This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: HVUozBzIToMKHUJECKYlUmNcFiGEcNMuhO9ajsX773o= Subject key identifier: 68:91:35:CC:DD:78:0D:F0:81:D0:54:0E:D9:9C:CD:37:A4:1D:65:10 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 4E420CDF45DFFFC7F5CD2DC9DD45725D369AA51A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 0498 Signing time: Mon 09 Feb 2026 16:01:51 +0000 Manifest this update: Mon 09 Feb 2026 15:56:51 +0000 Manifest next update: Tue 10 Feb 2026 17:01:51 +0000 Files and hashes: 1: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: dEyrefnnKSg66lfx459XJ2SroTggGi4go9Zp+DRZdvU=) 2: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: 31YTnxmdtZ2cp3Cw9rcOHPD6ZzrVs4b/Az5vMfbmmIM=) 3: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: mQKE/0/NnV539NSoXtVCOp3+AeXahl8sUnLhuxaZN7o=) 4: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: ZxFGXt/ZZ9Gj4mR3rTGtsiF2p6PuTL+fdiax8fg6qRk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 17:01:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:42:0c:df:45:df:ff:c7:f5:cd:2d:c9:dd:45:72:5d:36:9a:a5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Feb 9 15:56:51 2026 GMT Not After : Feb 10 17:01:51 2026 GMT Subject: CN=689135CCDD780DF081D0540ED99CCD37A41D6510 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:db:fd:e5:24:8e:8c:82:7f:b2:f0:ff:96:72: c7:71:46:67:5f:52:bb:29:aa:85:91:a4:d6:76:12: b6:28:c1:e9:67:9b:5b:6c:b1:e4:08:03:c6:14:e1: 09:a5:01:4d:25:17:3b:a3:99:27:7e:b7:c8:a4:ea: 5d:91:ea:d1:c0:df:6a:42:97:72:5a:5c:a2:ad:25: 1e:71:58:e1:d7:60:e0:28:9c:3a:eb:2a:e5:1d:2e: 98:aa:c4:1f:e1:3f:a9:d0:89:b0:89:2a:b8:bc:61: 85:ab:7f:1b:68:b9:af:2c:fd:39:b4:af:c9:57:84: 8f:f2:68:21:1b:f4:c8:7a:84:06:cf:af:e5:f4:44: da:b5:65:5e:d3:c8:79:cb:e3:09:59:02:d4:ea:ba: f0:20:96:e7:6f:1a:dc:bd:42:16:c7:54:e4:8e:1e: 0b:0e:09:2b:74:bc:aa:60:08:bf:9e:09:1c:f6:48: da:87:11:69:c1:a8:e9:ff:f7:55:24:92:ca:7e:6e: 9d:0e:ce:b4:ec:3d:6a:b1:b0:a1:3b:79:17:64:53: a7:c6:01:c7:fa:d0:09:bf:86:5f:7c:5a:76:d9:32: 56:bd:64:8a:da:98:6a:a1:e2:3e:39:6b:9c:2c:ea: 26:7b:1b:04:bc:4b:2d:7d:3b:e8:ce:07:af:9e:9c: 3a:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:91:35:CC:DD:78:0D:F0:81:D0:54:0E:D9:9C:CD:37:A4:1D:65:10 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:16:2e:06:2d:f1:cf:1b:54:4c:2c:06:0b:7e:22:ab:c4:4c: b5:e9:dc:0a:84:4b:a9:d1:e4:ed:0a:c6:bd:88:67:75:92:fa: a3:0a:cf:53:ac:92:c0:4a:99:d3:26:ac:f6:fc:07:b5:5e:d5: 1d:c2:35:2a:0a:69:69:a9:4d:80:4b:a3:85:1f:1a:55:e2:65: cb:ab:1a:f0:a6:14:de:69:68:cf:ee:15:29:8a:14:5f:8f:7c: a8:55:d5:76:54:33:79:00:81:5c:ab:d6:af:1e:c0:17:58:fd: e3:d7:f3:c5:ab:17:35:53:0d:ee:2b:28:64:29:a8:30:24:69: 3c:9c:13:c2:dd:2d:98:60:6e:a6:3c:e0:1c:a9:d0:cc:f4:aa: 4e:c7:bc:5a:f3:d8:54:d1:0f:2d:31:cc:24:34:c3:2e:ee:54: 56:e0:f5:95:d9:23:4f:89:30:6b:73:79:9e:23:f7:ce:57:da: f3:45:84:d5:30:bb:9a:96:e3:e1:bb:bf:4c:5b:7f:a0:85:a6: 75:76:e6:ea:ec:07:ec:22:1a:92:f9:43:78:f9:0d:80:7d:6a: 02:b5:69:c9:d4:f7:87:01:c0:67:90:d9:d2:0f:e7:39:75:3d: 15:ff:d8:a2:80:cf:e7:33:a8:cd:d9:31:6b:c9:d0:ab:71:0f: 6d:2c:a6:0c -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUTkIM30Xf/8f1zS3J3UVyXTaapRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNjAyMDkxNTU2NTFaFw0yNjAyMTAxNzAxNTFaMDMxMTAvBgNV BAMTKDY4OTEzNUNDREQ3ODBERjA4MUQwNTQwRUQ5OUNDRDM3QTQxRDY1MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK2/3lJI6Mgn+y8P+WcsdxRmdf UrspqoWRpNZ2ErYowelnm1tsseQIA8YU4QmlAU0lFzujmSd+t8ik6l2R6tHA32pC l3JaXKKtJR5xWOHXYOAonDrrKuUdLpiqxB/hP6nQibCJKri8YYWrfxtoua8s/Tm0 r8lXhI/yaCEb9Mh6hAbPr+X0RNq1ZV7TyHnL4wlZAtTquvAgludvGty9QhbHVOSO HgsOCSt0vKpgCL+eCRz2SNqHEWnBqOn/91Ukksp+bp0OzrTsPWqxsKE7eRdkU6fG Acf60Am/hl98WnbZMla9ZIramGqh4j45a5ws6iZ7GwS8Sy19O+jOB6+enDrvAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUaJE1zN14DfCB0FQO2ZzNN6QdZRAwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAmhYuBi3xzxtUTCwGC34i q8RMtencCoRLqdHk7QrGvYhndZL6owrPU6ySwEqZ0yas9vwHtV7VHcI1KgppaalN gEujhR8aVeJly6sa8KYU3mloz+4VKYoUX498qFXVdlQzeQCBXKvWrx7AF1j949fz xasXNVMN7isoZCmoMCRpPJwTwt0tmGBupjzgHKnQzPSqTse8WvPYVNEPLTHMJDTD Lu5UVuD1ldkjT4kwa3N5niP3zlfa80WE1TC7mpbj4bu/TFt/oIWmdXbm6uwH7CIa kvlDePkNgH1qArVpydT3hwHAZ5DZ0g/nOXU9Ff/YooDP5zOozdkxa8nQq3EPbSym DA== -----END CERTIFICATE-----Generated at Tue Feb 10 01:42:32 2026 by rpki-client