This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: rkS/aAhGq73oAenEngn9HhqkFVBrgnzSG1xCH3vkDeg= Subject key identifier: A4:F4:4D:2C:91:E2:BF:F2:DC:D7:E8:06:7B:C4:46:CB:7A:9E:12:2E Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 6318DFE7CB85BE6C768D3FFA9258D02446F1A9C1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 05C8 Signing time: Sat 06 Dec 2025 08:31:17 +0000 Manifest this update: Sat 06 Dec 2025 08:26:17 +0000 Manifest next update: Sun 07 Dec 2025 11:54:17 +0000 Files and hashes: 1: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) 2: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) 3: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) 4: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: oxG8iw50SqN4XV9y2DmdRZYBdv+wXAoCT3qzbJHzC0s=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 11:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:18:df:e7:cb:85:be:6c:76:8d:3f:fa:92:58:d0:24:46:f1:a9:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Dec 6 08:26:17 2025 GMT Not After : Dec 7 11:54:17 2025 GMT Subject: CN=A4F44D2C91E2BFF2DCD7E8067BC446CB7A9E122E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6f:af:c6:57:f1:51:02:52:28:9c:6d:06:e5: 30:55:f7:04:cd:98:f0:8e:5d:9a:d5:07:3f:db:7a: 70:ba:6f:00:3f:8d:3f:e2:b8:65:94:22:1a:98:02: 1d:9a:2f:ae:84:d0:98:65:03:3e:11:5c:7d:ae:0b: ff:d5:91:b6:d1:e9:46:f1:eb:57:a9:3a:12:f7:74: 5d:ec:d7:4f:54:35:68:9d:66:fd:ff:5b:5e:6c:dd: 87:da:79:89:43:8f:78:94:d3:69:e4:d3:8d:07:e3: 5d:9e:fc:8a:c1:c6:ce:4e:6a:d7:c8:03:b2:3d:80: 14:5e:78:4e:0c:34:86:b0:f3:c0:e8:6d:6b:2a:2c: dd:a7:41:fc:28:2a:a1:de:96:ac:05:12:ee:c2:28: 06:6e:34:ae:35:a3:c7:ab:9a:e6:06:a1:cf:46:c2: 37:23:9c:89:3c:61:e1:11:c5:b3:20:4d:cb:99:d5: 20:d7:2e:34:24:a3:dd:2a:0c:10:54:60:9c:8e:c7: 0f:cd:26:b2:25:1c:d3:f8:ad:6c:20:0a:c9:86:8d: 83:8d:ad:98:3a:2e:52:5a:39:c9:29:b4:71:5b:16: ff:bf:74:b6:e9:04:1d:89:5e:99:e9:f1:f7:0a:b5: 19:85:17:5c:83:51:e1:13:e0:ea:f3:0b:9d:5c:4b: b9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F4:4D:2C:91:E2:BF:F2:DC:D7:E8:06:7B:C4:46:CB:7A:9E:12:2E X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:80:5a:b8:37:46:db:e5:15:2d:32:c6:06:31:3b:55:0a:bc: b6:ba:e7:77:d1:cc:62:f3:7c:81:e8:b1:aa:75:c4:a8:01:51: 71:18:9a:fd:0a:90:7e:ec:a3:16:43:cc:66:81:74:67:6d:0c: 52:57:e0:a8:e3:3d:59:ae:3a:2b:84:0b:b4:34:92:32:6d:e2: ee:3b:92:33:b3:68:ac:bf:2c:68:c9:8d:77:f6:cc:20:9f:52: 6f:63:e9:53:66:51:58:63:ab:53:61:c1:e3:a5:fb:c1:6b:4b: 72:21:7e:48:04:18:77:00:a3:c9:57:af:62:43:29:14:c3:fa: 04:2b:ae:5a:4c:c5:87:4b:35:c6:2e:86:f0:b0:3d:bd:0b:67: 36:6e:45:d3:46:fd:89:fe:97:ee:e6:6d:db:26:d4:62:74:98: 22:86:d9:94:89:e5:58:ef:14:a0:ce:57:fb:05:f5:34:dd:76: 43:31:45:5e:eb:06:2a:50:98:45:4c:3f:74:a6:a5:02:5e:3d: 53:4e:58:ae:1c:46:f1:2a:66:b8:9c:eb:d4:d0:8f:43:08:82: 1e:e8:b5:19:eb:06:68:a3:dc:dd:d2:20:f9:ed:ce:16:49:aa: 6e:34:8b:a1:dd:37:05:ab:52:7f:3c:51:39:a8:40:fa:45:8f: 50:26:0f:14 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUYxjf58uFvmx2jT/6kljQJEbxqcEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTEyMDYwODI2MTdaFw0yNTEyMDcxMTU0MTdaMDMxMTAvBgNV BAMTKEE0RjQ0RDJDOTFFMkJGRjJEQ0Q3RTgwNjdCQzQ0NkNCN0E5RTEyMkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIb6/GV/FRAlIonG0G5TBV9wTN mPCOXZrVBz/benC6bwA/jT/iuGWUIhqYAh2aL66E0JhlAz4RXH2uC//VkbbR6Ubx 61epOhL3dF3s109UNWidZv3/W15s3YfaeYlDj3iU02nk040H412e/IrBxs5OatfI A7I9gBReeE4MNIaw88DobWsqLN2nQfwoKqHelqwFEu7CKAZuNK41o8ermuYGoc9G wjcjnIk8YeERxbMgTcuZ1SDXLjQko90qDBBUYJyOxw/NJrIlHNP4rWwgCsmGjYON rZg6LlJaOckptHFbFv+/dLbpBB2JXpnp8fcKtRmFF1yDUeET4OrzC51cS7nfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUpPRNLJHiv/Lc1+gGe8RGy3qeEi4wHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADoBauDdG2+UVLTLGBjE7 VQq8trrnd9HMYvN8geixqnXEqAFRcRia/QqQfuyjFkPMZoF0Z20MUlfgqOM9Wa46 K4QLtDSSMm3i7juSM7NorL8saMmNd/bMIJ9Sb2PpU2ZRWGOrU2HB46X7wWtLciF+ SAQYdwCjyVevYkMpFMP6BCuuWkzFh0s1xi6G8LA9vQtnNm5F00b9if6X7uZt2ybU YnSYIobZlInlWO8UoM5X+wX1NN12QzFFXusGKlCYRUw/dKalAl49U05YrhxG8Spm uJzr1NCPQwiCHui1GesGaKPc3dIg+e3OFkmqbjSLod03BatSfzxROahA+kWPUCYP FA== -----END CERTIFICATE-----Generated at Sat Dec 6 19:05:11 2025 by rpki-client