This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json) Hash identifier: fEbMQiHXxNcsfvl9soxZgFeubF5eqCW+gq1rvemEGZI= Subject key identifier: 88:2F:49:6D:BB:99:E6:C9:03:47:A9:BE:42:36:79:83:64:03:65:3C Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486 Certificate serial: 1EB81F1DA6B7393EE7D33D6E6F1FB4DD6EAB410E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft Manifest number: 039B Signing time: Sat 06 Dec 2025 09:01:17 +0000 Manifest this update: Sat 06 Dec 2025 08:56:17 +0000 Manifest next update: Sun 07 Dec 2025 10:59:17 +0000 Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=) 2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: MDeyYoDazxrYrTxvkPalq4aQrzrifYReOmwRpCb/9Wc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 05:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b8:1f:1d:a6:b7:39:3e:e7:d3:3d:6e:6f:1f:b4:dd:6e:ab:41:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486 Validity Not Before: Dec 6 08:56:17 2025 GMT Not After : Dec 7 10:59:17 2025 GMT Subject: CN=882F496DBB99E6C90347A9BE423679836403653C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:95:72:99:84:aa:cb:f1:10:83:40:3f:70:db: 0f:d5:25:50:7a:fb:f6:35:93:6a:f5:89:f5:6e:22: 85:ed:32:5c:d9:01:81:47:f0:17:8a:cb:12:36:9c: 5c:bd:ea:dd:d9:70:b8:28:25:cf:df:76:5d:31:8b: 09:50:41:ff:f1:d3:d0:89:89:a7:7b:d0:18:9b:b5: 6b:bf:fd:d0:f8:f0:fd:82:c9:c4:00:a2:90:c6:c2: fe:6d:8b:d8:82:12:d7:ec:fd:8c:5b:62:5a:50:b7: e2:a3:ff:18:a4:30:23:c6:23:6c:97:bf:30:f0:bf: 3d:e0:f4:db:af:02:f4:8b:d3:37:ee:75:dc:3a:ba: 38:a3:c9:7f:ca:06:81:d0:19:16:84:fe:07:64:3a: c8:9b:27:d0:5d:b3:bf:16:98:25:d5:0d:db:58:c0: 0e:9f:f4:e9:8f:a2:60:6a:cf:0e:35:e3:95:a3:a6: 1b:98:88:21:60:79:33:67:0e:02:db:55:11:fa:3e: 6a:e6:e5:1d:cd:31:df:12:3d:56:f4:65:4d:36:1a: 63:d6:92:30:e1:1a:b2:20:8b:db:e6:4e:7a:92:67: bb:18:f7:8f:55:14:fb:4e:ba:3f:c6:55:53:d6:bf: a2:d7:44:a7:29:22:56:2d:a1:17:59:4b:42:a2:21: b7:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:2F:49:6D:BB:99:E6:C9:03:47:A9:BE:42:36:79:83:64:03:65:3C X509v3 Authority Key Identifier: keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:6f:23:f7:27:e7:1e:b6:c8:45:29:ef:c8:93:69:e7:26:d4: aa:39:57:f5:6b:63:a9:c8:3a:3a:c9:46:3e:2b:f6:91:1e:ac: 11:d8:00:94:41:7d:82:8b:a6:1a:d9:22:e2:cc:2a:fc:23:d7: 25:a7:74:f7:9b:b0:27:e1:d1:1c:96:5c:53:57:c9:48:cb:0e: 49:41:82:68:ab:13:e6:c2:33:02:f0:f6:08:3f:36:05:cb:b6: e8:0e:fe:ec:c1:6d:50:aa:83:50:e3:57:8e:9b:e9:1b:01:48: 1b:95:9e:d3:53:4f:48:a6:5b:53:83:0d:ab:bf:77:d7:b6:03: 14:af:27:a7:d3:0f:9d:21:f4:9a:50:bf:49:ac:a4:c0:69:73: ad:db:f2:92:8e:a0:dd:b1:a2:86:b2:1d:ad:07:77:5e:c9:b8: 6c:d6:dd:03:26:6b:80:17:f7:3c:b2:17:0a:3c:c0:14:5d:c2: e8:3e:a7:39:f0:9b:67:e9:61:8e:a2:cb:d2:0e:b2:c7:1d:a3: 19:90:05:a9:7d:75:67:1c:04:46:e9:56:ba:30:6d:50:42:4b: 36:72:f9:40:7e:0f:c0:6d:0f:92:d0:b7:c9:66:c8:7e:a5:d0: d9:79:0c:8d:89:8c:ff:7c:4d:6e:ae:ea:f0:dd:95:f1:10:66: 39:cd:5a:c5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUHrgfHaa3OT7n0z1ubx+03W6rQQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhkMDk3YWZkODhhZWYzZjEwMjgyZjMyMThmYzEzZjAx YTBkZTQ4NjAeFw0yNTEyMDYwODU2MTdaFw0yNTEyMDcxMDU5MTdaMDMxMTAvBgNV BAMTKDg4MkY0OTZEQkI5OUU2QzkwMzQ3QTlCRTQyMzY3OTgzNjQwMzY1M0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUlXKZhKrL8RCDQD9w2w/VJVB6 +/Y1k2r1ifVuIoXtMlzZAYFH8BeKyxI2nFy96t3ZcLgoJc/fdl0xiwlQQf/x09CJ iad70BibtWu//dD48P2CycQAopDGwv5ti9iCEtfs/YxbYlpQt+Kj/xikMCPGI2yX vzDwvz3g9NuvAvSL0zfuddw6ujijyX/KBoHQGRaE/gdkOsibJ9Bds78WmCXVDdtY wA6f9OmPomBqzw4145WjphuYiCFgeTNnDgLbVRH6Pmrm5R3NMd8SPVb0ZU02GmPW kjDhGrIgi9vmTnqSZ7sY949VFPtOuj/GVVPWv6LXRKcpIlYtoRdZS0KiIbeTAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUiC9JbbuZ5skDR6m+QjZ5g2QDZTwwHwYDVR0j BBgwFoAUaNCXr9iK7z8QKC8yGPwT8BoN5IYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2MxMWI4MTktZDQ1OS00MTM2LTk5ODctZjAyOTJhODdl NjQwLzAvNjhEMDk3QUZEODhBRUYzRjEwMjgyRjMyMThGQzEzRjAxQTBERTQ4Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FOQ1hyOWlLN3o4UUtDOHlHUHdUOEJv TjVJWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83YzExYjgxOS1k NDU5LTQxMzYtOTk4Ny1mMDI5MmE4N2U2NDAvMC82OEQwOTdBRkQ4OEFFRjNGMTAy ODJGMzIxOEZDMTNGMDFBMERFNDg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeW8j9yfnHrbIRSnvyJNp 5ybUqjlX9Wtjqcg6OslGPiv2kR6sEdgAlEF9goumGtki4swq/CPXJad095uwJ+HR HJZcU1fJSMsOSUGCaKsT5sIzAvD2CD82Bcu26A7+7MFtUKqDUONXjpvpGwFIG5We 01NPSKZbU4MNq79317YDFK8np9MPnSH0mlC/SaykwGlzrdvyko6g3bGihrIdrQd3 Xsm4bNbdAyZrgBf3PLIXCjzAFF3C6D6nOfCbZ+lhjqLL0g6yxx2jGZAFqX11ZxwE RulWujBtUEJLNnL5QH4PwG0PktC3yWbIfqXQ2XkMjYmM/3xNbq7q8N2V8RBmOc1a xQ== -----END CERTIFICATE-----Generated at Sat Dec 6 11:31:51 2025 by rpki-client