This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft File: kaEXOnDkH0WTVHZpraIvDX9o81Q.mft (raw, json) Hash identifier: JRWJg5rzfnuk7OVjLn//op71BIfwAOm6Y0rmL0ZHmKY= Subject key identifier: 0A:55:67:AD:D6:01:0B:E4:3E:31:EC:A1:CB:00:9E:58:EE:9B:56:87 Authority key identifier: 91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54 Certificate issuer: /CN=91a1173a70e41f4593547669ada22f0d7f68f354 Certificate serial: 019C4322BE47D3F430486F3961AE39A8806A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft Manifest number: 1812 Signing time: Mon 09 Feb 2026 16:01:15 +0000 Manifest this update: Mon 09 Feb 2026 16:01:15 +0000 Manifest next update: Tue 10 Feb 2026 16:01:15 +0000 Files and hashes: 1: EZMelYnsyxsc7u1d-UmuOELSVGA.roa (hash: fiCJAdZiRwTzbxllvOptWzW5kDS3kt1J0JiXeIKn0tM=) 2: kaEXOnDkH0WTVHZpraIvDX9o81Q.crl (hash: oKVAgI4AD/s0UGjAUVP3C3ysmIVjkyaPxU97D82tVQ0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:be:47:d3:f4:30:48:6f:39:61:ae:39:a8:80:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=91a1173a70e41f4593547669ada22f0d7f68f354 Validity Not Before: Feb 9 16:01:15 2026 GMT Not After : Feb 10 16:01:15 2026 GMT Subject: CN=0a5567add6010be43e31eca1cb009e58ee9b5687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:63:91:f1:e6:17:d7:9b:48:ce:53:42:0c:5a: 82:62:60:41:75:0f:8c:30:47:52:a1:6b:54:4e:a4: ff:eb:c0:c8:4a:a7:c8:69:8d:be:06:79:7c:2c:2f: cf:ea:36:da:1f:c6:55:55:63:8a:c0:46:a7:58:ee: d8:fb:20:39:64:0f:63:10:22:b7:12:7f:91:cc:42: 25:8c:cc:6e:85:a2:03:f8:c8:b4:5f:73:d1:c7:f1: c7:97:b9:29:82:a1:d6:43:d7:20:ce:f9:2d:37:1c: 94:28:6b:5b:02:fe:57:55:0d:41:ee:64:92:a3:13: a5:9e:da:01:ee:d8:67:74:cf:ab:15:04:15:0e:a9: fd:66:de:67:32:af:a1:f0:49:0c:31:13:5c:32:e2: dc:6f:16:05:8d:06:fb:bf:68:8b:80:78:27:c4:3a: 61:fe:66:9e:28:b7:18:0d:b6:f1:76:69:91:47:2c: f6:31:ae:36:32:c8:e5:0d:5d:52:24:79:4a:89:f9: 4b:4c:4b:94:16:68:a5:7d:b2:07:a9:85:68:e0:c0: 6a:d2:e9:3f:8f:81:08:7e:9f:6e:50:9e:6a:8c:d0: 47:f8:47:ee:82:60:36:f5:d6:91:89:f8:91:fa:36: 01:c1:b0:56:e2:29:27:08:07:ee:7d:07:76:17:8b: 9e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:55:67:AD:D6:01:0B:E4:3E:31:EC:A1:CB:00:9E:58:EE:9B:56:87 X509v3 Authority Key Identifier: keyid:91:A1:17:3A:70:E4:1F:45:93:54:76:69:AD:A2:2F:0D:7F:68:F3:54 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kaEXOnDkH0WTVHZpraIvDX9o81Q.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/34e53f-6759-4cf5-9801-5d630e203fd5/1/kaEXOnDkH0WTVHZpraIvDX9o81Q.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:43:32:30:12:a8:14:49:6b:42:1b:5e:1a:fa:8f:4f:53:7b: 99:e1:a3:8c:bf:c9:be:63:b9:3f:19:14:b3:5c:7a:48:34:fc: f2:a7:67:d4:5b:c4:4c:17:5a:46:41:4a:51:6b:d0:02:16:9b: 3e:41:1e:92:71:d0:3c:23:70:e2:c5:cf:67:c1:01:78:da:7e: 5f:56:32:03:56:f0:c9:f5:f3:18:e1:1c:0a:b1:2d:dd:a2:11: 1f:30:9f:7e:28:7e:2a:10:fe:2f:58:a1:b2:dc:0c:53:30:68: 99:7a:9d:5b:c9:63:aa:71:73:55:70:60:d4:7c:72:0c:93:0e: 49:68:12:ed:29:fe:39:bf:b7:2b:16:f2:a7:8a:0b:ec:64:0f: ed:3d:0c:40:d4:65:9e:51:ac:cf:24:d5:7c:97:62:5f:2d:9d: 84:bf:ef:2c:5c:30:dc:46:bb:c6:d8:86:11:2a:19:76:9b:99: 16:05:58:bf:98:7d:6e:40:bd:c5:5d:ef:71:2a:31:fb:cc:cc: f9:82:7d:79:a3:9f:22:a9:a0:24:12:a9:1d:67:b5:2b:f0:b0: 60:78:07:ff:a5:b3:a3:28:80:47:36:a5:7d:c8:ca:0f:80:cb: b0:97:df:f1:a8:06:26:52:c7:59:81:b8:5e:e1:50:83:e8:53: 3c:45:aa:db -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIr5H0/QwSG85Ya45qIBqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkxYTExNzNhNzBlNDFmNDU5MzU0NzY2OWFkYTIyZjBkN2Y2 OGYzNTQwHhcNMjYwMjA5MTYwMTE1WhcNMjYwMjEwMTYwMTE1WjAzMTEwLwYDVQQD EygwYTU1NjdhZGQ2MDEwYmU0M2UzMWVjYTFjYjAwOWU1OGVlOWI1Njg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsWOR8eYX15tIzlNCDFqCYmBBdQ+M MEdSoWtUTqT/68DISqfIaY2+Bnl8LC/P6jbaH8ZVVWOKwEanWO7Y+yA5ZA9jECK3 En+RzEIljMxuhaID+Mi0X3PRx/HHl7kpgqHWQ9cgzvktNxyUKGtbAv5XVQ1B7mSS oxOlntoB7thndM+rFQQVDqn9Zt5nMq+h8EkMMRNcMuLcbxYFjQb7v2iLgHgnxDph /maeKLcYDbbxdmmRRyz2Ma42MsjlDV1SJHlKiflLTEuUFmilfbIHqYVo4MBq0uk/ j4EIfp9uUJ5qjNBH+EfugmA29daRifiR+jYBwbBW4iknCAfufQd2F4uecQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFApVZ63WAQvkPjHsocsAnljum1aHMB8GA1UdIwQY MBaAFJGhFzpw5B9Fk1R2aa2iLw1/aPNUMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEt NWQ2MzBlMjAzZmQ1LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYi8zNGU1M2YtNjc1OS00Y2Y1LTk4MDEtNWQ2MzBlMjAzZmQ1 LzEva2FFWE9uRGtIMFdUVkhacHJhSXZEWDlvODFRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALUMyMBKo FElrQhteGvqPT1N7meGjjL/JvmO5PxkUs1x6SDT88qdn1FvETBdaRkFKUWvQAhab PkEeknHQPCNw4sXPZ8EBeNp+X1YyA1bwyfXzGOEcCrEt3aIRHzCffih+KhD+L1ih stwMUzBomXqdW8ljqnFzVXBg1HxyDJMOSWgS7Sn+Ob+3Kxbyp4oL7GQP7T0MQNRl nlGszyTVfJdiXy2dhL/vLFww3Ea7xtiGESoZdpuZFgVYv5h9bkC9xV3vcSox+8zM +YJ9eaOfIqmgJBKpHWe1K/CwYHgH/6WzoyiARzalfcjKD4DLsJff8agGJlLHWYG4 XuFQg+hTPEWq2w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:53:30 2026 by rpki-client