This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft File: siDZG06dcPA0-hahaoh9QlV5Kt4.mft (raw, json) Hash identifier: BvgsBqHtjSaviFpj0urWIU8RQuskCgnhWyw2x6W63Us= Subject key identifier: F9:1A:C8:A2:DF:39:5F:78:EA:9D:04:35:C1:03:4C:4D:2D:2F:B8:A1 Authority key identifier: B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE Certificate issuer: /CN=b220d91b4e9d70f034fa16a16a887d4255792ade Certificate serial: 019B3F7F51AB4294ACD42D7C889573AF0688 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft Manifest number: 178A Signing time: Sun 21 Dec 2025 06:01:07 +0000 Manifest this update: Sun 21 Dec 2025 06:01:07 +0000 Manifest next update: Mon 22 Dec 2025 06:01:07 +0000 Files and hashes: 1: mCm-KBIMQ6gtgsW9oEUxZqdGcRM.roa (hash: ItOlCehgUekOH/ud/IMp3e9dVCyKMOt54wV1YDUzoCg=) 2: siDZG06dcPA0-hahaoh9QlV5Kt4.crl (hash: FyjuUJFL9his8bvT/fi4cD3PXo/VYHqkGhYDEg0meq0=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 22 Dec 2025 00:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:3f:7f:51:ab:42:94:ac:d4:2d:7c:88:95:73:af:06:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b220d91b4e9d70f034fa16a16a887d4255792ade Validity Not Before: Dec 21 06:01:07 2025 GMT Not After : Dec 22 06:01:07 2025 GMT Subject: CN=f91ac8a2df395f78ea9d0435c1034c4d2d2fb8a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:48:2d:1c:39:b0:f8:86:4b:6f:a1:2b:15:62: aa:a5:6c:54:03:2f:49:5a:f1:1c:58:8c:a4:92:61: d6:92:79:22:b7:0b:b6:e0:7a:3a:b0:39:5f:24:2e: c3:0d:d1:47:99:f9:b9:32:04:35:71:77:78:7b:83: dd:7d:7f:5d:a4:02:89:b9:2f:d3:eb:4e:cf:ef:e6: dc:5d:63:23:d6:d8:eb:29:e3:14:a2:41:7c:69:90: a2:99:59:a4:7b:3b:8a:56:b1:a2:69:f3:5f:ab:69: 06:83:81:4f:8f:b4:63:cb:11:63:71:1a:c2:c7:3b: aa:3b:62:2c:9a:b1:32:de:35:96:9d:2e:31:58:af: c1:aa:94:f1:85:04:e5:a2:a6:72:db:b8:64:6c:c8: d8:1a:59:57:00:65:84:14:e1:e0:a3:21:48:f9:8e: 3a:c0:c5:3f:9e:ed:64:b9:eb:d0:cd:98:14:34:04: 63:bc:e0:ed:b9:a4:05:29:b5:83:41:65:84:4a:85: b1:be:fc:02:c8:2a:7a:a5:27:66:b6:96:74:ac:8d: ac:dd:f3:78:53:2c:20:a3:c8:63:52:ae:94:f6:a6: d2:9b:b7:0c:0c:40:2d:e2:76:11:5a:f5:ff:8c:02: cd:a2:3a:cf:9e:d8:99:a8:0c:a1:74:df:bb:dc:ff: a4:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:1A:C8:A2:DF:39:5F:78:EA:9D:04:35:C1:03:4C:4D:2D:2F:B8:A1 X509v3 Authority Key Identifier: keyid:B2:20:D9:1B:4E:9D:70:F0:34:FA:16:A1:6A:88:7D:42:55:79:2A:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/siDZG06dcPA0-hahaoh9QlV5Kt4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/cb/543221-f267-4731-a7ad-987173b9e987/1/siDZG06dcPA0-hahaoh9QlV5Kt4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4e:69:9f:15:44:98:8d:79:ba:07:05:73:ac:35:fe:ac:d1: b6:5f:86:d9:3d:f8:55:e0:5d:3d:93:fa:79:9f:bc:41:3b:47: c8:43:61:5e:cf:63:59:78:a1:d4:6d:6c:ce:de:fb:e5:52:d0: c1:e0:40:f3:fd:3e:7f:db:6f:ea:f7:ac:e1:dc:19:8b:42:e1: 0c:bc:38:d4:c3:53:52:c9:f6:d1:2c:c6:9b:ad:14:91:f8:f9: 27:6f:2e:3e:be:3b:bb:e6:72:23:6e:25:1e:e6:94:65:02:40: fb:86:fd:bf:47:92:b0:0c:1b:82:a7:97:fa:75:de:c5:8a:95: cd:7d:51:96:3f:7d:2d:1b:32:60:ed:16:8d:8a:24:d1:21:56: 50:fe:35:52:a6:c9:4d:51:59:f8:5c:39:e7:fa:c4:6c:89:ec: a4:5c:52:42:1a:15:5e:2b:17:22:9e:f3:3e:e3:e3:dd:2d:28: 23:13:9c:f7:98:a3:82:32:0c:e4:fe:88:11:52:fb:78:08:30: 3c:2b:31:1c:4f:fb:e4:e6:30:43:a5:10:2e:89:ba:39:8e:d8: 9e:7c:5c:67:8c:02:f8:12:d2:95:e0:95:a9:ba:96:8f:72:52: d0:92:aa:2a:20:d2:cd:13:67:8a:36:07:eb:bb:65:70:7c:65: 7e:4e:a1:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZs/f1GrQpSs1C18iJVzrwaIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGIyMjBkOTFiNGU5ZDcwZjAzNGZhMTZhMTZhODg3ZDQyNTU3 OTJhZGUwHhcNMjUxMjIxMDYwMTA3WhcNMjUxMjIyMDYwMTA3WjAzMTEwLwYDVQQD EyhmOTFhYzhhMmRmMzk1Zjc4ZWE5ZDA0MzVjMTAzNGM0ZDJkMmZiOGExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiUgtHDmw+IZLb6ErFWKqpWxUAy9J WvEcWIykkmHWknkitwu24Ho6sDlfJC7DDdFHmfm5MgQ1cXd4e4PdfX9dpAKJuS/T 607P7+bcXWMj1tjrKeMUokF8aZCimVmkezuKVrGiafNfq2kGg4FPj7RjyxFjcRrC xzuqO2IsmrEy3jWWnS4xWK/BqpTxhQTloqZy27hkbMjYGllXAGWEFOHgoyFI+Y46 wMU/nu1kuevQzZgUNARjvODtuaQFKbWDQWWESoWxvvwCyCp6pSdmtpZ0rI2s3fN4 Uywgo8hjUq6U9qbSm7cMDEAt4nYRWvX/jALNojrPntiZqAyhdN+73P+kYQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPkayKLfOV946p0ENcEDTE0tL7ihMB8GA1UdIwQY MBaAFLIg2RtOnXDwNPoWoWqIfUJVeSreMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQt OTg3MTczYjllOTg3LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9jYi81NDMyMjEtZjI2Ny00NzMxLWE3YWQtOTg3MTczYjllOTg3 LzEvc2lEWkcwNmRjUEEwLWhhaGFvaDlRbFY1S3Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPk5pnxVE mI15ugcFc6w1/qzRtl+G2T34VeBdPZP6eZ+8QTtHyENhXs9jWXih1G1szt775VLQ weBA8/0+f9tv6ves4dwZi0LhDLw41MNTUsn20SzGm60Ukfj5J28uPr47u+ZyI24l HuaUZQJA+4b9v0eSsAwbgqeX+nXexYqVzX1Rlj99LRsyYO0WjYok0SFWUP41UqbJ TVFZ+Fw55/rEbInspFxSQhoVXisXIp7zPuPj3S0oIxOc95ijgjIM5P6IEVL7eAgw PCsxHE/75OYwQ6UQLom6OY7YnnxcZ4wC+BLSleCVqbqWj3JS0JKqKiDSzRNnijYH 67tlcHxlfk6hbw== -----END CERTIFICATE-----Generated at Sun Dec 21 08:18:51 2025 by rpki-client