This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft File: pnyqBsCo91QBbmFEgLuzh35AiR0.mft (raw, json) Hash identifier: i0iZDH/VaEIG4TVVF9mMb+kKjKg7Oagh9tddgxlz5Cw= Subject key identifier: 84:C1:46:11:1B:3D:52:62:E9:64:D9:90:F6:CE:96:A4:99:C7:CB:80 Authority key identifier: A6:7C:AA:06:C0:A8:F7:54:01:6E:61:44:80:BB:B3:87:7E:40:89:1D Certificate issuer: /CN=a67caa06c0a8f754016e614480bbb3877e40891d Certificate serial: 019C424680496674AD7E369A7F838FC2640A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft Manifest number: 0539 Signing time: Mon 09 Feb 2026 12:00:42 +0000 Manifest this update: Mon 09 Feb 2026 12:00:42 +0000 Manifest next update: Tue 10 Feb 2026 12:00:42 +0000 Files and hashes: 1: pnyqBsCo91QBbmFEgLuzh35AiR0.crl (hash: B5bsEi36l00YkC1gfj5GyOXTs/tIqIxIS+2Wy4Gczq8=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.crl rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:80:49:66:74:ad:7e:36:9a:7f:83:8f:c2:64:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a67caa06c0a8f754016e614480bbb3877e40891d Validity Not Before: Feb 9 12:00:42 2026 GMT Not After : Feb 10 12:00:42 2026 GMT Subject: CN=84c146111b3d5262e964d990f6ce96a499c7cb80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e9:6f:95:8a:cd:90:5b:ff:ff:bc:f4:34:de: 86:68:df:0f:3e:94:bf:3f:29:8d:6c:ca:a5:d7:42: 57:77:66:83:84:44:f3:3f:13:59:e4:1e:95:93:de: 49:67:4a:47:96:0b:68:d0:64:37:35:64:25:ec:d4: 56:06:e2:b2:a1:dd:50:4d:77:e0:c0:f0:1d:f0:35: d8:26:4a:b6:07:b5:95:36:7a:d9:c8:29:ac:1d:5e: 92:51:8c:4b:01:a3:dc:ed:44:71:d9:3b:9e:b1:a0: c8:0e:2c:8c:a1:9a:0c:e7:ba:fb:9b:2e:dc:6e:28: 73:78:62:3c:eb:a7:99:01:00:1a:f6:b4:1f:67:48: 96:c3:2a:ae:89:ee:a7:a0:f5:8d:f3:b9:7a:4a:8d: 4f:05:f8:02:ea:94:7c:38:62:1f:07:55:8a:72:90: 9d:c1:00:53:9b:c0:ea:09:ee:9a:44:3c:c7:4f:9f: f7:aa:5a:cb:6b:b4:44:b3:78:34:4b:00:b7:b7:81: d3:2b:df:2a:ab:30:dc:cf:42:0f:6e:6d:5f:63:c7: fa:b9:01:c6:3f:66:c4:fc:ac:b2:1e:dd:1b:03:1d: b5:5f:1c:ff:dc:48:23:05:1a:f1:e2:4d:8f:b0:57: 34:3f:1c:10:74:40:ca:61:ac:ca:fb:98:59:92:34: 56:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C1:46:11:1B:3D:52:62:E9:64:D9:90:F6:CE:96:A4:99:C7:CB:80 X509v3 Authority Key Identifier: keyid:A6:7C:AA:06:C0:A8:F7:54:01:6E:61:44:80:BB:B3:87:7E:40:89:1D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/pnyqBsCo91QBbmFEgLuzh35AiR0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/c5/e9407e-a58e-4941-8cce-2be501feed3d/1/pnyqBsCo91QBbmFEgLuzh35AiR0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:59:6c:84:62:e1:4b:a8:6c:d8:f9:63:12:00:9d:dc:c7:8d: b3:0e:91:b4:87:46:b8:c1:43:33:4e:fc:8d:98:90:8e:b7:4e: c1:bc:8c:b4:92:ad:57:b3:46:f6:80:3d:aa:e9:66:47:69:97: de:21:c1:6f:2a:86:65:4c:09:e8:10:3e:ef:cb:0e:61:44:d1: 22:e1:a5:ac:20:3a:07:35:01:c6:66:6b:d7:c0:5b:0b:60:8e: ba:5d:a8:ee:47:32:89:dc:73:5b:c1:62:dd:66:1c:ec:10:63: 4e:20:09:55:79:45:f2:91:65:52:5b:68:98:8b:a8:c0:66:ec: 72:b2:5a:f4:a7:ac:fa:7c:65:15:95:49:b2:de:52:f8:53:5e: 3f:45:2b:5c:16:f0:d4:94:4d:cc:0b:e1:38:42:b9:63:b5:b9: 90:96:78:16:ac:c6:25:2c:9e:a1:cd:2a:7c:3e:49:b8:47:85: c5:9d:02:1e:60:3f:ce:34:8b:d6:f8:55:73:52:59:b1:c2:eb: ea:0c:02:9a:2b:e0:56:3f:df:90:d3:ac:b0:03:f8:56:3e:4b: 96:5c:17:e2:60:5a:c1:0a:d5:f8:9b:78:ab:63:f2:01:53:12: 8d:72:01:cd:13:73:3c:2a:32:fe:84:0b:e1:c7:1d:73:88:f5: e6:74:8f:07 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRoBJZnStfjaaf4OPwmQKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGE2N2NhYTA2YzBhOGY3NTQwMTZlNjE0NDgwYmJiMzg3N2U0 MDg5MWQwHhcNMjYwMjA5MTIwMDQyWhcNMjYwMjEwMTIwMDQyWjAzMTEwLwYDVQQD Eyg4NGMxNDYxMTFiM2Q1MjYyZTk2NGQ5OTBmNmNlOTZhNDk5YzdjYjgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnulvlYrNkFv//7z0NN6GaN8PPpS/ PymNbMql10JXd2aDhETzPxNZ5B6Vk95JZ0pHlgto0GQ3NWQl7NRWBuKyod1QTXfg wPAd8DXYJkq2B7WVNnrZyCmsHV6SUYxLAaPc7URx2TuesaDIDiyMoZoM57r7my7c bihzeGI866eZAQAa9rQfZ0iWwyquie6noPWN87l6So1PBfgC6pR8OGIfB1WKcpCd wQBTm8DqCe6aRDzHT5/3qlrLa7REs3g0SwC3t4HTK98qqzDcz0IPbm1fY8f6uQHG P2bE/KyyHt0bAx21Xxz/3EgjBRrx4k2PsFc0PxwQdEDKYazK+5hZkjRWfQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFITBRhEbPVJi6WTZkPbOlqSZx8uAMB8GA1UdIwQY MBaAFKZ8qgbAqPdUAW5hRIC7s4d+QIkdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcG55cUJzQ285MVFCYm1GRWdMdXpoMzVBaVIwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jNS9lOTQwN2UtYTU4ZS00OTQxLThjY2Ut MmJlNTAxZmVlZDNkLzEvcG55cUJzQ285MVFCYm1GRWdMdXpoMzVBaVIwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jNS9lOTQwN2UtYTU4ZS00OTQxLThjY2UtMmJlNTAxZmVlZDNk LzEvcG55cUJzQ285MVFCYm1GRWdMdXpoMzVBaVIwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADFlshGLh S6hs2PljEgCd3MeNsw6RtIdGuMFDM078jZiQjrdOwbyMtJKtV7NG9oA9qulmR2mX 3iHBbyqGZUwJ6BA+78sOYUTRIuGlrCA6BzUBxmZr18BbC2COul2o7kcyidxzW8Fi 3WYc7BBjTiAJVXlF8pFlUltomIuowGbscrJa9Kes+nxlFZVJst5S+FNeP0UrXBbw 1JRNzAvhOEK5Y7W5kJZ4FqzGJSyeoc0qfD5JuEeFxZ0CHmA/zjSL1vhVc1JZscLr 6gwCmivgVj/fkNOssAP4Vj5LllwX4mBawQrV+Jt4q2PyAVMSjXIBzRNzPCoy/oQL 4ccdc4j15nSPBw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:46:01 2026 by rpki-client