This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft File: mnRIG4fez2ODfiaXRiyeRHANS90.mft (raw, json) Hash identifier: K3Lbk2a3XNq1TrtZWaho47XNXgRtol8rZU0oUYCsoPI= Subject key identifier: A9:C9:6F:13:C0:47:DC:DE:F3:23:B4:8A:AB:E0:F6:74:83:78:E9:C4 Authority key identifier: 9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD Certificate issuer: /CN=9a74481b87decf63837e2697462c9e44700d4bdd Certificate serial: 019B1F86D40600FCB4A8C9C5D22492C10EBD Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft Manifest number: 0731 Signing time: Mon 15 Dec 2025 01:01:28 +0000 Manifest this update: Mon 15 Dec 2025 01:01:28 +0000 Manifest next update: Tue 16 Dec 2025 01:01:28 +0000 Files and hashes: 1: CK4siPWBYfHEvMudVxcsDQPxAR4.roa (hash: YhDnpIVqIiFTzSv32iL9GB9Nu0H7+HMcl1R+Eah/CyM=) 2: mnRIG4fez2ODfiaXRiyeRHANS90.crl (hash: OVx+itTnhMj+fcpu+IGRWlgyj1cPMvN7Fgvd9rsMVsM=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 15 Dec 2025 23:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:1f:86:d4:06:00:fc:b4:a8:c9:c5:d2:24:92:c1:0e:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9a74481b87decf63837e2697462c9e44700d4bdd Validity Not Before: Dec 15 01:01:28 2025 GMT Not After : Dec 16 01:01:28 2025 GMT Subject: CN=a9c96f13c047dcdef323b48aabe0f6748378e9c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a2:eb:0f:04:94:fc:ce:70:82:3a:58:7a:e5: d6:3f:99:2c:a0:4d:31:b4:de:de:b8:00:ba:cf:e2: b9:13:72:c5:fd:01:5d:5e:96:ab:c4:32:4c:3a:54: 15:1d:42:91:32:cf:87:b6:09:5b:5e:a9:89:9b:bb: 9d:2b:44:50:e7:b4:38:d7:2b:b0:2e:5f:c2:91:36: 31:12:6f:4b:b1:35:0b:51:bd:80:2a:7c:cb:cc:e9: 86:e9:86:85:36:ed:d8:04:fc:2c:fa:27:b0:6c:4e: 58:c4:fd:9a:5f:c4:5d:06:3d:fa:f7:70:e1:34:d3: 6c:cc:ce:6b:f9:dd:88:e5:92:e6:aa:14:af:05:57: 5a:ec:48:33:ab:79:4c:de:7a:f3:37:54:2c:18:ca: 0b:61:f4:ad:36:9d:f1:06:b3:02:eb:0d:a8:e3:a3: b5:eb:a2:cf:0c:ac:b3:91:71:6f:06:b2:54:f7:6a: 10:97:2c:66:30:8f:84:b4:c5:7c:8b:1f:58:73:d7: 46:4f:f0:50:6d:8a:a2:a3:5a:e2:8c:2e:2e:be:f7: 16:5d:48:11:50:5d:80:e0:7d:3c:7d:69:28:c8:23: 0e:16:dc:ae:00:de:2c:4d:1e:1b:cb:e7:69:94:da: f6:77:89:36:50:b0:fc:a6:a4:0e:85:90:dc:be:43: 69:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C9:6F:13:C0:47:DC:DE:F3:23:B4:8A:AB:E0:F6:74:83:78:E9:C4 X509v3 Authority Key Identifier: keyid:9A:74:48:1B:87:DE:CF:63:83:7E:26:97:46:2C:9E:44:70:0D:4B:DD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mnRIG4fez2ODfiaXRiyeRHANS90.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/df79c1-b802-4419-8ec0-cf447009e349/1/mnRIG4fez2ODfiaXRiyeRHANS90.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:8a:06:46:19:06:45:16:64:21:2a:7a:79:4a:45:cc:17:49: ca:a0:6b:55:48:d2:1e:95:62:ba:b0:25:a2:47:a5:e7:37:42: c7:49:4e:2a:9f:b7:30:e8:86:e9:8b:c2:53:21:6e:e6:29:d3: 2c:51:cc:6a:d1:b3:24:e3:68:bc:1f:1d:b5:44:39:3b:e9:02: 3d:d9:f0:33:fd:3e:78:34:80:b9:58:61:c0:b7:92:ab:90:ac: 25:f1:af:eb:26:6a:1d:2a:0c:51:ae:58:6b:7b:58:1c:92:38: c1:12:bd:b5:54:aa:bf:d9:a3:49:71:68:44:03:48:82:7f:48: 4d:1f:f9:36:1c:2b:d1:82:51:03:95:62:7b:9a:55:e5:5f:2b: 6b:a9:71:1b:98:c7:55:8b:c0:07:47:88:86:f4:11:47:9d:70: 0d:51:d0:7b:cb:dc:04:9a:9f:25:68:31:35:18:ce:ec:a0:3e: 03:26:41:cc:e5:fb:05:4b:6b:75:f8:de:2f:e5:e0:0e:1f:91: f0:4b:64:ff:f2:de:88:80:26:f9:cd:b1:aa:2a:85:c8:fc:18: 2a:6a:85:98:7f:0d:34:4a:ef:e1:c2:bd:64:41:92:76:f2:b9: 2d:f3:95:da:a7:b7:2d:4e:33:9d:7d:3d:50:61:b4:61:33:cc: be:ac:a3:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsfhtQGAPy0qMnF0iSSwQ69MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDlhNzQ0ODFiODdkZWNmNjM4MzdlMjY5NzQ2MmM5ZTQ0NzAw ZDRiZGQwHhcNMjUxMjE1MDEwMTI4WhcNMjUxMjE2MDEwMTI4WjAzMTEwLwYDVQQD EyhhOWM5NmYxM2MwNDdkY2RlZjMyM2I0OGFhYmUwZjY3NDgzNzhlOWM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8aLrDwSU/M5wgjpYeuXWP5ksoE0x tN7euAC6z+K5E3LF/QFdXparxDJMOlQVHUKRMs+HtglbXqmJm7udK0RQ57Q41yuw Ll/CkTYxEm9LsTULUb2AKnzLzOmG6YaFNu3YBPws+iewbE5YxP2aX8RdBj3693Dh NNNszM5r+d2I5ZLmqhSvBVda7Egzq3lM3nrzN1QsGMoLYfStNp3xBrMC6w2o46O1 66LPDKyzkXFvBrJU92oQlyxmMI+EtMV8ix9Yc9dGT/BQbYqio1rijC4uvvcWXUgR UF2A4H08fWkoyCMOFtyuAN4sTR4by+dplNr2d4k2ULD8pqQOhZDcvkNpeQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKnJbxPAR9ze8yO0iqvg9nSDeOnEMB8GA1UdIwQY MBaAFJp0SBuH3s9jg34ml0YsnkRwDUvdMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNy9kZjc5YzEtYjgwMi00NDE5LThlYzAt Y2Y0NDcwMDllMzQ5LzEvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNy9kZjc5YzEtYjgwMi00NDE5LThlYzAtY2Y0NDcwMDllMzQ5 LzEvbW5SSUc0ZmV6Mk9EZmlhWFJpeWVSSEFOUzkwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEACYoGRhkG RRZkISp6eUpFzBdJyqBrVUjSHpViurAlokel5zdCx0lOKp+3MOiG6YvCUyFu5inT LFHMatGzJONovB8dtUQ5O+kCPdnwM/0+eDSAuVhhwLeSq5CsJfGv6yZqHSoMUa5Y a3tYHJI4wRK9tVSqv9mjSXFoRANIgn9ITR/5Nhwr0YJRA5Vie5pV5V8ra6lxG5jH VYvAB0eIhvQRR51wDVHQe8vcBJqfJWgxNRjO7KA+AyZBzOX7BUtrdfjeL+XgDh+R 8Etk//LeiIAm+c2xqiqFyPwYKmqFmH8NNErv4cK9ZEGSdvK5LfOV2qe3LU4znX09 UGG0YTPMvqyjCw== -----END CERTIFICATE-----Generated at Mon Dec 15 04:56:10 2025 by rpki-client