This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: D6w5ikLbTAdcOo2Ehe79Axwfk+PKmVAole4RchVy1iY= Subject key identifier: 6B:F3:C7:49:9A:4D:E7:A4:13:05:18:A4:7F:FC:11:A5:13:F2:96:91 Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 01280BC46EF5288E7614E164424B3B6DE7840D28 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 0527 Signing time: Sun 25 Jan 2026 10:46:44 +0000 Manifest this update: Sun 25 Jan 2026 10:41:44 +0000 Manifest next update: Mon 26 Jan 2026 10:49:44 +0000 Files and hashes: 1: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) 2: AS51019.asa (hash: Oaa1EvfqOHf6DhtSUIsxpjt+74z+nkVUgLI9NR9q+Vg=) 3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: BbqHvB/sskv+GIKZVYvfg0vDxJTTzi3BL3S3GFtgoRg=) 4: 323030313a3637383a313161303a3a2f34382d3438203d3e203531303139.roa (hash: WTZJrpZtSK56gi8FgUd2AbaB/s6bTUvq5ttS3fRGoxU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 10:49:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:28:0b:c4:6e:f5:28:8e:76:14:e1:64:42:4b:3b:6d:e7:84:0d:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: Jan 25 10:41:44 2026 GMT Not After : Jan 26 10:49:44 2026 GMT Subject: CN=6BF3C7499A4DE7A4130518A47FFC11A513F29691 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:2b:c5:ff:b3:f3:1c:1c:9b:40:2a:53:35:2f: 24:d9:ae:05:7f:08:d5:03:5f:2a:0f:45:2a:6c:9f: f5:6e:ef:be:54:10:c8:70:db:2f:2f:9a:6d:51:1c: f6:de:b9:51:2a:ad:2a:ae:cb:08:49:00:a8:b9:8e: ba:76:cd:56:5e:5f:61:cf:ed:af:76:0e:00:8f:63: 0c:9d:27:ff:4c:04:43:fe:3b:b8:6f:df:0e:b9:aa: b4:91:c9:17:55:3d:73:6f:fb:30:39:4a:bb:3e:9c: ed:aa:e1:fb:58:d8:06:9c:95:a8:e2:6b:35:a3:09: 9b:a6:35:73:43:94:2b:df:29:35:51:a7:14:d3:db: 96:b8:91:32:59:05:14:54:d4:a4:96:1f:b8:20:82: ea:60:5e:93:b6:15:fb:bc:2b:03:d1:bf:42:e5:e6: 61:46:88:11:b0:a8:45:85:d3:8e:44:80:7d:41:16: e3:c4:45:58:d3:7a:94:c8:39:fd:ab:3a:3a:0b:ff: 30:9f:2c:8c:56:89:a7:55:ff:fb:91:59:34:67:5e: 9c:88:ab:ea:55:df:98:da:04:7f:52:8d:ba:4c:bb: c6:9c:5d:93:83:e8:44:02:f4:5d:04:f7:b9:dc:df: ab:c7:5c:72:a7:1e:d4:dd:86:cd:df:04:4b:17:e8: 42:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:F3:C7:49:9A:4D:E7:A4:13:05:18:A4:7F:FC:11:A5:13:F2:96:91 X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:86:79:73:86:e1:7f:a4:a0:5c:4e:57:af:58:c9:bb:0a:88: e0:d6:58:53:50:72:22:50:4c:f7:7e:34:72:5a:ee:e5:dd:82: f0:15:29:e7:99:5c:c1:bd:ce:08:0d:89:2b:12:fd:2c:20:f9: 57:65:bc:fc:f8:8f:60:71:6b:64:26:85:53:3b:0a:3a:43:ef: 13:71:bc:13:14:6f:69:a5:60:88:64:5a:76:1e:d6:6b:5d:9e: cd:ff:6b:c2:d4:d9:04:e2:40:2c:c9:dd:3a:8c:d3:0c:3b:be: b8:9f:b0:cc:c6:69:08:c7:3d:81:c2:1d:d4:6b:17:06:c4:93: 1b:15:39:b1:32:ef:67:ef:08:3b:9e:0e:7c:ab:85:16:b5:0c: e8:a8:36:1e:3e:e2:7f:a3:84:18:41:b8:56:e9:8b:90:41:06: 95:8f:25:87:af:2b:2d:25:ac:7a:52:c6:66:6e:90:ff:c5:e2: 15:26:14:7c:6c:fe:c1:b0:3d:f1:7f:3a:7f:15:7b:b4:2e:5b: d0:30:b3:e5:8e:12:4a:87:69:62:4c:fb:cb:0c:32:d5:80:40: 5d:4f:d9:df:ac:b8:b9:e3:46:c9:1c:67:4d:70:38:23:71:6a: b1:ab:5f:c5:f3:82:0b:f4:52:72:2c:c5:70:7a:69:84:b6:c6: 43:ff:f3:f2 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUASgLxG71KI52FOFkQks7beeEDSgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNjAxMjUxMDQxNDRaFw0yNjAxMjYxMDQ5NDRaMDMxMTAvBgNV BAMTKDZCRjNDNzQ5OUE0REU3QTQxMzA1MThBNDdGRkMxMUE1MTNGMjk2OTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClK8X/s/McHJtAKlM1LyTZrgV/ CNUDXyoPRSpsn/Vu775UEMhw2y8vmm1RHPbeuVEqrSquywhJAKi5jrp2zVZeX2HP 7a92DgCPYwydJ/9MBEP+O7hv3w65qrSRyRdVPXNv+zA5Srs+nO2q4ftY2Aaclaji azWjCZumNXNDlCvfKTVRpxTT25a4kTJZBRRU1KSWH7gggupgXpO2Ffu8KwPRv0Ll 5mFGiBGwqEWF045EgH1BFuPERVjTepTIOf2rOjoL/zCfLIxWiadV//uRWTRnXpyI q+pV35jaBH9SjbpMu8acXZOD6EQC9F0E97nc36vHXHKnHtTdhs3fBEsX6EKZAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUa/PHSZpN56QTBRikf/wRpRPylpEwHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX4Z5c4bhf6SgXE5Xr1jJ uwqI4NZYU1ByIlBM9340clru5d2C8BUp55lcwb3OCA2JKxL9LCD5V2W8/PiPYHFr ZCaFUzsKOkPvE3G8ExRvaaVgiGRadh7Wa12ezf9rwtTZBOJALMndOozTDDu+uJ+w zMZpCMc9gcId1GsXBsSTGxU5sTLvZ+8IO54OfKuFFrUM6Kg2Hj7if6OEGEG4VumL kEEGlY8lh68rLSWselLGZm6Q/8XiFSYUfGz+wbA98X86fxV7tC5b0DCz5Y4SSodp Ykz7ywwy1YBAXU/Z36y4ueNGyRxnTXA4I3FqsatfxfOCC/RScizFcHpphLbGQ//z 8g== -----END CERTIFICATE-----Generated at Mon Jan 26 00:19:08 2026 by rpki-client