This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json) Hash identifier: Gtup/yDxo+m+2c5CdIHpX8Ef37u5wXptQZErT4TLJb4= Subject key identifier: 1E:4B:55:1A:3F:94:7F:41:E5:32:EC:B6:9B:01:BE:EA:A8:12:C8:91 Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Certificate serial: 019B484BB3AABD3CE4613649B7A1BC3629D4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft Manifest number: 178E Signing time: Mon 22 Dec 2025 23:01:19 +0000 Manifest this update: Mon 22 Dec 2025 23:01:19 +0000 Manifest next update: Tue 23 Dec 2025 23:01:19 +0000 Files and hashes: 1: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: pNw+I6nN3aShgipFVuhzwrndc0Oc9aWOmuJqp+ryIxo=) 2: xgKcu0KPsxc8M315Trs0GW1UUwk.roa (hash: ICZ6+2Jz2veLFc1cLdSpid822PA3P/5mVBK8JthGSW0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 23 Dec 2025 23:01:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:4b:b3:aa:bd:3c:e4:61:36:49:b7:a1:bc:36:29:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Validity Not Before: Dec 22 23:01:19 2025 GMT Not After : Dec 23 23:01:19 2025 GMT Subject: CN=1e4b551a3f947f41e532ecb69b01beeaa812c891 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:51:e4:6a:f4:46:80:9e:57:d3:81:fb:81:c1: f3:20:48:6e:54:74:40:ee:94:03:c1:26:f0:f4:18: de:0d:2c:90:82:7b:cd:fb:3f:7f:df:0f:1c:ee:71: 1b:c8:68:19:42:0d:98:44:45:6b:97:04:9d:f1:ed: 6a:91:53:1c:07:77:9e:34:de:de:1b:de:a6:71:a9: 6d:26:e4:c3:1d:e0:a4:3f:c9:f0:88:9d:ca:dc:46: 7f:8c:bf:e9:fc:1f:a7:22:7f:d1:b3:ec:36:76:1f: 5f:08:c8:d2:97:d6:84:e2:5b:2f:ad:2a:70:2f:05: ec:d5:16:e3:19:94:3b:f1:6a:ea:6a:8d:2e:ef:11: 88:de:ec:5f:40:6a:01:2c:f6:7b:1c:16:9b:b5:40: da:93:9a:00:6f:f1:97:8b:54:dc:4e:7b:9f:77:1b: 25:f5:3a:ab:2b:07:db:94:c1:01:af:03:bf:b8:90: 8c:47:3e:3e:a5:d7:b7:43:7b:af:c5:47:2b:3f:18: 8d:26:f1:11:66:c7:20:81:44:be:60:f2:0b:c2:5c: 9b:82:ed:96:cb:ee:c1:24:df:bc:23:e1:4a:73:16: c0:ed:f0:90:6d:33:d7:39:11:2d:00:49:df:e2:45: 10:7e:ea:0a:a4:35:7e:f9:80:04:f4:77:39:33:09: fb:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:4B:55:1A:3F:94:7F:41:E5:32:EC:B6:9B:01:BE:EA:A8:12:C8:91 X509v3 Authority Key Identifier: keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:2f:24:a6:d4:45:78:0e:23:46:81:4e:88:cb:2a:7e:65:40: e2:3c:10:f7:24:8a:d0:d3:8a:1a:f5:71:46:16:f7:e6:f8:93: 54:d0:0e:55:b3:79:d2:3d:1e:30:83:6d:b2:e3:fe:d5:b3:6c: 3d:1a:94:82:b7:87:3e:b1:03:7d:08:74:45:31:b8:80:61:32: d6:02:6f:92:d2:13:aa:e7:0b:46:e5:81:7b:91:41:7c:28:ec: a9:d7:64:bd:35:87:01:62:d5:53:86:58:9d:fe:50:a2:e8:17: 6b:56:42:73:4d:88:4a:28:3b:a9:1d:36:a3:b6:18:ea:5d:d5: db:02:05:c2:61:c3:1e:d9:27:cd:ca:09:b1:bd:67:63:b4:1c: f9:67:9d:10:e1:4c:3a:80:ca:c5:e1:1e:dd:68:a2:ea:e0:ba: 50:ae:a9:e7:53:68:76:f2:89:81:1e:fd:32:74:44:2a:5a:75: 6a:99:06:98:0c:9e:10:c0:d0:e6:34:fb:b2:a3:5b:13:a1:a2: a5:c5:39:eb:2b:b3:32:c6:4b:51:8a:a0:79:fb:83:66:27:e9: 32:e2:c4:2f:14:75:87:ec:b8:aa:fc:c5:2b:77:74:0d:24:83: 36:6c:da:62:b9:5d:0e:95:bf:ed:db:43:dd:b5:51:90:e6:b3: 12:8e:bd:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIS7OqvTzkYTZJt6G8NinUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm NWUyNTYwHhcNMjUxMjIyMjMwMTE5WhcNMjUxMjIzMjMwMTE5WjAzMTEwLwYDVQQD EygxZTRiNTUxYTNmOTQ3ZjQxZTUzMmVjYjY5YjAxYmVlYWE4MTJjODkxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx1HkavRGgJ5X04H7gcHzIEhuVHRA 7pQDwSbw9BjeDSyQgnvN+z9/3w8c7nEbyGgZQg2YREVrlwSd8e1qkVMcB3eeNN7e G96mcaltJuTDHeCkP8nwiJ3K3EZ/jL/p/B+nIn/Rs+w2dh9fCMjSl9aE4lsvrSpw LwXs1RbjGZQ78Wrqao0u7xGI3uxfQGoBLPZ7HBabtUDak5oAb/GXi1TcTnufdxsl 9TqrKwfblMEBrwO/uJCMRz4+pde3Q3uvxUcrPxiNJvERZscggUS+YPILwlybgu2W y+7BJN+8I+FKcxbA7fCQbTPXOREtAEnf4kUQfuoKpDV++YAE9Hc5Mwn7IQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5LVRo/lH9B5TLstpsBvuqoEsiRMB8GA1UdIwQY MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1 LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARC8kptRF eA4jRoFOiMsqfmVA4jwQ9ySK0NOKGvVxRhb35viTVNAOVbN50j0eMINtsuP+1bNs PRqUgreHPrEDfQh0RTG4gGEy1gJvktITqucLRuWBe5FBfCjsqddkvTWHAWLVU4ZY nf5QougXa1ZCc02ISig7qR02o7YY6l3V2wIFwmHDHtknzcoJsb1nY7Qc+WedEOFM OoDKxeEe3Wii6uC6UK6p51NodvKJgR79MnREKlp1apkGmAyeEMDQ5jT7sqNbE6Gi pcU56yuzMsZLUYqgefuDZifpMuLELxR1h+y4qvzFK3d0DSSDNmzaYrldDpW/7dtD 3bVRkOazEo69TA== -----END CERTIFICATE-----Generated at Tue Dec 23 04:08:11 2025 by rpki-client