This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft File: xafD9LFGk1EiAllaik-VsNa3oQE.mft (raw, json) Hash identifier: K6Vjx9tNGLQI1teGRR3laxcHIfkXUTY4tb5fzsPjij8= Subject key identifier: 2F:DD:53:E4:66:6D:6F:E6:27:04:E7:2B:66:C7:B3:B5:14:28:88:5D Authority key identifier: C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01 Certificate issuer: /CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101 Certificate serial: 019C4133A056B9CB307518797F5B3C37AC88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft Manifest number: 17A3 Signing time: Mon 09 Feb 2026 07:00:28 +0000 Manifest this update: Mon 09 Feb 2026 07:00:28 +0000 Manifest next update: Tue 10 Feb 2026 07:00:28 +0000 Files and hashes: 1: 2hbC2fRcwVVGLuxr3y8s9IdUqJ0.roa (hash: WENyhbzOdCYh/WeleDC3Eb7ZL7vwxD85NmDsUD+Ca/o=) 2: rJ0B3_PG0rjHq-_hS6K9nBrn-PY.roa (hash: m7Zi/TNYib5gTH6m2mPeaQUI4WRQNMe1ierjcvG2bOc=) 3: xOCpqHIGWYpMZiK0D_GduGL-xNY.roa (hash: EH/6F7DAxWGzLP0f7IyWGiPlk48ND1XykF58xtVXDcQ=) 4: xafD9LFGk1EiAllaik-VsNa3oQE.crl (hash: qVl510TxoXc8u7rgWi2GiSRIH80DTZG4zT6M9VfewlE=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 07:00:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:41:33:a0:56:b9:cb:30:75:18:79:7f:5b:3c:37:ac:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=c5a7c3f4b14693512202595a8a4f95b0d6b7a101 Validity Not Before: Feb 9 07:00:28 2026 GMT Not After : Feb 10 07:00:28 2026 GMT Subject: CN=2fdd53e4666d6fe62704e72b66c7b3b51428885d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:4f:af:58:ae:90:3f:b1:17:bb:56:19:18:8e: 57:eb:e0:c7:7e:90:09:e0:69:08:58:1c:df:09:87: c0:cc:2a:76:ea:e6:19:4c:03:07:ce:dd:cc:35:a6: 72:17:70:57:1e:49:79:8e:a0:a2:86:4f:1d:86:97: ff:41:aa:ae:44:7b:3b:dd:2c:08:90:7e:fd:16:2f: 73:14:f5:e5:1c:ef:ff:f9:ef:40:72:00:00:80:80: 20:d3:10:3a:e7:7b:8d:3d:20:b0:f5:43:69:dc:d8: 72:ab:a9:b7:0d:54:9e:50:d3:71:c2:3d:bc:87:12: f4:ab:cf:d3:02:87:30:06:c2:b2:93:54:98:11:b9: c8:4d:e1:60:57:3d:65:e6:5d:61:c0:ad:9e:d7:e8: c8:bb:62:c2:e2:7d:1c:05:86:d7:ce:12:73:fa:17: 64:3b:75:fc:91:d6:07:98:08:35:75:98:25:4e:2c: 29:72:05:5d:5e:bb:e9:e9:31:74:e1:a4:c6:ac:4e: 04:a3:29:ff:23:39:a3:65:56:01:18:5d:c8:b2:86: 4e:45:89:cc:77:18:1b:8d:f0:78:fb:db:13:39:a2: 5c:a5:cb:fe:45:81:75:54:ef:c4:3b:49:86:34:f3: 8b:44:8a:a0:df:a3:ef:bc:d5:59:8e:4a:9b:2d:a1: 1f:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:DD:53:E4:66:6D:6F:E6:27:04:E7:2B:66:C7:B3:B5:14:28:88:5D X509v3 Authority Key Identifier: keyid:C5:A7:C3:F4:B1:46:93:51:22:02:59:5A:8A:4F:95:B0:D6:B7:A1:01 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/xafD9LFGk1EiAllaik-VsNa3oQE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/15/3a3b2c-76b9-49b4-8218-d12f1e2456ba/1/xafD9LFGk1EiAllaik-VsNa3oQE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:f1:40:09:7e:93:a7:8a:51:a9:a9:90:6f:5d:b0:ce:74:7f: a5:60:7f:ff:13:ee:bf:1e:11:c0:53:47:03:00:55:b4:69:c0: 1b:9c:b3:3a:f0:84:62:77:a3:a2:65:fe:a4:83:cf:42:4b:15: 93:90:f0:96:c4:a3:9b:6f:20:9d:99:48:da:cb:e3:67:63:62: 65:3c:01:eb:50:77:a6:d8:74:a9:2a:62:8c:af:d2:97:c0:d2: 9e:0e:84:a6:3e:7e:c1:f8:eb:bb:ef:62:30:23:d1:8a:f6:0d: d8:cd:47:d7:fb:8f:1d:74:07:09:ae:4e:c8:73:5b:95:ff:7a: f4:86:21:d6:07:37:ef:fd:5e:fd:b5:81:3f:50:78:4b:0a:94: 71:a7:b4:58:22:cd:ba:e2:7e:2c:c0:af:86:2e:35:ee:93:aa: e3:6f:e7:80:13:c0:17:23:68:9f:c6:fe:47:09:4c:ee:05:4a: c9:64:74:44:e0:9c:d9:87:66:fc:3d:3f:8e:47:70:91:18:41: 09:9a:22:85:06:1d:c0:85:97:42:78:cb:2f:76:4e:3a:44:27: 66:cd:a7:2f:8c:76:8d:c8:54:9d:c0:c2:88:98:80:8a:ff:b1: fb:a6:48:e9:cc:53:e1:1f:dc:31:90:07:de:bc:3e:44:b8:6e: 73:8d:8a:1d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxBM6BWucswdRh5f1s8N6yIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGM1YTdjM2Y0YjE0NjkzNTEyMjAyNTk1YThhNGY5NWIwZDZi N2ExMDEwHhcNMjYwMjA5MDcwMDI4WhcNMjYwMjEwMDcwMDI4WjAzMTEwLwYDVQQD EygyZmRkNTNlNDY2NmQ2ZmU2MjcwNGU3MmI2NmM3YjNiNTE0Mjg4ODVkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy0+vWK6QP7EXu1YZGI5X6+DHfpAJ 4GkIWBzfCYfAzCp26uYZTAMHzt3MNaZyF3BXHkl5jqCihk8dhpf/QaquRHs73SwI kH79Fi9zFPXlHO//+e9AcgAAgIAg0xA653uNPSCw9UNp3Nhyq6m3DVSeUNNxwj28 hxL0q8/TAocwBsKyk1SYEbnITeFgVz1l5l1hwK2e1+jIu2LC4n0cBYbXzhJz+hdk O3X8kdYHmAg1dZglTiwpcgVdXrvp6TF04aTGrE4Eoyn/IzmjZVYBGF3IsoZORYnM dxgbjfB4+9sTOaJcpcv+RYF1VO/EO0mGNPOLRIqg36PvvNVZjkqbLaEf0wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFC/dU+RmbW/mJwTnK2bHs7UUKIhdMB8GA1UdIwQY MBaAFMWnw/SxRpNRIgJZWopPlbDWt6EBMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQveGFmRDlMRkdrMUVpQWxsYWlrLVZzTmEzb1FFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNS8zYTNiMmMtNzZiOS00OWI0LTgyMTgt ZDEyZjFlMjQ1NmJhLzEveGFmRDlMRkdrMUVpQWxsYWlrLVZzTmEzb1FFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNS8zYTNiMmMtNzZiOS00OWI0LTgyMTgtZDEyZjFlMjQ1NmJh LzEveGFmRDlMRkdrMUVpQWxsYWlrLVZzTmEzb1FFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbvFACX6T p4pRqamQb12wznR/pWB//xPuvx4RwFNHAwBVtGnAG5yzOvCEYnejomX+pIPPQksV k5DwlsSjm28gnZlI2svjZ2NiZTwB61B3pth0qSpijK/Sl8DSng6Epj5+wfjru+9i MCPRivYN2M1H1/uPHXQHCa5OyHNblf969IYh1gc37/1e/bWBP1B4SwqUcae0WCLN uuJ+LMCvhi417pOq42/ngBPAFyNon8b+RwlM7gVKyWR0ROCc2Ydm/D0/jkdwkRhB CZoihQYdwIWXQnjLL3ZOOkQnZs2nL4x2jchUncDCiJiAiv+x+6ZI6cxT4R/cMZAH 3rw+RLhuc42KHQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:55:52 2026 by rpki-client