This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: hpT+O/y0ilhiHEPIB6U25miFDtbIc9SZqVN+z7MsR6c= Subject key identifier: 85:E4:C7:E2:07:7A:10:29:31:F4:6E:71:B8:B5:11:0C:C6:1E:B5:8B Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 07D3F30CE94F45F829216AAF46094F5F3A7C8E32 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 01BC Signing time: Sat 06 Dec 2025 07:20:57 +0000 Manifest this update: Sat 06 Dec 2025 07:15:57 +0000 Manifest next update: Sun 07 Dec 2025 10:10:57 +0000 Files and hashes: 1: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: xT802+pU8TCiwwtqUkMgmyrnKplgnOIvmjCKunR0EEU=) 2: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: CM6yYKZbtILEkjFEjxVgY2XszlZITvyYfxEqji4AD0c=) 3: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 4: 326131343a373538303a663335303a3a2f34342d3438203d3e20323135343730.roa (hash: QilIoQFDy86/kZThJ8L3yMVtIo9IuLOdGRNLTOrhh2s=) 5: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: AE4p/Aixbf8sW/I3bLOtRbnycH5RSiNSfyRxjv0S1Bw=) 6: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: eW78302x42s0yWxTWFOWa+EI8gsEah6kU2PGz4oxB3o=) 7: 326131343a373538303a663330323a3a2f34382d3438203d3e20323135343730.roa (hash: cnH25DZSJN2OBLW6Zt+bGPFETNQaOmZLaMlgHZ7R4qw=) 8: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 9: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: HIvxVSfCuAAEcoPCZL7Kf4M6ixpeedl/mjuT85H0u18=) 10: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 11: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 12: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 10:10:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:d3:f3:0c:e9:4f:45:f8:29:21:6a:af:46:09:4f:5f:3a:7c:8e:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Dec 6 07:15:57 2025 GMT Not After : Dec 7 10:10:57 2025 GMT Subject: CN=85E4C7E2077A102931F46E71B8B5110CC61EB58B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:33:eb:5f:e2:65:09:d9:39:61:dc:1c:a2:67: 8a:3c:09:e6:05:c0:e9:b6:97:74:e5:5d:22:55:50: 79:27:39:54:47:81:b7:5b:ea:6c:07:09:43:e5:0d: 57:99:6f:70:8e:6c:df:a0:42:5d:64:e8:56:52:e4: 3e:ae:26:da:e8:6f:2d:a3:03:ae:ca:d4:a4:2c:5b: db:99:de:3d:af:59:cd:a5:d8:f3:d9:5f:d1:36:bd: d7:b1:50:99:b8:38:a9:0e:64:b8:ce:22:1f:83:09: e2:52:65:67:2e:cf:f9:d5:f3:f7:36:6a:ac:4f:a9: ec:93:c9:54:4c:6d:fd:3b:16:d0:9f:95:20:a7:14: 1e:2e:72:c5:3a:4e:d7:15:73:fd:92:e9:89:3b:e5: 0a:33:41:5e:41:70:7c:5a:07:92:79:5a:47:43:39: 43:c6:98:3c:14:c7:5c:94:65:43:1c:a4:04:31:18: b6:3c:0e:63:bb:2b:75:86:97:b7:3c:12:43:ca:3f: 09:7c:83:51:a5:61:5c:56:61:49:e6:e2:44:3b:67: fe:d5:ca:8d:77:c3:82:81:ad:d0:9d:f2:c3:1b:f8: 56:f0:46:74:f6:63:30:09:56:09:d6:3e:a3:e7:6b: 4b:70:88:30:ee:41:28:4d:8b:62:7e:b7:63:25:11: b8:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E4:C7:E2:07:7A:10:29:31:F4:6E:71:B8:B5:11:0C:C6:1E:B5:8B X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:52:3f:90:96:44:8c:fe:a0:3f:38:9f:45:73:95:e1:30:b6: 34:87:b9:5a:31:0a:2e:06:b3:af:b7:71:74:89:21:1c:1f:f4: 08:7c:e8:c9:49:9d:e3:ca:bc:76:da:a9:4b:54:cd:e0:21:00: b0:25:34:45:d4:76:3b:cf:17:f4:dc:97:9b:0f:6f:97:7a:cd: 63:ad:45:de:4d:98:87:5f:eb:06:a9:3d:31:2e:75:9b:5f:0f: 0d:72:d4:bc:6e:02:55:28:27:55:ba:3c:a4:64:ca:e9:c7:28: 53:da:d0:b4:4e:a1:ae:9d:b8:ca:a7:96:59:f9:7e:34:ca:31: 95:28:b1:d1:87:6d:ce:8d:f5:9a:67:63:e4:38:b2:4b:dc:6f: 04:a1:38:c4:41:7c:03:09:12:6f:ff:3f:db:de:25:e4:88:23: ba:7e:1a:86:fa:b3:1c:03:16:80:a4:ca:5e:80:b4:46:8c:99: 7f:28:6b:55:0f:f5:b1:7e:a7:ea:e8:90:76:11:13:c2:8e:a4: 57:0c:d9:a5:f3:37:ae:a6:d2:cf:70:53:d7:67:73:1c:cb:0c: 24:a9:23:b2:fb:6c:59:2d:6a:4a:cd:41:fe:2d:f1:a4:94:bc: 57:72:cf:5c:94:18:84:ac:23:51:22:4b:ce:04:f3:86:2a:ec: 76:14:8d:76 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUB9PzDOlPRfgpIWqvRglPXzp8jjIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTEyMDYwNzE1NTdaFw0yNTEyMDcxMDEwNTdaMDMxMTAvBgNV BAMTKDg1RTRDN0UyMDc3QTEwMjkzMUY0NkU3MUI4QjUxMTBDQzYxRUI1OEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCM+tf4mUJ2Tlh3ByiZ4o8CeYF wOm2l3TlXSJVUHknOVRHgbdb6mwHCUPlDVeZb3CObN+gQl1k6FZS5D6uJtroby2j A67K1KQsW9uZ3j2vWc2l2PPZX9E2vdexUJm4OKkOZLjOIh+DCeJSZWcuz/nV8/c2 aqxPqeyTyVRMbf07FtCflSCnFB4ucsU6TtcVc/2S6Yk75QozQV5BcHxaB5J5WkdD OUPGmDwUx1yUZUMcpAQxGLY8DmO7K3WGl7c8EkPKPwl8g1GlYVxWYUnm4kQ7Z/7V yo13w4KBrdCd8sMb+FbwRnT2YzAJVgnWPqPna0twiDDuQShNi2J+t2MlEbjrAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUheTH4gd6ECkx9G5xuLURDMYetYswHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA9Uj+Q lkSM/qA/OJ9Fc5XhMLY0h7laMQouBrOvt3F0iSEcH/QIfOjJSZ3jyrx22qlLVM3g IQCwJTRF1HY7zxf03JebD2+Xes1jrUXeTZiHX+sGqT0xLnWbXw8NctS8bgJVKCdV ujykZMrpxyhT2tC0TqGunbjKp5ZZ+X40yjGVKLHRh23OjfWaZ2PkOLJL3G8EoTjE QXwDCRJv/z/b3iXkiCO6fhqG+rMcAxaApMpegLRGjJl/KGtVD/Wxfqfq6JB2ERPC jqRXDNml8zeuptLPcFPXZ3McywwkqSOy+2xZLWpKzUH+LfGklLxXcs9clBiErCNR IkvOBPOGKux2FI12 -----END CERTIFICATE-----Generated at Sat Dec 6 21:56:27 2025 by rpki-client