This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft File: 5YW66mL41gYmJIc4xF370iFzf0w.mft (raw, json) Hash identifier: Vs5o1S/uSzvADpFpdUn8C26p22Ju6hz537Xtb/z+PuY= Subject key identifier: 25:4F:E9:4A:89:CE:88:4C:08:E3:7A:B4:C1:1A:96:B8:3D:F5:00:05 Authority key identifier: E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C Certificate issuer: /CN=e585baea62f8d60626248738c45dfbd221737f4c Certificate serial: 019C43596309D52828ACCC5F5A41C2EA0FF4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft Manifest number: 17A1 Signing time: Mon 09 Feb 2026 17:00:57 +0000 Manifest this update: Mon 09 Feb 2026 17:00:57 +0000 Manifest next update: Tue 10 Feb 2026 17:00:57 +0000 Files and hashes: 1: 5YW66mL41gYmJIc4xF370iFzf0w.crl (hash: /T8KO+E9hdPPhheN6CTdA0VH1d3LfVSaTUpFXL/aEAk=) 2: 8sL7bBvUgTkJCvQisEREV4oTHTY.roa (hash: UVYp1CMTJL6S6Pi+AsLy1eQnDuTmz/e2tO8gZBGHYuI=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:59:63:09:d5:28:28:ac:cc:5f:5a:41:c2:ea:0f:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e585baea62f8d60626248738c45dfbd221737f4c Validity Not Before: Feb 9 17:00:57 2026 GMT Not After : Feb 10 17:00:57 2026 GMT Subject: CN=254fe94a89ce884c08e37ab4c11a96b83df50005 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5f:52:29:b0:65:b8:ae:18:04:6a:96:89:20: b1:6b:b1:69:ab:77:36:39:5d:aa:37:b8:33:2d:3b: 12:2b:54:ab:7e:df:8e:3d:37:2e:27:d8:c6:29:6b: fa:5d:22:5e:91:2b:f0:78:8f:c9:a0:6f:1e:9b:92: 9e:58:42:76:fb:aa:de:73:db:45:bf:e6:f8:5b:9a: a5:c5:50:26:76:50:69:2b:30:c6:03:37:36:54:53: c4:0c:4a:3b:da:2d:09:8a:69:80:eb:06:0d:40:6d: 57:67:2b:30:b4:bf:d2:1f:ff:00:48:73:f7:f6:c3: 60:60:cd:12:2a:b7:ec:28:b9:8b:40:22:03:9c:25: 43:84:a5:cc:33:dd:64:5d:9e:19:b3:5c:c9:29:17: 25:a5:1f:05:f2:5c:15:c9:12:d0:fb:3b:b3:cc:77: 70:c2:1e:2a:b2:35:6d:68:a9:14:cb:27:6b:f5:e5: b3:56:69:40:98:e0:f7:71:1c:56:60:47:9b:52:4e: 22:de:fe:49:93:c3:b9:0f:0e:82:4c:7e:01:86:25: 54:db:f2:3f:d8:06:30:a4:0a:9e:1b:cf:72:df:e9: a8:dd:8f:b4:68:d5:64:fd:07:47:54:8c:2f:7d:3c: 01:dd:f0:18:87:b0:65:5c:ce:a8:74:b8:82:ac:7c: 0c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:4F:E9:4A:89:CE:88:4C:08:E3:7A:B4:C1:1A:96:B8:3D:F5:00:05 X509v3 Authority Key Identifier: keyid:E5:85:BA:EA:62:F8:D6:06:26:24:87:38:C4:5D:FB:D2:21:73:7F:4C X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5YW66mL41gYmJIc4xF370iFzf0w.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/bda3ef-4a2f-4ccc-b295-b22eb948515c/1/5YW66mL41gYmJIc4xF370iFzf0w.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:97:c1:69:fa:21:16:a3:d7:3a:dd:81:84:c6:9b:f4:ad:e4: 11:9e:da:f7:a8:53:ad:3c:1e:b6:c2:7d:54:93:5b:56:25:28: b2:ac:e8:68:b9:a2:c4:4c:33:1a:34:ee:c0:cd:2a:86:cd:df: 16:bd:be:13:d9:ac:44:ad:28:f6:63:56:37:8e:49:d1:93:4d: ca:77:40:db:62:2c:6e:d0:2a:1d:0f:dd:9d:c9:90:e2:07:be: 15:f4:7c:24:08:0d:81:30:c5:19:57:2a:41:6e:3b:d9:7c:4f: 04:10:48:05:e3:a3:70:35:7f:24:ba:16:db:da:fc:36:0a:6b: ac:14:e6:f7:76:db:49:51:3d:9d:4c:9b:53:4a:8d:93:24:f2: 11:24:12:60:2c:ea:65:77:35:f2:fe:23:17:46:cb:1b:81:59: fd:4e:f2:ae:be:00:97:0a:4e:50:f4:43:dd:cd:c4:4f:a0:ad: 1a:5a:c2:e8:2b:20:4f:39:f4:be:cd:5a:09:66:24:08:e6:80: 39:06:08:37:54:18:ed:60:bf:9c:7a:2c:ed:47:5b:a2:86:b2: 84:93:3a:53:a8:06:43:69:d4:7c:9a:59:7e:9e:7b:d9:0d:b1: b3:e2:3d:a8:80:a3:fa:22:e5:2c:91:ca:3b:53:bd:92:d6:04: 2a:3d:8b:a6 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWWMJ1SgorMxfWkHC6g/0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1ODViYWVhNjJmOGQ2MDYyNjI0ODczOGM0NWRmYmQyMjE3 MzdmNGMwHhcNMjYwMjA5MTcwMDU3WhcNMjYwMjEwMTcwMDU3WjAzMTEwLwYDVQQD EygyNTRmZTk0YTg5Y2U4ODRjMDhlMzdhYjRjMTFhOTZiODNkZjUwMDA1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApF9SKbBluK4YBGqWiSCxa7Fpq3c2 OV2qN7gzLTsSK1Srft+OPTcuJ9jGKWv6XSJekSvweI/JoG8em5KeWEJ2+6rec9tF v+b4W5qlxVAmdlBpKzDGAzc2VFPEDEo72i0JimmA6wYNQG1XZyswtL/SH/8ASHP3 9sNgYM0SKrfsKLmLQCIDnCVDhKXMM91kXZ4Zs1zJKRclpR8F8lwVyRLQ+zuzzHdw wh4qsjVtaKkUyydr9eWzVmlAmOD3cRxWYEebUk4i3v5Jk8O5Dw6CTH4BhiVU2/I/ 2AYwpAqeG89y3+mo3Y+0aNVk/QdHVIwvfTwB3fAYh7BlXM6odLiCrHwMSwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCVP6UqJzohMCON6tMEalrg99QAFMB8GA1UdIwQY MBaAFOWFuupi+NYGJiSHOMRd+9Ihc39MMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZC9iZGEzZWYtNGEyZi00Y2NjLWIyOTUt YjIyZWI5NDg1MTVjLzEvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZC9iZGEzZWYtNGEyZi00Y2NjLWIyOTUtYjIyZWI5NDg1MTVj LzEvNVlXNjZtTDQxZ1ltSkljNHhGMzcwaUZ6ZjB3LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAE5fBafoh FqPXOt2BhMab9K3kEZ7a96hTrTwetsJ9VJNbViUosqzoaLmixEwzGjTuwM0qhs3f Fr2+E9msRK0o9mNWN45J0ZNNyndA22IsbtAqHQ/dncmQ4ge+FfR8JAgNgTDFGVcq QW472XxPBBBIBeOjcDV/JLoW29r8NgprrBTm93bbSVE9nUybU0qNkyTyESQSYCzq ZXc18v4jF0bLG4FZ/U7yrr4AlwpOUPRD3c3ET6CtGlrC6CsgTzn0vs1aCWYkCOaA OQYIN1QY7WC/nHos7UdbooayhJM6U6gGQ2nUfJpZfp572Q2xs+I9qICj+iLlLJHK O1O9ktYEKj2Lpg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:00 2026 by rpki-client