This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft File: UPX-mbwiMohxFv2sgtQIKtvGrLc.mft (raw, json) Hash identifier: V0yrddHI+7I0KhkjmE1Ifz8qS2HkjEksyMZub2tOAmA= Subject key identifier: 5A:FF:3E:7F:F6:3C:AB:A2:91:DD:9A:C1:09:62:10:69:2F:97:54:71 Authority key identifier: 50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7 Certificate issuer: /CN=50f5fe99bc2232887116fdac82d4082adbc6acb7 Certificate serial: 019C43C7776380A9BEEB9CC074FFAF7D0C09 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft Manifest number: 069B Signing time: Mon 09 Feb 2026 19:01:11 +0000 Manifest this update: Mon 09 Feb 2026 19:01:11 +0000 Manifest next update: Tue 10 Feb 2026 19:01:11 +0000 Files and hashes: 1: UPX-mbwiMohxFv2sgtQIKtvGrLc.crl (hash: xvXtnlEjqUYOhS6uABgB6MYVoq6i90CmuPiYdTmv7EE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 19:01:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:c7:77:63:80:a9:be:eb:9c:c0:74:ff:af:7d:0c:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=50f5fe99bc2232887116fdac82d4082adbc6acb7 Validity Not Before: Feb 9 19:01:11 2026 GMT Not After : Feb 10 19:01:11 2026 GMT Subject: CN=5aff3e7ff63caba291dd9ac1096210692f975471 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:12:c4:79:2d:12:13:45:1f:e2:ab:b0:1d:6c: 28:3e:7d:2b:4b:4c:2c:9b:c7:e8:3c:84:e9:0d:dc: 1a:7c:d7:e7:4a:4c:4b:79:a5:9d:30:0e:95:86:87: d4:0f:e2:ca:d7:88:99:37:83:ad:7d:74:db:30:ed: 1a:ff:8c:85:99:dd:d8:cb:62:97:3b:00:ed:3d:fd: fb:6c:b7:f3:bf:3a:d6:00:83:7d:03:4e:9a:66:45: af:b8:a5:0d:47:a0:1f:18:25:3f:f6:89:35:86:cc: 4a:09:ae:ca:2e:b4:d5:3b:15:a4:22:7f:91:ba:a1: 1b:8b:30:57:59:4d:51:c9:59:90:7a:83:c7:6a:71: 78:44:85:ca:a8:e9:cb:be:ed:65:56:fe:d0:ae:b1: 8e:88:25:69:12:5e:9a:db:3e:7e:70:4c:c6:e2:61: 4e:91:52:d6:81:56:9b:aa:84:5d:84:f0:2b:60:1d: 42:c0:5b:59:62:a4:86:28:8c:ea:97:15:49:c4:83: 49:93:ad:fb:3a:c4:79:11:bd:c1:ee:d8:3d:a1:e5: 51:7e:6a:52:71:5f:a4:89:27:94:46:17:9f:bc:4a: 13:13:36:9d:cc:2c:24:b0:39:99:fa:5b:36:a0:e7: 00:17:81:a9:fe:f7:a2:a2:5e:57:dc:8c:6c:d1:0c: c4:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:FF:3E:7F:F6:3C:AB:A2:91:DD:9A:C1:09:62:10:69:2F:97:54:71 X509v3 Authority Key Identifier: keyid:50:F5:FE:99:BC:22:32:88:71:16:FD:AC:82:D4:08:2A:DB:C6:AC:B7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/UPX-mbwiMohxFv2sgtQIKtvGrLc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cd/77fa2a-13fc-4da6-aebb-7456f430c3f1/1/UPX-mbwiMohxFv2sgtQIKtvGrLc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:ba:9c:c8:49:88:33:69:a8:93:1f:d5:70:81:b9:98:0b:1a: 89:c3:a2:12:89:77:47:5d:aa:9e:da:01:7d:d9:ac:a3:6b:ea: 7c:0d:43:14:64:cc:ec:b2:a7:23:d7:a8:31:86:d8:37:0e:b6: 52:f8:97:4a:55:1c:a9:90:99:85:55:db:3c:a5:e7:da:40:8a: 80:60:03:22:7e:89:eb:a1:b9:19:a9:fb:bd:05:0a:8a:9f:f8: 84:00:94:37:8b:da:e8:20:bc:09:04:8e:8c:0d:9c:c7:3b:8a: b9:bd:66:93:41:16:b2:e0:5f:b6:d1:c8:6b:21:23:b4:b9:98: 44:e6:00:a0:00:1b:42:1d:09:4c:e9:3b:09:47:b2:cb:c8:64: ff:0e:54:9c:4b:e7:fc:d4:5b:b8:cd:61:11:09:b1:9a:85:74: 37:19:c5:bf:51:7e:77:fb:34:df:9e:31:8d:b0:08:29:6d:32: 4e:e8:24:86:3d:60:7b:d7:98:e0:d0:0d:63:11:36:91:4f:4f: ef:96:7d:37:3e:8d:7a:2b:e1:73:82:4e:38:6c:36:ef:a8:03: b1:84:27:40:c7:78:d0:32:74:64:73:98:27:63:72:d2:4d:5d: 57:85:8b:9c:d2:9f:38:2c:48:fa:e1:4c:ba:ba:17:39:1a:3a: bb:5c:7e:d7 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDx3djgKm+65zAdP+vfQwJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDUwZjVmZTk5YmMyMjMyODg3MTE2ZmRhYzgyZDQwODJhZGJj NmFjYjcwHhcNMjYwMjA5MTkwMTExWhcNMjYwMjEwMTkwMTExWjAzMTEwLwYDVQQD Eyg1YWZmM2U3ZmY2M2NhYmEyOTFkZDlhYzEwOTYyMTA2OTJmOTc1NDcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkRLEeS0SE0Uf4quwHWwoPn0rS0ws m8foPITpDdwafNfnSkxLeaWdMA6VhofUD+LK14iZN4OtfXTbMO0a/4yFmd3Yy2KX OwDtPf37bLfzvzrWAIN9A06aZkWvuKUNR6AfGCU/9ok1hsxKCa7KLrTVOxWkIn+R uqEbizBXWU1RyVmQeoPHanF4RIXKqOnLvu1lVv7QrrGOiCVpEl6a2z5+cEzG4mFO kVLWgVabqoRdhPArYB1CwFtZYqSGKIzqlxVJxINJk637OsR5Eb3B7tg9oeVRfmpS cV+kiSeURhefvEoTEzadzCwksDmZ+ls2oOcAF4Gp/veiol5X3Ixs0QzE7QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFFr/Pn/2PKuikd2awQliEGkvl1RxMB8GA1UdIwQY MBaAFFD1/pm8IjKIcRb9rILUCCrbxqy3MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmIt NzQ1NmY0MzBjM2YxLzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jZC83N2ZhMmEtMTNmYy00ZGE2LWFlYmItNzQ1NmY0MzBjM2Yx LzEvVVBYLW1id2lNb2h4RnYyc2d0UUlLdHZHckxjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASrqcyEmI M2mokx/VcIG5mAsaicOiEol3R12qntoBfdmso2vqfA1DFGTM7LKnI9eoMYbYNw62 UviXSlUcqZCZhVXbPKXn2kCKgGADIn6J66G5Gan7vQUKip/4hACUN4va6CC8CQSO jA2cxzuKub1mk0EWsuBfttHIayEjtLmYROYAoAAbQh0JTOk7CUeyy8hk/w5UnEvn /NRbuM1hEQmxmoV0NxnFv1F+d/s0354xjbAIKW0yTugkhj1ge9eY4NANYxE2kU9P 75Z9Nz6Neivhc4JOOGw276gDsYQnQMd40DJ0ZHOYJ2Ny0k1dV4WLnNKfOCxI+uFM uroXORo6u1x+1w== -----END CERTIFICATE-----Generated at Tue Feb 10 01:22:09 2026 by rpki-client