This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft File: SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft (raw, json) Hash identifier: z85FYEq83K+swbOKXhiqPXuY/XbSbWNY62E3Xx1wAfc= Subject key identifier: 41:04:46:34:4D:01:1B:D4:B8:5F:67:7B:11:0B:14:13:15:AA:A3:02 Authority key identifier: 49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88 Certificate issuer: /CN=49f80697fe2e2d97b591ad5b91580555a44d0388 Certificate serial: 019B3D908F2BD597A20E8CD23AA17CC5A6E9 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft Manifest number: 1771 Signing time: Sat 20 Dec 2025 21:00:42 +0000 Manifest this update: Sat 20 Dec 2025 21:00:42 +0000 Manifest next update: Sun 21 Dec 2025 21:00:42 +0000 Files and hashes: 1: SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl (hash: V3BTLMNX45yuANuTF6UZGMhHyjGrF322VuzBeI633yM=) 2: qamXgGdELqVwuCRXcGaE5fyjphY.roa (hash: XwiZQCHwX+Vwexgrkkuz5eMSgh62jyoQLxKiqhe1Bqg=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3d:90:8f:2b:d5:97:a2:0e:8c:d2:3a:a1:7c:c5:a6:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49f80697fe2e2d97b591ad5b91580555a44d0388 Validity Not Before: Dec 20 21:00:42 2025 GMT Not After : Dec 21 21:00:42 2025 GMT Subject: CN=410446344d011bd4b85f677b110b141315aaa302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:8c:36:21:78:3c:c9:b2:bf:9a:cf:a1:03:49: 5d:d5:6d:e1:e7:f7:da:45:81:33:dd:f4:1b:4e:b1: d0:2e:2b:6d:ff:ce:75:d6:31:29:07:e2:28:f4:ac: 82:ea:9e:54:ba:f8:46:45:6d:b1:ac:63:42:35:0c: f2:9f:ba:6c:6b:3a:64:0f:0c:a2:db:62:c7:09:e8: 93:63:0e:cb:63:ee:a6:73:6f:df:51:3c:6d:f2:aa: 67:20:a5:7f:19:6c:3c:07:81:2b:5c:d5:07:5d:01: 51:a8:7c:a4:44:99:72:6e:56:ce:fc:58:93:e7:b6: c1:b2:50:bb:b3:cf:e0:99:84:a4:05:e5:f4:bb:55: ee:b5:57:93:e4:01:66:30:e1:b1:6f:8f:5a:97:0c: f9:32:1c:f9:37:4e:af:69:72:5d:b6:59:35:9e:c2: 9b:c0:ad:38:64:d1:a2:0f:83:3e:c3:57:51:66:1e: 99:93:7f:bc:70:5a:1c:e2:2c:be:10:1f:3c:0d:ef: 0b:b8:fb:3e:71:10:aa:f2:36:77:9f:36:1b:46:a5: 7d:4b:cd:2c:3c:5b:d7:02:15:82:24:d1:22:60:3e: e3:fb:d4:eb:73:55:0e:d8:19:b6:2b:06:01:ee:0f: 43:95:c8:be:94:ec:1a:80:56:08:c6:ab:8d:34:54: c1:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:04:46:34:4D:01:1B:D4:B8:5F:67:7B:11:0B:14:13:15:AA:A3:02 X509v3 Authority Key Identifier: keyid:49:F8:06:97:FE:2E:2D:97:B5:91:AD:5B:91:58:05:55:A4:4D:03:88 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/SfgGl_4uLZe1ka1bkVgFVaRNA4g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/aa/24df72-fccc-48df-a5ae-1a64a8077b14/1/SfgGl_4uLZe1ka1bkVgFVaRNA4g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5d:1c:ec:f7:ac:e6:0b:97:1d:f5:c2:b6:de:48:2b:35:3d:5a: 9e:8f:96:ed:91:7a:74:6a:49:1c:1b:db:08:81:b6:a8:73:8e: c5:ce:19:d5:c5:d9:d7:14:d0:31:0b:32:19:d4:29:d4:a4:4d: f1:4a:de:bd:e2:1f:f0:01:40:b9:d0:af:ff:93:86:b5:cd:9d: 40:66:48:5c:a9:35:cb:a8:b7:7c:05:59:0a:4a:2d:a4:98:bc: 45:6d:18:1f:74:b0:3c:13:1a:f1:f0:3f:6e:de:58:dc:75:db: 68:dc:ce:71:db:90:ed:3b:24:52:da:d0:1e:29:fe:22:4a:57: f6:a1:61:a2:b3:ee:f5:53:ec:96:bd:73:1f:22:99:4b:7e:07: 8e:e2:d5:14:f8:6d:6f:3e:58:01:8b:a8:d2:4d:ed:16:13:cb: 9d:ec:91:77:16:4a:82:2b:c7:ac:c7:02:c4:57:b4:8a:dc:a5: 04:84:9f:de:f6:56:98:2d:c2:1c:f1:42:25:3e:34:fe:21:1f: 47:69:93:f1:22:f2:c0:d5:4d:6f:63:08:0d:7c:e0:02:a3:ef: c0:9e:c9:66:09:1c:4e:88:cd:1b:ac:6e:0a:74:bb:f7:59:d0: a6:f1:b8:3f:96:a4:d6:e8:c6:b3:54:f1:af:b3:e8:6e:27:8f: 3f:7b:74:a8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs9kI8r1ZeiDozSOqF8xabpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDQ5ZjgwNjk3ZmUyZTJkOTdiNTkxYWQ1YjkxNTgwNTU1YTQ0 ZDAzODgwHhcNMjUxMjIwMjEwMDQyWhcNMjUxMjIxMjEwMDQyWjAzMTEwLwYDVQQD Eyg0MTA0NDYzNDRkMDExYmQ0Yjg1ZjY3N2IxMTBiMTQxMzE1YWFhMzAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2Iw2IXg8ybK/ms+hA0ld1W3h5/fa RYEz3fQbTrHQLitt/8511jEpB+Io9KyC6p5UuvhGRW2xrGNCNQzyn7psazpkDwyi 22LHCeiTYw7LY+6mc2/fUTxt8qpnIKV/GWw8B4ErXNUHXQFRqHykRJlyblbO/FiT 57bBslC7s8/gmYSkBeX0u1XutVeT5AFmMOGxb49alwz5Mhz5N06vaXJdtlk1nsKb wK04ZNGiD4M+w1dRZh6Zk3+8cFoc4iy+EB88De8LuPs+cRCq8jZ3nzYbRqV9S80s PFvXAhWCJNEiYD7j+9Trc1UO2Bm2KwYB7g9Dlci+lOwagFYIxquNNFTBVwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEEERjRNARvUuF9nexELFBMVqqMCMB8GA1UdIwQY MBaAFEn4Bpf+Li2XtZGtW5FYBVWkTQOIMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUt MWE2NGE4MDc3YjE0LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hYS8yNGRmNzItZmNjYy00OGRmLWE1YWUtMWE2NGE4MDc3YjE0 LzEvU2ZnR2xfNHVMWmUxa2ExYmtWZ0ZWYVJOQTRnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXRzs96zm C5cd9cK23kgrNT1ano+W7ZF6dGpJHBvbCIG2qHOOxc4Z1cXZ1xTQMQsyGdQp1KRN 8UreveIf8AFAudCv/5OGtc2dQGZIXKk1y6i3fAVZCkotpJi8RW0YH3SwPBMa8fA/ bt5Y3HXbaNzOcduQ7TskUtrQHin+IkpX9qFhorPu9VPslr1zHyKZS34HjuLVFPht bz5YAYuo0k3tFhPLneyRdxZKgivHrMcCxFe0itylBISf3vZWmC3CHPFCJT40/iEf R2mT8SLywNVNb2MIDXzgAqPvwJ7JZgkcTojNG6xuCnS791nQpvG4P5ak1ujGs1Tx r7PobiePP3t0qA== -----END CERTIFICATE-----Generated at Sat Dec 20 22:32:22 2025 by rpki-client