This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json) Hash identifier: mov08nBl3D84cqzjnRQUGWs+lFeEeSEIxkQtC7iwYk4= Subject key identifier: 02:36:25:EE:E4:3D:A1:B2:AA:66:7C:D9:3F:1F:06:1A:73:9A:EE:E7 Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd Certificate serial: 019B0859E9535FABD13E13597BC8BCE127BB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft Manifest number: 0725 Signing time: Wed 10 Dec 2025 13:01:08 +0000 Manifest this update: Wed 10 Dec 2025 13:01:08 +0000 Manifest next update: Thu 11 Dec 2025 13:01:08 +0000 Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=) 2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: IQkhNz5qxahDY6Ed/9KIvqmSCEo+gO3rEUJmXtdt5hM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:08:59:e9:53:5f:ab:d1:3e:13:59:7b:c8:bc:e1:27:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd Validity Not Before: Dec 10 13:01:08 2025 GMT Not After : Dec 11 13:01:08 2025 GMT Subject: CN=023625eee43da1b2aa667cd93f1f061a739aeee7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:b5:9e:01:ac:22:fd:35:d9:05:a2:84:e6: 2a:24:27:81:1f:5e:0e:2c:f8:82:24:a2:f5:fa:e8: 25:7c:21:23:00:26:68:b9:90:77:20:fe:83:db:62: 2d:05:b0:f9:6c:dd:ba:7d:14:de:e8:bb:fa:39:62: 43:f5:be:20:a2:ac:f5:01:fd:6e:57:cd:53:4b:c8: fc:27:39:93:ea:68:43:ea:67:76:7c:8e:45:ee:7e: 79:be:73:64:f0:29:aa:bf:92:c7:84:62:d4:db:2e: 82:f9:86:1d:68:0f:53:1b:82:8a:4a:92:b7:46:72: 92:1e:87:e3:d2:bf:22:02:39:b4:b6:40:64:31:4d: ea:d8:8c:17:3b:e6:7e:62:c1:79:80:1d:8e:a6:53: c6:31:8f:95:3a:bc:2e:2a:49:b8:bf:1d:5c:a9:a6: 33:af:8c:17:07:ce:98:55:2d:6c:6e:09:dc:6b:f7: 8a:ff:fb:d4:2c:fe:7d:d5:ed:d7:86:32:1c:53:f0: eb:eb:f9:6f:23:bd:81:eb:4a:0e:a0:e2:9d:2d:ee: 2e:a9:c2:69:27:04:ae:d3:2e:2c:f6:7c:15:4d:9f: 4b:1f:d7:b3:4d:c8:a3:29:89:61:0e:f8:5e:4c:8d: 39:bd:c7:68:79:df:c9:a2:7c:9e:79:98:7d:79:b3: a5:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:36:25:EE:E4:3D:A1:B2:AA:66:7C:D9:3F:1F:06:1A:73:9A:EE:E7 X509v3 Authority Key Identifier: keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:11:a0:93:53:c2:22:6d:9d:a6:15:fe:05:73:2b:71:c8:22: d9:6f:a7:c8:ee:95:06:6a:9d:e0:6c:6d:a5:11:b7:5c:51:54: af:d2:c5:89:45:5e:09:ce:0c:c5:57:4b:79:06:af:29:98:6e: 05:85:16:50:64:bd:d5:eb:26:b3:ab:58:be:d7:99:01:bb:e3: 03:77:f2:32:2d:a2:ec:f8:df:8b:76:69:24:90:ce:be:75:c3: 6e:31:ca:9f:b9:94:f7:ff:e2:da:a5:fd:bd:25:ef:5c:fe:b8: ed:36:83:57:3b:1d:50:ce:65:50:8f:4f:8e:0d:c9:fc:3b:a6: 51:8e:ec:b5:db:52:7e:15:4f:29:8d:fe:cc:74:72:2d:26:be: 15:8d:73:d6:2f:73:f6:27:57:d5:b7:f7:50:63:dc:6a:c0:46: d3:44:bf:f1:70:04:a9:b5:f3:6d:f1:12:8d:02:0e:00:0d:d4: b7:4a:04:4b:1b:b7:e6:5a:57:e7:00:d1:2e:f3:de:5c:f3:b2: 69:98:90:71:a6:25:d4:79:9c:9e:11:07:e2:31:41:bd:2c:8d: b4:3a:8e:96:22:c8:74:9a:d3:3d:1f:48:bb:80:9d:5b:46:88: 6a:cd:56:81:a4:37:e2:43:d3:8a:f6:8b:08:cd:89:1e:93:9c: 1e:78:2c:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsIWelTX6vRPhNZe8i84Se7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNzQ0ODFiODdkZWNmNjM4MzdlMjY5NzQ2MmM5ZTQ0NzAw ZDRiZGQwHhcNMjUxMjEwMTMwMTA4WhcNMjUxMjExMTMwMTA4WjAzMTEwLwYDVQQD EygwMjM2MjVlZWU0M2RhMWIyYWE2NjdjZDkzZjFmMDYxYTczOWFlZWU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA29G1ngGsIv012QWihOYqJCeBH14O LPiCJKL1+uglfCEjACZouZB3IP6D22ItBbD5bN26fRTe6Lv6OWJD9b4goqz1Af1u V81TS8j8JzmT6mhD6md2fI5F7n55vnNk8Cmqv5LHhGLU2y6C+YYdaA9TG4KKSpK3 RnKSHofj0r8iAjm0tkBkMU3q2IwXO+Z+YsF5gB2OplPGMY+VOrwuKkm4vx1cqaYz r4wXB86YVS1sbgnca/eK//vULP591e3XhjIcU/Dr6/lvI72B60oOoOKdLe4uqcJp JwSu0y4s9nwVTZ9LH9ezTcijKYlhDvheTI05vcdoed/JonyeeZh9ebOlmwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFAI2Je7kPaGyqmZ82T8fBhpzmu7nMB8GA1UdIwQY MBaAFJp0SBuH3s9jg34ml0YsnkRwDUvdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9kZjc5YzEtYjgwMi00NDE5LThlYzAt Y2Y0NDcwMDllMzQ5LzEvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9kZjc5YzEtYjgwMi00NDE5LThlYzAtY2Y0NDcwMDllMzQ5 LzEvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJBGgk1PC Im2dphX+BXMrccgi2W+nyO6VBmqd4GxtpRG3XFFUr9LFiUVeCc4MxVdLeQavKZhu BYUWUGS91esms6tYvteZAbvjA3fyMi2i7Pjfi3ZpJJDOvnXDbjHKn7mU9//i2qX9 vSXvXP647TaDVzsdUM5lUI9Pjg3J/DumUY7stdtSfhVPKY3+zHRyLSa+FY1z1i9z 9idX1bf3UGPcasBG00S/8XAEqbXzbfESjQIOAA3Ut0oESxu35lpX5wDRLvPeXPOy aZiQcaYl1HmcnhEH4jFBvSyNtDqOliLIdJrTPR9Iu4CdW0aIas1WgaQ34kPTivaL CM2JHpOcHngsCw== -----END CERTIFICATE-----Generated at Wed Dec 10 17:41:54 2025 by rpki-client