This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft File: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft (raw, json) Hash identifier: zx2v7kcQ3+dE3ytW9tOPwGBUvnksZn1rlhe0CMfobGw= Subject key identifier: 41:15:DC:9E:1C:51:8A:70:11:21:0C:87:B0:31:6A:0B:00:1E:FF:A5 Authority key identifier: 42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 Certificate issuer: /CN=42e508fba8960f48071b119accbf57bdbf3a8057 Certificate serial: 2156A8ED0BA207B31A53352F3146F4A7D6CAE588 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft Manifest number: 0249 Signing time: Fri 05 Dec 2025 20:43:34 +0000 Manifest this update: Fri 05 Dec 2025 20:38:34 +0000 Manifest next update: Sun 07 Dec 2025 00:22:34 +0000 Files and hashes: 1: 36322e3138322e3139322e302f32312d3234203d3e203432353332.roa (hash: 3uX+IJtCK1auUN/owB303ntI6bBy0+b5ouSYztCnTmQ=) 2: 3139352e39352e3134392e302f32342d3234203d3e203236393534.roa (hash: 4RKcXrOywUF2n3zLGUholuQfQjsDw3jfgXGtm0jfONU=) 3: 42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl (hash: MlQk94fAeRczVybOGUqBJfwca6h/Yi1RopXI6PwnuSQ=) 4: 326130623a346530343a3a2f34382d3438203d3e203236393534.roa (hash: kjCVplBQIQWTrk/MT/vsXbIMmP0BY/AuB2NZAKC1i00=) 5: 5124C31FCFA4E82C4D0F6E09A30A04A55C9778BF.cer (hash: xVnvGBOQAGx7ddcmxacteZKEbUgAqtkW3B5rWiVC4Gw=) 6: 326130623a346530343a626565663a3a2f34382d3438203d3e203236393534.roa (hash: dXSnrOSsmksjfaruQTR4onccvLxLXawLPmHLDP+0pZ0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:56:a8:ed:0b:a2:07:b3:1a:53:35:2f:31:46:f4:a7:d6:ca:e5:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=42e508fba8960f48071b119accbf57bdbf3a8057 Validity Not Before: Dec 5 20:38:34 2025 GMT Not After : Dec 7 00:22:34 2025 GMT Subject: CN=4115DC9E1C518A7011210C87B0316A0B001EFFA5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b5:5d:0b:c5:ac:55:b4:1e:3e:ab:fe:32:d7: d8:eb:9f:e3:bb:02:75:9b:6f:97:73:50:b9:a9:4d: df:b0:86:ea:cf:c6:e8:ca:e1:69:b5:ee:8f:11:03: 29:1b:ab:e4:95:c5:68:a3:e1:b5:58:b5:0b:ed:6e: 61:d7:6b:fe:46:df:17:bd:be:c3:41:08:54:fd:7c: 5f:c5:c7:ca:3b:49:5f:b2:fa:7e:01:4f:84:f1:80: 06:97:d6:bd:b1:f6:68:62:44:0b:d9:24:99:11:99: bf:9a:38:42:b8:18:05:0f:60:67:d6:c9:de:da:56: 64:2d:01:ec:be:07:4f:96:72:ef:2b:ed:d0:b9:ea: 2a:fc:f4:bb:c8:5e:a6:7e:b0:fd:4c:21:c7:8a:ee: 96:31:49:6b:24:62:4b:41:36:86:b6:cb:7e:36:54: 68:9d:2a:59:cd:19:95:8a:4b:7f:6a:88:88:77:f6: a2:24:e9:0e:6c:ea:91:8a:be:ed:ba:3e:43:89:0f: 6e:15:37:15:16:a9:6e:92:c1:b8:85:ca:0a:7d:e9: a5:11:6d:5e:75:2c:a6:a7:ac:77:2c:3b:ff:c1:f9: fd:68:78:8a:15:16:9f:14:59:d1:fa:59:8d:ad:b8: 8e:e1:0f:3c:87:e0:e9:a8:28:c6:3c:71:1c:09:37: 73:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:15:DC:9E:1C:51:8A:70:11:21:0C:87:B0:31:6A:0B:00:1E:FF:A5 X509v3 Authority Key Identifier: keyid:42:E5:08:FB:A8:96:0F:48:07:1B:11:9A:CC:BF:57:BD:BF:3A:80:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QuUI-6iWD0gHGxGazL9Xvb86gFc.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/73b8ec01-8ba5-479f-a229-0ab70e4815bb/0/42E508FBA8960F48071B119ACCBF57BDBF3A8057.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:3e:e6:ff:bf:f4:35:5c:ff:c1:cd:06:61:cf:fc:3e:5f:61: a1:86:e1:ef:f7:4f:cd:70:ac:6a:1e:af:3d:a3:29:ec:07:ea: e2:ab:eb:fe:90:d3:81:d9:bf:19:43:74:9f:5e:6a:83:5b:36: c4:3f:8e:f9:21:45:99:53:00:1b:23:bc:2b:a8:6a:d5:9d:57: 05:68:45:d9:85:11:62:e2:a9:b7:7b:19:28:59:e4:6b:c4:56: 95:38:99:d5:1d:20:ff:fc:66:a1:e5:4b:4d:1a:a9:8c:e7:b4: 44:41:42:32:ae:cf:24:15:2f:5f:6f:38:59:69:3f:b3:bb:d1: b4:73:e0:c9:60:0d:01:66:6c:08:f3:aa:a3:3e:0b:a9:c0:d2: 87:81:07:ca:c6:0a:dd:35:10:52:64:ef:b7:0b:39:20:b4:7d: 0d:ea:ac:10:6c:6c:53:92:2a:0d:1a:54:8a:fd:60:9b:d3:e1: 69:16:3d:ca:e6:8d:38:a8:df:69:63:d5:29:bd:55:ca:6d:23: 4a:5a:6e:2f:2e:a3:61:7a:b4:0f:8b:1d:a6:dd:d4:95:d4:2e: ee:ea:98:a3:e4:b9:74:12:53:ce:a3:ae:de:6e:33:74:39:85: d5:f9:41:33:ca:47:b7:e0:e7:e7:71:a1:e7:9a:3d:b1:d1:5c: d5:a5:c5:1d -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIVao7QuiB7MaUzUvMUb0p9bK5YgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDJlNTA4ZmJhODk2MGY0ODA3MWIxMTlhY2NiZjU3YmRi ZjNhODA1NzAeFw0yNTEyMDUyMDM4MzRaFw0yNTEyMDcwMDIyMzRaMDMxMTAvBgNV BAMTKDQxMTVEQzlFMUM1MThBNzAxMTIxMEM4N0IwMzE2QTBCMDAxRUZGQTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRtV0LxaxVtB4+q/4y19jrn+O7 AnWbb5dzULmpTd+whurPxujK4Wm17o8RAykbq+SVxWij4bVYtQvtbmHXa/5G3xe9 vsNBCFT9fF/Fx8o7SV+y+n4BT4TxgAaX1r2x9mhiRAvZJJkRmb+aOEK4GAUPYGfW yd7aVmQtAey+B0+Wcu8r7dC56ir89LvIXqZ+sP1MIceK7pYxSWskYktBNoa2y342 VGidKlnNGZWKS39qiIh39qIk6Q5s6pGKvu26PkOJD24VNxUWqW6SwbiFygp96aUR bV51LKanrHcsO//B+f1oeIoVFp8UWdH6WY2tuI7hDzyH4OmoKMY8cRwJN3P3AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUQRXcnhxRinARIQyHsDFqCwAe/6UwHwYDVR0j BBgwFoAUQuUI+6iWD0gHGxGazL9Xvb86gFcwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNzNiOGVjMDEtOGJhNS00NzlmLWEyMjktMGFiNzBlNDgx NWJiLzAvNDJFNTA4RkJBODk2MEY0ODA3MUIxMTlBQ0NCRjU3QkRCRjNBODA1Ny5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1F1VUktNmlXRDBnSEd4R2F6TDlYdmI4 NmdGYy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83M2I4ZWMwMS04 YmE1LTQ3OWYtYTIyOS0wYWI3MGU0ODE1YmIvMC80MkU1MDhGQkE4OTYwRjQ4MDcx QjExOUFDQ0JGNTdCREJGM0E4MDU3Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWD7m/7/0NVz/wc0GYc/8 Pl9hoYbh7/dPzXCsah6vPaMp7Afq4qvr/pDTgdm/GUN0n15qg1s2xD+O+SFFmVMA GyO8K6hq1Z1XBWhF2YURYuKpt3sZKFnka8RWlTiZ1R0g//xmoeVLTRqpjOe0REFC Mq7PJBUvX284WWk/s7vRtHPgyWANAWZsCPOqoz4LqcDSh4EHysYK3TUQUmTvtws5 ILR9DeqsEGxsU5IqDRpUiv1gm9PhaRY9yuaNOKjfaWPVKb1Vym0jSlpuLy6jYXq0 D4sdpt3UldQu7uqYo+S5dBJTzqOu3m4zdDmF1flBM8pHt+Dn53Gh55o9sdFc1aXF HQ== -----END CERTIFICATE-----Generated at Sat Dec 6 05:56:41 2025 by rpki-client