This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft File: u-Sqx31jiC90NiBwTCTb7bGIDXo.mft (raw, json) Hash identifier: B0KXDoH+e1tbyEaOqa/5BSMaQIOre5gQz0c/RqrqQcw= Subject key identifier: 54:8C:0F:C0:91:99:8F:09:D6:20:31:57:A7:75:39:93:EE:77:D3:08 Authority key identifier: BB:E4:AA:C7:7D:63:88:2F:74:36:20:70:4C:24:DB:ED:B1:88:0D:7A Certificate issuer: /CN=bbe4aac77d63882f743620704c24dbedb1880d7a Certificate serial: 019C43226BFC8071DF87F17FE10504593BCF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft Manifest number: 076A Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: u-Sqx31jiC90NiBwTCTb7bGIDXo.crl (hash: Qab92HnsEs0tgq8pZEGVBBA9EXwDgE1T2p/pUaICMT4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.crl rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6b:fc:80:71:df:87:f1:7f:e1:05:04:59:3b:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=bbe4aac77d63882f743620704c24dbedb1880d7a Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=548c0fc091998f09d6203157a7753993ee77d308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:e0:89:fc:8e:14:20:82:04:6e:c1:cf:9e:cb: bd:87:56:c7:1d:8e:62:57:4e:32:e4:1a:c7:4e:23: 77:e1:e7:3f:b6:5f:b2:d4:e5:0d:e8:63:e8:76:6c: 9a:b2:83:e0:61:40:94:f0:91:c9:97:8c:26:fb:5d: af:17:17:d0:7e:d4:0a:2d:91:c6:e2:b2:34:b6:5e: 44:f2:cf:97:85:74:a5:dd:76:5a:ca:37:da:0f:3b: d3:bc:3a:85:6f:dd:b9:e8:a4:38:ae:f0:db:9c:7f: 31:19:ee:3b:ea:47:28:59:63:1d:3d:10:39:dc:ec: 7f:68:d7:d6:10:df:fb:8d:a4:27:ed:17:4a:48:21: b4:63:94:e0:29:5e:0f:32:d7:9b:c6:11:a0:a9:b1: f6:6c:d2:1e:b1:a8:9c:1f:a2:7b:34:eb:00:be:78: 17:c7:d4:bb:d1:2b:b3:99:df:81:bc:ea:c1:46:2b: c6:d0:a8:ea:ba:5b:c3:c8:ba:92:65:f2:71:12:0b: 95:cb:cd:06:19:cf:e7:3c:76:a9:73:49:8c:bf:32: 7e:9e:34:4f:30:15:e8:a5:c0:d6:49:67:fc:0e:b7: ea:11:21:3b:41:9a:a2:b5:2e:92:ea:ee:fd:ce:37: 6b:d4:af:a8:7a:41:7c:f3:08:f2:12:88:48:60:a1: 36:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:8C:0F:C0:91:99:8F:09:D6:20:31:57:A7:75:39:93:EE:77:D3:08 X509v3 Authority Key Identifier: keyid:BB:E4:AA:C7:7D:63:88:2F:74:36:20:70:4C:24:DB:ED:B1:88:0D:7A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/u-Sqx31jiC90NiBwTCTb7bGIDXo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/04/d4d7d2-9cb2-4ce0-8665-1ba21b0e2913/1/u-Sqx31jiC90NiBwTCTb7bGIDXo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:ab:74:74:0b:a8:0d:2f:f5:72:28:4f:99:d2:8b:d8:e6:3c: 16:bc:b3:57:7f:55:24:e2:0d:62:82:1c:91:9d:0e:dd:81:0d: 00:5f:0a:f6:be:32:00:19:b4:0b:17:6a:62:43:26:b0:3a:64: fa:ba:ea:c8:09:83:a2:0a:34:b4:3f:48:f7:ed:e3:8b:59:97: 99:5d:ba:46:47:d0:ea:9e:6e:79:d8:e1:60:40:aa:d2:3c:18: 67:2f:ae:61:cc:87:af:7b:9b:1b:08:8d:34:a7:e1:d1:f6:76: 3c:b1:cd:db:55:35:d0:a1:e2:98:25:4a:6f:4e:95:e2:9d:c3: 44:d3:30:4a:ea:43:1e:26:fa:b1:58:ac:b2:eb:b2:a1:61:1a: ff:c3:b1:df:ba:3c:ef:08:90:0d:74:c0:eb:df:d4:27:fb:41: f8:5d:b5:f2:03:6c:39:8f:80:12:ea:5a:70:7d:c6:0a:07:f5: e8:d6:ec:9e:1c:d3:0c:71:59:bd:fd:53:f5:7b:a7:4c:49:df: 15:73:31:d7:9e:37:46:93:ac:8f:8e:2e:53:02:85:3f:76:d0: 73:1e:1b:10:92:ff:48:b7:5e:3a:2c:39:8a:18:fb:40:15:3b: 0c:b5:10:88:c9:16:4c:e2:a5:45:0a:a5:30:04:5f:9a:53:ad: df:8f:0e:fb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDImv8gHHfh/F/4QUEWTvPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGJiZTRhYWM3N2Q2Mzg4MmY3NDM2MjA3MDRjMjRkYmVkYjE4 ODBkN2EwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD Eyg1NDhjMGZjMDkxOTk4ZjA5ZDYyMDMxNTdhNzc1Mzk5M2VlNzdkMzA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7uCJ/I4UIIIEbsHPnsu9h1bHHY5i V04y5BrHTiN34ec/tl+y1OUN6GPodmyasoPgYUCU8JHJl4wm+12vFxfQftQKLZHG 4rI0tl5E8s+XhXSl3XZayjfaDzvTvDqFb9256KQ4rvDbnH8xGe476kcoWWMdPRA5 3Ox/aNfWEN/7jaQn7RdKSCG0Y5TgKV4PMtebxhGgqbH2bNIesaicH6J7NOsAvngX x9S70Suzmd+BvOrBRivG0KjqulvDyLqSZfJxEguVy80GGc/nPHapc0mMvzJ+njRP MBXopcDWSWf8DrfqESE7QZqitS6S6u79zjdr1K+oekF88wjyEohIYKE2FQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFSMD8CRmY8J1iAxV6d1OZPud9MIMB8GA1UdIwQY MBaAFLvkqsd9Y4gvdDYgcEwk2+2xiA16MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdS1TcXgzMWppQzkwTmlCd1RDVGI3YkdJRFhvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wNC9kNGQ3ZDItOWNiMi00Y2UwLTg2NjUt MWJhMjFiMGUyOTEzLzEvdS1TcXgzMWppQzkwTmlCd1RDVGI3YkdJRFhvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wNC9kNGQ3ZDItOWNiMi00Y2UwLTg2NjUtMWJhMjFiMGUyOTEz LzEvdS1TcXgzMWppQzkwTmlCd1RDVGI3YkdJRFhvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARat0dAuo DS/1cihPmdKL2OY8FryzV39VJOINYoIckZ0O3YENAF8K9r4yABm0CxdqYkMmsDpk +rrqyAmDogo0tD9I9+3ji1mXmV26RkfQ6p5uedjhYECq0jwYZy+uYcyHr3ubGwiN NKfh0fZ2PLHN21U10KHimCVKb06V4p3DRNMwSupDHib6sVissuuyoWEa/8Ox37o8 7wiQDXTA69/UJ/tB+F218gNsOY+AEupacH3GCgf16NbsnhzTDHFZvf1T9XunTEnf FXMx1543RpOsj44uUwKFP3bQcx4bEJL/SLdeOiw5ihj7QBU7DLUQiMkWTOKlRQql MARfmlOt348O+w== -----END CERTIFICATE-----Generated at Mon Feb 9 21:07:27 2026 by rpki-client