This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json) Hash identifier: n0D8G/TCAvYv/kTFxgHYbGTsC2ueC6FmrLMCf4qzWOs= Subject key identifier: 62:5A:B2:C0:5A:43:EC:00:76:FB:CE:8D:20:D3:E5:C7:9E:66:E3:CB Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade Certificate serial: 019BF807FAB357022E259CA1A55CBD4A165E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft Manifest number: 17EA Signing time: Mon 26 Jan 2026 02:00:30 +0000 Manifest this update: Mon 26 Jan 2026 02:00:30 +0000 Manifest next update: Tue 27 Jan 2026 02:00:30 +0000 Files and hashes: 1: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: k6v2O/myPHlbxtf26Q26HoPHiSEHrV84PX0ePWZPuEE=) 2: z1U74n3Bwqh9cLzRjWZYerB5n54.roa (hash: Odhjr9FDFuG6FvTw4sLHqZZzcsc3KTFEM336lZkm7Dc=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f8:07:fa:b3:57:02:2e:25:9c:a1:a5:5c:bd:4a:16:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade Validity Not Before: Jan 26 02:00:30 2026 GMT Not After : Jan 27 02:00:30 2026 GMT Subject: CN=625ab2c05a43ec0076fbce8d20d3e5c79e66e3cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3f:56:60:0e:bc:11:78:08:f8:16:ce:b4:b9: ce:37:9f:8d:66:74:ed:d5:e2:6e:6f:2e:8e:c6:64: ef:7a:d3:da:da:97:b0:e7:75:1d:c5:ac:97:40:ff: ba:bf:41:ba:bc:43:94:80:8f:e5:18:79:45:dd:09: ed:1d:15:51:01:b5:d2:c9:8a:2e:a9:a3:58:35:46: 0c:43:40:1b:a3:58:5d:e2:ae:25:08:04:18:95:f9: 9e:eb:72:b4:35:a9:7e:9c:c5:bf:08:34:fa:8f:da: 28:91:85:88:7f:5d:ea:1f:4f:0f:99:04:a1:44:e8: bd:97:0c:47:a7:fb:4c:13:7e:9b:5e:e3:b0:e9:09: 95:95:1c:8a:46:5c:43:33:84:ae:90:e0:99:02:35: 39:60:b0:f8:dd:a6:10:92:69:f7:c8:0d:6a:84:71: 27:fc:02:1a:ba:8d:85:05:9f:bc:a6:b1:ee:5a:8d: de:8f:92:2d:63:a9:ac:0f:d9:5e:ae:8d:95:84:64: ba:40:8a:37:06:5e:9e:13:35:c0:99:63:3d:83:14: fd:e0:b8:1b:ed:67:5f:27:39:86:fe:45:65:e3:fa: ed:f7:e0:17:86:1d:7c:ae:85:ae:a2:36:07:24:ad: ce:a4:33:a5:e1:2f:46:6a:c4:a3:05:5e:68:5a:48: 5f:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:5A:B2:C0:5A:43:EC:00:76:FB:CE:8D:20:D3:E5:C7:9E:66:E3:CB X509v3 Authority Key Identifier: keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:4c:f1:f6:54:a9:08:d6:3e:40:99:be:57:ab:6c:f9:4c:a5: 47:cc:4f:3d:6a:39:78:aa:4e:bb:e8:3e:c4:0c:ef:ee:27:e4: a5:f6:73:ee:c2:41:be:7c:6b:38:c3:fb:c5:89:1e:97:a6:92: 65:b8:13:d0:d2:1f:a4:93:d8:49:9b:92:86:58:2d:14:2e:16: 4c:ce:0e:6c:b8:27:c8:c4:2d:bc:59:e5:c5:74:e9:37:c6:c5: 55:b6:66:c1:41:29:75:5b:25:5d:c3:9b:e5:9b:9b:b4:61:ea: 82:f7:16:75:b6:5f:1f:b9:70:bd:d0:9c:b9:d1:fb:cf:23:87: 53:94:b6:ed:bb:2b:1f:56:03:e2:b1:2f:60:eb:64:a5:d2:bc: 71:d5:e5:4e:4c:8f:dc:5b:ed:31:61:e0:73:94:0e:a5:e5:0e: b0:ed:a8:d3:29:af:ca:6c:47:63:99:1a:b1:8d:8b:6b:10:c2: 11:bf:5f:7d:f8:35:ef:61:88:31:7a:01:e4:9f:c0:ae:ac:94: 50:1f:46:24:ce:01:ce:37:a4:8b:af:42:f7:55:23:fc:4a:cd: 6b:6a:a4:87:2e:8d:ee:a3:97:70:ca:86:5b:d1:0b:5d:d2:86: 96:f9:47:71:9b:6c:d7:21:57:14:c8:e0:f5:eb:85:1a:83:24: 4b:04:68:ef -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZv4B/qzVwIuJZyhpVy9ShZeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMjBkOTFiNGU5ZDcwZjAzNGZhMTZhMTZhODg3ZDQyNTU3 OTJhZGUwHhcNMjYwMTI2MDIwMDMwWhcNMjYwMTI3MDIwMDMwWjAzMTEwLwYDVQQD Eyg2MjVhYjJjMDVhNDNlYzAwNzZmYmNlOGQyMGQzZTVjNzllNjZlM2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsD9WYA68EXgI+BbOtLnON5+NZnTt 1eJuby6OxmTvetPa2pew53UdxayXQP+6v0G6vEOUgI/lGHlF3QntHRVRAbXSyYou qaNYNUYMQ0Abo1hd4q4lCAQYlfme63K0Nal+nMW/CDT6j9ookYWIf13qH08PmQSh ROi9lwxHp/tME36bXuOw6QmVlRyKRlxDM4SukOCZAjU5YLD43aYQkmn3yA1qhHEn /AIauo2FBZ+8prHuWo3ej5ItY6msD9lero2VhGS6QIo3Bl6eEzXAmWM9gxT94Lgb 7WdfJzmG/kVl4/rt9+AXhh18roWuojYHJK3OpDOl4S9GasSjBV5oWkhfpQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGJassBaQ+wAdvvOjSDT5ceeZuPLMB8GA1UdIwQY MBaAFLIg2RtOnXDwNPoWoWqIfUJVeSreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQt OTg3MTczYjllOTg3LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQtOTg3MTczYjllOTg3 LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAV0zx9lSp CNY+QJm+V6ts+UylR8xPPWo5eKpOu+g+xAzv7ifkpfZz7sJBvnxrOMP7xYkel6aS ZbgT0NIfpJPYSZuShlgtFC4WTM4ObLgnyMQtvFnlxXTpN8bFVbZmwUEpdVslXcOb 5ZubtGHqgvcWdbZfH7lwvdCcudH7zyOHU5S27bsrH1YD4rEvYOtkpdK8cdXlTkyP 3FvtMWHgc5QOpeUOsO2o0ymvymxHY5kasY2LaxDCEb9fffg172GIMXoB5J/ArqyU UB9GJM4Bzjeki69C91Uj/ErNa2qkhy6N7qOXcMqGW9ELXdKGlvlHcZts1yFXFMjg 9euFGoMkSwRo7w== -----END CERTIFICATE-----Generated at Mon Jan 26 10:58:28 2026 by rpki-client