This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft File: sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft (raw, json) Hash identifier: IrZJJ97tslxEcAEV6ev9MM/s1AlRVjORVQhVwU/wFAw= Subject key identifier: 15:AE:7B:F6:85:DC:60:C9:FF:C1:48:63:CA:B3:DD:92:84:68:8A:44 Authority key identifier: B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49 Certificate issuer: /CN=b20663583a8189cbeaac88d438767997b1125549 Certificate serial: 019B5ABFFC87AFAF1697403CD42C0120B233 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft Manifest number: 16F5 Signing time: Fri 26 Dec 2025 13:01:30 +0000 Manifest this update: Fri 26 Dec 2025 13:01:30 +0000 Manifest next update: Sat 27 Dec 2025 13:01:30 +0000 Files and hashes: 1: fW2b4Mi4-jlU6WyOHwej57Bj7xc.roa (hash: gkYhGIaUuP9pIbVaUa+O+pFYYvku1Vu69Icl89ypkjo=) 2: sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl (hash: KXcSz16NMV1t0VGLPWG5I9VBhWS7gsZmEtOv6mrjlIk=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:5a:bf:fc:87:af:af:16:97:40:3c:d4:2c:01:20:b2:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b20663583a8189cbeaac88d438767997b1125549 Validity Not Before: Dec 26 13:01:30 2025 GMT Not After : Dec 27 13:01:30 2025 GMT Subject: CN=15ae7bf685dc60c9ffc14863cab3dd9284688a44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:cf:f3:16:be:1c:91:90:6d:23:0a:bc:03:f2: e1:bb:d7:3a:89:69:33:08:77:96:ad:93:1e:29:0b: 6b:b8:43:20:ef:c0:89:81:0b:0c:d8:21:1f:cf:9b: 44:b1:18:63:3e:d2:82:83:ae:2b:fc:05:e8:dc:05: fa:c5:26:54:62:89:e6:df:61:38:7b:49:48:23:a3: 8a:65:4e:c3:91:55:f0:06:46:fc:3e:99:68:14:98: 4d:61:de:d0:40:af:13:23:6b:9e:62:a3:fe:4e:2b: 3a:d0:f5:9f:12:ea:7b:7e:77:f0:bf:ed:9d:9a:01: 4e:9e:92:cb:94:5c:e9:07:a6:9f:06:7f:9f:bb:3b: 4f:a1:bd:90:87:86:a9:eb:fe:05:e6:6c:10:33:22: db:61:b0:6d:54:af:b2:06:62:99:d6:4c:14:1f:bf: c4:00:2b:8c:5d:2f:52:3e:f6:53:dd:8c:b4:3a:aa: 32:d9:70:c3:69:03:f5:21:85:07:b4:1b:a0:54:32: 29:05:64:54:48:e8:a4:1f:b1:49:08:ca:1b:d4:79: 03:12:2f:17:74:53:a2:0a:75:c0:a3:38:d7:79:de: a0:f3:5c:56:16:be:ee:e9:af:ed:07:d3:53:27:b0: 27:74:e8:2c:98:2b:e6:b1:e6:43:d0:72:32:c8:0f: 6d:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:AE:7B:F6:85:DC:60:C9:FF:C1:48:63:CA:B3:DD:92:84:68:8A:44 X509v3 Authority Key Identifier: keyid:B2:06:63:58:3A:81:89:CB:EA:AC:88:D4:38:76:79:97:B1:12:55:49 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/sgZjWDqBicvqrIjUOHZ5l7ESVUk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/65/ef6f1a-6dfc-494e-b85d-d18773e7bc47/1/sgZjWDqBicvqrIjUOHZ5l7ESVUk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 57:28:41:ac:d1:99:72:56:77:b0:11:0d:0c:48:fe:c8:9f:17: 08:5c:0a:03:a1:8a:d9:87:a3:5f:8e:73:99:43:74:12:6d:29: 46:bd:15:94:02:bd:fe:16:9b:53:94:1b:c9:31:02:8c:06:69: 06:a7:88:d9:6c:83:dd:39:3f:12:0f:ab:34:01:96:8f:74:49: c0:18:c7:c3:ee:68:13:3f:18:92:f7:ac:25:a6:67:81:83:57: 17:66:5a:10:ba:df:83:cf:43:8f:ea:9b:f7:54:2c:5a:8c:6e: 05:c1:fc:0a:ed:49:d9:96:11:46:50:ef:43:12:5b:30:d2:c1: 7e:93:6a:d7:c8:1b:88:d4:e2:8c:ec:a9:09:51:b8:a2:87:be: c0:a0:c6:12:ed:1b:42:23:0b:ce:c2:c3:b0:97:3f:8c:0a:3e: 57:cc:46:6c:6f:e3:df:c8:7a:82:08:bf:62:a2:57:23:ce:6e: a8:48:f9:e8:ba:37:2a:7a:a7:a2:ff:fd:9c:57:ba:5f:f4:1b: 26:40:70:42:10:37:40:04:ce:7f:b3:dd:8f:dd:e4:a0:1b:ec: 59:e8:25:51:1c:11:37:fc:e8:c3:64:e8:4a:4a:20:0c:0f:81: 86:86:51:d6:2a:86:c9:5a:57:34:7d:58:8b:00:78:21:ce:8f: 37:ea:96:61 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtav/yHr68Wl0A81CwBILIzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMDY2MzU4M2E4MTg5Y2JlYWFjODhkNDM4NzY3OTk3YjEx MjU1NDkwHhcNMjUxMjI2MTMwMTMwWhcNMjUxMjI3MTMwMTMwWjAzMTEwLwYDVQQD EygxNWFlN2JmNjg1ZGM2MGM5ZmZjMTQ4NjNjYWIzZGQ5Mjg0Njg4YTQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAus/zFr4ckZBtIwq8A/Lhu9c6iWkz CHeWrZMeKQtruEMg78CJgQsM2CEfz5tEsRhjPtKCg64r/AXo3AX6xSZUYonm32E4 e0lII6OKZU7DkVXwBkb8PploFJhNYd7QQK8TI2ueYqP+Tis60PWfEup7fnfwv+2d mgFOnpLLlFzpB6afBn+fuztPob2Qh4ap6/4F5mwQMyLbYbBtVK+yBmKZ1kwUH7/E ACuMXS9SPvZT3Yy0Oqoy2XDDaQP1IYUHtBugVDIpBWRUSOikH7FJCMob1HkDEi8X dFOiCnXAozjXed6g81xWFr7u6a/tB9NTJ7AndOgsmCvmseZD0HIyyA9tkQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBWue/aF3GDJ/8FIY8qz3ZKEaIpEMB8GA1UdIwQY MBaAFLIGY1g6gYnL6qyI1Dh2eZexElVJMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQt ZDE4NzczZTdiYzQ3LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82NS9lZjZmMWEtNmRmYy00OTRlLWI4NWQtZDE4NzczZTdiYzQ3 LzEvc2daaldEcUJpY3ZxcklqVU9IWjVsN0VTVlVrLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVyhBrNGZ clZ3sBENDEj+yJ8XCFwKA6GK2YejX45zmUN0Em0pRr0VlAK9/habU5QbyTECjAZp BqeI2WyD3Tk/Eg+rNAGWj3RJwBjHw+5oEz8YkvesJaZngYNXF2ZaELrfg89Dj+qb 91QsWoxuBcH8Cu1J2ZYRRlDvQxJbMNLBfpNq18gbiNTijOypCVG4ooe+wKDGEu0b QiMLzsLDsJc/jAo+V8xGbG/j38h6ggi/YqJXI85uqEj56Lo3Knqnov/9nFe6X/Qb JkBwQhA3QATOf7Pdj93koBvsWeglURwRN/zow2ToSkogDA+BhoZR1iqGyVpXNH1Y iwB4Ic6PN+qWYQ== -----END CERTIFICATE-----Generated at Fri Dec 26 16:01:58 2025 by rpki-client