This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft File: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft (raw, json) Hash identifier: sZ8dvXq5K6M9LvdmRSjCqd1EzawhXsBzc0bDBx1GD/g= Subject key identifier: 85:07:A0:FF:8C:53:2C:B7:31:B7:5A:04:5F:85:52:2C:09:10:7E:D2 Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057 Certificate serial: 7205075C5AE086BB1DBE7615F78988D526B64C3D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft Manifest number: 028E Signing time: Sat 24 Jan 2026 22:59:31 +0000 Manifest this update: Sat 24 Jan 2026 22:54:31 +0000 Manifest next update: Mon 26 Jan 2026 01:58:31 +0000 Files and hashes: 1: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl (hash: CJZwwpdNiDQZw270AaqGdJQlxJKji2w7dUJVe+SYopw=) 2: 3139352e39352e3134392e302f32342d3234203d3e203236393534.roa (hash: 4RKcXrOywUF2n3zLGUholuQfQjsDw3jfgXGtm0jfONU=) 3: 5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer (hash: xVnvGBOQAGx7ddcmxacteZKEbUgAqtkW3B5rWiVC4Gw=) 4: 36322e3138322e3139322e302f32312d3234203d3e203432353332.roa (hash: 3uX+IJtCK1auUN/owB303ntI6bBy0+b5ouSYztCnTmQ=) 5: 326130623a346530343a646561643a3a2f34382d3438203d3e203331383938.roa (hash: V5g1oVVpactG3mKu8PF61hy91x6gtyEU1mTZQLj69yk=) 6: 326130623a346530343a3a2f34382d3438203d3e203236393534.roa (hash: kjCVplBQIQWTrk/MT/vsXbIMmP0BY/AuB2NZAKC1i00=) 7: 326130623a346530343a626565663a3a2f34382d3438203d3e203236393534.roa (hash: dXSnrOSsmksjfaruQTR4onccvLxLXawLPmHLDP+0pZ0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 01:58:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:05:07:5c:5a:e0:86:bb:1d:be:76:15:f7:89:88:d5:26:b6:4c:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057 Validity Not Before: Jan 24 22:54:31 2026 GMT Not After : Jan 26 01:58:31 2026 GMT Subject: CN=8507A0FF8C532CB731B75A045F85522C09107ED2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:37:f4:0e:14:77:dc:fd:ed:12:e3:75:f9:4d: 0c:28:a1:28:a9:1d:33:80:4f:fe:b1:91:9d:8b:79: 73:36:ed:08:db:ad:02:68:3c:6b:a7:bd:fe:ff:4e: 48:75:ba:8f:ef:f2:6a:85:b6:b8:81:f5:c6:84:d5: e6:02:93:71:6d:b1:15:57:ac:bb:8d:99:ef:ad:6e: 34:b8:6e:3a:d1:4b:96:b1:14:70:f0:1e:f0:07:6b: 8e:b7:6c:bc:fc:8f:75:f5:a6:03:f6:0b:4d:79:46: 5e:bc:02:51:c1:61:43:8b:87:00:c7:f6:0c:57:9f: 63:aa:f3:a7:5a:94:7f:17:46:9c:7d:a9:93:b5:ff: cf:fb:17:60:d4:47:9e:6c:6d:de:6e:0b:e1:c7:59: d1:6d:d7:73:d2:57:22:d7:42:3b:93:8b:95:e6:dc: 8b:92:35:5b:bb:a2:b0:1d:1a:ac:ae:16:34:09:fc: 8e:fa:aa:01:e7:39:4e:68:b1:79:3a:bb:ca:7d:4d: bd:46:f1:e0:f8:fa:2e:10:84:cb:b0:e0:33:24:91: 6d:9a:fd:35:49:68:ec:3d:eb:f0:de:0a:b3:39:75: b9:fb:f5:71:3f:66:99:96:c3:81:e0:af:3a:9d:9a: 27:38:d8:79:0f:87:e3:02:7d:80:15:dd:d4:ab:c2: 2e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:07:A0:FF:8C:53:2C:B7:31:B7:5A:04:5F:85:52:2C:09:10:7E:D2 X509v3 Authority Key Identifier: keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:ad:2d:78:cb:6e:a0:48:d6:67:21:61:d0:16:fa:52:a9:c3: c7:85:1b:86:68:8f:d8:ee:45:46:c0:ea:ac:3b:12:5b:74:7b: 3c:6f:67:4e:f0:d7:52:96:6c:77:52:86:62:b3:24:d6:28:5f: f6:82:3b:20:63:1c:cd:55:24:d0:be:b6:73:9e:60:19:96:82: 32:08:a5:7c:6e:91:49:20:7c:f5:47:86:64:88:4d:45:9f:a2: 27:c2:0c:c8:9f:28:83:6a:9b:2a:7d:f4:16:22:10:a3:21:87: 29:bb:e7:9d:02:76:2f:d3:c5:f2:db:0b:17:1f:ab:f6:6d:82: 4f:c6:d5:92:5b:1a:2f:95:76:7a:56:a3:45:a4:30:d3:05:d4: 45:a1:27:18:ea:78:03:2e:f3:e3:09:5e:3c:f3:f9:d1:f2:ac: 80:e7:2a:3f:97:a4:4d:e2:7f:02:86:e6:41:85:c2:db:04:f4: f3:3c:1e:5a:23:5c:d0:d5:e0:2e:39:03:ad:96:5d:75:16:7e: 5c:f1:9f:2a:55:72:85:25:46:46:05:ed:bd:b5:02:ae:b9:39: 0c:91:71:e1:f4:62:90:8a:b1:9a:ad:8b:56:29:de:66:ef:ba: 4f:b4:cd:bd:df:20:93:2c:e0:7d:33:83:eb:79:0e:ec:d8:f0: fb:9e:3b:91 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUcgUHXFrghrsdvnYV94mI1Sa2TD0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJlNTA4ZmJhODk2MGY0ODA3MWIxMTlhY2NiZjU3YmRi ZjNhODA1NzAeFw0yNjAxMjQyMjU0MzFaFw0yNjAxMjYwMTU4MzFaMDMxMTAvBgNV BAMTKDg1MDdBMEZGOEM1MzJDQjczMUI3NUEwNDVGODU1MjJDMDkxMDdFRDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDON/QOFHfc/e0S43X5TQwooSip HTOAT/6xkZ2LeXM27QjbrQJoPGunvf7/Tkh1uo/v8mqFtriB9caE1eYCk3FtsRVX rLuNme+tbjS4bjrRS5axFHDwHvAHa463bLz8j3X1pgP2C015Rl68AlHBYUOLhwDH 9gxXn2Oq86dalH8XRpx9qZO1/8/7F2DUR55sbd5uC+HHWdFt13PSVyLXQjuTi5Xm 3IuSNVu7orAdGqyuFjQJ/I76qgHnOU5osXk6u8p9Tb1G8eD4+i4QhMuw4DMkkW2a /TVJaOw96/DeCrM5dbn79XE/ZpmWw4Hgrzqdmic42HkPh+MCfYAV3dSrwi5LAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUhQeg/4xTLLcxt1oEX4VSLAkQftIwHwYDVR0j BBgwFoAUQuUI+6iWD0gHGxGazL9Xvb86gFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzNiOGVjMDEtOGJhNS00NzlmLWEyMjktMGFiNzBlNDgx NWJiLzAvNDJFNTA4RkJBODk2MEY0ODA3MUIxMTlBQ0NCRjU3QkRCRjNBODA1Ny5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1F1VUktNmlXRDBnSEd4R2F6TDlYdmI4 NmdGYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04 YmE1LTQ3OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC80MkU1MDhGQkE4OTYwRjQ4MDcx QjExOUFDQ0JGNTdCREJGM0E4MDU3Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAaK0teMtuoEjWZyFh0Bb6 UqnDx4UbhmiP2O5FRsDqrDsSW3R7PG9nTvDXUpZsd1KGYrMk1ihf9oI7IGMczVUk 0L62c55gGZaCMgilfG6RSSB89UeGZIhNRZ+iJ8IMyJ8og2qbKn30FiIQoyGHKbvn nQJ2L9PF8tsLFx+r9m2CT8bVklsaL5V2elajRaQw0wXURaEnGOp4Ay7z4wlePPP5 0fKsgOcqP5ekTeJ/AobmQYXC2wT08zweWiNc0NXgLjkDrZZddRZ+XPGfKlVyhSVG RgXtvbUCrrk5DJFx4fRikIqxmq2LVineZu+6T7TNvd8gkyzgfTOD63kO7Njw+547 kQ== -----END CERTIFICATE-----Generated at Sun Jan 25 14:22:02 2026 by rpki-client