This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft File: SgvIUgmAGVIMeOmoC22EyzyrcEI.mft (raw, json) Hash identifier: nksf7idPHvCU1ec7mySSHZFrNQpZvY+6RYlnqV2RfFc= Subject key identifier: 1E:40:D5:02:39:F2:3B:C8:B9:BC:BE:2E:98:1A:B5:53:12:44:D9:8F Authority key identifier: 4A:0B:C8:52:09:80:19:52:0C:78:E9:A8:0B:6D:84:CB:3C:AB:70:42 Certificate issuer: /CN=4a0bc852098019520c78e9a80b6d84cb3cab7042 Certificate serial: 019C1B02A1D828F763C441CD11E15D0E9568 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft Manifest number: 33 Signing time: Sun 01 Feb 2026 21:01:23 +0000 Manifest this update: Sun 01 Feb 2026 21:01:23 +0000 Manifest next update: Mon 02 Feb 2026 21:01:23 +0000 Files and hashes: 1: DZUI_bEIrP-yvThfRpjcY2JDgZ8.asa (hash: RghHL1DuN+HQMkw8GbUaQPmzZB8C45TxXFTAWg1Ry2g=) 2: SgvIUgmAGVIMeOmoC22EyzyrcEI.crl (hash: g7dnEFnSNCxeyVAzvQK5m5fDj/9nfETeM8hbIcV6494=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.crl rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:1b:02:a1:d8:28:f7:63:c4:41:cd:11:e1:5d:0e:95:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4a0bc852098019520c78e9a80b6d84cb3cab7042 Validity Not Before: Feb 1 21:01:23 2026 GMT Not After : Feb 2 21:01:23 2026 GMT Subject: CN=1e40d50239f23bc8b9bcbe2e981ab5531244d98f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:fe:87:62:d2:21:b7:d5:ee:8c:a1:b9:e9:22: d8:cd:9a:2f:5a:42:68:20:d5:b4:98:21:a2:f5:df: a5:57:8e:5c:92:9e:7b:b6:fb:ef:92:1c:51:70:d9: 28:02:de:62:f4:7f:ed:0d:b6:fa:36:ad:78:9a:9e: 9a:4e:93:9c:84:dc:b9:20:ec:9d:04:9b:19:65:e9: 14:29:91:d7:47:57:6b:86:2e:80:29:2e:94:43:b0: 77:2f:1b:58:c6:e5:99:18:43:eb:d0:cc:4e:6d:3e: eb:47:4f:93:48:97:20:40:b1:5a:c2:ed:26:9e:bc: 0f:a9:b1:bb:79:e2:db:d8:9b:d4:ca:1b:50:fa:73: 78:8a:6a:47:84:a4:0b:0a:72:96:70:6b:0d:23:ae: 0a:fe:34:96:38:39:a4:a1:53:ab:e8:46:54:a2:81: ca:72:33:1d:ad:22:43:a1:ea:f1:56:a3:8a:b3:72: 94:52:c0:e5:67:11:5f:1b:18:60:fd:d7:0f:54:c3: 17:8c:88:6e:ab:d0:b1:2b:f5:d0:12:cc:ab:59:16: ee:f2:95:d2:a1:af:92:b4:0f:54:c1:e1:7b:62:1d: c3:6f:0d:c2:7a:88:85:51:5b:3e:06:fb:44:7a:30: 68:55:90:74:e6:e8:1c:04:e3:6f:62:aa:94:73:50: 3d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:40:D5:02:39:F2:3B:C8:B9:BC:BE:2E:98:1A:B5:53:12:44:D9:8F X509v3 Authority Key Identifier: keyid:4A:0B:C8:52:09:80:19:52:0C:78:E9:A8:0B:6D:84:CB:3C:AB:70:42 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SgvIUgmAGVIMeOmoC22EyzyrcEI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/52/c08c09-93d0-4ad8-a809-daac82d27f60/1/SgvIUgmAGVIMeOmoC22EyzyrcEI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:26:e7:6f:6a:97:7a:9f:19:44:7e:7d:80:94:1a:82:fa:b9: f2:cc:9b:f0:3c:cc:64:6a:21:09:fd:35:46:94:10:52:90:8a: f4:fd:22:7a:e0:83:d6:97:e6:0b:8a:a0:7f:b5:94:11:d7:60: a4:da:fb:2b:00:f7:d9:ec:bd:bb:a9:dc:7d:fe:aa:04:0c:bb: 7b:fd:c6:65:dc:f0:d8:9d:e7:12:b8:45:ec:b0:9b:68:bc:f9: 00:bc:ba:86:e0:dc:53:2c:1d:62:ec:60:19:07:85:b6:96:ae: 6d:e7:a8:94:d3:4d:ed:a1:f6:67:fb:16:bc:f8:99:55:37:c8: 32:f4:cb:85:7f:9a:70:d7:43:b8:e4:4e:87:c1:0d:be:2d:9a: 69:4c:92:02:4d:07:c0:b9:ad:a6:4b:da:5c:55:f2:a3:f5:6b: de:ba:9b:a1:54:31:70:41:3c:96:8e:31:30:ad:14:52:42:d6: d6:ef:3c:9a:63:21:83:24:01:1b:00:7a:60:9e:ad:e3:dd:a7: f6:3e:ca:f1:51:0d:7b:80:21:e2:2a:76:de:1d:60:9e:26:9a: 59:1d:17:c1:ac:68:a3:5c:de:4b:ec:14:20:38:1e:62:e4:ec: 70:a8:d4:0c:b2:1e:dd:17:fa:38:c6:9b:d4:e6:95:8d:ef:81: 11:54:d3:90 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZwbAqHYKPdjxEHNEeFdDpVoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRhMGJjODUyMDk4MDE5NTIwYzc4ZTlhODBiNmQ4NGNiM2Nh YjcwNDIwHhcNMjYwMjAxMjEwMTIzWhcNMjYwMjAyMjEwMTIzWjAzMTEwLwYDVQQD EygxZTQwZDUwMjM5ZjIzYmM4YjliY2JlMmU5ODFhYjU1MzEyNDRkOThmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiv6HYtIht9XujKG56SLYzZovWkJo INW0mCGi9d+lV45ckp57tvvvkhxRcNkoAt5i9H/tDbb6Nq14mp6aTpOchNy5IOyd BJsZZekUKZHXR1drhi6AKS6UQ7B3LxtYxuWZGEPr0MxObT7rR0+TSJcgQLFawu0m nrwPqbG7eeLb2JvUyhtQ+nN4impHhKQLCnKWcGsNI64K/jSWODmkoVOr6EZUooHK cjMdrSJDoerxVqOKs3KUUsDlZxFfGxhg/dcPVMMXjIhuq9CxK/XQEsyrWRbu8pXS oa+StA9UweF7Yh3Dbw3CeoiFUVs+BvtEejBoVZB05ugcBONvYqqUc1A9DwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFB5A1QI58jvIuby+LpgatVMSRNmPMB8GA1UdIwQY MBaAFEoLyFIJgBlSDHjpqAtthMs8q3BCMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2d2SVVnbUFHVklNZU9tb0MyMkV5enlyY0VJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81Mi9jMDhjMDktOTNkMC00YWQ4LWE4MDkt ZGFhYzgyZDI3ZjYwLzEvU2d2SVVnbUFHVklNZU9tb0MyMkV5enlyY0VJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81Mi9jMDhjMDktOTNkMC00YWQ4LWE4MDktZGFhYzgyZDI3ZjYw LzEvU2d2SVVnbUFHVklNZU9tb0MyMkV5enlyY0VJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADibnb2qX ep8ZRH59gJQagvq58syb8DzMZGohCf01RpQQUpCK9P0ieuCD1pfmC4qgf7WUEddg pNr7KwD32ey9u6ncff6qBAy7e/3GZdzw2J3nErhF7LCbaLz5ALy6huDcUywdYuxg GQeFtpaubeeolNNN7aH2Z/sWvPiZVTfIMvTLhX+acNdDuOROh8ENvi2aaUySAk0H wLmtpkvaXFXyo/Vr3rqboVQxcEE8lo4xMK0UUkLW1u88mmMhgyQBGwB6YJ6t492n 9j7K8VENe4Ah4ip23h1gniaaWR0Xwaxoo1zeS+wUIDgeYuTscKjUDLIe3Rf6OMab 1OaVje+BEVTTkA== -----END CERTIFICATE-----Generated at Mon Feb 2 08:04:12 2026 by rpki-client