This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft File: i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft (raw, json) Hash identifier: tQs3+t6MorYVXvFHi8g5K9vkTZIjSKD8dIJCXCHEbzU= Subject key identifier: ED:77:8B:8C:C7:1E:12:AA:CE:77:54:3B:16:70:7D:7B:77:B0:9D:2D Authority key identifier: 8B:D8:93:1F:63:57:94:28:BF:08:CC:B1:99:A3:A9:8D:CB:A6:B8:24 Certificate issuer: /CN=8bd8931f63579428bf08ccb199a3a98dcba6b824 Certificate serial: 019C427DCC3CBF44FEE14F8F5FC817BFD4D7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft Manifest number: 0CE7 Signing time: Mon 09 Feb 2026 13:01:06 +0000 Manifest this update: Mon 09 Feb 2026 13:01:06 +0000 Manifest next update: Tue 10 Feb 2026 13:01:06 +0000 Files and hashes: 1: i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl (hash: rqSpb3wSmsEJYt2dPBLvrufrmzbVa9gnc/PdPnadRI4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 13:01:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:7d:cc:3c:bf:44:fe:e1:4f:8f:5f:c8:17:bf:d4:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8bd8931f63579428bf08ccb199a3a98dcba6b824 Validity Not Before: Feb 9 13:01:06 2026 GMT Not After : Feb 10 13:01:06 2026 GMT Subject: CN=ed778b8cc71e12aace77543b16707d7b77b09d2d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:d1:97:1e:71:80:5d:0c:d2:44:95:0c:a1:30: f4:2f:8f:5b:55:2a:b5:5f:c4:fc:29:67:fb:d3:bc: f6:d4:72:d3:3a:2c:14:53:c7:5e:b8:7d:b9:b9:7c: 2b:1e:29:c1:e7:ae:c0:33:0d:d5:b8:f6:c0:76:1e: e3:f2:9e:52:94:12:bd:90:92:8e:3b:62:dd:d6:b6: fc:c3:ca:8a:4e:63:d7:a4:8b:28:35:9e:28:b2:6d: 06:95:52:03:84:20:07:d2:e4:c7:d1:c1:eb:9f:4d: a7:e5:d7:2b:92:ac:95:e8:96:00:85:0e:72:2f:ec: f7:5d:1d:af:60:60:e8:35:30:67:01:8e:64:6f:bf: d5:d5:e0:83:c8:cc:0e:3f:17:4e:e2:19:ca:ed:b9: 76:84:23:59:29:0d:6b:22:be:24:f4:e2:c5:53:e5: ac:2e:c4:77:ee:69:70:38:53:2a:12:57:af:62:bc: 83:1a:a0:23:aa:d4:58:2e:7c:03:d6:2b:1a:c4:a4: d3:dc:0c:3c:5f:b1:de:e0:f3:fe:f8:5e:e4:15:c2: 8c:08:cf:58:31:06:39:11:3b:27:6b:6d:09:4b:87: 8b:23:2b:17:b4:42:cf:a0:b7:34:bf:e3:92:45:96: e3:3a:e8:5d:69:4c:c8:e4:f3:db:8c:5f:be:f7:79: 58:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:77:8B:8C:C7:1E:12:AA:CE:77:54:3B:16:70:7D:7B:77:B0:9D:2D X509v3 Authority Key Identifier: keyid:8B:D8:93:1F:63:57:94:28:BF:08:CC:B1:99:A3:A9:8D:CB:A6:B8:24 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/i9iTH2NXlCi_CMyxmaOpjcumuCQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/44/7ac7bb-21dc-4a11-9791-4ee16d6c80a6/1/i9iTH2NXlCi_CMyxmaOpjcumuCQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:bf:a5:15:de:3a:3f:8e:b9:e8:e5:fc:ff:ff:bc:8a:19:28: 80:21:42:f8:73:c4:d2:08:eb:cb:14:ac:41:39:ae:b8:85:96: 59:c4:67:8e:57:d9:8e:af:ed:69:ef:dd:25:70:04:bc:b7:dc: a1:e3:32:40:62:ed:9d:00:02:c4:08:ad:73:9b:b9:63:f9:34: 79:51:45:37:3f:f0:39:76:ae:42:a5:7f:f9:c4:8d:4c:c6:70: ff:9b:71:04:35:f0:81:0b:8d:e4:3b:be:57:6b:bb:5f:6b:b2: a2:08:20:68:93:4d:cd:c4:6b:41:39:20:d9:0a:74:e1:cc:09: 6a:0e:4b:fb:0e:6e:40:27:37:75:b9:b2:57:f3:ad:6d:29:c4: 2f:11:3b:38:48:be:89:9d:4a:34:d0:90:15:96:d4:42:58:b6: 2c:98:60:0b:29:45:d1:cb:64:89:b3:ae:a9:74:2e:ee:b0:b7: 75:e9:4c:4e:99:ba:8b:95:d7:fc:05:d9:9f:48:31:4e:88:f5: fd:0a:04:24:07:fb:05:6b:9b:0e:b3:89:1d:dc:18:2c:a1:02: 89:eb:b1:75:52:0e:58:b5:63:29:c2:4c:c0:6f:12:d1:9d:49: 0e:7d:da:63:cd:29:38:70:db:f0:8b:63:ea:ff:f1:04:bf:01: a5:a7:5b:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCfcw8v0T+4U+PX8gXv9TXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDhiZDg5MzFmNjM1Nzk0MjhiZjA4Y2NiMTk5YTNhOThkY2Jh NmI4MjQwHhcNMjYwMjA5MTMwMTA2WhcNMjYwMjEwMTMwMTA2WjAzMTEwLwYDVQQD EyhlZDc3OGI4Y2M3MWUxMmFhY2U3NzU0M2IxNjcwN2Q3Yjc3YjA5ZDJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlNGXHnGAXQzSRJUMoTD0L49bVSq1 X8T8KWf707z21HLTOiwUU8deuH25uXwrHinB567AMw3VuPbAdh7j8p5SlBK9kJKO O2Ld1rb8w8qKTmPXpIsoNZ4osm0GlVIDhCAH0uTH0cHrn02n5dcrkqyV6JYAhQ5y L+z3XR2vYGDoNTBnAY5kb7/V1eCDyMwOPxdO4hnK7bl2hCNZKQ1rIr4k9OLFU+Ws LsR37mlwOFMqElevYryDGqAjqtRYLnwD1isaxKTT3Aw8X7He4PP++F7kFcKMCM9Y MQY5ETsna20JS4eLIysXtELPoLc0v+OSRZbjOuhdaUzI5PPbjF++93lYSQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFO13i4zHHhKqzndUOxZwfXt3sJ0tMB8GA1UdIwQY MBaAFIvYkx9jV5QovwjMsZmjqY3LprgkMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaTlpVEgyTlhsQ2lfQ015eG1hT3BqY3VtdUNRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80NC83YWM3YmItMjFkYy00YTExLTk3OTEt NGVlMTZkNmM4MGE2LzEvaTlpVEgyTlhsQ2lfQ015eG1hT3BqY3VtdUNRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80NC83YWM3YmItMjFkYy00YTExLTk3OTEtNGVlMTZkNmM4MGE2 LzEvaTlpVEgyTlhsQ2lfQ015eG1hT3BqY3VtdUNRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAT7+lFd46 P4656OX8//+8ihkogCFC+HPE0gjryxSsQTmuuIWWWcRnjlfZjq/tae/dJXAEvLfc oeMyQGLtnQACxAitc5u5Y/k0eVFFNz/wOXauQqV/+cSNTMZw/5txBDXwgQuN5Du+ V2u7X2uyogggaJNNzcRrQTkg2Qp04cwJag5L+w5uQCc3dbmyV/OtbSnELxE7OEi+ iZ1KNNCQFZbUQli2LJhgCylF0ctkibOuqXQu7rC3delMTpm6i5XX/AXZn0gxToj1 /QoEJAf7BWubDrOJHdwYLKECieuxdVIOWLVjKcJMwG8S0Z1JDn3aY80pOHDb8Itj 6v/xBL8BpadbTA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:56:46 2026 by rpki-client