This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft File: sgTq-NsT70M8-YIp0jLTMKX14lY.mft (raw, json) Hash identifier: 1h/paEiGdiywvZNFAqOqpaxW+RDcUtMTL7+zr8bjWpA= Subject key identifier: 49:0D:BF:56:5D:B3:26:B2:79:03:33:B1:12:00:EC:9A:02:BD:B6:6E Authority key identifier: B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 Certificate issuer: /CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Certificate serial: 019C4358D54FB549BDFF47637D0047F119BA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft Manifest number: 1811 Signing time: Mon 09 Feb 2026 17:00:21 +0000 Manifest this update: Mon 09 Feb 2026 17:00:21 +0000 Manifest next update: Tue 10 Feb 2026 17:00:21 +0000 Files and hashes: 1: _7FUJXfD4Ngly6FguO7Icv3bnRs.roa (hash: uIw7fcvWe1lM1UlpZ2C4ZV/RLkNGSXf/iL61npEiJKw=) 2: sgTq-NsT70M8-YIp0jLTMKX14lY.crl (hash: 5AZJl2YjzR3sXPia9lsYfFnZ+nONVCaryjqfxhOQlz4=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:58:d5:4f:b5:49:bd:ff:47:63:7d:00:47:f1:19:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b204eaf8db13ef433cf98229d232d330a5f5e256 Validity Not Before: Feb 9 17:00:21 2026 GMT Not After : Feb 10 17:00:21 2026 GMT Subject: CN=490dbf565db326b2790333b11200ec9a02bdb66e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:01:83:cb:12:7d:ea:2f:4c:75:a1:9e:96:18: e1:9e:7f:e8:46:d0:ca:f5:45:bc:ce:57:71:4e:52: da:b9:26:86:84:fb:7b:35:55:95:c8:0d:10:a5:f7: 0d:d8:5c:2d:f8:7c:e6:47:87:5b:9f:b7:6f:3c:2c: 97:58:25:91:31:43:1f:43:f4:38:b2:1a:ac:e1:b6: a1:dd:ff:c8:ba:48:f9:90:4e:12:76:cc:47:45:2c: 20:5f:56:7c:90:9e:1a:6c:3b:19:3e:2a:aa:59:b7: 33:5c:98:3a:fa:7b:00:16:16:02:e9:5d:33:76:69: f0:dd:d3:c8:33:5a:0a:ee:8f:96:be:97:44:1c:8e: 23:a5:08:b6:dc:c9:40:5b:78:24:79:2e:24:78:6c: 96:09:3c:e7:17:8a:1b:03:24:07:31:fe:a0:03:40: 52:4b:e3:a9:95:2a:60:c7:e4:8a:c5:7f:23:53:8b: 3a:e8:67:b8:b9:de:d7:44:fb:cf:86:6a:a7:fb:14: 46:4a:20:d3:e9:6c:57:38:5f:27:75:e3:dc:c1:3a: 5f:cb:1b:10:b8:b9:6b:3e:56:a9:5b:fd:d7:49:88: ea:bb:d6:c4:be:8a:df:46:3b:3a:70:15:54:1d:45: 61:df:38:5c:8d:09:59:2c:55:6d:34:7d:17:3d:d2: 1e:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0D:BF:56:5D:B3:26:B2:79:03:33:B1:12:00:EC:9A:02:BD:B6:6E X509v3 Authority Key Identifier: keyid:B2:04:EA:F8:DB:13:EF:43:3C:F9:82:29:D2:32:D3:30:A5:F5:E2:56 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgTq-NsT70M8-YIp0jLTMKX14lY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/14/597638-713c-44b7-9b70-25017ec94095/1/sgTq-NsT70M8-YIp0jLTMKX14lY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:5e:b3:2b:10:58:a2:87:a3:bf:7c:af:7b:53:7b:6e:c7:b2: 80:30:7b:07:5d:5b:5f:65:ef:51:70:5d:16:a2:af:f8:5a:3c: 9d:0d:ab:ec:41:4b:68:20:64:06:1b:9d:3f:22:d0:09:e2:7d: 9b:56:cd:7f:2d:b9:97:02:bb:da:4d:92:3a:a2:a0:c8:11:53: 13:94:2c:ee:90:04:c3:23:20:02:05:a1:d7:08:bd:cd:69:96: 55:74:bf:74:ca:e3:a4:c9:83:8c:d3:1a:7b:93:e8:a0:01:51: 4c:67:d6:12:46:f8:d1:40:d5:65:18:58:1b:df:ca:52:8c:46: bc:56:f3:99:01:30:3a:03:bf:d4:85:04:69:8b:24:a0:2a:cd: cf:86:3b:44:44:93:9f:89:cd:5c:81:db:1a:be:5a:44:38:4b: ee:47:d4:05:a8:00:45:69:ca:f3:e5:8e:5a:20:7c:34:9c:4e: 50:98:72:66:d6:cc:9c:7d:68:89:bc:60:b0:f8:4c:92:41:3d: 56:df:c4:85:a0:c6:3e:b4:83:75:73:5c:97:b9:dd:6d:c5:f8: 56:7b:76:bb:53:84:4b:f5:92:8d:71:56:bd:85:03:37:e0:b4: e2:3d:a4:6b:92:a0:fa:d4:e8:67:58:c8:50:d0:f5:a9:41:57: d3:c2:00:13 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDWNVPtUm9/0djfQBH8Rm6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDRlYWY4ZGIxM2VmNDMzY2Y5ODIyOWQyMzJkMzMwYTVm NWUyNTYwHhcNMjYwMjA5MTcwMDIxWhcNMjYwMjEwMTcwMDIxWjAzMTEwLwYDVQQD Eyg0OTBkYmY1NjVkYjMyNmIyNzkwMzMzYjExMjAwZWM5YTAyYmRiNjZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqwGDyxJ96i9MdaGelhjhnn/oRtDK 9UW8zldxTlLauSaGhPt7NVWVyA0QpfcN2Fwt+HzmR4dbn7dvPCyXWCWRMUMfQ/Q4 shqs4bah3f/Iukj5kE4SdsxHRSwgX1Z8kJ4abDsZPiqqWbczXJg6+nsAFhYC6V0z dmnw3dPIM1oK7o+WvpdEHI4jpQi23MlAW3gkeS4keGyWCTznF4obAyQHMf6gA0BS S+OplSpgx+SKxX8jU4s66Ge4ud7XRPvPhmqn+xRGSiDT6WxXOF8ndePcwTpfyxsQ uLlrPlapW/3XSYjqu9bEvorfRjs6cBVUHUVh3zhcjQlZLFVtNH0XPdIeNwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEkNv1ZdsyayeQMzsRIA7JoCvbZuMB8GA1UdIwQY MBaAFLIE6vjbE+9DPPmCKdIy0zCl9eJWMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAt MjUwMTdlYzk0MDk1LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xNC81OTc2MzgtNzEzYy00NGI3LTliNzAtMjUwMTdlYzk0MDk1 LzEvc2dUcS1Oc1Q3ME04LVlJcDBqTFRNS1gxNGxZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAg16zKxBY ooejv3yve1N7bseygDB7B11bX2XvUXBdFqKv+Fo8nQ2r7EFLaCBkBhudPyLQCeJ9 m1bNfy25lwK72k2SOqKgyBFTE5Qs7pAEwyMgAgWh1wi9zWmWVXS/dMrjpMmDjNMa e5PooAFRTGfWEkb40UDVZRhYG9/KUoxGvFbzmQEwOgO/1IUEaYskoCrNz4Y7REST n4nNXIHbGr5aRDhL7kfUBagARWnK8+WOWiB8NJxOUJhyZtbMnH1oibxgsPhMkkE9 Vt/EhaDGPrSDdXNcl7ndbcX4Vnt2u1OES/WSjXFWvYUDN+C04j2ka5Kg+tToZ1jI UND1qUFX08IAEw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:58:47 2026 by rpki-client