This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: 5tcHJQ9dsGkzlEEjs/ad6lyHfTG7WIvS88xmpNthhL4= Subject key identifier: EA:C4:2B:AA:77:7C:D9:00:37:F7:FD:D2:98:A5:1E:7C:2E:87:7F:84 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 739489781AAB616805D86F7477D4570B974BFF88 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 043F Signing time: Fri 05 Dec 2025 22:21:17 +0000 Manifest this update: Fri 05 Dec 2025 22:16:17 +0000 Manifest next update: Sat 06 Dec 2025 22:53:17 +0000 Files and hashes: 1: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) 2: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: sb20TnSKt/4MqYgzsDfnPJkF++EjM0KtpQOuNDI5F1U=) 3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: 31YTnxmdtZ2cp3Cw9rcOHPD6ZzrVs4b/Az5vMfbmmIM=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: dEyrefnnKSg66lfx459XJ2SroTggGi4go9Zp+DRZdvU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 22:53:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:94:89:78:1a:ab:61:68:05:d8:6f:74:77:d4:57:0b:97:4b:ff:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Dec 5 22:16:17 2025 GMT Not After : Dec 6 22:53:17 2025 GMT Subject: CN=EAC42BAA777CD90037F7FDD298A51E7C2E877F84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9d:5d:1a:66:86:bd:26:99:1d:42:2a:81:4e: a2:f1:bc:f9:bf:c2:db:8f:b2:12:9a:fe:dc:b6:05: 9c:4f:2b:ae:8e:2c:85:24:3d:5b:13:73:87:75:aa: fc:92:3d:3f:8f:9c:4b:8c:be:a4:11:6d:91:69:9d: dc:52:dd:42:c3:a1:b0:68:64:4a:00:aa:27:ca:92: 41:86:28:6a:66:b5:e7:10:35:83:5c:3d:47:2c:a2: fe:a8:be:ff:6f:35:26:0a:9c:b7:a8:69:51:0c:97: 52:d5:dd:32:03:10:e7:94:00:5a:ae:e3:1f:ce:62: a1:1e:68:2a:69:a7:82:9a:9c:6e:75:e3:8a:2b:9e: 6c:43:10:d3:37:d8:61:e9:28:40:0c:ac:dc:53:4f: 07:4b:1e:7d:66:af:7d:60:0d:eb:94:14:17:fb:00: c7:87:95:af:78:0f:91:dd:7a:b6:ba:12:c5:92:0c: 56:79:c6:c2:d2:f4:48:b4:b2:69:c9:24:31:19:fb: 23:c0:6a:3f:51:d3:e3:8b:f3:33:e9:f8:47:fc:48: 51:c5:3e:93:00:3b:0d:e1:76:6b:2c:fc:a0:a2:c9: 17:e1:56:9b:41:c6:fb:07:37:46:6e:fd:0e:c3:b4: ed:c4:ca:3c:6c:2b:a0:3d:97:17:02:5d:6c:84:78: 5a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:C4:2B:AA:77:7C:D9:00:37:F7:FD:D2:98:A5:1E:7C:2E:87:7F:84 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:8a:5d:86:93:be:dd:75:e9:82:d2:39:79:93:cc:55:42:3d: 31:cc:eb:11:15:fa:37:61:f6:91:36:8c:57:d1:6b:7c:fe:48: ad:6c:f3:90:df:d9:58:bd:63:68:0a:fa:3b:32:73:3c:88:78: 14:10:60:ce:3c:43:1b:61:0a:45:13:7e:ce:0b:76:a6:2e:ce: 35:8f:94:50:1d:b5:b7:da:36:6c:bb:8f:ee:84:1b:76:81:15: 1c:cd:55:96:13:50:54:fc:38:6b:2f:c5:3f:a3:3f:dc:28:0e: 34:76:3f:eb:d6:fa:ea:cd:4d:b1:b5:df:af:66:74:e1:5c:de: 81:d9:81:18:83:9a:38:ab:92:a3:be:5e:60:3f:a4:17:34:dc: 97:90:9a:5c:de:35:6a:d9:5c:0d:15:d8:96:d8:47:62:29:33: 23:f9:76:66:7c:0a:90:42:4f:9e:9c:96:7d:b3:ff:6f:da:94: 96:a7:5e:2a:fd:4e:6c:8a:9f:3e:a9:14:a0:08:4a:d4:d5:37: e5:e3:69:65:98:ac:8a:a0:27:6c:61:de:b1:01:5b:3c:a9:94: 03:3c:be:20:7b:4d:29:35:d4:c8:35:54:63:c0:5d:46:9e:ec: 0d:f8:ca:53:c9:2c:f0:2b:eb:4a:69:09:f2:f8:10:b8:11:f0: 71:a6:51:6e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUc5SJeBqrYWgF2G90d9RXC5dL/4gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTEyMDUyMjE2MTdaFw0yNTEyMDYyMjUzMTdaMDMxMTAvBgNV BAMTKEVBQzQyQkFBNzc3Q0Q5MDAzN0Y3RkREMjk4QTUxRTdDMkU4NzdGODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6nV0aZoa9JpkdQiqBTqLxvPm/ wtuPshKa/ty2BZxPK66OLIUkPVsTc4d1qvySPT+PnEuMvqQRbZFpndxS3ULDobBo ZEoAqifKkkGGKGpmtecQNYNcPUcsov6ovv9vNSYKnLeoaVEMl1LV3TIDEOeUAFqu 4x/OYqEeaCppp4KanG5144ornmxDENM32GHpKEAMrNxTTwdLHn1mr31gDeuUFBf7 AMeHla94D5Hdera6EsWSDFZ5xsLS9Ei0smnJJDEZ+yPAaj9R0+OL8zPp+Ef8SFHF PpMAOw3hdmss/KCiyRfhVptBxvsHN0Zu/Q7DtO3EyjxsK6A9lxcCXWyEeFqXAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU6sQrqnd82QA39/3SmKUefC6Hf4QwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjopdhpO+3XXpgtI5eZPM VUI9MczrERX6N2H2kTaMV9FrfP5IrWzzkN/ZWL1jaAr6OzJzPIh4FBBgzjxDG2EK RRN+zgt2pi7ONY+UUB21t9o2bLuP7oQbdoEVHM1VlhNQVPw4ay/FP6M/3CgONHY/ 69b66s1NsbXfr2Z04VzegdmBGIOaOKuSo75eYD+kFzTcl5CaXN41atlcDRXYlthH YikzI/l2ZnwKkEJPnpyWfbP/b9qUlqdeKv1ObIqfPqkUoAhK1NU35eNpZZisiqAn bGHesQFbPKmUAzy+IHtNKTXUyDVUY8BdRp7sDfjKU8ks8CvrSmkJ8vgQuBHwcaZR bg== -----END CERTIFICATE-----Generated at Sat Dec 6 06:57:31 2025 by rpki-client