:c0: ef:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:69:D1:E3:E2:34:9B:A9:A1:33:2E:B9:6F:94:AF:22:0D:50:63:82 X509v3 Authority Key Identifier: keyid:E6:A8:B9:2D:4C:59:7F:6C:04:4F:77:25:28:54:8F:9C:91:29:A0:D3 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5qi5LUxZf2wET3clKFSPnJEpoNM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/f9afc2-9169-4a8c-8816-deb7ff1b5e6d/1/5qi5LUxZf2wET3clKFSPnJEpoNM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:ba:ca:48:79:22:62:79:03:4a:ce:40:ce:ea:2b:c4:4c:bc: ee:7c:5d:71:2a:f6:34:e3:a1:44:ac:b0:e0:2e:29:cb:83:2a: 51:35:a2:2c:5f:97:fe:23:e4:6c:e8:b0:30:cd:5f:ec:00:6f: bf:32:d9:f5:13:dd:8b:9e:e5:bf:37:3a:f5:59:d0:be:04:41: 87:4d:5a:ba:e5:17:88:b1:d5:ba:6d:ea:e9:b1:67:63:61:4e: 7b:15:49:b4:e9:b0:04:41:10:c5:c0:dd:32:66:76:9e:7b:28: 3f:54:9c:a7:92:75:5d:f4:0b:d9:cf:8e:bb:fd:98:d5:2a:7a: 1f:7f:37:70:92:c3:53:3f:53:06:7a:8c:2e:1a:8d:75:ce:94: 18:10:95:b6:30:53:27:05:6d:15:ea:0c:f9:bf:c2:6c:8f:61: de:39:12:69:5d:26:28:cf:98:79:16:f0:b7:0b:41:9c:8a:b7: 4b:15:30:e5:14:be:a4:17:5c:b5:62:a8:b1:3d:8b:76:63:6b: 7a:98:87:0c:ff:93:35:7c:e8:c8:ee:fd:6e:cd:ec:65:a9:e8: 5e:81:cc:0c:18:5b:d7:3d:77:c8:8f:e9:3c:ea:10:d8:e8:3e: 70:2a:aa:16:9f:07:80:97:12:1d:09:2d:2e:9e:29:ad:e5:ea: 53:9a:d6:2b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkDDCR3/4zRWA7fyVSeryMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU2YThiOTJkNGM1OTdmNmMwNDRmNzcyNTI4NTQ4ZjljOTEy OWEwZDMwHhcNMjYwMjA5MTgwMDQ4WhcNMjYwMjEwMTgwMDQ4WjAzMTEwLwYDVQQD EyhkZjY5ZDFlM2UyMzQ5YmE5YTEzMzJlYjk2Zjk0YWYyMjBkNTA2MzgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvjZpjkNg7ivRMaYvqlM4UN52XEqk 3nAMp4YIG23jykD9IQ6Nm4CMQzkgV7sNaqDB9FOKZqDzJwMv3vZEow7ztiypdVZA SDaRHN3CkTzCCxd7WtRv9TUghEKgo1RiMo424XFBoqRQgeQCfEFrE1/wDx4FXpGl acgRAqdX1D3+Eg+B2mA/sLGsdXibnbD6QY4SMX2tyYTHIPhwiuDeqd8TTRZpl3km fz/lXoyrFhe3kp4j3h0lwdnG5FUlIKC89jTQNEo2TgrdSCYL7dgo6js4E/LgpUnL nYuMoswc+n/5FesdbXi+nBg3lq92lbxfM6eWVKiIyQjCuRa6kg+ggcDvFwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN9p0ePiNJupoTMuuW+UryINUGOCMB8GA1UdIwQY MBaAFOaouS1MWX9sBE93JShUj5yRKaDTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYt ZGViN2ZmMWI1ZTZkLzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi9mOWFmYzItOTE2OS00YThjLTg4MTYtZGViN2ZmMWI1ZTZk LzEvNXFpNUxVeFpmMndFVDNjbEtGU1BuSkVwb05NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAj7rKSHki YnkDSs5AzuorxEy87nxdcSr2NOOhRKyw4C4py4MqUTWiLF+X/iPkbOiwMM1f7ABv vzLZ9RPdi57lvzc69VnQvgRBh01auuUXiLHVum3q6bFnY2FOexVJtOmwBEEQxcDd MmZ2nnsoP1Scp5J1XfQL2c+Ou/2Y1Sp6H383cJLDUz9TBnqMLhqNdc6UGBCVtjBT JwVtFeoM+b/CbI9h3jkSaV0mKM+YeRbwtwtBnIq3SxUw5RS+pBdctWKosT2LdmNr epiHDP+TNXzoyO79bs3sZanoXoHMDBhb1z13yI/pPOoQ2Og+cCqqFp8HgJcSHQkt Lp4preXqU5rWKw== -----END CERTIFICATE-----Generated at Mon Feb 9 22:41:51 2026 by rpki-client