This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json) Hash identifier: T3OYj79W2+7i4mi3k4I7imOG6/4sKuE1QCdc7xDA6Gc= Subject key identifier: 07:10:5A:75:E4:48:3E:D8:17:6E:5B:D0:6B:32:E3:91:DE:54:FD:BF Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee Certificate serial: 055B73F963CDBF65EE83904B64D37AA95C86EABC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft Manifest number: 0502 Signing time: Fri 05 Dec 2025 16:24:02 +0000 Manifest this update: Fri 05 Dec 2025 16:19:02 +0000 Manifest next update: Sat 06 Dec 2025 20:15:02 +0000 Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: GocbG3VdngSEWQ7FAOSaPHg8HCqmqTefA+rI6mKp7dU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:15:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:5b:73:f9:63:cd:bf:65:ee:83:90:4b:64:d3:7a:a9:5c:86:ea:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee Validity Not Before: Dec 5 16:19:02 2025 GMT Not After : Dec 6 20:15:02 2025 GMT Subject: CN=07105A75E4483ED8176E5BD06B32E391DE54FDBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:16:25:13:86:08:1e:54:14:94:b7:21:36:45: 9d:00:df:6e:5a:bc:b7:f2:7c:de:19:46:21:09:f5: bf:9c:7e:0e:f3:28:91:f5:cb:25:af:1b:85:cb:91: 89:36:72:71:78:f8:10:95:74:de:9a:5a:c8:92:81: 81:40:94:6d:d9:b4:8a:59:9f:97:cf:6c:b7:e2:d1: 83:52:69:7b:a4:77:58:b7:3e:cb:7e:42:37:78:48: ba:20:cc:8f:7d:ca:95:e1:5e:cb:c9:c5:c2:00:98: ff:8f:87:07:e9:e5:91:a6:59:d1:29:e5:5f:03:ad: 14:bf:a6:3a:15:36:66:31:07:34:58:e5:62:04:41: 8b:81:2e:99:e9:c7:4b:87:da:4c:1b:b0:13:ed:b0: ea:5f:ef:eb:e8:88:18:c7:34:9c:a6:69:c0:e1:c1: 6e:a0:ca:56:7a:6c:07:35:55:3e:9a:aa:30:e7:04: 9e:69:ee:13:7c:9c:7e:f2:51:c5:33:55:2a:8a:d6: d5:b5:86:c3:f6:1a:2f:2f:40:26:b7:da:a8:dd:0d: 6f:77:03:81:6d:5c:17:57:70:08:27:01:78:10:1d: 48:69:6f:5c:d1:4c:54:a0:a8:34:48:ab:68:8c:5b: a8:b1:c4:0b:87:b1:2b:01:ef:52:9f:c7:0d:b1:0e: b8:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:10:5A:75:E4:48:3E:D8:17:6E:5B:D0:6B:32:E3:91:DE:54:FD:BF X509v3 Authority Key Identifier: keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 83:38:bb:fe:51:66:38:2d:2b:a3:f1:7c:c6:df:50:6d:79:50: 89:5b:f1:f4:ac:ef:81:56:4b:58:c5:01:84:dd:a2:99:38:4d: a8:a0:bd:d6:12:24:51:3a:15:96:b6:b6:85:a9:ed:70:d0:3d: 70:96:20:da:05:47:53:9e:5d:d2:96:1d:a2:9d:7c:7b:c1:5b: e2:08:37:62:92:00:9f:de:f7:f5:25:ea:83:4b:3b:df:60:49: c1:fe:e2:d2:8d:c4:8a:b5:e7:e1:f6:c1:8d:e1:22:c5:6a:bc: fd:d6:2d:cc:79:2e:e5:44:5d:cb:60:34:5e:57:d1:42:c7:8e: 97:1f:68:5e:08:3f:07:cc:f4:1e:4d:e6:5f:d5:a8:eb:2c:1e: a3:f4:ff:bf:61:d0:ba:06:e8:c7:f1:24:97:49:7e:1b:97:47: 9a:c1:b1:d1:ea:37:9b:56:22:61:ad:ef:18:09:80:09:90:a8: 41:95:ec:b4:5b:45:fe:89:cd:6c:04:be:a1:97:a9:83:7a:1e: 1d:79:32:d7:9c:d2:51:6e:9e:10:03:83:e1:d0:3e:07:8e:84: df:60:f7:ac:1b:f4:7f:ef:54:ad:33:43:47:63:d6:c9:16:a6: 7c:0f:76:b9:1e:bb:d5:e5:ee:e4:9d:b1:c1:e3:2c:e3:eb:03: d6:b6:b7:73 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUBVtz+WPNv2Xug5BLZNN6qVyG6rwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl ZDM2MzNlZTAeFw0yNTEyMDUxNjE5MDJaFw0yNTEyMDYyMDE1MDJaMDMxMTAvBgNV BAMTKDA3MTA1QTc1RTQ0ODNFRDgxNzZFNUJEMDZCMzJFMzkxREU1NEZEQkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9FiUThggeVBSUtyE2RZ0A325a vLfyfN4ZRiEJ9b+cfg7zKJH1yyWvG4XLkYk2cnF4+BCVdN6aWsiSgYFAlG3ZtIpZ n5fPbLfi0YNSaXukd1i3Pst+Qjd4SLogzI99ypXhXsvJxcIAmP+Phwfp5ZGmWdEp 5V8DrRS/pjoVNmYxBzRY5WIEQYuBLpnpx0uH2kwbsBPtsOpf7+voiBjHNJymacDh wW6gylZ6bAc1VT6aqjDnBJ5p7hN8nH7yUcUzVSqK1tW1hsP2Gi8vQCa32qjdDW93 A4FtXBdXcAgnAXgQHUhpb1zRTFSgqDRIq2iMW6ixxAuHsSsB71Kfxw2xDrhNAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUBxBadeRIPtgXblvQazLjkd5U/b8wHwYDVR0j BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0 QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgzi7/lFmOC0ro/F8xt9Q bXlQiVvx9KzvgVZLWMUBhN2imThNqKC91hIkUToVlra2hantcNA9cJYg2gVHU55d 0pYdop18e8Fb4gg3YpIAn9739SXqg0s732BJwf7i0o3EirXn4fbBjeEixWq8/dYt zHku5URdy2A0XlfRQseOlx9oXgg/B8z0Hk3mX9Wo6yweo/T/v2HQugbox/Ekl0l+ G5dHmsGx0eo3m1YiYa3vGAmACZCoQZXstFtF/onNbAS+oZepg3oeHXky15zSUW6e EAOD4dA+B46E32D3rBv0f+9UrTNDR2PWyRamfA92uR671eXu5J2xweMs4+sD1ra3 cw== -----END CERTIFICATE-----Generated at Sat Dec 6 14:03:00 2025 by rpki-client