This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: SOdccqRzEWDeiHSVuQjT4NK42UeZ7AJXaYEBGLrUvDQ= Subject key identifier: 49:31:3E:93:51:54:E9:DB:8F:97:C4:B5:B4:56:76:FD:AF:24:D3:88 Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 0298470CC6E0579CB76AFCC60D2A1A5D6A85197A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 05D8 Signing time: Thu 18 Dec 2025 05:37:31 +0000 Manifest this update: Thu 18 Dec 2025 05:32:31 +0000 Manifest next update: Fri 19 Dec 2025 08:18:31 +0000 Files and hashes: 1: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: xXDXnHFBpCmo7R5O8gicoALpgQ74v2fsSumbGF69VRM=) 2: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) 3: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) 4: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 08:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:98:47:0c:c6:e0:57:9c:b7:6a:fc:c6:0d:2a:1a:5d:6a:85:19:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Dec 18 05:32:31 2025 GMT Not After : Dec 19 08:18:31 2025 GMT Subject: CN=49313E935154E9DB8F97C4B5B45676FDAF24D388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:9e:ae:c1:74:96:59:da:f5:02:d1:46:59:ae: 49:fc:5b:12:53:73:dc:9c:c8:3d:4c:0a:6e:dc:a3: 6d:1e:40:ff:1c:a8:25:e1:c3:13:a0:2d:d6:22:81: f4:ff:a8:0a:1d:a9:81:5b:af:72:00:76:9d:69:af: 03:40:7e:19:cb:1e:74:48:61:ab:f0:85:d6:91:c5: 5e:98:3b:66:62:07:cb:8b:50:14:d5:02:39:8b:91: bc:a4:fd:01:20:1b:1c:5e:9a:54:01:64:be:83:61: 9a:d7:62:40:63:fe:23:57:74:b6:17:c9:c7:08:6a: 98:7f:13:4a:d4:ec:cb:39:69:63:58:0d:0c:96:d5: c0:c0:f8:71:43:bc:96:3e:b8:ec:21:2c:f5:4c:20: a9:4f:87:58:c5:97:a9:91:40:f0:97:8b:63:19:0e: 2e:89:92:29:66:1e:e5:d9:f8:99:4f:45:79:be:5d: 14:1b:06:c6:47:21:29:be:cf:7e:aa:05:4f:c4:ea: ba:ad:6e:ab:14:95:a7:07:66:df:b0:3f:d9:e7:f3: 39:44:38:ba:74:7e:ba:79:b2:f4:93:f9:c7:68:cc: 9a:4c:f5:d7:a7:4f:a5:e4:25:62:3d:c8:5c:ab:8d: 85:79:ed:ad:aa:7e:19:3b:86:4d:a8:73:eb:eb:52: f8:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:31:3E:93:51:54:E9:DB:8F:97:C4:B5:B4:56:76:FD:AF:24:D3:88 X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:af:31:8e:0e:68:06:c8:fb:c9:2f:b1:f8:4a:3a:d8:2d:6b: 12:d1:e8:6d:6b:ca:80:ac:9d:9d:32:d0:14:d3:d4:59:5c:bf: f1:fa:e7:ff:b3:b7:00:a6:77:3a:ad:04:d8:3f:42:de:61:1c: 52:e2:89:4a:6b:dc:aa:54:d0:95:78:5b:08:de:9b:75:99:bc: ad:bb:ae:f0:61:35:c7:d4:06:07:de:ce:1f:d9:ea:22:b7:4e: db:53:af:90:f1:0f:49:9d:f9:4a:81:41:4a:05:15:92:5a:03: 67:4e:2c:55:df:be:13:7e:4c:6a:3a:8e:19:7d:cf:48:94:3f: cd:9d:3d:e4:f5:99:2f:7d:ec:0a:31:0b:f2:be:03:af:26:21: dd:91:b8:8c:f0:58:c6:d0:4d:8f:c2:06:98:53:b9:b6:a3:6c: 7a:dc:5c:48:3a:e9:57:f4:b3:68:d1:1a:7a:e3:79:22:1f:30: d5:63:c2:3e:1c:a2:a6:d1:44:18:28:70:c2:ae:f5:c1:d1:9d: af:21:d1:cb:56:10:74:e5:e3:dc:c5:8d:22:fd:d4:cf:23:5c: 1b:1e:ee:d3:e6:95:1c:85:4c:c3:eb:3c:48:df:95:51:61:3c: f9:dc:a0:47:b2:a5:a7:fd:ad:91:49:d5:b2:73:30:96:4a:11: b7:c8:0b:21 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUAphHDMbgV5y3avzGDSoaXWqFGXowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTEyMTgwNTMyMzFaFw0yNTEyMTkwODE4MzFaMDMxMTAvBgNV BAMTKDQ5MzEzRTkzNTE1NEU5REI4Rjk3QzRCNUI0NTY3NkZEQUYyNEQzODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCanq7BdJZZ2vUC0UZZrkn8WxJT c9ycyD1MCm7co20eQP8cqCXhwxOgLdYigfT/qAodqYFbr3IAdp1prwNAfhnLHnRI YavwhdaRxV6YO2ZiB8uLUBTVAjmLkbyk/QEgGxxemlQBZL6DYZrXYkBj/iNXdLYX yccIaph/E0rU7Ms5aWNYDQyW1cDA+HFDvJY+uOwhLPVMIKlPh1jFl6mRQPCXi2MZ Di6JkilmHuXZ+JlPRXm+XRQbBsZHISm+z36qBU/E6rqtbqsUlacHZt+wP9nn8zlE OLp0frp5svST+cdozJpM9denT6XkJWI9yFyrjYV57a2qfhk7hk2oc+vrUvjpAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUSTE+k1FU6duPl8S1tFZ2/a8k04gwHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQ68xjg5oBsj7yS+x+Eo6 2C1rEtHobWvKgKydnTLQFNPUWVy/8frn/7O3AKZ3Oq0E2D9C3mEcUuKJSmvcqlTQ lXhbCN6bdZm8rbuu8GE1x9QGB97OH9nqIrdO21OvkPEPSZ35SoFBSgUVkloDZ04s Vd++E35MajqOGX3PSJQ/zZ095PWZL33sCjEL8r4DryYh3ZG4jPBYxtBNj8IGmFO5 tqNsetxcSDrpV/SzaNEaeuN5Ih8w1WPCPhyiptFEGChwwq71wdGdryHRy1YQdOXj 3MWNIv3UzyNcGx7u0+aVHIVMw+s8SN+VUWE8+dygR7Klp/2tkUnVsnMwlkoRt8gL IQ== -----END CERTIFICATE-----Generated at Thu Dec 18 16:16:23 2025 by rpki-client