This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft File: PnpcKTN0JfqBOVVRcmyMK35MUIc.mft (raw, json) Hash identifier: YN2AKHqroZDRh3gtkONUiSfmYsybf19SlHLIpUFw2EE= Subject key identifier: 5B:81:BC:9E:69:EA:94:37:E4:D4:AF:A8:64:94:FF:90:18:63:97:15 Authority key identifier: 3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87 Certificate issuer: /CN=3e7a5c29337425fa81395551726c8c2b7e4c5087 Certificate serial: 019C43902B65B98061261ACA0DC48761EE90 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft Manifest number: 0558 Signing time: Mon 09 Feb 2026 18:00:47 +0000 Manifest this update: Mon 09 Feb 2026 18:00:47 +0000 Manifest next update: Tue 10 Feb 2026 18:00:47 +0000 Files and hashes: 1: PnpcKTN0JfqBOVVRcmyMK35MUIc.crl (hash: BIvwwmgBg2knpuOKbNmOi5RuEwVZBobxttw3KxPCy7s=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:2b:65:b9:80:61:26:1a:ca:0d:c4:87:61:ee:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3e7a5c29337425fa81395551726c8c2b7e4c5087 Validity Not Before: Feb 9 18:00:47 2026 GMT Not After : Feb 10 18:00:47 2026 GMT Subject: CN=5b81bc9e69ea9437e4d4afa86494ff9018639715 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:a0:72:4e:a6:d4:07:3c:87:e7:54:85:0c:17: ab:16:28:e4:67:fe:c4:72:d4:48:62:d7:d9:76:16: b1:0f:c5:61:cc:66:9c:6b:09:46:7c:e8:70:63:fe: 7a:ea:a0:b6:bc:55:b9:2f:82:91:0b:08:df:af:45: 63:1d:1e:65:2f:0a:54:e4:6f:cf:14:9b:ab:dd:b5: b2:68:61:62:39:47:e2:7c:99:68:a0:1e:02:62:18: bf:e5:23:f6:c4:26:9f:94:6b:10:df:ff:af:c8:f8: f7:5f:c2:21:78:ea:c9:ea:a2:75:01:52:fd:c9:e6: 8b:af:9e:2f:99:e7:52:d7:08:24:6c:74:7c:3a:f4: 9b:ae:93:81:f2:f8:c3:72:c3:fa:c1:74:fe:af:37: 11:1a:c0:e5:5f:b6:57:97:a2:fe:b1:4f:90:58:bb: a0:19:e1:d6:74:62:91:49:8f:1e:f2:00:11:79:e8: 4e:50:66:f5:d2:0b:5d:5b:eb:3f:77:43:a0:5c:df: 59:1d:5c:1f:e9:d9:a2:77:10:80:25:df:12:2b:7b: e3:6d:1e:4b:13:09:52:a9:36:ec:19:7f:25:e6:37: a1:e8:c5:5c:be:a9:44:05:e1:f0:32:4c:58:57:94: a6:df:76:41:74:cb:de:5a:81:15:d1:f1:08:5a:f7: 3b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:81:BC:9E:69:EA:94:37:E4:D4:AF:A8:64:94:FF:90:18:63:97:15 X509v3 Authority Key Identifier: keyid:3E:7A:5C:29:33:74:25:FA:81:39:55:51:72:6C:8C:2B:7E:4C:50:87 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PnpcKTN0JfqBOVVRcmyMK35MUIc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/67b254-56f4-4e89-a99d-caa329181964/1/PnpcKTN0JfqBOVVRcmyMK35MUIc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:27:ca:eb:2a:2f:46:df:a5:b6:2d:5b:51:dd:f6:99:cf:e3: 61:4f:f8:68:2e:5d:d5:e9:7a:5c:18:5b:8e:54:64:23:5b:65: fe:1a:57:f1:7a:d6:df:b3:aa:a2:f5:ff:f7:5e:58:42:3a:47: 98:1c:70:53:a8:0d:53:be:c7:6e:aa:34:2b:c7:94:b0:9c:54: 7e:35:63:ee:a5:12:95:df:d9:e1:f0:67:4d:c7:bb:b8:e5:1b: f2:c5:a6:87:37:3f:fe:12:7f:c2:d3:73:d7:f7:c4:38:c4:3a: 9b:1d:79:1d:f9:33:cf:21:97:b8:44:97:80:31:b9:bd:e1:ef: eb:e2:f6:d2:8b:c5:2a:af:0a:40:b9:0b:39:ec:60:73:a1:ba: 71:ea:49:ac:1e:0d:76:c3:e4:0a:23:ef:43:34:3d:9c:e8:dc: c8:a8:14:a2:6c:d2:9e:00:5f:2d:db:17:07:76:8e:d6:ce:f9: 90:64:74:57:25:9a:0c:a5:86:49:2f:8b:6b:1f:90:93:1c:dc: 46:f2:ee:31:9f:05:af:d0:37:22:fb:cd:17:34:8a:af:23:d5: 2f:cc:bf:70:6b:6f:62:5a:6a:60:4f:a7:4d:15:69:32:fb:53: 83:f6:9e:17:97:93:1e:8a:ea:bc:5e:1d:20:91:ba:78:e1:a1: b0:7a:5b:6c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkCtluYBhJhrKDcSHYe6QMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlN2E1YzI5MzM3NDI1ZmE4MTM5NTU1MTcyNmM4YzJiN2U0 YzUwODcwHhcNMjYwMjA5MTgwMDQ3WhcNMjYwMjEwMTgwMDQ3WjAzMTEwLwYDVQQD Eyg1YjgxYmM5ZTY5ZWE5NDM3ZTRkNGFmYTg2NDk0ZmY5MDE4NjM5NzE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjKByTqbUBzyH51SFDBerFijkZ/7E ctRIYtfZdhaxD8VhzGacawlGfOhwY/566qC2vFW5L4KRCwjfr0VjHR5lLwpU5G/P FJur3bWyaGFiOUfifJlooB4CYhi/5SP2xCaflGsQ3/+vyPj3X8IheOrJ6qJ1AVL9 yeaLr54vmedS1wgkbHR8OvSbrpOB8vjDcsP6wXT+rzcRGsDlX7ZXl6L+sU+QWLug GeHWdGKRSY8e8gAReehOUGb10gtdW+s/d0OgXN9ZHVwf6dmidxCAJd8SK3vjbR5L EwlSqTbsGX8l5jeh6MVcvqlEBeHwMkxYV5Sm33ZBdMveWoEV0fEIWvc73wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFuBvJ5p6pQ35NSvqGSU/5AYY5cVMB8GA1UdIwQY MBaAFD56XCkzdCX6gTlVUXJsjCt+TFCHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUG5wY0tUTjBKZnFCT1ZWUmNteU1LMzVNVUljLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZi82N2IyNTQtNTZmNC00ZTg5LWE5OWQt Y2FhMzI5MTgxOTY0LzEvUG5wY0tUTjBKZnFCT1ZWUmNteU1LMzVNVUljLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZi82N2IyNTQtNTZmNC00ZTg5LWE5OWQtY2FhMzI5MTgxOTY0 LzEvUG5wY0tUTjBKZnFCT1ZWUmNteU1LMzVNVUljLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIifK6yov Rt+lti1bUd32mc/jYU/4aC5d1el6XBhbjlRkI1tl/hpX8XrW37OqovX/915YQjpH mBxwU6gNU77Hbqo0K8eUsJxUfjVj7qUSld/Z4fBnTce7uOUb8sWmhzc//hJ/wtNz 1/fEOMQ6mx15HfkzzyGXuESXgDG5veHv6+L20ovFKq8KQLkLOexgc6G6cepJrB4N dsPkCiPvQzQ9nOjcyKgUomzSngBfLdsXB3aO1s75kGR0VyWaDKWGSS+Lax+Qkxzc RvLuMZ8Fr9A3IvvNFzSKryPVL8y/cGtvYlpqYE+nTRVpMvtTg/aeF5eTHorqvF4d IJG6eOGhsHpbbA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:14 2026 by rpki-client