This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft File: 8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft (raw, json) Hash identifier: LtKJ4ACNOtR7Xqbyf00BYedF0RLvzqA6mUoYsMJe0fQ= Subject key identifier: 6C:EA:88:28:1E:E3:1B:C5:02:B4:8C:32:CA:AB:F7:3D:05:9C:50:04 Authority key identifier: 8B:CE:7E:72:AB:BB:AD:00:53:63:93:A0:84:0B:BA:0A:BF:3A:A2:8E Certificate issuer: /CN=8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E Certificate serial: 485E0CFCC48BCC7C16BF29BDBC669DAA9A6556A9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft Manifest number: 3F Signing time: Sun 25 Jan 2026 13:21:41 +0000 Manifest this update: Sun 25 Jan 2026 13:16:41 +0000 Manifest next update: Mon 26 Jan 2026 13:32:41 +0000 Files and hashes: 1: 8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl (hash: 1BQQMwkiQfC9S9dASxuso1UUW/+MNQ3qVoGcha4tx0Y=) 2: 326130663a316363353a313730303a3a2f34302d3438203d3e20323032393339.roa (hash: UEeOHO3GGvYWxfR4E2Tbh4+FLPM0KvboVmPBm/zMcrM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.crl rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/411E2D411D687BCB4449C3DF45BEEDC041007D94.mft rsync://rpki.ripe.net/repository/DEFAULT/QR4tQR1oe8tEScPfRb7twEEAfZQ.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:32:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:5e:0c:fc:c4:8b:cc:7c:16:bf:29:bd:bc:66:9d:aa:9a:65:56:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E Validity Not Before: Jan 25 13:16:41 2026 GMT Not After : Jan 26 13:32:41 2026 GMT Subject: CN=6CEA88281EE31BC502B48C32CAABF73D059C5004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:1a:8f:58:4e:27:41:44:63:4f:21:ee:51:43: 36:e1:3f:ce:30:62:89:b0:54:f8:53:81:59:81:08: f7:fc:7f:24:a6:e0:c8:d2:a6:f7:72:d5:2b:9a:1d: f8:eb:c8:6a:af:17:23:ab:c2:08:08:85:f3:0f:12: 94:a1:9d:5b:fd:9e:6b:9a:da:aa:2a:b9:dc:a2:0a: 73:97:36:25:23:48:56:51:c5:38:13:02:4d:b5:89: d4:be:19:6f:1b:f5:a5:e7:57:19:b5:40:98:e4:75: 01:66:eb:27:ae:6d:fb:b4:f3:a4:fd:af:fc:e5:f5: 38:1f:98:f3:f4:94:4c:f8:4f:c5:ad:48:77:90:69: a8:c6:e1:a0:da:ea:ec:15:1d:f2:b9:60:92:89:ea: 73:94:47:48:2e:9d:37:a8:b6:16:1c:72:de:2c:ca: 6c:d5:54:28:6e:0a:26:d5:57:19:42:a3:d6:da:a3: 1b:5a:a4:1c:df:0f:d7:ca:6e:84:c9:81:14:fa:4c: 91:e2:ad:26:b5:4a:17:16:fa:27:8e:64:19:fc:61: 6e:33:06:39:70:d0:df:0e:64:8d:02:85:3e:dd:34: f5:6e:85:1b:3c:73:4c:19:36:e0:98:8b:63:b7:48: 64:79:c5:77:3a:72:93:14:e3:a5:e6:14:5e:ad:25: 06:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:EA:88:28:1E:E3:1B:C5:02:B4:8C:32:CA:AB:F7:3D:05:9C:50:04 X509v3 Authority Key Identifier: keyid:8B:CE:7E:72:AB:BB:AD:00:53:63:93:A0:84:0B:BA:0A:BF:3A:A2:8E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/8afb5fe2-3c2a-4939-95e9-0077b80b4f0e/0/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/308f8b3e-051e-4c44-9cb5-7b8331ef9a04/1/8BCE7E72ABBBAD00536393A0840BBA0ABF3AA28E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:6f:da:36:69:5a:4c:ee:62:7a:4f:f4:f4:fe:aa:c1:97:ae: fe:8f:2d:29:69:92:80:a9:eb:07:4e:28:61:99:1c:a8:93:fc: b1:21:db:b2:26:c6:3a:44:e5:ac:16:e0:e0:c5:20:83:7b:e5: c1:95:2c:ce:9d:32:d3:d2:55:6c:0d:de:37:86:d6:6a:d0:6b: c4:85:1a:89:4c:28:11:58:6d:c1:4b:34:dd:e9:4c:a9:f2:c9: e3:1b:17:62:76:f8:ba:ab:7c:9e:fc:0e:b5:c0:6b:d6:24:2d: 69:d3:7e:9c:67:2e:c2:c4:ed:5e:7c:35:24:5e:5b:92:e8:75: b9:31:75:e4:10:0d:97:1f:e9:85:d4:5c:4c:f2:30:e8:2e:48: fe:44:d9:ee:37:96:a1:76:f8:87:30:fc:6d:7a:84:7e:43:73: 15:e5:51:f1:07:25:aa:17:34:f3:6a:f6:62:83:9d:1d:b6:f4: 91:d5:6f:c1:c2:bb:44:3b:0b:0d:a4:77:0b:99:d0:9a:fd:82: cc:c7:ea:f9:37:fe:7a:de:9e:2a:97:37:b8:cb:57:a2:04:7c: d9:21:ef:1b:5a:7c:8f:2f:b2:52:69:84:38:81:a3:8c:0d:c9: 04:37:60:4e:88:82:56:3d:5c:23:66:d4:fd:d4:06:cd:8c:a4: 35:7a:cd:ef -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUSF4M/MSLzHwWvym9vGadqpplVqkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJDRTdFNzJBQkJCQUQwMDUzNjM5M0EwODQwQkJBMEFC RjNBQTI4RTAeFw0yNjAxMjUxMzE2NDFaFw0yNjAxMjYxMzMyNDFaMDMxMTAvBgNV BAMTKDZDRUE4ODI4MUVFMzFCQzUwMkI0OEMzMkNBQUJGNzNEMDU5QzUwMDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRGo9YTidBRGNPIe5RQzbhP84w YomwVPhTgVmBCPf8fySm4MjSpvdy1SuaHfjryGqvFyOrwggIhfMPEpShnVv9nmua 2qoqudyiCnOXNiUjSFZRxTgTAk21idS+GW8b9aXnVxm1QJjkdQFm6yeubfu086T9 r/zl9TgfmPP0lEz4T8WtSHeQaajG4aDa6uwVHfK5YJKJ6nOUR0gunTeothYcct4s ymzVVChuCibVVxlCo9baoxtapBzfD9fKboTJgRT6TJHirSa1ShcW+ieOZBn8YW4z Bjlw0N8OZI0ChT7dNPVuhRs8c0wZNuCYi2O3SGR5xXc6cpMU46XmFF6tJQYXAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUbOqIKB7jG8UCtIwyyqv3PQWcUAQwHwYDVR0j BBgwFoAUi85+cqu7rQBTY5OghAu6Cr86oo4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzA4ZjhiM2UtMDUxZS00YzQ0LTljYjUtN2I4MzMxZWY5 YTA0LzEvOEJDRTdFNzJBQkJCQUQwMDUzNjM5M0EwODQwQkJBMEFCRjNBQTI4RS5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84YWZiNWZlMi0zYzJhLTQ5 MzktOTVlOS0wMDc3YjgwYjRmMGUvMC84QkNFN0U3MkFCQkJBRDAwNTM2MzkzQTA4 NDBCQkEwQUJGM0FBMjhFLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzMwOGY4YjNlLTA1MWUtNGM0NC05Y2I1LTdiODMzMWVmOWEwNC8xLzhCQ0U3RTcy QUJCQkFEMDA1MzYzOTNBMDg0MEJCQTBBQkYzQUEyOEUubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAbb9o2 aVpM7mJ6T/T0/qrBl67+jy0paZKAqesHTihhmRyok/yxIduyJsY6ROWsFuDgxSCD e+XBlSzOnTLT0lVsDd43htZq0GvEhRqJTCgRWG3BSzTd6Uyp8snjGxdidvi6q3ye /A61wGvWJC1p036cZy7CxO1efDUkXluS6HW5MXXkEA2XH+mF1FxM8jDoLkj+RNnu N5ahdviHMPxteoR+Q3MV5VHxByWqFzTzavZig50dtvSR1W/BwrtEOwsNpHcLmdCa /YLMx+r5N/563p4qlze4y1eiBHzZIe8bWnyPL7JSaYQ4gaOMDckEN2BOiIJWPVwj ZtT91AbNjKQ1es3v -----END CERTIFICATE-----Generated at Mon Jan 26 03:27:28 2026 by rpki-client