This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft File: 5XB6RVkqydFxmoV2lgMXeCm0bgo.mft (raw, json) Hash identifier: NV2S8Jz6GAYmGvLHW7zakUbZNejcDFXNj4kaYEoGi5s= Subject key identifier: A0:E3:98:72:E5:88:DB:FB:63:3E:FB:F3:92:19:1B:F2:15:23:88:30 Authority key identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A Certificate issuer: /CN=e5707a45592ac9d1719a85769603177829b46e0a Certificate serial: 019C416AD83EB3AC728E660F8D131188274A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft Manifest number: 0E0D Signing time: Mon 09 Feb 2026 08:00:46 +0000 Manifest this update: Mon 09 Feb 2026 08:00:46 +0000 Manifest next update: Tue 10 Feb 2026 08:00:46 +0000 Files and hashes: 1: 5XB6RVkqydFxmoV2lgMXeCm0bgo.crl (hash: Pdl5EN9U1wM9XYVQMbkk95Y2o+V+t9TPlAMteg19bZ8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 08:00:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:6a:d8:3e:b3:ac:72:8e:66:0f:8d:13:11:88:27:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e5707a45592ac9d1719a85769603177829b46e0a Validity Not Before: Feb 9 08:00:46 2026 GMT Not After : Feb 10 08:00:46 2026 GMT Subject: CN=a0e39872e588dbfb633efbf392191bf215238830 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:77:48:c2:de:a7:23:34:9d:20:0f:7b:df:db: 62:cd:12:0f:73:f9:f1:53:5d:84:d3:9d:70:0e:8d: 94:db:01:08:e1:91:6b:aa:19:59:c2:4e:f2:59:ce: c8:92:b6:75:5a:13:ea:31:f6:21:fd:37:4e:76:c6: 73:cd:51:f1:e8:a8:b9:89:b4:58:90:ae:ab:06:35: 27:8a:27:41:21:03:27:4d:59:34:d3:9a:53:c0:85: 37:9e:ff:04:21:6e:66:34:c1:32:ad:83:c1:aa:c1: 3a:24:ed:13:2d:39:74:62:95:5d:1e:6c:49:64:37: 1e:04:2c:a4:0e:d4:71:23:d8:e4:41:89:89:c6:3c: aa:74:a1:c3:9f:ae:e4:53:77:e7:cb:fc:18:ba:ca: 91:1b:2d:fd:c2:b2:c6:96:97:b7:d7:a4:61:80:c8: a2:89:f2:6f:60:40:51:a6:1b:f4:5e:2b:f5:ca:ed: 34:cb:cc:f4:41:49:7d:f8:66:1b:09:8f:c0:37:a2: 20:ba:ec:c3:a0:65:e5:29:b5:3d:a9:49:dd:b6:7f: 83:e5:6b:c0:25:e1:fb:02:6d:93:7c:23:16:c3:8d: 17:23:6a:9c:0d:3b:b3:cb:36:56:f6:b5:3d:1e:88: 53:bf:fc:e1:59:76:8f:bd:d0:6d:8d:27:1e:27:77: 09:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:E3:98:72:E5:88:DB:FB:63:3E:FB:F3:92:19:1B:F2:15:23:88:30 X509v3 Authority Key Identifier: keyid:E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:c3:5e:24:d7:2d:2c:bc:76:63:c2:73:63:c5:9b:1a:6b:3e: 0d:f6:72:19:f8:b0:eb:67:9d:85:15:08:c5:17:5a:66:84:8f: 23:bf:83:ad:94:8b:da:9c:4a:5b:a7:70:4c:78:2d:a0:7d:be: a2:ce:76:33:57:d7:12:f2:a1:af:21:95:de:1d:ae:af:08:5f: 65:0b:76:74:23:38:d5:86:d1:03:15:4c:ba:ff:a0:01:77:a3: 14:13:c5:7e:20:dc:cf:40:fa:e9:6b:cf:bf:60:d3:0d:5a:68: 36:d0:d7:ef:f4:10:af:4d:a3:16:e6:3d:21:35:13:4f:c1:e7: 2f:a8:bf:b7:c8:31:f8:d1:ff:a6:a8:96:9a:9b:25:e3:99:56: 92:18:80:17:bf:9a:92:ed:87:86:17:9f:75:c7:a4:84:27:e4: 86:30:ab:55:ca:ed:8d:aa:e4:ac:f2:c3:16:74:10:2c:83:50: f9:9c:9b:1d:05:49:b8:6c:99:97:57:39:32:8c:eb:a5:33:c8: 84:76:9f:64:32:dd:16:27:c7:d8:04:e1:b2:08:46:31:40:00: 8e:f7:07:93:c2:07:7a:b0:4a:c3:85:09:3b:15:e3:74:cb:0b: 7e:a7:ef:87:59:f5:dc:40:fe:c0:64:7f:ad:60:40:df:76:95: 34:88:58:27 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBatg+s6xyjmYPjRMRiCdKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU1NzA3YTQ1NTkyYWM5ZDE3MTlhODU3Njk2MDMxNzc4Mjli NDZlMGEwHhcNMjYwMjA5MDgwMDQ2WhcNMjYwMjEwMDgwMDQ2WjAzMTEwLwYDVQQD EyhhMGUzOTg3MmU1ODhkYmZiNjMzZWZiZjM5MjE5MWJmMjE1MjM4ODMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHdIwt6nIzSdIA9739tizRIPc/nx U12E051wDo2U2wEI4ZFrqhlZwk7yWc7IkrZ1WhPqMfYh/TdOdsZzzVHx6Ki5ibRY kK6rBjUniidBIQMnTVk005pTwIU3nv8EIW5mNMEyrYPBqsE6JO0TLTl0YpVdHmxJ ZDceBCykDtRxI9jkQYmJxjyqdKHDn67kU3fny/wYusqRGy39wrLGlpe316RhgMii ifJvYEBRphv0Xiv1yu00y8z0QUl9+GYbCY/AN6IguuzDoGXlKbU9qUndtn+D5WvA JeH7Am2TfCMWw40XI2qcDTuzyzZW9rU9HohTv/zhWXaPvdBtjSceJ3cJwwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKDjmHLliNv7Yz7785IZG/IVI4gwMB8GA1UdIwQY MBaAFOVwekVZKsnRcZqFdpYDF3gptG4KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNVhCNlJWa3F5ZEZ4bW9WMmxnTVhlQ20wYmdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9mMS8xNDQ2YWEtNmU0MS00NWMwLWIwOWEt MzJjMzY1OGIyNWJlLzEvNVhCNlJWa3F5ZEZ4bW9WMmxnTVhlQ20wYmdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9mMS8xNDQ2YWEtNmU0MS00NWMwLWIwOWEtMzJjMzY1OGIyNWJl LzEvNVhCNlJWa3F5ZEZ4bW9WMmxnTVhlQ20wYmdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAAMNeJNct LLx2Y8JzY8WbGms+DfZyGfiw62edhRUIxRdaZoSPI7+DrZSL2pxKW6dwTHgtoH2+ os52M1fXEvKhryGV3h2urwhfZQt2dCM41YbRAxVMuv+gAXejFBPFfiDcz0D66WvP v2DTDVpoNtDX7/QQr02jFuY9ITUTT8HnL6i/t8gx+NH/pqiWmpsl45lWkhiAF7+a ku2HhhefdcekhCfkhjCrVcrtjarkrPLDFnQQLINQ+ZybHQVJuGyZl1c5MozrpTPI hHafZDLdFifH2AThsghGMUAAjvcHk8IHerBKw4UJOxXjdMsLfqfvh1n13ED+wGR/ rWBA33aVNIhYJw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:22 2026 by rpki-client