This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft File: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft (raw, json) Hash identifier: Rvrrze3YcuWBYjrfJDaNwvSTo13uVq+Sx7VBMC11J7A= Subject key identifier: DF:2D:11:FE:C0:8D:3D:57:76:D4:E8:80:8F:71:70:BE:04:F0:FE:49 Authority key identifier: 5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 Certificate issuer: /CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Certificate serial: 29F766E50CF3482AC66D4D53581012F5BDCCEE91 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft Manifest number: 0449 Signing time: Sat 13 Dec 2025 11:57:09 +0000 Manifest this update: Sat 13 Dec 2025 11:52:09 +0000 Manifest next update: Sun 14 Dec 2025 14:21:09 +0000 Files and hashes: 1: 34352e3134362e3136322e302f32342d3234203d3e203138363331.roa (hash: C/6HJC1mRnTjt5un9I/ly/ex3eg1Ngny62cwbLuyXag=) 2: 34352e3134362e3136302e302f32332d3233203d3e203437343437.roa (hash: 31YTnxmdtZ2cp3Cw9rcOHPD6ZzrVs4b/Az5vMfbmmIM=) 3: 5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl (hash: 8vHWmxcfLY4Q0YUMMC8V3+HKqFyYec6k9eAM/iUzaEI=) 4: 34352e3134362e3136332e302f32342d3234203d3e20323136313833.roa (hash: dEyrefnnKSg66lfx459XJ2SroTggGi4go9Zp+DRZdvU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 14 Dec 2025 14:21:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:f7:66:e5:0c:f3:48:2a:c6:6d:4d:53:58:10:12:f5:bd:cc:ee:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5defe0922f4f55270dcd5c08f04f1c7bf26073c3 Validity Not Before: Dec 13 11:52:09 2025 GMT Not After : Dec 14 14:21:09 2025 GMT Subject: CN=DF2D11FEC08D3D5776D4E8808F7170BE04F0FE49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ed:18:39:a4:1c:1c:0e:62:80:2b:1f:69:f1: d4:59:01:c3:3e:8f:b9:3a:3b:c4:0e:dc:fd:ca:34: 64:ff:83:8b:1d:11:1a:a6:7d:24:3c:8d:2c:fc:53: a3:53:e5:fb:c2:ce:0b:18:32:c6:e4:ff:6f:e4:63: e3:bd:d0:f8:c0:97:1b:db:d6:2e:61:2e:ae:0c:c4: bf:86:f5:69:fa:cb:32:f1:d4:c3:33:6f:c6:2e:1c: a0:c9:39:c3:42:ce:7b:8f:01:2b:bb:ea:ee:ad:34: 0b:17:57:95:24:24:28:9a:c5:6e:e6:26:b5:ae:73: fc:c4:03:3b:73:b9:90:87:ab:17:30:a1:1d:b8:83: 4e:12:e6:69:12:ea:59:6e:c9:4d:d3:3b:e4:bf:41: 60:32:06:a0:3c:ee:99:4a:82:5b:aa:7c:32:59:e9: e4:59:5b:d3:cd:3a:95:25:67:7e:b5:2e:b9:73:fb: 4e:f1:d2:70:f0:3e:82:cd:c3:0b:9e:a3:bc:85:55: b1:ac:80:4d:c9:3c:8c:c0:60:2d:d9:57:40:2e:c8: 6b:f3:6f:96:37:59:7f:a5:98:8e:17:6f:e0:ce:e1: b6:25:60:71:0b:d8:d6:51:93:a4:ad:04:c2:0a:13: 7b:e4:83:7a:67:b5:a7:5e:c5:6e:af:9e:b3:1b:92: a0:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:2D:11:FE:C0:8D:3D:57:76:D4:E8:80:8F:71:70:BE:04:F0:FE:49 X509v3 Authority Key Identifier: keyid:5D:EF:E0:92:2F:4F:55:27:0D:CD:5C:08:F0:4F:1C:7B:F2:60:73:C3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xe_gki9PVScNzVwI8E8ce_Jgc8M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2fe2b27a-1ec5-4ab7-978e-6da9cf9f3790/0/5DEFE0922F4F55270DCD5C08F04F1C7BF26073C3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 05:89:01:c4:07:c5:8d:04:5c:32:6c:bb:90:67:1e:bf:61:ec: 3d:91:d7:90:ef:91:7a:6f:4c:84:92:13:4e:99:d8:f1:91:f8: 11:a1:15:fd:ea:c5:59:78:22:5e:01:f4:de:0e:e4:1a:c6:52: cf:fb:b9:36:04:8a:b2:2d:90:80:ef:12:c4:92:1e:91:cb:70: ee:dd:22:7e:00:67:b3:cd:21:ca:97:aa:74:a5:d8:8a:95:46: e3:0b:c8:ee:cd:56:96:6d:42:34:9b:19:90:6c:13:2c:6e:85: 65:95:48:d2:7a:1d:20:6d:ac:0b:a1:90:9d:de:c9:67:db:8e: e8:7f:cf:78:b6:75:8c:22:00:c2:66:99:92:20:be:5f:63:7a: 2f:5f:9d:59:ad:bc:64:9c:44:f0:d1:f4:af:a2:44:99:93:c9: b3:8b:5c:3a:34:da:59:fb:3d:3f:a1:9f:78:4f:e0:f3:e8:b0: 07:60:7c:0e:48:e8:4b:52:b8:cb:01:cb:0a:dc:54:a5:e6:ad: 76:5b:54:31:28:fa:88:c6:eb:ba:3e:74:b8:b2:4f:78:63:54: d7:13:6d:ec:e7:34:50:e3:f7:da:95:ca:cc:b4:5d:b6:1b:6c: 4e:c3:e9:38:52:f1:9a:32:0a:b1:54:08:06:22:96:1c:77:d6: 13:e6:9d:f8 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUKfdm5QzzSCrGbU1TWBAS9b3M7pEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRlZmUwOTIyZjRmNTUyNzBkY2Q1YzA4ZjA0ZjFjN2Jm MjYwNzNjMzAeFw0yNTEyMTMxMTUyMDlaFw0yNTEyMTQxNDIxMDlaMDMxMTAvBgNV BAMTKERGMkQxMUZFQzA4RDNENTc3NkQ0RTg4MDhGNzE3MEJFMDRGMEZFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC37Rg5pBwcDmKAKx9p8dRZAcM+ j7k6O8QO3P3KNGT/g4sdERqmfSQ8jSz8U6NT5fvCzgsYMsbk/2/kY+O90PjAlxvb 1i5hLq4MxL+G9Wn6yzLx1MMzb8YuHKDJOcNCznuPASu76u6tNAsXV5UkJCiaxW7m JrWuc/zEAztzuZCHqxcwoR24g04S5mkS6lluyU3TO+S/QWAyBqA87plKgluqfDJZ 6eRZW9PNOpUlZ361Lrlz+07x0nDwPoLNwwueo7yFVbGsgE3JPIzAYC3ZV0AuyGvz b5Y3WX+lmI4Xb+DO4bYlYHEL2NZRk6StBMIKE3vkg3pntadexW6vnrMbkqBXAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU3y0R/sCNPVd21OiAj3FwvgTw/kkwHwYDVR0j BBgwFoAUXe/gki9PVScNzVwI8E8ce/Jgc8MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmZlMmIyN2EtMWVjNS00YWI3LTk3OGUtNmRhOWNmOWYz NzkwLzAvNURFRkUwOTIyRjRGNTUyNzBEQ0Q1QzA4RjA0RjFDN0JGMjYwNzNDMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hlX2draTlQVlNjTnpWd0k4RThjZV9K Z2M4TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZmUyYjI3YS0x ZWM1LTRhYjctOTc4ZS02ZGE5Y2Y5ZjM3OTAvMC81REVGRTA5MjJGNEY1NTI3MERD RDVDMDhGMDRGMUM3QkYyNjA3M0MzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABYkBxAfFjQRcMmy7kGce v2HsPZHXkO+Rem9MhJITTpnY8ZH4EaEV/erFWXgiXgH03g7kGsZSz/u5NgSKsi2Q gO8SxJIekctw7t0ifgBns80hypeqdKXYipVG4wvI7s1Wlm1CNJsZkGwTLG6FZZVI 0nodIG2sC6GQnd7JZ9uO6H/PeLZ1jCIAwmaZkiC+X2N6L1+dWa28ZJxE8NH0r6JE mZPJs4tcOjTaWfs9P6GfeE/g8+iwB2B8DkjoS1K4ywHLCtxUpeatdltUMSj6iMbr uj50uLJPeGNU1xNt7Oc0UOP32pXKzLRdthtsTsPpOFLxmjIKsVQIBiKWHHfWE+ad +A== -----END CERTIFICATE-----Generated at Sun Dec 14 05:46:32 2025 by rpki-client