This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: c2XrmPfpKcw4L2Kxrn5x2PSaypXnoilSW/9XZ4qnmRM= Subject key identifier: 3C:58:21:F7:7B:62:86:AA:49:19:C3:D9:C7:96:E9:A2:37:15:9C:C9 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 65DF08E1F3A03401CE1E48BDA1AA42CFBCAE58A7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0551 Signing time: Sat 06 Dec 2025 01:51:17 +0000 Manifest this update: Sat 06 Dec 2025 01:46:17 +0000 Manifest next update: Sun 07 Dec 2025 04:36:17 +0000 Files and hashes: 1: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: Z55LDvJNhjuOlIMhPU51UoeT0VK3qlu4pE/EHJdIaDE=) 2: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: 2ZJoizA2XrGcopsLwhs8oaMaqFtkP0G9iClmvxEJgnM=) 3: 34352e38312e35362e302f32342d3234203d3e203634323637.roa (hash: qsXeuHbADvuh5upr+8Iu3ECZr4FlfF2jhb73a28zYXw=) 4: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: Msu/LuqnznyuU6fR7wuNzSvMuLPxNME0DbBjSh6nI+I=) 5: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 6: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: PzQrEpsLL9icV7+wAMJ22TsUek+9+7dTOPFgPD6vtOM=) 7: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:df:08:e1:f3:a0:34:01:ce:1e:48:bd:a1:aa:42:cf:bc:ae:58:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Dec 6 01:46:17 2025 GMT Not After : Dec 7 04:36:17 2025 GMT Subject: CN=3C5821F77B6286AA4919C3D9C796E9A237159CC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:10:9f:c6:67:7b:46:03:67:69:41:d6:98:b4: 64:f8:2d:f6:ff:fa:6e:84:17:cf:41:51:2b:fb:42: d8:1a:6d:c3:23:1d:66:ae:b0:cd:78:6e:82:62:1d: 66:bf:ae:f3:4b:16:83:e3:71:69:90:be:e2:ec:48: c6:c0:4b:4c:46:01:25:8f:b7:0b:7b:73:cc:0d:1b: 88:ed:03:9e:57:61:12:4d:98:99:94:91:7f:00:69: e0:1b:62:e2:82:17:d4:1b:1a:8d:ec:64:53:2e:d7: d9:8d:ac:23:10:db:4b:f5:f4:7f:c8:d0:23:48:ad: 88:55:d9:91:f0:46:fd:71:b1:93:dd:f7:31:ec:04: 61:55:e2:b8:ce:31:17:d6:d3:dc:67:13:b6:89:73: 4f:25:95:e1:5a:ff:b9:17:b2:81:46:5f:ab:68:f4: 23:de:67:d5:03:b1:4b:29:3f:1c:a3:b1:88:33:53: 97:11:61:52:7e:8d:19:94:68:29:c0:2e:e3:b6:ae: 15:87:9f:4e:b2:ad:ad:4c:4c:66:7d:4a:c0:ee:68: 0d:e2:78:14:82:9c:55:d9:ac:bc:c5:98:40:7c:8e: 9b:22:bb:bc:6f:a0:50:04:04:ac:5e:c4:45:51:2e: 19:84:60:d4:5c:9c:a3:5e:61:6b:93:b0:50:e1:68: 53:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:58:21:F7:7B:62:86:AA:49:19:C3:D9:C7:96:E9:A2:37:15:9C:C9 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5e:65:3f:5d:1d:cc:c5:10:a2:51:c3:89:e6:6a:36:6b:90:12: bd:ff:91:96:28:6d:b2:ab:a5:5e:b8:20:7a:35:0d:e0:e7:ec: fe:d9:5d:f7:93:fe:50:9c:85:ef:45:18:d7:ba:74:e6:2b:85: b5:47:ae:ad:66:6b:af:3d:17:11:29:ec:12:33:e1:9a:dc:ba: 9c:56:9c:13:3c:3c:b4:55:fb:02:6f:aa:3b:b0:1b:b1:67:e8: 50:b6:27:1e:72:1a:46:d2:a4:2e:0d:cd:6a:eb:a4:8c:d9:51: c9:f4:b5:d5:9b:c8:8a:fd:41:c6:89:d9:36:4b:fd:38:4d:63: 7e:e4:eb:55:04:d1:d8:c0:69:93:c3:0b:ac:bf:8e:ff:34:e7: 49:d9:69:88:7d:48:3e:66:5f:83:60:4e:10:f0:4e:b1:e6:ff: a0:72:82:ce:bc:16:85:fd:ea:60:8b:89:2b:a0:2d:71:92:99: a1:90:86:70:bc:e5:ec:4d:8a:3a:ba:71:01:99:eb:a6:03:3f: a3:a1:66:42:97:75:c7:60:06:82:44:e8:ad:b4:34:1f:19:7b: 3b:24:0a:7a:e4:e1:33:86:e0:2f:a9:93:c3:60:3f:7c:a4:b8: 72:b6:70:7d:fd:c4:a8:c4:c5:ef:50:58:88:20:b1:69:6f:81: df:96:e1:25 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUZd8I4fOgNAHOHki9oapCz7yuWKcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTEyMDYwMTQ2MTdaFw0yNTEyMDcwNDM2MTdaMDMxMTAvBgNV BAMTKDNDNTgyMUY3N0I2Mjg2QUE0OTE5QzNEOUM3OTZFOUEyMzcxNTlDQzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnEJ/GZ3tGA2dpQdaYtGT4Lfb/ +m6EF89BUSv7QtgabcMjHWausM14boJiHWa/rvNLFoPjcWmQvuLsSMbAS0xGASWP twt7c8wNG4jtA55XYRJNmJmUkX8AaeAbYuKCF9QbGo3sZFMu19mNrCMQ20v19H/I 0CNIrYhV2ZHwRv1xsZPd9zHsBGFV4rjOMRfW09xnE7aJc08lleFa/7kXsoFGX6to 9CPeZ9UDsUspPxyjsYgzU5cRYVJ+jRmUaCnALuO2rhWHn06yra1MTGZ9SsDuaA3i eBSCnFXZrLzFmEB8jpsiu7xvoFAEBKxexEVRLhmEYNRcnKNeYWuTsFDhaFMtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUPFgh93tihqpJGcPZx5bpojcVnMkwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXmU/XR3MxRCiUcOJ5mo2 a5ASvf+RlihtsqulXrggejUN4Ofs/tld95P+UJyF70UY17p05iuFtUeurWZrrz0X ESnsEjPhmty6nFacEzw8tFX7Am+qO7AbsWfoULYnHnIaRtKkLg3NauukjNlRyfS1 1ZvIiv1BxonZNkv9OE1jfuTrVQTR2MBpk8MLrL+O/zTnSdlpiH1IPmZfg2BOEPBO seb/oHKCzrwWhf3qYIuJK6AtcZKZoZCGcLzl7E2KOrpxAZnrpgM/o6FmQpd1x2AG gkTorbQ0Hxl7OyQKeuThM4bgL6mTw2A/fKS4crZwff3EqMTF71BYiCCxaW+B35bh JQ== -----END CERTIFICATE-----Generated at Sat Dec 6 07:55:36 2025 by rpki-client