This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json) Hash identifier: pTqIGbIGm+7qGtMiGmf2rBXdFy733yN21ML37zfhc5Q= Subject key identifier: 48:9D:F9:D9:D0:52:2A:DE:0A:BE:17:F3:BB:C0:B1:27:41:85:DC:0E Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade Certificate serial: 019B2287C21FDD60DA10064F765A02D09ADD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft Manifest number: 177B Signing time: Mon 15 Dec 2025 15:01:20 +0000 Manifest this update: Mon 15 Dec 2025 15:01:20 +0000 Manifest next update: Tue 16 Dec 2025 15:01:20 +0000 Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=) 2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: 2nXWZIgd/jlUeWszHnXkCKmMODNCNPX8lwubLXFIUwo=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 16 Dec 2025 15:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:87:c2:1f:dd:60:da:10:06:4f:76:5a:02:d0:9a:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade Validity Not Before: Dec 15 15:01:20 2025 GMT Not After : Dec 16 15:01:20 2025 GMT Subject: CN=489df9d9d0522ade0abe17f3bbc0b1274185dc0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c6:c3:be:0e:41:8f:54:15:71:1a:31:42:b1: 58:5b:ad:c5:83:34:64:dd:85:f8:2e:b0:39:6c:e8: 01:41:cb:3f:94:3c:8b:8a:4a:7a:16:ed:48:2a:b1: 3f:da:bb:bf:0b:fa:9a:81:69:3b:4f:9b:15:10:cb: 99:22:27:e4:7d:82:e5:72:2e:fe:f1:25:30:22:f2: d2:05:dd:d0:48:f1:cc:13:ea:66:51:9e:41:0c:ed: cd:0e:fe:ec:d0:09:19:81:d7:04:97:5b:20:66:91: a6:3a:f9:46:d3:d7:c8:7b:19:40:3d:8f:d2:f0:21: d2:bb:65:75:91:b3:2c:91:a6:6b:3b:9d:49:15:4b: 8f:f2:81:97:14:e2:a0:6f:01:b0:ba:e0:a7:50:eb: 95:ec:db:5b:73:d9:e4:a5:c3:70:d1:4f:4a:39:43: 14:7e:a4:cf:29:ca:1a:ef:1a:39:32:9d:68:bf:2e: 76:d0:3e:30:d8:da:1a:1a:2c:01:3e:9a:97:09:b1: 4d:e3:11:d7:7e:c2:f9:26:f0:3c:bc:96:55:71:40: 8c:52:71:89:26:e2:58:a0:d8:c8:2e:2b:b7:85:57: 87:84:aa:6d:41:14:e1:e7:ea:1f:2e:4c:44:11:38: d6:78:24:e8:ef:34:26:26:43:1a:ab:e6:e4:c9:75: 26:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:9D:F9:D9:D0:52:2A:DE:0A:BE:17:F3:BB:C0:B1:27:41:85:DC:0E X509v3 Authority Key Identifier: keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:30:c1:b2:66:09:11:cd:71:83:3c:8b:3e:32:f6:68:43:54: 78:48:30:bb:eb:7c:1b:15:64:11:cd:6a:f0:ee:e0:0f:be:81: 95:90:63:35:66:3b:30:0d:97:4b:c6:a4:d4:9f:0a:80:ba:10: bd:49:01:a4:99:61:2b:0b:cd:c8:40:66:ff:7c:f9:7a:15:f8: e3:fb:cc:35:fa:df:5d:47:7e:e4:10:0d:88:45:fa:7e:90:67: 56:ee:61:1e:ae:55:56:fe:eb:2b:5b:d1:d4:07:b6:21:21:ef: c9:92:97:ca:52:93:e7:68:44:cf:54:9a:a8:63:0f:a8:47:03: 99:7b:1a:10:5b:e6:ba:75:9b:a0:e0:23:0c:45:7a:95:33:04: 3f:ca:4d:d1:a9:b2:ff:9e:81:29:5d:87:70:9b:7e:17:18:de: 83:10:ce:d0:c1:c5:f1:e2:be:12:38:76:fd:1f:87:0f:bb:18: 91:00:70:aa:e5:89:fa:62:44:7a:79:33:bd:44:3d:7c:d5:2a: 61:3e:98:06:12:eb:ca:79:af:5f:1b:e2:48:1c:cb:48:79:71: 62:38:2e:28:f5:94:cb:98:ca:34:31:d3:41:6b:04:98:be:09: 63:2b:95:0c:6e:96:45:d5:b3:6d:f3:66:35:7c:45:85:32:b8: ee:e6:cd:35 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsih8If3WDaEAZPdloC0JrdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMjBkOTFiNGU5ZDcwZjAzNGZhMTZhMTZhODg3ZDQyNTU3 OTJhZGUwHhcNMjUxMjE1MTUwMTIwWhcNMjUxMjE2MTUwMTIwWjAzMTEwLwYDVQQD Eyg0ODlkZjlkOWQwNTIyYWRlMGFiZTE3ZjNiYmMwYjEyNzQxODVkYzBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsbDvg5Bj1QVcRoxQrFYW63FgzRk 3YX4LrA5bOgBQcs/lDyLikp6Fu1IKrE/2ru/C/qagWk7T5sVEMuZIifkfYLlci7+ 8SUwIvLSBd3QSPHME+pmUZ5BDO3NDv7s0AkZgdcEl1sgZpGmOvlG09fIexlAPY/S 8CHSu2V1kbMskaZrO51JFUuP8oGXFOKgbwGwuuCnUOuV7Ntbc9nkpcNw0U9KOUMU fqTPKcoa7xo5Mp1ovy520D4w2NoaGiwBPpqXCbFN4xHXfsL5JvA8vJZVcUCMUnGJ JuJYoNjILiu3hVeHhKptQRTh5+ofLkxEETjWeCTo7zQmJkMaq+bkyXUmywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEid+dnQUireCr4X87vAsSdBhdwOMB8GA1UdIwQY MBaAFLIg2RtOnXDwNPoWoWqIfUJVeSreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQt OTg3MTczYjllOTg3LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQtOTg3MTczYjllOTg3 LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJDDBsmYJ Ec1xgzyLPjL2aENUeEgwu+t8GxVkEc1q8O7gD76BlZBjNWY7MA2XS8ak1J8KgLoQ vUkBpJlhKwvNyEBm/3z5ehX44/vMNfrfXUd+5BANiEX6fpBnVu5hHq5VVv7rK1vR 1Ae2ISHvyZKXylKT52hEz1SaqGMPqEcDmXsaEFvmunWboOAjDEV6lTMEP8pN0amy /56BKV2HcJt+FxjegxDO0MHF8eK+Ejh2/R+HD7sYkQBwquWJ+mJEenkzvUQ9fNUq YT6YBhLrynmvXxviSBzLSHlxYjguKPWUy5jKNDHTQWsEmL4JYyuVDG6WRdWzbfNm NXxFhTK47ubNNQ== -----END CERTIFICATE-----Generated at Mon Dec 15 19:58:01 2025 by rpki-client