This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft File: d5pKQpXGOP3nYPPNpHbYv8JxErI.mft (raw, json) Hash identifier: FrepVYCysfzLQfU74imsZLtnfa2nG2OnboJqGQejsLY= Subject key identifier: 17:E1:92:10:AD:92:22:62:AE:CB:A0:30:73:2C:B6:67:5A:9D:8E:1E Authority key identifier: 77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2 Certificate issuer: /CN=779a4a4295c638fde760f3cda476d8bfc27112b2 Certificate serial: 019C42B406F95AFC8F76419BEC4A1B7EF0B5 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft Manifest number: 02C6 Signing time: Mon 09 Feb 2026 14:00:20 +0000 Manifest this update: Mon 09 Feb 2026 14:00:20 +0000 Manifest next update: Tue 10 Feb 2026 14:00:20 +0000 Files and hashes: 1: 1SXyN0yfhT5cSdi9C9NJ49pGu4Q.roa (hash: 9hRMwF9OzYcY4aoj5DqpON+f2xbb5moy11vfbRHpWD8=) 2: d5pKQpXGOP3nYPPNpHbYv8JxErI.crl (hash: nu6uzLJXvo16mpHzjKVjSR1KXpGs6TornC8wQ0woSlg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:00:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:b4:06:f9:5a:fc:8f:76:41:9b:ec:4a:1b:7e:f0:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=779a4a4295c638fde760f3cda476d8bfc27112b2 Validity Not Before: Feb 9 14:00:20 2026 GMT Not After : Feb 10 14:00:20 2026 GMT Subject: CN=17e19210ad922262aecba030732cb6675a9d8e1e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:4d:24:0b:23:2c:b5:5a:30:0e:7b:34:69:12: c7:59:d5:7c:3b:e3:60:86:fa:46:c2:f5:04:e4:0b: 4d:c1:34:53:8d:00:7f:a4:29:8f:5f:75:c0:c5:15: 49:a0:fd:c1:82:92:ba:fe:6f:9f:68:a4:13:2e:fb: 54:1b:f4:71:34:6a:e1:28:2f:4d:0f:3a:f5:1a:cf: c5:93:66:b6:04:ff:18:e6:79:14:40:72:22:04:23: 9c:c3:20:a3:31:21:9c:f0:8b:b8:9c:0c:0b:9a:97: 99:06:1c:a2:42:fc:d9:cc:cd:ba:df:f3:9d:57:2a: 3d:c0:bf:55:23:79:86:1c:b3:7f:60:3c:3c:9b:23: 06:d1:1d:62:44:0a:29:fb:e6:f1:f6:7f:6d:7e:87: ec:0a:42:3a:08:c5:7e:52:cf:a0:4d:af:50:89:67: dd:ce:04:1e:fd:60:78:e5:5f:a7:0c:23:bc:e8:25: 4e:f4:a9:2e:d1:41:ef:d7:13:4b:dd:68:ce:97:26: a2:8f:9c:01:c1:ca:d7:4d:9f:69:ee:17:15:94:08: b5:52:1c:e4:23:1d:d5:62:b9:58:ab:40:63:d9:a2: 58:ed:e4:df:9b:77:96:c4:93:e0:00:56:72:c6:e7: cd:37:e2:d1:13:ea:1c:04:0b:d7:8e:65:b0:c7:e5: 45:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:E1:92:10:AD:92:22:62:AE:CB:A0:30:73:2C:B6:67:5A:9D:8E:1E X509v3 Authority Key Identifier: keyid:77:9A:4A:42:95:C6:38:FD:E7:60:F3:CD:A4:76:D8:BF:C2:71:12:B2 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5pKQpXGOP3nYPPNpHbYv8JxErI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ef/fd89f9-98b6-4217-bccd-62c67d4bc546/1/d5pKQpXGOP3nYPPNpHbYv8JxErI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:73:11:4b:5e:f0:20:e7:ab:3b:bc:6d:d5:98:64:57:25:54: bb:44:8c:7b:71:7d:cd:f2:4a:5a:ee:a1:13:db:70:01:4f:59: ab:0c:f1:b7:39:1c:19:a0:46:36:8d:16:26:a1:37:b2:16:7c: 63:dd:b8:87:ae:e2:58:a7:f0:9f:51:6f:06:ca:a3:d8:92:2b: a2:25:ae:a1:16:5d:2d:c4:1b:f0:eb:12:94:76:9e:3b:a3:1a: 75:8d:e0:68:db:8e:e2:bf:b8:6f:e7:38:c5:01:b0:2f:7a:fb: d8:93:83:55:a0:0a:16:fb:7c:2d:6b:00:44:ac:a9:b9:7a:34: b2:f2:25:ee:15:c2:a5:ee:1a:d7:5a:d8:3f:ee:a1:08:58:dc: 9d:9e:f1:35:c1:17:65:63:d5:b9:b7:07:66:c5:13:5d:9e:57: 22:94:6f:dd:4d:fa:db:49:4d:44:73:b4:20:df:a6:0c:28:18: c3:4a:f2:6f:0c:dd:a2:24:c0:51:0e:8a:a3:48:4b:2a:ce:8a: 5a:a3:4a:04:4c:ee:ae:f5:f1:de:1d:40:a6:33:e2:ee:bd:cc: 12:bd:3f:78:e9:5f:d9:e2:d6:8a:70:2d:bf:29:7c:24:1c:d6: 2e:fa:a7:b9:f7:33:18:e3:8c:3d:82:f8:0e:22:3a:c7:f4:d6: 26:bc:f7:89 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCtAb5WvyPdkGb7EobfvC1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc3OWE0YTQyOTVjNjM4ZmRlNzYwZjNjZGE0NzZkOGJmYzI3 MTEyYjIwHhcNMjYwMjA5MTQwMDIwWhcNMjYwMjEwMTQwMDIwWjAzMTEwLwYDVQQD EygxN2UxOTIxMGFkOTIyMjYyYWVjYmEwMzA3MzJjYjY2NzVhOWQ4ZTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4E0kCyMstVowDns0aRLHWdV8O+Ng hvpGwvUE5AtNwTRTjQB/pCmPX3XAxRVJoP3BgpK6/m+faKQTLvtUG/RxNGrhKC9N Dzr1Gs/Fk2a2BP8Y5nkUQHIiBCOcwyCjMSGc8Iu4nAwLmpeZBhyiQvzZzM263/Od Vyo9wL9VI3mGHLN/YDw8myMG0R1iRAop++bx9n9tfofsCkI6CMV+Us+gTa9QiWfd zgQe/WB45V+nDCO86CVO9Kku0UHv1xNL3WjOlyaij5wBwcrXTZ9p7hcVlAi1Uhzk Ix3VYrlYq0Bj2aJY7eTfm3eWxJPgAFZyxufNN+LRE+ocBAvXjmWwx+VFrwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBfhkhCtkiJirsugMHMstmdanY4eMB8GA1UdIwQY MBaAFHeaSkKVxjj952DzzaR22L/CcRKyMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lZi9mZDg5ZjktOThiNi00MjE3LWJjY2Qt NjJjNjdkNGJjNTQ2LzEvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lZi9mZDg5ZjktOThiNi00MjE3LWJjY2QtNjJjNjdkNGJjNTQ2 LzEvZDVwS1FwWEdPUDNuWVBQTnBIYll2OEp4RXJJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPXMRS17w IOerO7xt1ZhkVyVUu0SMe3F9zfJKWu6hE9twAU9ZqwzxtzkcGaBGNo0WJqE3shZ8 Y924h67iWKfwn1FvBsqj2JIroiWuoRZdLcQb8OsSlHaeO6MadY3gaNuO4r+4b+c4 xQGwL3r72JODVaAKFvt8LWsARKypuXo0svIl7hXCpe4a11rYP+6hCFjcnZ7xNcEX ZWPVubcHZsUTXZ5XIpRv3U3620lNRHO0IN+mDCgYw0rybwzdoiTAUQ6Ko0hLKs6K WqNKBEzurvXx3h1ApjPi7r3MEr0/eOlf2eLWinAtvyl8JBzWLvqnufczGOOMPYL4 DiI6x/TWJrz3iQ== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:12 2026 by rpki-client