This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft File: F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft (raw, json) Hash identifier: 5aZrJg/3TIqvuw3yA5ok3ay7dQ+0jKa+qj0i8aDWfHU= Subject key identifier: 66:C8:92:F5:39:A7:29:3F:27:A0:2B:EE:D6:12:11:8B:FE:BB:7E:16 Authority key identifier: F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE Certificate issuer: /CN=f1d0572fe72991bd32854bac716676ebdad22ace Certificate serial: 395F8E243C173CE934188CB6717FFC59CF7B5D98 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft Manifest number: 02B1 Signing time: Sat 06 Dec 2025 05:37:13 +0000 Manifest this update: Sat 06 Dec 2025 05:32:13 +0000 Manifest next update: Sun 07 Dec 2025 09:10:13 +0000 Files and hashes: 1: 326131333a393634343a323232303a3a2f34342d3438203d3e20323134393932.roa (hash: 894RTKAEh4ciZZOdefpuTBSaNDM2TQpQSdGle6pgy08=) 2: 39312e3230372e31332e302f32342d3234203d3e203532313132.roa (hash: +JU+ydXmMjIBHlt1kVXfkJBGqdmH1ATfk8PRfe8t4Rc=) 3: 326131333a393634343a343030303a3a2f34302d3438203d3e203133333335.roa (hash: 3m2Z/mjozERlCSY+vSBpPSC7mc1wNvFz/UzxCrw2jy0=) 4: 326131333a393634343a34303a3a2f34342d3438203d3e20323131343331.roa (hash: UQpEpactphMaN3i4tpyR5s9Tmz685dUuNs8hSuG0cJQ=) 5: 326131333a393634343a34303a3a2f34342d3438203d3e20323136333336.roa (hash: lNHaIlVxi/lYCx53I3+MfwePjUfRoiP0WtejKnMjprU=) 6: 326131333a393634313a3a2f34382d3438203d3e203532313132.roa (hash: 5o2ZOradY5DoOPidcJ775vbaNLbxYZsPfZS6MPweSnY=) 7: 8BAD307CD4DF11014E40EDDFFFD60F9A09E6E95C.cer (hash: nYcdq/fifitjvFyPoNBEJvUP1WGfqAJvzv/Dj2Iivv0=) 8: 5EB2E5DAD0C6996D0A80A7B90F3A2AA60FB1A7AC.cer (hash: Nz2k0o2IS41o55idTp4HvK3uNxIMYgMNKvrr57G+kIE=) 9: 326131333a393634303a3a2f34342d3434203d3e203532313132.roa (hash: DOR1Pt3ct68s+ey18ZghPrs5rAUoZlIbwxjvP68BE+k=) 10: F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl (hash: JDlW8EMcvH7YmMcXQu7Bth0GS/V0MtvCAInBUaoaPrs=) 11: 326131333a393634343a31303a3a2f34362d3438203d3e203438313934.roa (hash: WOAaZY65k+/GoeKbXXymPrZVu7CfbDlQvCXqyS0ZjLA=) 12: 326131333a393634343a343030303a3a2f34302d3438203d3e20323034323931.roa (hash: OXH7kpuguUKmKnwoouN0IGAOMj3E/W/ffH2kJO7vbOY=) 13: 326131333a393634343a333030303a3a2f34302d3438203d3e20323131343331.roa (hash: e3gM8xBShVESXc8MaKIMDq1iDa8wjJWbHPjdOfhPuFQ=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 09:10:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:5f:8e:24:3c:17:3c:e9:34:18:8c:b6:71:7f:fc:59:cf:7b:5d:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f1d0572fe72991bd32854bac716676ebdad22ace Validity Not Before: Dec 6 05:32:13 2025 GMT Not After : Dec 7 09:10:13 2025 GMT Subject: CN=66C892F539A7293F27A02BEED612118BFEBB7E16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:e0:b4:e3:85:f1:38:5e:f0:93:31:72:a9:d7: 03:bd:cb:28:8d:4b:a3:88:2e:41:1d:a9:f0:07:cb: b8:90:ba:68:e5:ed:c2:43:8c:0b:5d:2e:66:d2:af: ff:37:a5:2b:4f:9b:04:86:12:68:80:15:ef:f9:53: 61:f2:71:41:d9:d7:b7:6a:66:6d:35:f8:d4:82:cd: d6:5e:5b:5f:03:32:82:23:26:0a:c6:a3:e8:58:c5: 4b:ed:4a:32:24:03:35:a9:a4:e1:70:0a:33:32:fa: fd:4b:24:38:af:eb:c5:be:51:8b:9d:67:28:d0:bb: b4:d5:fc:09:a3:bb:88:f9:db:e2:4a:61:f8:5f:4c: 19:42:ea:fb:67:66:19:c7:89:d6:2a:91:ae:49:66: f0:1e:5e:d0:f7:9d:5e:d2:88:3c:8d:f1:b3:08:3d: 87:70:90:a6:f6:d9:62:69:b8:8a:cb:1a:30:09:f9: f0:f4:12:46:17:8c:ac:57:8b:e6:5a:1a:3d:ca:59: b7:bc:2c:1f:a4:da:1c:f2:08:99:58:6a:85:b9:d8: a9:02:5e:00:58:aa:19:5f:da:2b:4b:30:46:5d:a3: ca:cb:1d:b1:f4:02:d9:d6:a4:32:2b:dd:b3:42:b1: b9:8a:3a:93:63:34:77:b8:e7:0c:0a:a0:ed:c9:88: c4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:C8:92:F5:39:A7:29:3F:27:A0:2B:EE:D6:12:11:8B:FE:BB:7E:16 X509v3 Authority Key Identifier: keyid:F1:D0:57:2F:E7:29:91:BD:32:85:4B:AC:71:66:76:EB:DA:D2:2A:CE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8dBXL-cpkb0yhUuscWZ269rSKs4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/e30de84b-400a-4fd1-ab8a-e7616e245b49/0/F1D0572FE72991BD32854BAC716676EBDAD22ACE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:8c:44:90:03:1b:9a:04:1f:63:35:4c:4d:9b:fa:bc:c6:17: 11:ec:48:25:e8:2e:1e:3c:ae:18:ec:01:32:e6:de:74:d9:70: 3f:48:d9:27:47:c4:81:55:7d:af:1a:04:64:7f:76:0f:16:4d: 96:80:f0:92:53:ba:53:89:86:50:70:ba:ea:97:ae:11:8a:78: f1:a6:c5:8b:b0:83:0f:36:ba:6e:cf:d0:fd:8e:a0:cb:e0:ed: f1:a7:d0:d3:eb:ce:75:51:9d:10:26:98:47:f4:5f:5e:f0:df: 6f:5e:83:2b:60:dd:e7:aa:52:fa:9b:e2:b8:a9:0f:c6:2a:cb: 89:7f:74:de:d5:81:16:30:b2:8d:62:ea:ea:d3:ed:d6:ad:f6: 73:4b:ce:67:40:84:dd:4c:74:52:a5:36:b5:cc:20:8a:99:be: 2d:75:03:9d:54:ad:09:e7:0d:14:bc:88:0f:75:c9:c8:20:0a: 32:df:84:1b:0a:8d:0c:15:31:5b:94:04:a6:0a:1b:c8:0c:f0: a9:d5:dd:8a:6b:97:f0:ba:3a:85:e9:12:87:63:2a:a0:7b:8f: d5:48:5a:4e:72:a4:d1:6b:69:6b:dd:cf:59:73:06:04:f8:d3: 5c:1e:3a:55:52:be:24:0c:f9:6f:71:7d:f2:66:89:40:ed:57: f0:ed:21:c3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUOV+OJDwXPOk0GIy2cX/8Wc97XZgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjFkMDU3MmZlNzI5OTFiZDMyODU0YmFjNzE2Njc2ZWJk YWQyMmFjZTAeFw0yNTEyMDYwNTMyMTNaFw0yNTEyMDcwOTEwMTNaMDMxMTAvBgNV BAMTKDY2Qzg5MkY1MzlBNzI5M0YyN0EwMkJFRUQ2MTIxMThCRkVCQjdFMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDr4LTjhfE4XvCTMXKp1wO9yyiN S6OILkEdqfAHy7iQumjl7cJDjAtdLmbSr/83pStPmwSGEmiAFe/5U2HycUHZ17dq Zm01+NSCzdZeW18DMoIjJgrGo+hYxUvtSjIkAzWppOFwCjMy+v1LJDiv68W+UYud ZyjQu7TV/Amju4j52+JKYfhfTBlC6vtnZhnHidYqka5JZvAeXtD3nV7SiDyN8bMI PYdwkKb22WJpuIrLGjAJ+fD0EkYXjKxXi+ZaGj3KWbe8LB+k2hzyCJlYaoW52KkC XgBYqhlf2itLMEZdo8rLHbH0AtnWpDIr3bNCsbmKOpNjNHe45wwKoO3JiMSfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUZsiS9TmnKT8noCvu1hIRi/67fhYwHwYDVR0j BBgwFoAU8dBXL+cpkb0yhUuscWZ269rSKs4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZTMwZGU4NGItNDAwYS00ZmQxLWFiOGEtZTc2MTZlMjQ1 YjQ5LzAvRjFEMDU3MkZFNzI5OTFCRDMyODU0QkFDNzE2Njc2RUJEQUQyMkFDRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkQlhMLWNwa2IweWhVdXNjV1oyNjly U0tzNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9lMzBkZTg0Yi00 MDBhLTRmZDEtYWI4YS1lNzYxNmUyNDViNDkvMC9GMUQwNTcyRkU3Mjk5MUJEMzI4 NTRCQUM3MTY2NzZFQkRBRDIyQUNFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGYxEkAMbmgQfYzVMTZv6 vMYXEexIJeguHjyuGOwBMubedNlwP0jZJ0fEgVV9rxoEZH92DxZNloDwklO6U4mG UHC66peuEYp48abFi7CDDza6bs/Q/Y6gy+Dt8afQ0+vOdVGdECaYR/RfXvDfb16D K2Dd56pS+pviuKkPxirLiX903tWBFjCyjWLq6tPt1q32c0vOZ0CE3Ux0UqU2tcwg ipm+LXUDnVStCecNFLyID3XJyCAKMt+EGwqNDBUxW5QEpgobyAzwqdXdimuX8Lo6 hekSh2MqoHuP1UhaTnKk0Wtpa93PWXMGBPjTXB46VVK+JAz5b3F98maJQO1X8O0h ww== -----END CERTIFICATE-----Generated at Sat Dec 6 17:51:33 2025 by rpki-client