This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft File: pnQBXVCbXU85bqNjNp6ddP-tdZM.mft (raw, json) Hash identifier: rneApJCIlNa8FpUOGHrmBRbtrL4PuS8MHUQ4DXViiIY= Subject key identifier: 81:CE:F5:8D:85:2D:DA:88:11:B7:1F:47:89:5E:6C:43:84:EB:BB:B7 Authority key identifier: A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93 Certificate issuer: /CN=a674015d509b5d4f396ea363369e9d74ffad7593 Certificate serial: 019C420F6F1730021C4ACA6019F4D65B4ED0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft Manifest number: 16A9 Signing time: Mon 09 Feb 2026 11:00:33 +0000 Manifest this update: Mon 09 Feb 2026 11:00:33 +0000 Manifest next update: Tue 10 Feb 2026 11:00:33 +0000 Files and hashes: 1: aHohvmZrJOOZrpMAIOpcUZD835k.roa (hash: Lfp+q62MRXSn7ts6IZsilj9kYQPjsgFts0IvrL3U2wc=) 2: pnQBXVCbXU85bqNjNp6ddP-tdZM.crl (hash: Vxo3bk6FXu4QpZ+sRwKeJDRnBB/bSKKycShOJHTji8I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 11:00:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:0f:6f:17:30:02:1c:4a:ca:60:19:f4:d6:5b:4e:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a674015d509b5d4f396ea363369e9d74ffad7593 Validity Not Before: Feb 9 11:00:33 2026 GMT Not After : Feb 10 11:00:33 2026 GMT Subject: CN=81cef58d852dda8811b71f47895e6c4384ebbbb7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:bb:48:fc:07:a2:dc:d0:53:30:1d:c6:d5:10: 70:7a:b1:d8:b0:18:ad:73:10:f0:f2:10:a7:4b:9f: 05:b1:6c:14:83:d7:91:28:b7:bf:3d:34:6b:10:d7: 37:98:50:f7:72:b5:b3:f1:83:a0:91:36:23:a5:07: 58:b6:90:76:4e:9f:92:24:f2:6a:3d:02:ba:29:51: 69:da:de:30:aa:17:11:27:77:67:a8:4d:ea:e6:2d: d5:42:75:b8:46:5c:53:8d:a9:ee:19:85:75:2f:83: d3:02:31:cd:ca:b5:23:c3:32:f9:c1:23:90:6d:0e: da:12:be:5b:9a:1b:0b:e4:1f:28:ff:e0:57:75:ce: 31:5d:5c:7c:de:bd:2f:75:58:27:9c:86:9a:8e:6e: 1f:2f:69:ca:bd:22:e9:9d:eb:e9:49:97:7b:c9:2f: f8:e9:26:e0:ae:13:cd:c4:8f:17:81:3e:66:d9:ca: 06:b5:f9:41:80:db:44:a1:15:32:2d:0e:39:5d:10: 1b:dd:14:f2:68:84:ea:f1:99:e4:46:b4:95:90:d6: e4:3a:c0:44:82:0c:31:1e:50:a0:e8:0d:1b:57:76: f8:ab:53:bd:4f:1b:78:c3:02:47:e7:0f:ea:ff:2d: c0:1f:ab:89:36:12:2b:75:72:02:db:1d:48:80:31: 31:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:CE:F5:8D:85:2D:DA:88:11:B7:1F:47:89:5E:6C:43:84:EB:BB:B7 X509v3 Authority Key Identifier: keyid:A6:74:01:5D:50:9B:5D:4F:39:6E:A3:63:36:9E:9D:74:FF:AD:75:93 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnQBXVCbXU85bqNjNp6ddP-tdZM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/54/689e70-e38d-4ff1-a972-4113d686dd66/1/pnQBXVCbXU85bqNjNp6ddP-tdZM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:90:67:8e:15:2a:03:30:88:d9:3b:47:91:a7:ba:49:09:39: d1:df:6e:64:97:cc:10:79:b4:fd:80:d5:eb:d5:1b:00:df:bc: 8f:e5:ad:d7:99:04:b4:40:4a:2f:00:48:9a:2f:25:7a:d1:91: 24:6c:57:75:1a:a4:e1:b3:90:46:75:b1:bd:d5:51:d1:19:88: 40:aa:e4:d6:9f:38:2e:85:0a:0b:c7:00:c0:b4:f6:89:b3:db: ea:59:58:ef:13:83:77:ca:11:27:c9:2c:30:c0:44:73:8d:9c: 21:f9:16:7a:68:ce:f3:10:a8:9b:a7:0d:14:bb:77:de:0d:cb: 53:3c:2d:d2:ab:d0:5d:6b:34:af:0d:f3:7e:9b:c5:5d:bf:17: 91:f3:8e:87:c0:66:99:db:d8:e1:e7:98:76:3d:27:fe:99:39: eb:84:97:dd:e2:c7:b8:54:6a:47:2e:f1:b6:1f:61:8c:a9:8e: 18:8f:05:5a:cd:d3:60:3b:9c:79:0d:b6:ff:4e:99:11:30:59: eb:52:dc:d0:c6:94:e7:e7:59:5c:55:41:3a:05:0c:f3:8b:70: a3:6e:bc:10:3a:20:9e:b5:ff:52:e2:9a:bb:af:61:b1:92:a6: 57:26:4f:bb:b3:33:a2:d7:ca:59:cb:17:ae:21:20:cd:05:4b: 90:22:58:b8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCD28XMAIcSspgGfTWW07QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2NzQwMTVkNTA5YjVkNGYzOTZlYTM2MzM2OWU5ZDc0ZmZh ZDc1OTMwHhcNMjYwMjA5MTEwMDMzWhcNMjYwMjEwMTEwMDMzWjAzMTEwLwYDVQQD Eyg4MWNlZjU4ZDg1MmRkYTg4MTFiNzFmNDc4OTVlNmM0Mzg0ZWJiYmI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs7tI/Aei3NBTMB3G1RBwerHYsBit cxDw8hCnS58FsWwUg9eRKLe/PTRrENc3mFD3crWz8YOgkTYjpQdYtpB2Tp+SJPJq PQK6KVFp2t4wqhcRJ3dnqE3q5i3VQnW4RlxTjanuGYV1L4PTAjHNyrUjwzL5wSOQ bQ7aEr5bmhsL5B8o/+BXdc4xXVx83r0vdVgnnIaajm4fL2nKvSLpnevpSZd7yS/4 6SbgrhPNxI8XgT5m2coGtflBgNtEoRUyLQ45XRAb3RTyaITq8ZnkRrSVkNbkOsBE ggwxHlCg6A0bV3b4q1O9Txt4wwJH5w/q/y3AH6uJNhIrdXIC2x1IgDExfwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIHO9Y2FLdqIEbcfR4lebEOE67u3MB8GA1UdIwQY MBaAFKZ0AV1Qm11POW6jYzaenXT/rXWTMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81NC82ODllNzAtZTM4ZC00ZmYxLWE5NzIt NDExM2Q2ODZkZDY2LzEvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81NC82ODllNzAtZTM4ZC00ZmYxLWE5NzItNDExM2Q2ODZkZDY2 LzEvcG5RQlhWQ2JYVTg1YnFOak5wNmRkUC10ZFpNLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl5BnjhUq AzCI2TtHkae6SQk50d9uZJfMEHm0/YDV69UbAN+8j+Wt15kEtEBKLwBImi8letGR JGxXdRqk4bOQRnWxvdVR0RmIQKrk1p84LoUKC8cAwLT2ibPb6llY7xODd8oRJ8ks MMBEc42cIfkWemjO8xCom6cNFLt33g3LUzwt0qvQXWs0rw3zfpvFXb8XkfOOh8Bm mdvY4eeYdj0n/pk564SX3eLHuFRqRy7xth9hjKmOGI8FWs3TYDuceQ22/06ZETBZ 61Lc0MaU5+dZXFVBOgUM84two268EDognrX/UuKau69hsZKmVyZPu7MzotfKWcsX riEgzQVLkCJYuA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:31:30 2026 by rpki-client