This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft File: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft (raw, json) Hash identifier: DjIenqXpelijLwsIadHXTrbXw3p63GPX51s09vRamvk= Subject key identifier: 1D:47:4A:93:94:0A:7D:40:C0:3B:04:B9:D6:65:D1:9A:48:5D:93:B4 Authority key identifier: AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82 Certificate issuer: /CN=af9b2cefe389a1ae49756edc2b3293e58830cb82 Certificate serial: 019C424678E40E15102B92ABA2EC3E2761DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft Manifest number: 04ED Signing time: Mon 09 Feb 2026 12:00:40 +0000 Manifest this update: Mon 09 Feb 2026 12:00:40 +0000 Manifest next update: Tue 10 Feb 2026 12:00:40 +0000 Files and hashes: 1: SW0jIvk1wvk_Jl_m70Mc6YZkuCg.roa (hash: xgcppBoYJknCSghed+wm1HRzdAorIWKU+WyvltEZlPQ=) 2: r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl (hash: 8RBEf3fwvNcB0vWxaowB12YJS4+CVyh4mHRt/YJ9qXc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:78:e4:0e:15:10:2b:92:ab:a2:ec:3e:27:61:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=af9b2cefe389a1ae49756edc2b3293e58830cb82 Validity Not Before: Feb 9 12:00:40 2026 GMT Not After : Feb 10 12:00:40 2026 GMT Subject: CN=1d474a93940a7d40c03b04b9d665d19a485d93b4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3d:23:4a:4c:48:96:4b:8b:5d:2a:c6:51:f0: fc:1d:62:69:a2:27:ed:55:e9:82:c9:93:43:af:8c: 2e:47:b2:c1:62:5f:14:22:45:74:9b:6e:03:35:cc: 06:58:1e:3f:67:a4:5b:f1:b7:ca:9c:b3:c5:29:ed: b4:5a:c6:fb:ad:cc:f8:68:3a:c3:e3:ce:8f:b5:32: 67:90:af:30:3d:1d:f9:a9:65:41:29:fc:19:8e:89: 60:45:4d:d3:1e:c0:37:b8:e8:88:1d:e6:36:70:5f: f1:53:5e:a4:fe:34:f6:0a:8d:00:33:96:e5:d8:e5: 79:32:5b:83:65:fb:c5:a7:2a:98:11:f3:99:b8:3e: bf:65:36:06:36:1f:49:36:1d:a6:57:29:bc:a9:6e: cd:b9:55:16:b9:4a:ee:0e:8f:58:28:ff:7a:6e:3c: 5f:fa:00:04:c6:af:f3:b4:6a:8c:e6:04:64:d8:a7: 95:a8:af:1c:72:14:cd:21:7a:bb:f5:90:66:e4:3d: ca:83:d2:7d:77:98:2c:e1:6c:f9:69:83:9d:e8:60: c5:c3:90:ee:a7:5d:05:ef:04:d8:bf:bf:01:ac:b6: f5:b1:13:e0:7e:a7:cc:a4:98:08:78:9b:20:ca:4c: 48:08:ca:03:ab:5f:2c:0c:e0:3a:53:70:d3:38:af: 5f:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:47:4A:93:94:0A:7D:40:C0:3B:04:B9:D6:65:D1:9A:48:5D:93:B4 X509v3 Authority Key Identifier: keyid:AF:9B:2C:EF:E3:89:A1:AE:49:75:6E:DC:2B:32:93:E5:88:30:CB:82 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/dc/bf0bfe-9554-4b7e-95da-469619d4ecdb/1/r5ss7-OJoa5JdW7cKzKT5Ygwy4I.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:da:80:0c:8f:06:f6:5a:bd:9c:a9:91:b7:4a:c7:74:60:e9: 40:db:15:e0:99:90:70:68:3b:a8:77:af:e9:e7:df:2d:9b:6b: d9:47:63:b2:bd:68:9c:fa:86:3f:56:65:df:ec:1f:eb:58:a6: 91:ae:84:70:32:f2:29:52:a8:37:34:cd:a6:e7:93:8a:66:c1: 5d:33:91:fd:28:bf:8a:e1:e0:ed:44:77:41:60:6a:36:ca:83: ec:8b:4d:6e:a0:3c:60:4c:4c:83:98:31:a2:fb:1e:b7:18:42: 05:df:18:b1:ab:cc:5a:e3:3a:41:2f:20:a5:d1:3d:30:e0:2c: 95:32:8a:96:6a:dd:42:bb:fb:05:d5:8a:c9:03:7a:d8:9c:a1: ac:a2:32:be:67:f1:8f:9b:00:31:7f:ae:09:4c:60:25:c1:a3: bb:b5:af:f2:22:87:7d:9a:6d:87:94:6f:ab:0a:86:a8:d9:15: 32:25:9c:3b:f2:64:27:a3:5d:56:53:10:c0:f8:97:29:ed:f9: 89:1d:ad:79:1c:a8:02:ff:a8:32:7f:bd:30:ff:35:64:14:28: 3c:fd:48:47:96:38:79:48:a5:e5:a5:6a:87:bc:f9:53:e5:ee: 4e:68:44:47:f1:b2:d2:b6:64:d6:79:0a:9b:c3:9e:8a:5b:a5: 38:d4:24:b9 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRnjkDhUQK5Krouw+J2HaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFmOWIyY2VmZTM4OWExYWU0OTc1NmVkYzJiMzI5M2U1ODgz MGNiODIwHhcNMjYwMjA5MTIwMDQwWhcNMjYwMjEwMTIwMDQwWjAzMTEwLwYDVQQD EygxZDQ3NGE5Mzk0MGE3ZDQwYzAzYjA0YjlkNjY1ZDE5YTQ4NWQ5M2I0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7T0jSkxIlkuLXSrGUfD8HWJpoift VemCyZNDr4wuR7LBYl8UIkV0m24DNcwGWB4/Z6Rb8bfKnLPFKe20Wsb7rcz4aDrD 486PtTJnkK8wPR35qWVBKfwZjolgRU3THsA3uOiIHeY2cF/xU16k/jT2Co0AM5bl 2OV5MluDZfvFpyqYEfOZuD6/ZTYGNh9JNh2mVym8qW7NuVUWuUruDo9YKP96bjxf +gAExq/ztGqM5gRk2KeVqK8cchTNIXq79ZBm5D3Kg9J9d5gs4Wz5aYOd6GDFw5Du p10F7wTYv78BrLb1sRPgfqfMpJgIeJsgykxICMoDq18sDOA6U3DTOK9fEwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB1HSpOUCn1AwDsEudZl0ZpIXZO0MB8GA1UdIwQY MBaAFK+bLO/jiaGuSXVu3Csyk+WIMMuCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEt NDY5NjE5ZDRlY2RiLzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9kYy9iZjBiZmUtOTU1NC00YjdlLTk1ZGEtNDY5NjE5ZDRlY2Ri LzEvcjVzczctT0pvYTVKZFc3Y0t6S1Q1WWd3eTRJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATtqADI8G 9lq9nKmRt0rHdGDpQNsV4JmQcGg7qHev6effLZtr2Udjsr1onPqGP1Zl3+wf61im ka6EcDLyKVKoNzTNpueTimbBXTOR/Si/iuHg7UR3QWBqNsqD7ItNbqA8YExMg5gx ovsetxhCBd8YsavMWuM6QS8gpdE9MOAslTKKlmrdQrv7BdWKyQN62JyhrKIyvmfx j5sAMX+uCUxgJcGju7Wv8iKHfZpth5RvqwqGqNkVMiWcO/JkJ6NdVlMQwPiXKe35 iR2teRyoAv+oMn+9MP81ZBQoPP1IR5Y4eUil5aVqh7z5U+XuTmhER/Gy0rZk1nkK m8OeilulONQkuQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:32 2026 by rpki-client