This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft File: 98A87CAD5B710890A9528F166F4202393824E6B8.mft (raw, json) Hash identifier: 8x/LD5uZL7xlRlnEHuYC/8Lqdu10jcDIF2ZUy75Zbfs= Subject key identifier: EF:8D:94:3B:D9:9D:93:47:CE:27:2D:14:6E:33:A7:8A:53:C9:17:B6 Authority key identifier: 98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 Certificate issuer: /CN=98a87cad5b710890a9528f166f4202393824e6b8 Certificate serial: 3C5F951F68558757D9979751EA178FBA02D536A4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft Manifest number: 04A3 Signing time: Sat 06 Dec 2025 04:59:27 +0000 Manifest this update: Sat 06 Dec 2025 04:54:27 +0000 Manifest next update: Sun 07 Dec 2025 07:15:27 +0000 Files and hashes: 1: 326131313a353730373a61613a3a2f34382d3438203d3e203438303730.roa (hash: JswRhPyDtXHdt3LcnGr0rU+2WVgkSTrzy91w1+vHXG0=) 2: 0E4EBC431E3513FC3F641DB880E2B2FE1D040A30.cer (hash: Pc4F216M/oD/fxZDUk8HLynWg8D1IQ0ANHs5N2ZC0VQ=) 3: 326131313a353730303a3a2f33322d3332203d3e203438303730.roa (hash: Fqs+xGh2wCPoRebx3WWGGz8gG+3wDYrzV+eGaABVra0=) 4: 326131313a353730313a31303a3a2f34342d3434203d3e20323030313938.roa (hash: IiLsd5rWyRAEtPC2BRNztBwgXOWFkCLAq6FHsMnhQxg=) 5: 39342e3132362e3233362e302f32342d3234203d3e203438303730.roa (hash: ma+wlMqMsb7J0TC2Gy822cEZS57hTDfS/GzCjZsgQ1k=) 6: 39342e3132362e3233352e302f32342d3234203d3e203438303730.roa (hash: S5WIAkzllTXfMiWpREUuucFgM0BSw7Pb5gT995rR5+k=) 7: 98A87CAD5B710890A9528F166F4202393824E6B8.crl (hash: FOpnp3+P0DeTXwaNEwHfBRZr/I8kN8ldhdTkULO1v/U=) 8: 39342e3132362e3233322e302f32342d3234203d3e203438303730.roa (hash: VIdYFIOIqW5zJ3T1LDGwWjmJ764XjM+ac+86S8Ja5hk=) 9: 39342e3132362e3233342e302f32342d3234203d3e203438303730.roa (hash: wQ/YXS5V0WqyAz3I38Grxwtf2vC7Tnq0YU0pMolmNpk=) 10: 39342e3132362e3233372e302f32342d3234203d3e203438303730.roa (hash: SY6OvQv9R/Ut8R5yFxdy0RVK/9dKsg8ZwmC3iNS9Rpw=) 11: 39342e3132362e3233382e302f32342d3234203d3e203438303730.roa (hash: EEtfGKQPQ42nFzzdsRfixi4zKQ5tTYPEdAQ1iAcmdE4=) 12: 39342e3132362e3233332e302f32342d3234203d3e203438303730.roa (hash: /8dVa93viKNoM1pCJooeH0rtbsVAVvDJFpjlC3WNZyI=) 13: 326131313a353730373a3a2f33322d3332203d3e203438303730.roa (hash: 242POLRepYH713AUptOGvBkM/JpRNVCsIm5BodQGTyY=) 14: AS48070.asa (hash: 5MT6ORI/F8ffsUlifpuRiZkf4qUWanqmxrgKmyiz55A=) 15: 39342e3132362e3233392e302f32342d3234203d3e203438303730.roa (hash: NDHvIIcUiAk7uX5boyMA8yHxKUGe6BZWK+cptlXNnOA=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:5f:95:1f:68:55:87:57:d9:97:97:51:ea:17:8f:ba:02:d5:36:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98a87cad5b710890a9528f166f4202393824e6b8 Validity Not Before: Dec 6 04:54:27 2025 GMT Not After : Dec 7 07:15:27 2025 GMT Subject: CN=EF8D943BD99D9347CE272D146E33A78A53C917B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9b:9f:a4:31:b8:b1:28:e6:65:6f:e2:fc:48: d8:bd:13:b3:f5:35:c3:eb:31:9f:c6:b1:99:e2:56: da:b9:7b:9a:6d:60:fd:7a:e8:2b:42:9f:95:6a:94: f4:36:9c:7d:73:66:e6:f6:07:e5:a9:19:58:0b:3f: 6c:e6:4a:20:da:c3:21:e4:fe:9c:b0:28:b9:25:67: 13:0c:09:9d:1e:dd:c0:f6:76:29:fe:82:8a:5f:4b: aa:74:78:73:9a:8d:82:04:0c:4f:b8:70:99:38:21: 82:35:08:7c:76:de:02:9e:41:67:f5:e7:e8:0e:62: 21:62:64:e0:40:d7:0e:3e:4e:18:63:3b:0f:b8:bc: 8e:3f:f3:03:a8:64:a8:b7:83:9c:95:b7:4f:b1:60: f7:30:ad:39:e0:b8:d6:4c:0d:cf:0a:ad:31:a7:65: 24:71:84:59:80:13:78:2a:37:11:37:4f:77:7c:00: 86:10:e6:89:48:e2:b6:35:dd:89:bd:66:5e:a5:97: 04:a9:1d:45:b3:c4:50:94:69:bb:02:4b:bb:70:e0: b6:f1:be:1e:b4:7c:9a:2c:df:a9:bb:84:96:ff:c9: 02:66:88:4b:87:5c:c0:f2:52:4d:c0:98:0e:fc:ac: 85:e8:f9:7e:7e:3d:6d:93:2d:21:98:58:15:63:c1: 8a:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:8D:94:3B:D9:9D:93:47:CE:27:2D:14:6E:33:A7:8A:53:C9:17:B6 X509v3 Authority Key Identifier: keyid:98:A8:7C:AD:5B:71:08:90:A9:52:8F:16:6F:42:02:39:38:24:E6:B8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mKh8rVtxCJCpUo8Wb0ICOTgk5rg.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/dce196fe-4b1a-46ea-9c95-4af12964a49d/0/98A87CAD5B710890A9528F166F4202393824E6B8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ae:66:a3:33:76:c9:87:e8:11:b7:b7:4d:54:fa:06:a4:f1:18: 5b:58:b8:31:ec:eb:50:4c:ba:2c:f9:8e:d6:71:97:bd:19:76: ba:96:22:c9:28:33:80:8d:ac:e8:a8:c4:82:0f:b5:9e:f5:a9: 9d:64:4f:24:22:95:eb:cd:4e:5d:29:b9:a4:d3:11:19:0c:54: 6f:ca:b5:75:f7:cf:cf:d7:cd:5c:fe:49:57:27:1c:6b:eb:e8: f0:f0:3c:17:ec:f3:33:fe:80:d0:c0:a4:9f:3c:56:7d:9a:49: 6c:03:fc:74:91:cb:6d:9f:fe:5f:58:61:f7:18:89:59:06:42: 65:08:5d:cc:a9:f7:31:6a:7b:67:24:c9:41:f2:07:29:0d:d7: 3a:fe:ed:47:c5:c0:d4:4b:5b:ed:36:23:39:c4:a3:43:94:cd: 52:ea:ee:99:a0:11:f7:be:a0:7d:b9:3e:14:98:56:11:01:c7: 5d:9b:b4:48:49:40:cf:99:58:07:f6:b9:1d:9f:e7:4a:2c:3b: f4:92:58:f6:1e:1b:45:8f:0c:04:6f:87:69:f6:c7:1b:83:49: b0:9b:bd:a6:48:77:75:15:19:e8:f5:b4:a1:88:ef:3a:7f:c7: 41:00:e4:36:e1:44:54:21:b2:f1:16:a7:5c:2f:a9:bb:54:2f: 62:30:23:f5 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUPF+VH2hVh1fZl5dR6hePugLVNqQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOThhODdjYWQ1YjcxMDg5MGE5NTI4ZjE2NmY0MjAyMzkz ODI0ZTZiODAeFw0yNTEyMDYwNDU0MjdaFw0yNTEyMDcwNzE1MjdaMDMxMTAvBgNV BAMTKEVGOEQ5NDNCRDk5RDkzNDdDRTI3MkQxNDZFMzNBNzhBNTNDOTE3QjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+m5+kMbixKOZlb+L8SNi9E7P1 NcPrMZ/GsZniVtq5e5ptYP166CtCn5VqlPQ2nH1zZub2B+WpGVgLP2zmSiDawyHk /pywKLklZxMMCZ0e3cD2din+gopfS6p0eHOajYIEDE+4cJk4IYI1CHx23gKeQWf1 5+gOYiFiZOBA1w4+ThhjOw+4vI4/8wOoZKi3g5yVt0+xYPcwrTnguNZMDc8KrTGn ZSRxhFmAE3gqNxE3T3d8AIYQ5olI4rY13Ym9Zl6llwSpHUWzxFCUabsCS7tw4Lbx vh60fJos36m7hJb/yQJmiEuHXMDyUk3AmA78rIXo+X5+PW2TLSGYWBVjwYqBAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU742UO9mdk0fOJy0UbjOnilPJF7YwHwYDVR0j BBgwFoAUmKh8rVtxCJCpUo8Wb0ICOTgk5rgwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGNlMTk2ZmUtNGIxYS00NmVhLTljOTUtNGFmMTI5NjRh NDlkLzAvOThBODdDQUQ1QjcxMDg5MEE5NTI4RjE2NkY0MjAyMzkzODI0RTZCOC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL21LaDhyVnR4Q0pDcFVvOFdiMElDT1Rn azVyZy5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kY2UxOTZmZS00 YjFhLTQ2ZWEtOWM5NS00YWYxMjk2NGE0OWQvMC85OEE4N0NBRDVCNzEwODkwQTk1 MjhGMTY2RjQyMDIzOTM4MjRFNkI4Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArmajM3bJh+gRt7dNVPoG pPEYW1i4MezrUEy6LPmO1nGXvRl2upYiySgzgI2s6KjEgg+1nvWpnWRPJCKV681O XSm5pNMRGQxUb8q1dffPz9fNXP5JVycca+vo8PA8F+zzM/6A0MCknzxWfZpJbAP8 dJHLbZ/+X1hh9xiJWQZCZQhdzKn3MWp7ZyTJQfIHKQ3XOv7tR8XA1Etb7TYjOcSj Q5TNUurumaAR976gfbk+FJhWEQHHXZu0SElAz5lYB/a5HZ/nSiw79JJY9h4bRY8M BG+HafbHG4NJsJu9pkh3dRUZ6PW0oYjvOn/HQQDkNuFEVCGy8RanXC+pu1QvYjAj 9Q== -----END CERTIFICATE-----Generated at Sat Dec 6 07:44:14 2025 by rpki-client