This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json) Hash identifier: Dt/c69Wue2iDfN8SpuRD8fTHd7016uxMdihNTOHs4p0= Subject key identifier: 2A:5B:DC:30:4E:15:BC:A5:A0:80:58:5C:14:46:9F:23:FC:63:E5:90 Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Certificate serial: 019AF3525C5AF8F64F6BBBD543C20CE17CB4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft Manifest number: 1762 Signing time: Sat 06 Dec 2025 11:00:52 +0000 Manifest this update: Sat 06 Dec 2025 11:00:52 +0000 Manifest next update: Sun 07 Dec 2025 11:00:52 +0000 Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: TJDtSElFGuiA6t/AN5ddBsGixSBbI7M+YXbmisTrX3g=) 2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:00:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f3:52:5c:5a:f8:f6:4f:6b:bb:d5:43:c2:0c:e1:7c:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Validity Not Before: Dec 6 11:00:52 2025 GMT Not After : Dec 7 11:00:52 2025 GMT Subject: CN=2a5bdc304e15bca5a080585c14469f23fc63e590 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:e2:04:e7:05:ea:29:c4:47:29:78:8f:9f:fe: 47:5c:88:37:ad:0d:06:9a:96:86:cb:61:2b:84:e8: 93:6c:0e:07:9c:2d:a2:3a:6b:34:b8:1c:68:c8:c3: 3e:57:c9:91:7f:fa:75:3a:02:6c:a2:a9:7b:b3:7a: 6b:04:21:84:b1:ea:7d:a0:9f:93:13:e8:3a:ef:6e: ae:01:da:94:86:45:4f:b9:84:51:9b:f0:34:b1:b1: 35:3f:f6:0d:30:bd:f1:b4:6e:6f:40:a9:3c:f3:5d: 9c:7b:73:a7:e4:df:d7:17:fe:35:f3:fe:5e:86:6a: 01:b0:dc:ca:26:02:85:30:34:6e:21:75:ba:c7:63: 38:52:9b:19:4d:08:ac:e3:dc:7b:79:44:dc:dd:2f: fa:94:f3:39:cc:a6:eb:78:33:46:76:c1:7c:39:75: d4:f1:1f:8d:ff:2b:f1:10:b2:c6:d1:89:57:04:63: f1:9e:a8:27:5f:98:a3:df:bb:ef:b8:89:fe:fd:2b: ec:e3:cb:52:f1:7a:45:06:ef:0a:47:28:0d:a5:42: 74:65:b1:37:88:70:6e:ab:d5:2f:79:74:a8:a2:89: 2c:d6:9d:3b:43:a7:19:63:45:bf:1c:e0:49:50:6d: c2:60:74:d2:ce:b6:f2:73:6b:3f:7d:da:91:99:90: af:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:5B:DC:30:4E:15:BC:A5:A0:80:58:5C:14:46:9F:23:FC:63:E5:90 X509v3 Authority Key Identifier: keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:49:2a:c3:b4:89:65:08:f1:14:60:64:23:90:2f:69:4c:ae: 17:34:8d:84:fe:c3:5a:95:4d:80:01:e3:48:b9:df:91:d7:74: b9:46:0b:8f:45:c8:a5:2c:5e:bf:84:98:3f:9f:c2:41:f1:e1: dc:7c:44:66:0d:15:dc:5d:79:f5:49:a3:ac:ed:38:9c:73:bc: 08:7b:e8:17:06:da:4a:fa:9f:37:e0:05:05:d8:0a:bd:5d:af: 32:60:85:58:bd:2d:52:9a:86:89:b3:f9:11:9d:d7:7b:ce:5e: d4:d7:26:76:25:cf:ee:0b:63:f2:b3:21:11:95:25:50:3a:68: 91:1f:f8:55:54:c6:71:99:64:b5:01:07:c2:cb:1f:98:0b:f6: 19:f4:8f:83:45:73:b5:9a:bd:66:86:6e:95:4b:92:07:f9:a4: 82:41:82:80:c2:45:5c:28:b0:60:71:b5:1d:8e:f4:3a:65:a7: 63:53:2b:d5:8e:37:69:ce:6f:d9:ba:ff:70:03:2e:60:69:60: 3d:85:9a:2b:22:1c:ae:e3:ad:29:40:77:98:2d:c3:b3:16:6e: eb:2d:79:ec:b6:17:22:25:09:b8:cf:aa:dc:c2:69:74:00:d9: 76:f8:97:21:df:d2:b3:01:71:9e:94:89:78:2e:a5:c4:21:f6: 19:5b:7d:05 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrzUlxa+PZPa7vVQ8IM4Xy0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm NWUyNTYwHhcNMjUxMjA2MTEwMDUyWhcNMjUxMjA3MTEwMDUyWjAzMTEwLwYDVQQD EygyYTViZGMzMDRlMTViY2E1YTA4MDU4NWMxNDQ2OWYyM2ZjNjNlNTkwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2eIE5wXqKcRHKXiPn/5HXIg3rQ0G mpaGy2ErhOiTbA4HnC2iOms0uBxoyMM+V8mRf/p1OgJsoql7s3prBCGEsep9oJ+T E+g6726uAdqUhkVPuYRRm/A0sbE1P/YNML3xtG5vQKk8812ce3On5N/XF/418/5e hmoBsNzKJgKFMDRuIXW6x2M4UpsZTQis49x7eUTc3S/6lPM5zKbreDNGdsF8OXXU 8R+N/yvxELLG0YlXBGPxnqgnX5ij37vvuIn+/Svs48tS8XpFBu8KRygNpUJ0ZbE3 iHBuq9UveXSoooks1p07Q6cZY0W/HOBJUG3CYHTSzrbyc2s/fdqRmZCvOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCpb3DBOFbyloIBYXBRGnyP8Y+WQMB8GA1UdIwQY MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1 LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgkkqw7SJ ZQjxFGBkI5AvaUyuFzSNhP7DWpVNgAHjSLnfkdd0uUYLj0XIpSxev4SYP5/CQfHh 3HxEZg0V3F159UmjrO04nHO8CHvoFwbaSvqfN+AFBdgKvV2vMmCFWL0tUpqGibP5 EZ3Xe85e1NcmdiXP7gtj8rMhEZUlUDpokR/4VVTGcZlktQEHwssfmAv2GfSPg0Vz tZq9ZoZulUuSB/mkgkGCgMJFXCiwYHG1HY70OmWnY1Mr1Y43ac5v2br/cAMuYGlg PYWaKyIcruOtKUB3mC3DsxZu6y157LYXIiUJuM+q3MJpdADZdviXId/SswFxnpSJ eC6lxCH2GVt9BQ== -----END CERTIFICATE-----Generated at Sat Dec 6 17:45:52 2025 by rpki-client