This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: m2O8db3vGZPvV34bcx07dFVf8rcrlaah5+McWlzDh7E= Subject key identifier: 73:74:73:D3:9D:50:1F:05:A5:9B:7B:5E:00:36:7A:88:2C:30:9F:0E Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 6D216AB046093709F88F99DC4C9BE29A3FAB5EE9 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 025A Signing time: Sat 06 Dec 2025 11:54:04 +0000 Manifest this update: Sat 06 Dec 2025 11:49:04 +0000 Manifest next update: Sun 07 Dec 2025 14:57:04 +0000 Files and hashes: 1: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: /APvQtIczoMdPeFgS8yLWOSzDbhA86h5Cc1N87vUKRI=) 2: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: d55lyARHy1Yod8bJu/i4k7qlKQEQ0J2AKy3B+Gf/6jQ=) 3: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: 1o4m8PJbpPTt/WwCt8wMPBTEbmCl+8vcVtrKZbTYjFM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:21:6a:b0:46:09:37:09:f8:8f:99:dc:4c:9b:e2:9a:3f:ab:5e:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: Dec 6 11:49:04 2025 GMT Not After : Dec 7 14:57:04 2025 GMT Subject: CN=737473D39D501F05A59B7B5E00367A882C309F0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:a8:4b:6c:74:4c:fd:1a:cd:7a:19:61:7f:a8: d8:a6:34:ac:a4:30:50:9d:66:cd:ff:63:b4:c2:7e: 92:d1:78:eb:28:4d:94:3c:c9:aa:76:d4:48:24:17: a5:e1:ba:38:ac:6d:1b:6f:82:de:96:0c:f0:10:23: 6b:d8:dd:f1:7c:51:6c:ac:d8:b1:d7:19:20:22:2e: 23:a2:d3:ae:0f:df:bd:16:3a:cc:11:cd:64:f5:d5: 53:76:1b:47:c8:94:0b:46:94:70:09:46:64:c7:ca: 25:9f:29:de:72:ee:68:06:b3:b1:0c:07:ba:ea:68: e9:d8:8f:2a:0c:c0:27:4e:8d:26:d2:b6:07:55:cc: 36:5d:79:0f:63:5c:33:4e:49:81:9d:15:3c:82:ec: d2:4b:d0:63:f4:11:0b:9b:f1:53:79:d4:ec:03:cd: b1:63:63:a5:93:de:8d:58:e7:ec:a5:71:48:56:f4: 5f:69:be:9c:e4:37:aa:4b:e8:dd:11:ee:79:91:fe: 07:db:9e:ab:22:3e:64:ba:b5:da:32:a9:ac:c4:30: 48:9e:a0:18:f4:b4:b6:1f:7a:88:2f:ea:fb:40:55: 26:52:f0:7a:a3:7d:32:1f:f1:8d:80:53:26:a7:d7: 48:95:67:79:58:91:28:bf:da:a0:12:a4:23:ec:ef: 8b:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:74:73:D3:9D:50:1F:05:A5:9B:7B:5E:00:36:7A:88:2C:30:9F:0E X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0b:a2:41:0f:f3:29:21:ae:41:bd:b8:9f:5b:2f:1e:6f:2f:93: 97:fb:68:6a:f1:6e:34:42:c2:3d:06:d1:e0:6d:24:61:b1:6d: e6:85:9d:d5:32:e6:d0:1f:04:9c:f9:ed:07:05:2d:19:21:9f: 3a:bd:cb:9d:8a:56:b5:8c:4d:f9:83:f9:51:27:d2:63:ec:08: 27:6a:96:19:c2:e6:ad:e6:47:67:c7:0b:40:5f:0f:e8:d8:16: 28:93:c4:0f:02:99:3b:72:b3:bb:f9:48:63:0c:2a:31:a6:d9: f0:ca:88:60:a2:ce:ac:3d:55:1c:a9:c3:89:43:4a:14:76:74: a7:2a:d3:8a:1c:1b:15:0d:9f:24:1d:73:a2:e0:c1:b9:68:0f: 6a:e7:c0:ac:28:4d:98:a0:82:e1:a0:57:91:71:eb:28:43:7e: 3c:f8:66:c5:03:b6:c5:6e:ee:17:2e:c8:0e:f5:84:24:d0:02: 92:b5:12:c5:bb:37:c7:29:60:a9:22:c2:bf:7b:00:07:44:25: 75:73:8c:d2:9b:18:02:6b:20:c7:1c:61:d3:74:31:dc:fd:3c: 43:6d:df:1f:08:c1:9b:fd:1c:60:9c:a0:5a:7f:4f:03:41:2b: e2:eb:75:32:27:e0:b0:d6:99:5f:9c:ba:78:d0:a9:28:bf:a2: 1f:af:fb:e3 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUbSFqsEYJNwn4j5ncTJvimj+rXukwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNTEyMDYxMTQ5MDRaFw0yNTEyMDcxNDU3MDRaMDMxMTAvBgNV BAMTKDczNzQ3M0QzOUQ1MDFGMDVBNTlCN0I1RTAwMzY3QTg4MkMzMDlGMEUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChqEtsdEz9Gs16GWF/qNimNKyk MFCdZs3/Y7TCfpLReOsoTZQ8yap21EgkF6XhujisbRtvgt6WDPAQI2vY3fF8UWys 2LHXGSAiLiOi064P370WOswRzWT11VN2G0fIlAtGlHAJRmTHyiWfKd5y7mgGs7EM B7rqaOnYjyoMwCdOjSbStgdVzDZdeQ9jXDNOSYGdFTyC7NJL0GP0EQub8VN51OwD zbFjY6WT3o1Y5+ylcUhW9F9pvpzkN6pL6N0R7nmR/gfbnqsiPmS6tdoyqazEMEie oBj0tLYfeogv6vtAVSZS8HqjfTIf8Y2AUyan10iVZ3lYkSi/2qASpCPs74sDAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUc3Rz051QHwWlm3teADZ6iCwwnw4wHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQALokEP 8ykhrkG9uJ9bLx5vL5OX+2hq8W40QsI9BtHgbSRhsW3mhZ3VMubQHwSc+e0HBS0Z IZ86vcudila1jE35g/lRJ9Jj7AgnapYZwuat5kdnxwtAXw/o2BYok8QPApk7crO7 +UhjDCoxptnwyohgos6sPVUcqcOJQ0oUdnSnKtOKHBsVDZ8kHXOi4MG5aA9q58Cs KE2YoILhoFeRcesoQ348+GbFA7bFbu4XLsgO9YQk0AKStRLFuzfHKWCpIsK/ewAH RCV1c4zSmxgCayDHHGHTdDHc/TxDbd8fCMGb/RxgnKBaf08DQSvi63UyJ+Cw1plf nLp40Kkov6Ifr/vj -----END CERTIFICATE-----Generated at Sat Dec 6 21:47:49 2025 by rpki-client