This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json) Hash identifier: rQi2P7nC6f1vCgBM92bsNiqFZpED2tr0feNVlMI4MXo= Subject key identifier: 1E:F6:92:D1:71:DC:11:13:CB:FE:2A:A5:28:ED:8E:B9:61:B0:DE:B2 Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade Certificate serial: 019AF42E57E8BC493EDEBE3CA3DFC8F6FAF8 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft Manifest number: 1763 Signing time: Sat 06 Dec 2025 15:01:09 +0000 Manifest this update: Sat 06 Dec 2025 15:01:09 +0000 Manifest next update: Sun 07 Dec 2025 15:01:09 +0000 Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=) 2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: vkSKpdr0tBPywJ9z/HzsMjYFH5hleQx/iB9hXMb24e4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 13:09:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:f4:2e:57:e8:bc:49:3e:de:be:3c:a3:df:c8:f6:fa:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade Validity Not Before: Dec 6 15:01:09 2025 GMT Not After : Dec 7 15:01:09 2025 GMT Subject: CN=1ef692d171dc1113cbfe2aa528ed8eb961b0deb2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:d3:17:c9:50:1b:73:ce:eb:6f:bc:86:e5:f9: c5:9d:39:7f:db:4b:39:16:34:3f:39:ef:5a:62:86: 10:45:4d:fa:5b:26:bb:f9:d9:e2:88:5e:59:fe:7d: df:a9:cc:0d:e6:a3:88:c6:f4:89:17:09:57:aa:93: 1a:f7:4a:ce:49:68:c1:0c:39:04:4e:fb:fc:ce:e3: 06:e1:f6:ea:13:8a:b3:54:78:80:4c:8a:2b:ef:8c: 78:c0:7e:99:3e:db:fa:64:2b:3c:52:a3:6e:35:6c: 33:99:f1:5f:82:0c:20:78:e0:8c:b8:6a:8d:24:4a: 96:a6:cd:bc:28:dd:8e:05:28:6b:35:59:a0:a5:bd: 6c:6e:8f:c5:7d:d1:5c:15:47:01:dc:ac:3a:13:0d: ec:dd:ae:11:d5:2b:a1:8f:62:8c:1b:34:73:7e:b7: 96:59:43:16:26:36:63:5d:c2:bb:56:71:f2:5a:f0: 39:00:c8:6f:5c:f7:e9:f4:74:b9:fb:14:78:5a:a9: 51:55:20:c2:e9:c7:84:6f:df:05:f6:01:46:8e:f9: 32:b2:9e:35:49:a6:28:c0:4a:51:72:05:2e:72:9a: 42:7d:a4:81:a9:02:c7:1e:cc:2a:c3:0d:15:be:b4: 18:11:db:5a:7e:0c:cb:aa:b6:fa:d5:05:3e:e3:3e: 96:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F6:92:D1:71:DC:11:13:CB:FE:2A:A5:28:ED:8E:B9:61:B0:DE:B2 X509v3 Authority Key Identifier: keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:e1:a1:22:6a:ce:20:a2:46:0d:57:05:0e:48:42:50:75:ca: fa:94:5f:2e:a8:6e:ab:e8:4c:31:ba:4b:67:14:3e:b8:a0:f1: 28:08:05:8c:41:3c:44:44:63:06:9f:f6:79:53:0d:14:71:19: d0:d3:0b:67:59:96:49:a6:2d:e7:e1:13:7c:db:ed:fd:99:b1: 79:ce:b9:4e:19:a2:b4:9d:8f:a8:22:c7:78:ed:46:7f:41:97: 06:54:04:24:46:3b:6b:90:79:a6:56:1f:fb:4b:f8:24:3c:b4: 7f:9a:63:91:d2:3a:f7:d7:f6:98:10:cf:30:25:5d:09:82:35: b7:3a:50:16:25:35:46:15:3d:fd:2c:09:d4:de:b6:70:85:ca: 50:a5:77:a6:6e:1f:91:0e:ee:8b:63:f3:c1:fc:f3:bf:eb:e3: 42:7b:fd:4d:4b:81:e0:88:bf:a1:21:53:b0:98:10:5c:93:e6: ac:0f:ae:f5:fa:38:0b:55:1c:d4:f0:8a:48:3d:5f:1a:2f:6a: 98:ef:48:bd:25:77:4c:86:f6:45:9d:38:7c:46:81:7e:87:ae: f3:de:62:53:a9:f6:d0:b3:30:16:c3:8f:90:e0:19:37:5e:44: ee:59:e8:bf:49:ab:18:61:61:ef:a1:fe:c3:9b:7b:44:bb:d1: 8f:ba:9c:49 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZr0LlfovEk+3r48o9/I9vr4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMjBkOTFiNGU5ZDcwZjAzNGZhMTZhMTZhODg3ZDQyNTU3 OTJhZGUwHhcNMjUxMjA2MTUwMTA5WhcNMjUxMjA3MTUwMTA5WjAzMTEwLwYDVQQD EygxZWY2OTJkMTcxZGMxMTEzY2JmZTJhYTUyOGVkOGViOTYxYjBkZWIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoNMXyVAbc87rb7yG5fnFnTl/20s5 FjQ/Oe9aYoYQRU36Wya7+dniiF5Z/n3fqcwN5qOIxvSJFwlXqpMa90rOSWjBDDkE Tvv8zuMG4fbqE4qzVHiATIor74x4wH6ZPtv6ZCs8UqNuNWwzmfFfggwgeOCMuGqN JEqWps28KN2OBShrNVmgpb1sbo/FfdFcFUcB3Kw6Ew3s3a4R1Suhj2KMGzRzfreW WUMWJjZjXcK7VnHyWvA5AMhvXPfp9HS5+xR4WqlRVSDC6ceEb98F9gFGjvkysp41 SaYowEpRcgUucppCfaSBqQLHHswqww0VvrQYEdtafgzLqrb61QU+4z6WhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB72ktFx3BETy/4qpSjtjrlhsN6yMB8GA1UdIwQY MBaAFLIg2RtOnXDwNPoWoWqIfUJVeSreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQt OTg3MTczYjllOTg3LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQtOTg3MTczYjllOTg3 LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo+GhImrO IKJGDVcFDkhCUHXK+pRfLqhuq+hMMbpLZxQ+uKDxKAgFjEE8RERjBp/2eVMNFHEZ 0NMLZ1mWSaYt5+ETfNvt/Zmxec65ThmitJ2PqCLHeO1Gf0GXBlQEJEY7a5B5plYf +0v4JDy0f5pjkdI699f2mBDPMCVdCYI1tzpQFiU1RhU9/SwJ1N62cIXKUKV3pm4f kQ7ui2Pzwfzzv+vjQnv9TUuB4Ii/oSFTsJgQXJPmrA+u9fo4C1Uc1PCKSD1fGi9q mO9IvSV3TIb2RZ04fEaBfoeu895iU6n20LMwFsOPkOAZN15E7lnov0mrGGFh76H+ w5t7RLvRj7qcSQ== -----END CERTIFICATE-----Generated at Sat Dec 6 18:33:23 2025 by rpki-client