This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json) Hash identifier: gD4Ag50wVNOboGrbSAmuUlN7X1Es7THtGqC5LA0csps= Subject key identifier: 41:7B:C3:76:59:46:5B:56:8E:20:F6:CF:B8:81:2A:7A:F2:B1:32:8B Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49 Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549 Certificate serial: 019AF276E68F0A04CCF52CECECEFBB3A994B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft Manifest number: 16BF Signing time: Sat 06 Dec 2025 07:01:09 +0000 Manifest this update: Sat 06 Dec 2025 07:01:09 +0000 Manifest next update: Sun 07 Dec 2025 07:01:09 +0000 Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=) 2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: w0gs4Os064CyWrK8Q42NO04IzXIcZshOLDC+bUlm8oY=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 07:01:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f2:76:e6:8f:0a:04:cc:f5:2c:ec:ec:ef:bb:3a:99:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b20663583a8189cbeaac88d438767997b1125549 Validity Not Before: Dec 6 07:01:09 2025 GMT Not After : Dec 7 07:01:09 2025 GMT Subject: CN=417bc37659465b568e20f6cfb8812a7af2b1328b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:75:ed:13:98:13:bd:55:89:44:16:9a:77: 46:d5:50:66:cc:5d:6a:92:a6:e2:03:51:45:ce:18: 96:24:53:0c:d5:06:1d:e8:51:3c:db:04:ab:b9:79: bb:e1:65:6c:cf:9d:ca:46:88:4d:a8:f4:d4:ca:62: 9d:5b:f4:74:bc:03:cd:ff:67:d0:29:df:90:f2:d8: 0d:e8:41:81:7d:16:7f:44:46:97:1c:ce:13:10:c5: 0d:64:b4:73:bb:0a:44:83:15:6f:76:24:7b:7b:fa: 89:49:5c:0a:16:18:51:51:76:a7:a4:66:2f:8a:c1: 78:6a:d6:6f:4f:47:cf:30:a2:dd:8f:29:6c:df:60: 8f:72:c7:f9:4b:7a:5a:b9:80:8c:4a:fd:0d:93:36: 25:c9:0f:b0:fc:f7:f6:e7:c0:9c:6d:28:ad:b5:4a: 37:0e:d1:f5:c7:52:7f:c5:0c:91:cd:5d:d2:ee:98: ca:06:f8:1a:51:92:ec:21:fb:89:89:5d:8e:2c:25: be:07:5a:45:b6:09:3c:35:1f:1a:72:92:0e:a6:6e: 00:06:00:d9:58:85:04:5f:dc:4a:c7:ee:60:43:18: 34:fa:bb:e0:46:12:77:00:f6:8e:6b:92:89:00:cc: df:0e:ba:b9:bc:2a:91:9c:79:cb:74:aa:bd:fe:57: 31:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:7B:C3:76:59:46:5B:56:8E:20:F6:CF:B8:81:2A:7A:F2:B1:32:8B X509v3 Authority Key Identifier: keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:23:15:05:88:a5:29:80:15:72:a9:1b:a8:70:b8:6d:57:be: 8f:fd:1e:bf:dc:6c:23:09:ad:90:1f:09:0d:02:3e:25:20:42: 16:63:6c:bc:02:1e:88:4c:14:b2:d8:ef:6a:02:b4:b9:ee:ad: 5c:c9:47:c3:dc:11:a2:b4:67:5e:5d:27:64:5b:45:80:d8:42: 85:3a:4c:a0:50:1f:e1:6d:84:01:c1:b3:d9:97:01:f0:32:14: ef:99:86:89:93:b1:aa:f9:1c:65:f1:9b:83:38:7e:d1:97:35: cc:e4:37:29:27:05:7f:56:7f:ff:1a:3e:5d:a1:1d:22:e0:ea: fe:b4:8c:4d:98:9d:ef:60:46:56:8f:22:7b:34:5a:7a:85:49: 61:57:e5:d4:78:de:65:7a:36:ba:e6:63:06:1e:8c:11:3a:19: 55:29:0e:f7:d7:e9:70:4c:4c:61:27:35:ec:b3:0b:99:22:d1: 37:be:da:20:2a:03:99:32:7b:fe:b9:73:33:ee:17:c2:4a:31: fb:52:bd:b1:45:8b:6f:74:b1:ba:79:b1:a6:df:cc:e2:a6:ca: c0:47:ad:a0:d7:95:d8:b7:87:21:d6:ba:5e:37:35:a3:26:f1: 51:c4:df:6c:dc:9f:59:88:88:02:cb:06:94:36:d6:10:75:6e: 86:d4:81:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZryduaPCgTM9Szs7O+7OplLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDY2MzU4M2E4MTg5Y2JlYWFjODhkNDM4NzY3OTk3YjEx MjU1NDkwHhcNMjUxMjA2MDcwMTA5WhcNMjUxMjA3MDcwMTA5WjAzMTEwLwYDVQQD Eyg0MTdiYzM3NjU5NDY1YjU2OGUyMGY2Y2ZiODgxMmE3YWYyYjEzMjhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3PZ17ROYE71ViUQWmndG1VBmzF1q kqbiA1FFzhiWJFMM1QYd6FE82wSruXm74WVsz53KRohNqPTUymKdW/R0vAPN/2fQ Kd+Q8tgN6EGBfRZ/REaXHM4TEMUNZLRzuwpEgxVvdiR7e/qJSVwKFhhRUXanpGYv isF4atZvT0fPMKLdjyls32CPcsf5S3pauYCMSv0NkzYlyQ+w/Pf258CcbSittUo3 DtH1x1J/xQyRzV3S7pjKBvgaUZLsIfuJiV2OLCW+B1pFtgk8NR8acpIOpm4ABgDZ WIUEX9xKx+5gQxg0+rvgRhJ3APaOa5KJAMzfDrq5vCqRnHnLdKq9/lcxWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEF7w3ZZRltWjiD2z7iBKnrysTKLMB8GA1UdIwQY MBaAFLIGY1g6gYnL6qyI1Dh2eZexElVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQt ZDE4NzczZTdiYzQ3LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQtZDE4NzczZTdiYzQ3 LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAZCMVBYil KYAVcqkbqHC4bVe+j/0ev9xsIwmtkB8JDQI+JSBCFmNsvAIeiEwUstjvagK0ue6t XMlHw9wRorRnXl0nZFtFgNhChTpMoFAf4W2EAcGz2ZcB8DIU75mGiZOxqvkcZfGb gzh+0Zc1zOQ3KScFf1Z//xo+XaEdIuDq/rSMTZid72BGVo8iezRaeoVJYVfl1Hje ZXo2uuZjBh6METoZVSkO99fpcExMYSc17LMLmSLRN77aICoDmTJ7/rlzM+4Xwkox +1K9sUWLb3Sxunmxpt/M4qbKwEetoNeV2LeHIda6Xjc1oybxUcTfbNyfWYiIAssG lDbWEHVuhtSBQw== -----END CERTIFICATE-----Generated at Sat Dec 6 15:33:22 2025 by rpki-client