This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: oPyTlZ3ufJhkZh2UN1xN3G/oVt/PuWr8RY7gMb8Nyhg= Subject key identifier: 99:63:2D:78:E9:22:B8:DE:0E:A0:27:C9:5A:51:1D:5C:B3:A1:E2:93 Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 21C780B8415576080B2B2431D1A9F9F9FA2057EB Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 04DE Signing time: Sat 06 Dec 2025 02:08:51 +0000 Manifest this update: Sat 06 Dec 2025 02:03:51 +0000 Manifest next update: Sun 07 Dec 2025 03:56:51 +0000 Files and hashes: 1: AS51019.asa (hash: AiRPUbx35MM7Uk9u1a659xIRQwxzEohuToTzU6obyN0=) 2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) 3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: jOVefV3brh9K8d9XK+Fyck5qjvVhsnxuh4XumWwOdcw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c7:80:b8:41:55:76:08:0b:2b:24:31:d1:a9:f9:f9:fa:20:57:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: Dec 6 02:03:51 2025 GMT Not After : Dec 7 03:56:51 2025 GMT Subject: CN=99632D78E922B8DE0EA027C95A511D5CB3A1E293 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:93:db:e9:16:0f:7c:c0:66:ae:53:8b:ea:5d: a3:b4:10:06:58:bc:ab:ea:6f:53:d8:ee:cb:91:e4: 4e:bc:d7:31:a7:ea:b4:2d:ef:83:5b:3c:09:53:61: fd:4d:e3:83:17:37:b4:5c:02:f7:ac:ca:78:93:c6: 9d:13:61:bd:79:46:ed:56:51:f9:2b:5b:6b:99:53: 63:67:e9:82:aa:49:17:69:97:aa:de:f4:35:06:05: 86:9d:0d:20:88:ea:b2:b8:58:79:63:b3:13:f6:68: d6:72:04:c2:77:2f:0d:9d:29:66:53:1d:5f:16:a4: 84:d9:66:03:10:00:64:eb:63:06:b3:4b:dd:98:9e: ce:b8:42:6c:04:42:b5:de:1f:75:79:2b:98:e1:39: 92:81:0d:9f:36:74:63:dd:c7:47:a3:fb:4f:55:af: bc:79:63:41:70:cc:28:b8:41:f8:53:a4:44:32:ac: 71:60:e3:03:9f:e9:87:b2:ca:c8:32:60:7f:a7:8c: e0:b6:db:4c:65:72:c8:47:0c:16:4b:7f:a5:76:d5: 0e:f8:02:89:62:d0:0d:0c:c5:4c:85:28:e4:bc:15: 9c:09:f8:43:d8:b9:62:34:8d:3e:25:f0:d3:10:20: ec:ac:b9:89:e1:8c:cd:97:c1:a8:7e:b5:99:24:90: ce:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:63:2D:78:E9:22:B8:DE:0E:A0:27:C9:5A:51:1D:5C:B3:A1:E2:93 X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 88:5c:65:d7:34:07:57:ce:ca:f8:14:09:67:9b:de:c1:42:48: 30:85:a8:7d:8b:b6:c7:89:81:95:08:cc:7e:06:24:07:a0:c2: 24:97:49:9b:8e:3a:1d:1f:0b:ec:2b:52:d4:fc:f6:d0:fc:d5: 28:02:59:03:9c:c5:84:f4:5a:7b:1d:66:62:0a:ea:69:a1:32: 18:c1:84:4e:48:97:88:5d:74:20:94:87:79:e0:bb:a2:34:a9: ef:3d:c4:12:04:9d:1c:e5:95:26:71:14:3f:1c:51:d0:b4:d8: 59:e4:31:c8:c6:d7:bf:d1:75:5f:63:d8:d8:66:fe:10:ee:74: 1e:98:24:bc:3e:fa:06:c2:77:e2:0d:c7:77:b6:30:80:34:7f: ec:d8:d0:44:46:f5:5a:f7:10:9b:60:d7:f4:37:6a:e4:a1:0c: a3:f9:c7:bf:2b:3f:c5:f0:04:6d:f5:83:89:4c:4c:9d:7d:cc: 0b:c0:df:c4:78:5f:86:ac:d7:4a:75:c3:a8:b7:28:a5:55:4b: 21:76:b5:29:d6:e7:23:0d:29:e8:61:55:38:57:aa:51:58:66: f5:06:59:47:28:4d:0b:3d:af:d8:21:23:98:41:a5:47:e6:b7: dc:b8:dc:67:a5:aa:14:85:ed:c7:31:5e:66:f0:14:31:4e:98: 1b:14:f0:d5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUIceAuEFVdggLKyQx0an5+fogV+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNTEyMDYwMjAzNTFaFw0yNTEyMDcwMzU2NTFaMDMxMTAvBgNV BAMTKDk5NjMyRDc4RTkyMkI4REUwRUEwMjdDOTVBNTExRDVDQjNBMUUyOTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEk9vpFg98wGauU4vqXaO0EAZY vKvqb1PY7suR5E681zGn6rQt74NbPAlTYf1N44MXN7RcAvesyniTxp0TYb15Ru1W UfkrW2uZU2Nn6YKqSRdpl6re9DUGBYadDSCI6rK4WHljsxP2aNZyBMJ3Lw2dKWZT HV8WpITZZgMQAGTrYwazS92Yns64QmwEQrXeH3V5K5jhOZKBDZ82dGPdx0ej+09V r7x5Y0FwzCi4QfhTpEQyrHFg4wOf6YeyysgyYH+njOC220xlcshHDBZLf6V21Q74 Aoli0A0MxUyFKOS8FZwJ+EPYuWI0jT4l8NMQIOysuYnhjM2Xwah+tZkkkM7JAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUmWMteOkiuN4OoCfJWlEdXLOh4pMwHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiFxl1zQHV87K+BQJZ5ve wUJIMIWofYu2x4mBlQjMfgYkB6DCJJdJm446HR8L7CtS1Pz20PzVKAJZA5zFhPRa ex1mYgrqaaEyGMGETkiXiF10IJSHeeC7ojSp7z3EEgSdHOWVJnEUPxxR0LTYWeQx yMbXv9F1X2PY2Gb+EO50HpgkvD76BsJ34g3Hd7YwgDR/7NjQREb1WvcQm2DX9Ddq 5KEMo/nHvys/xfAEbfWDiUxMnX3MC8DfxHhfhqzXSnXDqLcopVVLIXa1KdbnIw0p 6GFVOFeqUVhm9QZZRyhNCz2v2CEjmEGlR+a33LjcZ6WqFIXtxzFeZvAUMU6YGxTw 1Q== -----END CERTIFICATE-----Generated at Sat Dec 6 05:05:36 2025 by rpki-client