This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: Eg24OsWLdX2JjFT1mB1cav5ST7m80qP5voxEX5rrxuQ= Subject key identifier: A5:4F:2D:DA:8F:50:18:9D:AD:58:C5:68:F6:C4:7A:13:3B:1C:DE:F6 Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 6529AE3676DB197727CEF825888C33350A2E242B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 04D8 Signing time: Mon 19 Jan 2026 08:59:22 +0000 Manifest this update: Mon 19 Jan 2026 08:54:22 +0000 Manifest next update: Tue 20 Jan 2026 11:19:22 +0000 Files and hashes: 1: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: hFAW06mmhAPSV/HJ4B8aC2PvIR5CrcKx3FcqsTikSiM=) 2: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 1jWpw+W9zeIRwNdxwEeWvA1uKZ5XVqeLW/yed0hU+d4=) 3: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: Pre7CFNaGVy+y4p7ws3CFH3fO+IgdCQpjL/WQTXu0m0=) 4: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: 4JL3Gtu7UsX3IaHs3LaQwmdxUfCfFV6YWJerzJoc+wE=) 5: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: kVZlSJSrWOIFgbVyyqSUiD6jECTpvfhx5mx8hRL1cGE=) 6: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: TQCZQkzK1CqgemnKR/erluvTKMYq58W//DcXZ16FiAE=) 7: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: uWYPVYjRnhouz2kB1gip220mm9ixJ1+yxtSXIITlxEw=) 8: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 7gdiZpTYF4VKwdmEsTHKuwi6oAiZC6mVLx4cpcdl/GE=) 9: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: q/tmnbq1kdd2hUMwbcuSKcZt7pux1EaGGpLbn7IfofI=) 10: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: /LejqbWiFUxs1DgkjzVItnmcQXCtVjOkQxj/fIk9rAQ=) 11: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: Pgs5ueHQXHOzRUAnFpUKAel9Ig4WE+HMpXX4wHeR3SY=) 12: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 8htEN27nXC1XFUYvScmaKLGazPRUUosEipnSlN6XgBk=) 13: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: +6pKiWIr1xfpXpXCXiVMVMi0tFetJIO1JWmpuLH4c10=) 14: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: qWp9paAJXWyG6T4NlWTD/O+mrcUKf+wb2OOSJ/RUTQM=) 15: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: ld9bmw/lU5ViE7fFfnUAARe92vzpSXeZ47xTrIGHE2Y=) 16: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: iksl6QO5bGAwqBp6Vth9mckUoVZxpFnDxq6gmgw5QDs=) 17: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: YcmyLeFBQ+WK9MxW4qT13yT/CsdMqFWcCNcHges7cNY=) 18: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: twheygdBU9M/hWK8PwEKS7vel1IBGYLsGKuF6NDPdmA=) 19: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: DudKC7EbN/x1z3E3UcohZZDxNJCJJwujdDPss+8DrkI=) 20: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: vCrLMX0eSFK/WsSjH4NPI6BnYmwIN7ZEFJbozFxO6uE=) 21: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mOAttZBNx/CTeO/Z3xtwFj9TNAzOHD7wWSzttDopHBY=) 22: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 3LQCLtbZ2cAzmsqD8inTKmHS0+b4RIJVefCUUonuvB0=) 23: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: nrTdofG3QiyT59ifvXqBtX8pF4lYbmqFJc6mO1yyOW0=) 24: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: dqiC7sfkexEdY4bNAfWo7TkIe5GTWHX5uIAGfupS9Ro=) 25: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: QlNtxapPtCDVmKsd/rR7Y2Bq1QIkmg64gwg6mpWc9ZY=) 26: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W9T8aPnkMAlNbGOA+isd3U8U+YdKRxlDW0/+vHw4iGg=) 27: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: S7PYQmgyaS+nUukOrNi+7gU0SVsm2vupfOTXwPtPOXM=) 28: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: yiPh36TU1+o+jLX45pyYr1yhJEOI86BPrMUwrS94mMI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 20 Jan 2026 09:01:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:29:ae:36:76:db:19:77:27:ce:f8:25:88:8c:33:35:0a:2e:24:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Jan 19 08:54:22 2026 GMT Not After : Jan 20 11:19:22 2026 GMT Subject: CN=A54F2DDA8F50189DAD58C568F6C47A133B1CDEF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6f:7b:82:2f:ef:01:81:94:0e:38:ee:59:9f: 4a:50:5a:4b:02:6e:85:78:c1:f1:65:91:11:da:f6: 57:53:4e:30:41:71:16:3b:1d:ff:e7:f6:f5:02:8a: c5:18:a2:74:69:1a:58:e7:1c:f7:cb:05:fe:f9:ad: fa:13:8d:71:c2:3e:b4:1e:45:e4:32:94:5c:0f:5f: 78:33:04:b9:ce:c1:4f:57:5e:10:09:b2:15:e0:f1: f2:ac:ec:ce:bd:3b:55:07:98:f4:1e:d4:ba:24:2b: d6:89:dd:7e:dc:d8:4b:cb:ed:3d:23:33:70:8d:9b: 48:c0:e3:f7:07:bd:1f:43:59:2a:2f:e2:e4:0e:76: 1e:ef:f2:1e:93:9d:9c:7a:80:a9:90:96:01:33:99: 6c:78:f1:7f:f8:9f:59:4a:af:e2:af:ec:1e:8f:a9: c0:39:64:28:06:1c:78:a1:0e:f9:6f:46:8b:44:9c: 09:b5:e5:80:b4:5c:d6:37:e2:82:f5:ea:65:c5:30: fd:25:64:ca:a9:15:87:0e:c8:5b:c6:a5:bb:63:24: 79:57:3c:22:4c:d5:ab:32:e1:52:21:74:69:08:a5: c0:fa:a1:45:b6:8d:5f:74:d1:48:f3:63:08:ad:fc: e8:16:e7:af:16:d9:e2:b0:00:1f:09:b9:86:f1:8d: 29:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:4F:2D:DA:8F:50:18:9D:AD:58:C5:68:F6:C4:7A:13:3B:1C:DE:F6 X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:94:fa:a1:88:5b:9e:97:19:57:0d:79:8e:e2:05:16:5a:4c: f9:77:99:fc:e7:33:95:bd:e6:78:92:81:2a:d8:cf:2d:fe:d4: 3d:ae:2d:bf:78:48:35:84:51:25:0d:9b:17:db:78:28:f5:21: a3:f3:a7:36:18:2e:55:0d:d9:fd:15:13:ce:b6:eb:a4:62:fc: ce:b3:d7:dc:ae:b5:b2:86:b8:9d:a6:03:b8:fa:b4:bb:f3:95: 0b:20:6b:76:b5:d9:a1:d7:e0:00:ed:d0:a8:08:53:64:94:4e: e9:b5:f6:f6:38:74:5c:a4:55:ac:48:46:68:0f:c9:d8:dc:3e: 9c:5c:a1:05:e6:2e:c5:01:f1:f1:24:21:19:aa:1d:33:e0:16: 9f:35:8c:99:2f:36:fd:d8:d4:6b:ae:7e:58:9a:cc:52:45:60: d1:36:83:23:2d:18:f6:33:1d:b9:56:9e:cf:2c:f1:ab:dc:26: 6d:76:e9:7f:27:dc:e5:69:87:08:28:a1:0f:f1:75:d5:77:a0: cd:aa:af:aa:b5:7f:84:6a:c7:5e:b5:7b:3a:08:d0:b9:4b:71: d2:50:ca:11:fc:95:5e:5c:23:34:5c:64:6f:e9:2d:80:b4:a2: b6:ec:90:ba:45:2b:61:5e:b7:a2:62:e4:36:ab:fb:8d:f1:15: 04:05:30:0b -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUZSmuNnbbGXcnzvgliIwzNQouJCswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNjAxMTkwODU0MjJaFw0yNjAxMjAxMTE5MjJaMDMxMTAvBgNV BAMTKEE1NEYyRERBOEY1MDE4OURBRDU4QzU2OEY2QzQ3QTEzM0IxQ0RFRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVb3uCL+8BgZQOOO5Zn0pQWksC boV4wfFlkRHa9ldTTjBBcRY7Hf/n9vUCisUYonRpGljnHPfLBf75rfoTjXHCPrQe ReQylFwPX3gzBLnOwU9XXhAJshXg8fKs7M69O1UHmPQe1LokK9aJ3X7c2EvL7T0j M3CNm0jA4/cHvR9DWSov4uQOdh7v8h6TnZx6gKmQlgEzmWx48X/4n1lKr+Kv7B6P qcA5ZCgGHHihDvlvRotEnAm15YC0XNY34oL16mXFMP0lZMqpFYcOyFvGpbtjJHlX PCJM1asy4VIhdGkIpcD6oUW2jV900UjzYwit/OgW568W2eKwAB8JuYbxjSl5AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUpU8t2o9QGJ2tWMVo9sR6Ezsc3vYwHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdZT6oYhbnpcZVw15juIF FlpM+XeZ/Oczlb3meJKBKtjPLf7UPa4tv3hINYRRJQ2bF9t4KPUho/OnNhguVQ3Z /RUTzrbrpGL8zrPX3K61soa4naYDuPq0u/OVCyBrdrXZodfgAO3QqAhTZJRO6bX2 9jh0XKRVrEhGaA/J2Nw+nFyhBeYuxQHx8SQhGaodM+AWnzWMmS82/djUa65+WJrM UkVg0TaDIy0Y9jMduVaezyzxq9wmbXbpfyfc5WmHCCihD/F11XegzaqvqrV/hGrH XrV7OgjQuUtx0lDKEfyVXlwjNFxkb+ktgLSituyQukUrYV63omLkNqv7jfEVBAUw Cw== -----END CERTIFICATE-----Generated at Mon Jan 19 18:28:53 2026 by rpki-client