This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: UAQs12JFWrCGfy6ixFh+AIIsVqPup6eQEHLk5I4PTXk= Subject key identifier: 25:D0:C9:95:61:BF:98:D9:33:06:E1:DB:8A:35:F4:84:E4:83:FB:1E Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 50DEB2F9A89E415AF775900D9A74031EC8395A05 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0596 Signing time: Sat 24 Jan 2026 22:54:57 +0000 Manifest this update: Sat 24 Jan 2026 22:49:57 +0000 Manifest next update: Sun 25 Jan 2026 23:35:57 +0000 Files and hashes: 1: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: Z55LDvJNhjuOlIMhPU51UoeT0VK3qlu4pE/EHJdIaDE=) 2: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: PzQrEpsLL9icV7+wAMJ22TsUek+9+7dTOPFgPD6vtOM=) 3: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: 2ZJoizA2XrGcopsLwhs8oaMaqFtkP0G9iClmvxEJgnM=) 4: 34352e38312e35362e302f32342d3234203d3e20323134303235.roa (hash: CnzwkC6TMa92udveWYWio/ppF/tadikubMhl27N4Nyg=) 5: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 6: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: /OfGICRZwd6o7YMatslsygI18CohUbPN73RkHl4xVIY=) 7: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: wLY+uAAZaapza9rnm+rvcKy/RGqb5OINBZoQF5pW50I=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 23:35:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:de:b2:f9:a8:9e:41:5a:f7:75:90:0d:9a:74:03:1e:c8:39:5a:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Jan 24 22:49:57 2026 GMT Not After : Jan 25 23:35:57 2026 GMT Subject: CN=25D0C99561BF98D93306E1DB8A35F484E483FB1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:02:91:69:b4:5f:03:e6:dc:29:12:29:b9:02: 49:5d:c8:9c:b9:02:dc:2b:8d:0f:7c:47:aa:6e:3c: f8:2e:f8:87:f4:38:ff:e4:2f:7d:c3:ad:e4:69:bf: 35:88:dd:9c:96:56:8c:3d:b9:17:ed:d7:4d:68:50: 9e:59:59:0f:3c:88:37:1d:88:35:86:47:f2:16:3e: f2:03:f6:12:6e:27:45:79:6a:5e:1d:31:12:e9:87: c8:3c:8f:5e:0d:ed:4b:a9:67:57:67:4c:a7:4b:7a: 86:4a:6c:b3:22:fc:31:b2:27:b5:77:86:4b:52:e8: 76:35:f5:b6:58:da:7f:55:7c:e8:42:dd:7b:30:e8: 86:6c:a8:6d:99:9f:68:07:82:05:b9:5f:9a:5a:24: e1:f6:37:c4:c9:66:e1:6a:b2:c2:c9:1d:d9:e3:f3: a7:32:28:7f:26:5e:44:fb:6b:8d:38:a2:15:2e:57: 08:37:51:5c:90:7d:4b:a7:87:58:54:24:38:e0:73: e4:42:1f:06:e8:ea:65:a8:99:96:a0:30:74:04:c5: 24:60:cf:70:7f:e4:f0:df:5c:a8:8d:83:d6:91:29: cc:9f:df:79:8b:29:70:f2:b3:50:c7:c5:ba:c7:16: 7e:31:e2:13:a8:c5:c2:ed:4a:ac:d6:11:95:5a:77: 68:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:D0:C9:95:61:BF:98:D9:33:06:E1:DB:8A:35:F4:84:E4:83:FB:1E X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:4c:e3:d0:26:07:50:68:ba:ec:3b:9a:7c:52:b0:53:4f:a4: 3b:1d:3f:d8:91:4a:55:e5:14:12:22:ea:b1:e0:2b:c7:02:24: 98:07:a3:dd:b5:37:ce:d8:35:d1:44:3f:b5:20:22:b8:7c:d9: cc:b9:f6:48:8e:74:76:04:5a:61:87:d3:71:c4:51:a3:b8:c0: b5:6e:d4:b2:17:4d:15:7c:b4:72:35:59:61:e3:c1:35:42:cb: 78:f8:ed:b8:60:94:1f:bf:f1:84:f2:a5:ee:13:65:9e:88:09: 89:4b:17:83:75:9d:41:91:28:0a:a6:2a:21:e2:e5:2d:48:b3: be:28:6c:b0:a2:20:6d:85:af:91:9d:38:e1:9f:1d:74:62:ef: 42:22:29:50:79:af:02:37:4d:23:c9:96:55:2a:cf:3b:86:da: f0:cc:51:86:70:dd:6e:02:44:f0:6f:c0:a4:0b:2d:b9:86:66: 39:c1:1b:47:e3:9a:d6:34:8a:db:38:b9:97:d5:63:c9:98:c1: 6a:dc:90:b3:89:ef:40:14:a9:f3:d0:d0:8f:2b:0f:0f:40:9b: 6f:17:e4:d6:39:5b:43:d8:3e:a6:66:da:40:13:30:41:21:d9: bc:fa:34:1a:b6:19:27:e5:63:b1:d6:19:9b:77:c9:34:db:33: fd:25:f8:e0 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUUN6y+aieQVr3dZANmnQDHsg5WgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNjAxMjQyMjQ5NTdaFw0yNjAxMjUyMzM1NTdaMDMxMTAvBgNV BAMTKDI1RDBDOTk1NjFCRjk4RDkzMzA2RTFEQjhBMzVGNDg0RTQ4M0ZCMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpApFptF8D5twpEim5AkldyJy5 AtwrjQ98R6puPPgu+If0OP/kL33DreRpvzWI3ZyWVow9uRft101oUJ5ZWQ88iDcd iDWGR/IWPvID9hJuJ0V5al4dMRLph8g8j14N7UupZ1dnTKdLeoZKbLMi/DGyJ7V3 hktS6HY19bZY2n9VfOhC3Xsw6IZsqG2Zn2gHggW5X5paJOH2N8TJZuFqssLJHdnj 86cyKH8mXkT7a404ohUuVwg3UVyQfUunh1hUJDjgc+RCHwbo6mWomZagMHQExSRg z3B/5PDfXKiNg9aRKcyf33mLKXDys1DHxbrHFn4x4hOoxcLtSqzWEZVad2jdAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUJdDJlWG/mNkzBuHbijX0hOSD+x4wHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKUzj0CYHUGi67DuafFKw U0+kOx0/2JFKVeUUEiLqseArxwIkmAej3bU3ztg10UQ/tSAiuHzZzLn2SI50dgRa YYfTccRRo7jAtW7UshdNFXy0cjVZYePBNULLePjtuGCUH7/xhPKl7hNlnogJiUsX g3WdQZEoCqYqIeLlLUizvihssKIgbYWvkZ044Z8ddGLvQiIpUHmvAjdNI8mWVSrP O4ba8MxRhnDdbgJE8G/ApAstuYZmOcEbR+Oa1jSK2zi5l9VjyZjBatyQs4nvQBSp 89DQjysPD0Cbbxfk1jlbQ9g+pmbaQBMwQSHZvPo0GrYZJ+VjsdYZm3fJNNsz/SX4 4A== -----END CERTIFICATE-----Generated at Sun Jan 25 14:42:14 2026 by rpki-client