This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: niEZ4nxmf/UJQL4rc6fu5Cy796qX/k5T41XxhcqFlJc= Subject key identifier: A0:F1:4F:87:F0:76:AA:92:E1:A5:45:C7:64:2F:15:00:79:BB:D8:68 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 072BE57B5C8BFDDA68547F3630D9FC2D60A15414 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 0483 Signing time: Sun 25 Jan 2026 01:14:58 +0000 Manifest this update: Sun 25 Jan 2026 01:09:58 +0000 Manifest next update: Mon 26 Jan 2026 01:46:58 +0000 Files and hashes: 1: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: mQKE/0/NnV539NSoXtVCOp3+AeXahl8sUnLhuxaZN7o=) 2: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: KdX+/CDQaMAhkup0m23eEG04rrnEp86zO9YJVZeAshs=) 3: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: 31YTnxmdtZ2cp3Cw9rcOHPD6ZzrVs4b/Az5vMfbmmIM=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: dEyrefnnKSg66lfx459XJ2SroTggGi4go9Zp+DRZdvU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:46:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:2b:e5:7b:5c:8b:fd:da:68:54:7f:36:30:d9:fc:2d:60:a1:54:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Jan 25 01:09:58 2026 GMT Not After : Jan 26 01:46:58 2026 GMT Subject: CN=A0F14F87F076AA92E1A545C7642F150079BBD868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:27:50:44:7a:cf:d6:35:e5:f8:25:f7:5a:62: 89:af:30:60:75:ba:54:93:5a:fc:ca:3f:9e:c5:e3: 90:ad:84:1a:98:22:ea:df:21:fa:c7:4c:09:05:02: 45:82:68:15:6f:3b:83:06:8f:42:ea:67:50:e8:f0: ce:bc:51:65:b7:3c:a3:85:8a:9d:f2:6a:46:ce:4d: cb:77:fb:ed:6b:42:5c:2e:8e:65:3a:52:62:58:06: a8:ec:26:a0:91:27:53:aa:76:cd:b8:af:3c:99:b1: c7:0c:b5:52:1c:20:c1:e8:e9:6c:c2:fa:2a:e2:58: 2d:eb:00:57:e8:69:73:49:a5:e8:41:4f:42:e9:23: d6:1d:46:be:2a:e1:72:ea:a4:00:f6:fc:c7:e6:36: f7:99:50:7d:54:30:1e:bd:63:8a:d9:ae:43:a4:36: 44:76:15:14:8c:3c:f5:55:09:63:b7:1c:4a:05:f3: 28:c0:15:ee:4f:91:0a:72:14:e1:92:b5:d6:39:48: 3e:52:f8:28:88:36:fc:4e:9a:11:7b:82:ac:1a:cb: a0:1c:25:6e:2b:7c:da:96:1d:6c:60:c4:e7:13:fa: 17:62:6a:70:13:65:69:18:ee:e3:99:7d:6a:4a:73: b0:1c:73:e4:1d:2a:f2:ae:b1:8b:74:f7:3e:6f:a0: bd:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F1:4F:87:F0:76:AA:92:E1:A5:45:C7:64:2F:15:00:79:BB:D8:68 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:5f:e2:a4:42:62:2a:20:2e:72:78:55:81:6c:5f:2c:60:76: 82:10:23:bd:24:58:7e:72:e7:51:cb:40:c2:4c:a5:8b:af:9e: 58:ca:dc:50:fc:c1:db:7a:b3:5d:34:32:bc:38:dd:f5:1e:30: d8:49:16:fd:ee:b5:00:13:17:cb:ba:49:59:9f:29:06:90:bd: 80:cf:e0:27:6c:27:39:0e:7b:bc:e2:75:ba:47:bd:bd:cc:a4: fb:ff:32:98:d3:f2:11:e0:d9:20:08:c2:87:50:d1:bb:2f:50: 18:8c:45:e8:31:a4:71:d3:ce:49:4b:3c:d7:a5:56:26:db:25: 17:41:84:6f:d7:8c:04:7d:88:fd:45:8c:eb:fe:29:15:94:96: fa:f1:68:fc:77:71:0d:73:f0:d6:e9:b1:fa:5b:16:50:a7:6a: 09:7c:2a:10:77:49:25:d3:5c:07:f8:5f:1a:be:27:c2:37:a6: 17:32:74:2c:0d:c4:de:b3:6e:b6:bd:8f:df:01:51:b5:2f:31: bc:45:ca:39:d1:1d:e8:fb:72:a7:99:8a:01:2f:81:77:4d:91: f8:8e:dc:ce:c8:0e:f3:5b:47:54:93:ab:37:cd:21:17:04:17: 3c:04:02:9a:fe:33:44:47:a8:0b:dd:a6:8a:99:94:86:9a:3b: 8b:ca:da:76 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUByvle1yL/dpoVH82MNn8LWChVBQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNjAxMjUwMTA5NThaFw0yNjAxMjYwMTQ2NThaMDMxMTAvBgNV BAMTKEEwRjE0Rjg3RjA3NkFBOTJFMUE1NDVDNzY0MkYxNTAwNzlCQkQ4NjgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3J1BEes/WNeX4JfdaYomvMGB1 ulSTWvzKP57F45CthBqYIurfIfrHTAkFAkWCaBVvO4MGj0LqZ1Do8M68UWW3PKOF ip3yakbOTct3++1rQlwujmU6UmJYBqjsJqCRJ1Oqds24rzyZsccMtVIcIMHo6WzC +iriWC3rAFfoaXNJpehBT0LpI9YdRr4q4XLqpAD2/MfmNveZUH1UMB69Y4rZrkOk NkR2FRSMPPVVCWO3HEoF8yjAFe5PkQpyFOGStdY5SD5S+CiINvxOmhF7gqway6Ac JW4rfNqWHWxgxOcT+hdianATZWkY7uOZfWpKc7Acc+QdKvKusYt09z5voL0jAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUoPFPh/B2qpLhpUXHZC8VAHm72GgwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAtV/ipEJiKiAucnhVgWxf LGB2ghAjvSRYfnLnUctAwkyli6+eWMrcUPzB23qzXTQyvDjd9R4w2EkW/e61ABMX y7pJWZ8pBpC9gM/gJ2wnOQ57vOJ1uke9vcyk+/8ymNPyEeDZIAjCh1DRuy9QGIxF 6DGkcdPOSUs816VWJtslF0GEb9eMBH2I/UWM6/4pFZSW+vFo/HdxDXPw1umx+lsW UKdqCXwqEHdJJdNcB/hfGr4nwjemFzJ0LA3E3rNutr2P3wFRtS8xvEXKOdEd6Pty p5mKAS+Bd02R+I7czsgO81tHVJOrN80hFwQXPAQCmv4zREeoC92mipmUhpo7i8ra dg== -----END CERTIFICATE-----Generated at Sun Jan 25 12:10:20 2026 by rpki-client