This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft File: sgzLpAbArQxb4AB22ZgLNIhWmoo.mft (raw, json) Hash identifier: hpzmn11T7w8/Mo5nkaZHcsSVYseaDg0oNoOxj7Uj1d0= Subject key identifier: 75:02:30:7B:40:DF:B3:42:E0:F7:23:B3:BD:CB:25:C8:CE:6A:94:C7 Authority key identifier: B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A Certificate issuer: /CN=b20ccba406c0ad0c5be00076d9980b3488569a8a Certificate serial: 019C43226D7A791110EBA58472D8B571380E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft Manifest number: 12F5 Signing time: Mon 09 Feb 2026 16:00:55 +0000 Manifest this update: Mon 09 Feb 2026 16:00:55 +0000 Manifest next update: Tue 10 Feb 2026 16:00:55 +0000 Files and hashes: 1: sgzLpAbArQxb4AB22ZgLNIhWmoo.crl (hash: jwplWeRKrZWvHYamlx9mnP58wznKPOzhf0RykcdGbsA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:22:6d:7a:79:11:10:eb:a5:84:72:d8:b5:71:38:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b20ccba406c0ad0c5be00076d9980b3488569a8a Validity Not Before: Feb 9 16:00:55 2026 GMT Not After : Feb 10 16:00:55 2026 GMT Subject: CN=7502307b40dfb342e0f723b3bdcb25c8ce6a94c7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:f2:e9:77:25:aa:28:23:db:77:a5:22:99:c2: a7:b0:df:ee:9a:ad:e4:da:24:10:ee:4c:51:fd:2b: ca:33:3f:f7:6f:55:76:4a:de:76:6e:25:a7:2a:18: 59:77:69:87:a4:b3:1c:8c:8f:b5:a3:cb:32:28:e7: 6d:f6:d6:d2:92:d7:5e:73:9b:93:cb:5d:b8:5c:5e: 51:25:32:f5:d3:8c:43:cc:f7:62:2e:83:3c:82:e2: f0:c0:dd:41:a1:4d:c5:6a:dc:4b:08:62:15:7f:63: 56:76:e7:a2:d3:e1:fa:3e:0f:d4:4a:0e:5a:2e:26: d6:3e:94:1f:c0:f5:1a:ec:df:b8:1a:f2:3a:26:11: fc:6b:44:c9:dd:3e:05:1c:c0:17:a2:4b:b2:c6:36: 25:19:9f:67:84:4d:47:b0:7d:de:33:4f:d6:f6:b9: 38:b6:37:67:fa:87:4d:07:49:80:93:d8:a6:14:48: 06:fa:82:cc:6c:6d:86:ee:a8:b5:fa:20:f7:aa:b2: 48:2b:d7:34:2c:45:9e:64:38:5b:82:f5:83:f6:ed: 61:db:18:cd:88:7a:e6:22:77:15:46:ef:f7:f6:f8: e2:7e:6a:a8:ae:36:d6:da:40:f6:21:f3:dc:a0:f9: 32:c9:85:1c:f4:f6:23:5f:e4:6c:d1:a1:03:f1:5c: ae:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:02:30:7B:40:DF:B3:42:E0:F7:23:B3:BD:CB:25:C8:CE:6A:94:C7 X509v3 Authority Key Identifier: keyid:B2:0C:CB:A4:06:C0:AD:0C:5B:E0:00:76:D9:98:0B:34:88:56:9A:8A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgzLpAbArQxb4AB22ZgLNIhWmoo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/743a50-d7f4-42d1-a09d-7ca93ecb2234/1/sgzLpAbArQxb4AB22ZgLNIhWmoo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a8:bd:65:53:03:4b:d5:1f:6b:4b:90:88:13:74:5f:0b:3b:a1: f8:fd:ad:c6:cb:33:44:84:8a:1c:16:ae:fe:e2:b5:fa:38:a2: 1c:88:73:95:2f:36:23:13:66:6b:0d:78:a0:a5:12:23:e6:e4: 65:08:d7:88:1d:a9:b0:da:cf:14:5f:7e:d8:a8:d6:2f:c2:e5: d5:75:38:23:8d:24:a5:57:d9:ba:9d:08:50:36:d8:59:84:6f: 1c:16:8c:21:bf:3a:9b:b7:f1:ec:4f:fe:be:9e:76:1a:d2:59: 1b:14:bf:c4:ba:8a:85:5c:2d:03:8f:cb:8f:c8:ab:f0:56:2a: 08:f1:85:4f:f0:d8:c5:c3:bf:20:fe:52:a5:b1:31:2d:40:b5: a6:62:46:e4:7b:9d:54:58:f8:cf:da:4a:56:8e:4b:12:e6:5d: b7:d9:ad:04:0a:c3:37:27:84:a0:90:d9:9b:a6:4d:6e:ee:ae: 90:9e:7b:47:87:0e:7b:fb:aa:bd:9f:48:7a:aa:c4:cf:24:e3: c7:8e:80:1e:40:a6:27:a3:6d:0c:56:f8:82:cb:48:1e:47:f6: 62:cf:98:f2:f4:8b:a9:e3:3a:bf:e3:a7:b5:c7:e7:6f:01:a1: d3:ee:22:12:53:5b:1f:20:28:a8:f4:5b:d4:f7:3b:7f:32:cb: dc:ab:f6:43 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDIm16eREQ66WEcti1cTgOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMGNjYmE0MDZjMGFkMGM1YmUwMDA3NmQ5OTgwYjM0ODg1 NjlhOGEwHhcNMjYwMjA5MTYwMDU1WhcNMjYwMjEwMTYwMDU1WjAzMTEwLwYDVQQD Eyg3NTAyMzA3YjQwZGZiMzQyZTBmNzIzYjNiZGNiMjVjOGNlNmE5NGM3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApfLpdyWqKCPbd6UimcKnsN/umq3k 2iQQ7kxR/SvKMz/3b1V2St52biWnKhhZd2mHpLMcjI+1o8syKOdt9tbSktdec5uT y124XF5RJTL104xDzPdiLoM8guLwwN1BoU3FatxLCGIVf2NWduei0+H6Pg/USg5a LibWPpQfwPUa7N+4GvI6JhH8a0TJ3T4FHMAXokuyxjYlGZ9nhE1HsH3eM0/W9rk4 tjdn+odNB0mAk9imFEgG+oLMbG2G7qi1+iD3qrJIK9c0LEWeZDhbgvWD9u1h2xjN iHrmIncVRu/39vjifmqorjbW2kD2IfPcoPkyyYUc9PYjX+Rs0aED8VyuOwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHUCMHtA37NC4Pcjs73LJcjOapTHMB8GA1UdIwQY MBaAFLIMy6QGwK0MW+AAdtmYCzSIVpqKMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2d6THBBYkFyUXhiNEFCMjJaZ0xOSWhXbW9vLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS83NDNhNTAtZDdmNC00MmQxLWEwOWQt N2NhOTNlY2IyMjM0LzEvc2d6THBBYkFyUXhiNEFCMjJaZ0xOSWhXbW9vLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS83NDNhNTAtZDdmNC00MmQxLWEwOWQtN2NhOTNlY2IyMjM0 LzEvc2d6THBBYkFyUXhiNEFCMjJaZ0xOSWhXbW9vLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqL1lUwNL 1R9rS5CIE3RfCzuh+P2txsszRISKHBau/uK1+jiiHIhzlS82IxNmaw14oKUSI+bk ZQjXiB2psNrPFF9+2KjWL8Ll1XU4I40kpVfZup0IUDbYWYRvHBaMIb86m7fx7E/+ vp52GtJZGxS/xLqKhVwtA4/Lj8ir8FYqCPGFT/DYxcO/IP5SpbExLUC1pmJG5Hud VFj4z9pKVo5LEuZdt9mtBArDNyeEoJDZm6ZNbu6ukJ57R4cOe/uqvZ9IeqrEzyTj x46AHkCmJ6NtDFb4gstIHkf2Ys+Y8vSLqeM6v+OntcfnbwGh0+4iElNbHyAoqPRb 1Pc7fzLL3Kv2Qw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:33:56 2026 by rpki-client