This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft File: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft (raw, json) Hash identifier: WEr7ZjZ+Ljnt5HaFqkKuGxBMdBNpj3ZglyRMbe0TNSc= Subject key identifier: 46:9A:37:67:22:61:FC:B2:38:17:C8:85:1C:7F:3F:E2:12:D6:0A:71 Authority key identifier: 8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C Certificate issuer: /CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Certificate serial: 61FADBBFC32FAB3ABB2DF2DCFC720379E0C282A1 Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft Manifest number: 029C Signing time: Sun 25 Jan 2026 01:52:05 +0000 Manifest this update: Sun 25 Jan 2026 01:47:05 +0000 Manifest next update: Mon 26 Jan 2026 04:31:05 +0000 Files and hashes: 1: 326131333a393634343a343030303a3a2f34302d3430203d3e20323034323931.roa (hash: 1o4m8PJbpPTt/WwCt8wMPBTEbmCl+8vcVtrKZbTYjFM=) 2: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl (hash: Ob2fZT3Q640vjn7ENhAHY8ulU1TeIJFYV+sH9gBhWDw=) 3: 326131333a393634343a343061653a3a2f34382d3438203d3e20323034323931.roa (hash: /APvQtIczoMdPeFgS8yLWOSzDbhA86h5Cc1N87vUKRI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 04:31:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:fa:db:bf:c3:2f:ab:3a:bb:2d:f2:dc:fc:72:03:79:e0:c2:82:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C Validity Not Before: Jan 25 01:47:05 2026 GMT Not After : Jan 26 04:31:05 2026 GMT Subject: CN=469A37672261FCB23817C8851C7F3FE212D60A71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:33:c6:0d:aa:57:e3:1f:c2:56:eb:97:9e:90: 29:64:70:9e:fd:c5:3c:ff:3d:89:6e:2d:48:00:8f: de:8c:10:1c:f4:dc:25:87:4d:49:3c:1f:74:13:4f: 8e:ab:25:d2:3a:0d:54:0c:2c:d5:3f:fb:32:34:d6: 94:29:3a:d5:ec:09:6c:07:e2:6c:ae:c4:a4:37:af: e2:31:85:9d:2c:58:9a:2b:e8:da:e5:59:98:b3:97: 73:58:e9:12:e0:93:b4:92:61:7d:26:bf:03:58:be: 83:13:12:22:56:60:6f:e2:95:9e:79:2f:6f:51:e2: 74:13:79:42:60:d2:f7:bc:47:8f:40:49:2e:22:1e: 0f:8b:35:23:79:49:e1:1c:75:12:df:58:d9:db:e4: 6e:1b:59:b5:fe:74:29:ee:25:7d:d4:90:d6:57:34: ec:1c:4e:f6:12:1a:ba:0a:8a:b9:78:d3:20:5f:20: bc:fc:9f:1d:43:5c:c4:9b:0c:0e:8f:04:3d:2a:e3: f1:0d:a0:b9:1c:7a:6c:8a:91:a2:83:50:71:08:91: 2e:0b:bf:22:45:36:90:96:cd:df:a9:a0:2b:ff:93: 5c:9d:c0:e9:3e:98:be:49:99:67:36:fd:f7:9e:79: 1a:32:41:1b:51:a1:4c:b9:7b:e5:25:fc:a6:b0:1d: c4:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:9A:37:67:22:61:FC:B2:38:17:C8:85:1C:7F:3F:E2:12:D6:0A:71 X509v3 Authority Key Identifier: keyid:8B:AD:30:7C:D4:DF:11:01:4E:40:ED:DF:FF:D6:0F:9A:09:E6:E9:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/1/8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b0:02:49:35:af:09:5d:d0:01:c3:7c:e3:bb:53:0e:57:50:c6: ec:98:33:7f:0c:b5:6d:b4:85:19:09:f5:6b:67:89:51:7f:a3: b9:bd:4e:d4:ab:26:6f:5f:b7:f7:e8:c3:16:da:ee:45:95:85: 53:67:c1:20:5c:66:7b:b7:ac:10:17:25:b3:d4:35:05:e5:93: 81:7a:77:01:08:bc:ea:a2:e7:b6:78:3b:b9:ea:2f:4f:be:1c: e5:96:86:7f:a9:eb:cc:a7:66:cb:4a:e7:97:dd:d7:a4:83:e9: 0a:9f:e8:9c:ed:c1:ae:b8:1a:de:99:38:44:35:40:5c:53:28: 59:7b:e8:c6:35:d3:e5:5d:c1:89:2a:d9:33:60:a9:81:30:c3: 3d:5d:1e:9b:c9:98:44:29:f9:a8:0b:e8:98:d4:56:eb:69:e7: ae:70:87:5b:cd:a2:76:24:8b:df:67:89:b0:e7:29:8e:ff:0b: 9f:98:5e:29:77:da:19:f3:ab:44:ff:21:f2:b8:51:95:46:e1: 12:54:a1:ea:cf:90:77:3d:f8:4b:30:c9:72:4a:58:5f:97:1e: 22:6a:19:d3:09:8e:c5:53:4b:19:06:f2:8a:ed:6c:49:e5:ff: e4:4c:ab:f7:69:ca:df:19:08:ed:5d:89:d7:53:cc:05:86:2a: 48:b1:9c:85 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUYfrbv8Mvqzq7LfLc/HIDeeDCgqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEw OUU2RTk1QzAeFw0yNjAxMjUwMTQ3MDVaFw0yNjAxMjYwNDMxMDVaMDMxMTAvBgNV BAMTKDQ2OUEzNzY3MjI2MUZDQjIzODE3Qzg4NTFDN0YzRkUyMTJENjBBNzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9M8YNqlfjH8JW65eekClkcJ79 xTz/PYluLUgAj96MEBz03CWHTUk8H3QTT46rJdI6DVQMLNU/+zI01pQpOtXsCWwH 4myuxKQ3r+IxhZ0sWJor6NrlWZizl3NY6RLgk7SSYX0mvwNYvoMTEiJWYG/ilZ55 L29R4nQTeUJg0ve8R49ASS4iHg+LNSN5SeEcdRLfWNnb5G4bWbX+dCnuJX3UkNZX NOwcTvYSGroKirl40yBfILz8nx1DXMSbDA6PBD0q4/ENoLkcemyKkaKDUHEIkS4L vyJFNpCWzd+poCv/k1ydwOk+mL5JmWc2/feeeRoyQRtRoUy5e+Ul/KawHcQhAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQURpo3ZyJh/LI4F8iFHH8/4hLWCnEwHwYDVR0j BBgwFoAUi60wfNTfEQFOQO3f/9YPmgnm6VwwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzEvOEJBRDMwN0NENERGMTEwMTRFNDBFRERGRkZENjBGOUEwOUU2RTk1Qy5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00MDBhLTRm ZDEtYWI4YS1lNzYxNmUyNDViNDkvMC84QkFEMzA3Q0Q0REYxMTAxNEU0MEVEREZG RkQ2MEY5QTA5RTZFOTVDLmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzY1ZWFlNzQ1LThhYzktNGU3MS1iYzk0LWZjYjI2MTcwM2Y5Ni8xLzhCQUQzMDdD RDRERjExMDE0RTQwRURERkZGRDYwRjlBMDlFNkU5NUMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCwAkk1 rwld0AHDfOO7Uw5XUMbsmDN/DLVttIUZCfVrZ4lRf6O5vU7UqyZvX7f36MMW2u5F lYVTZ8EgXGZ7t6wQFyWz1DUF5ZOBencBCLzqoue2eDu56i9PvhzlloZ/qevMp2bL SueX3dekg+kKn+ic7cGuuBremThENUBcUyhZe+jGNdPlXcGJKtkzYKmBMMM9XR6b yZhEKfmoC+iY1FbraeeucIdbzaJ2JIvfZ4mw5ymO/wufmF4pd9oZ86tE/yHyuFGV RuESVKHqz5B3PfhLMMlySlhflx4iahnTCY7FU0sZBvKK7WxJ5f/kTKv3acrfGQjt XYnXU8wFhipIsZyF -----END CERTIFICATE-----Generated at Sun Jan 25 21:44:52 2026 by rpki-client