This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft File: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft (raw, json) Hash identifier: SYy+1dhY5E4fQliWj4p0fZfvlx1s7GXuv819qNfoRew= Subject key identifier: 41:F2:BC:74:C2:48:F5:13:AE:50:20:B7:CB:72:C0:AC:1B:46:F2:CE Authority key identifier: 9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE Certificate issuer: /CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Certificate serial: 794D994FB2AF86C422251826C59563F7FB67C205 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft Manifest number: 049D Signing time: Fri 05 Dec 2025 11:38:47 +0000 Manifest this update: Fri 05 Dec 2025 11:33:47 +0000 Manifest next update: Sat 06 Dec 2025 15:09:47 +0000 Files and hashes: 1: 38392e3131362e312e302f32342d3234203d3e203135343139.roa (hash: QlNtxapPtCDVmKsd/rR7Y2Bq1QIkmg64gwg6mpWc9ZY=) 2: 3231372e392e3234312e302f32342d3234203d3e203135343139.roa (hash: hFAW06mmhAPSV/HJ4B8aC2PvIR5CrcKx3FcqsTikSiM=) 3: 38322e3134302e3138392e302f32342d3234203d3e203135343139.roa (hash: q/tmnbq1kdd2hUMwbcuSKcZt7pux1EaGGpLbn7IfofI=) 4: 38392e3131362e342e302f32322d3232203d3e203135343139.roa (hash: S7PYQmgyaS+nUukOrNi+7gU0SVsm2vupfOTXwPtPOXM=) 5: 3138352e3134392e3135352e302f32342d3234203d3e203434373731.roa (hash: W9T8aPnkMAlNbGOA+isd3U8U+YdKRxlDW0/+vHw4iGg=) 6: 38392e3131362e3131362e302f32322d3232203d3e203135343139.roa (hash: +6pKiWIr1xfpXpXCXiVMVMi0tFetJIO1JWmpuLH4c10=) 7: 38392e3131362e31352e302f32342d3234203d3e203135343139.roa (hash: /LejqbWiFUxs1DgkjzVItnmcQXCtVjOkQxj/fIk9rAQ=) 8: 3138352e3134392e3135322e302f32322d3232203d3e203135343139.roa (hash: yiPh36TU1+o+jLX45pyYr1yhJEOI86BPrMUwrS94mMI=) 9: 38392e3131362e34322e302f32332d3233203d3e203135343139.roa (hash: dqiC7sfkexEdY4bNAfWo7TkIe5GTWHX5uIAGfupS9Ro=) 10: 38392e3131362e34312e302f32342d3234203d3e203135343139.roa (hash: nrTdofG3QiyT59ifvXqBtX8pF4lYbmqFJc6mO1yyOW0=) 11: 38322e3134302e3133312e302f32342d3234203d3e203135343139.roa (hash: YcmyLeFBQ+WK9MxW4qT13yT/CsdMqFWcCNcHges7cNY=) 12: 326130323a323633303a3a2f33322d3332203d3e203135343139.roa (hash: qWp9paAJXWyG6T4NlWTD/O+mrcUKf+wb2OOSJ/RUTQM=) 13: 9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl (hash: EsIy7Fw8IcNHZMRDX11OO0NZbgtUH2y6kFi38vLTdE4=) 14: 38362e33382e382e302f32312d3231203d3e203135343139.roa (hash: uWYPVYjRnhouz2kB1gip220mm9ixJ1+yxtSXIITlxEw=) 15: 38362e33382e332e302f32342d3234203d3e203135343139.roa (hash: 1jWpw+W9zeIRwNdxwEeWvA1uKZ5XVqeLW/yed0hU+d4=) 16: 3138352e3134392e3135342e302f32342d3234203d3e203434373731.roa (hash: Pgs5ueHQXHOzRUAnFpUKAel9Ig4WE+HMpXX4wHeR3SY=) 17: 38392e3131362e31392e302f32342d3234203d3e203135343139.roa (hash: 4JL3Gtu7UsX3IaHs3LaQwmdxUfCfFV6YWJerzJoc+wE=) 18: 326130323a323633303a3a2f32392d3239203d3e203135343139.roa (hash: 8htEN27nXC1XFUYvScmaKLGazPRUUosEipnSlN6XgBk=) 19: 38392e3131362e31362e302f32332d3233203d3e203135343139.roa (hash: 7gdiZpTYF4VKwdmEsTHKuwi6oAiZC6mVLx4cpcdl/GE=) 20: 3138352e3134392e3135332e302f32342d3234203d3e203135343430.roa (hash: ld9bmw/lU5ViE7fFfnUAARe92vzpSXeZ47xTrIGHE2Y=) 21: 3231372e392e3234322e302f32342d3234203d3e203135343139.roa (hash: mOAttZBNx/CTeO/Z3xtwFj9TNAzOHD7wWSzttDopHBY=) 22: 38392e3131362e31322e302f32332d3233203d3e203135343139.roa (hash: vCrLMX0eSFK/WsSjH4NPI6BnYmwIN7ZEFJbozFxO6uE=) 23: 38392e3131362e322e302f32332d3233203d3e203135343139.roa (hash: twheygdBU9M/hWK8PwEKS7vel1IBGYLsGKuF6NDPdmA=) 24: 3231372e392e3235342e302f32332d3233203d3e203135343139.roa (hash: iksl6QO5bGAwqBp6Vth9mckUoVZxpFnDxq6gmgw5QDs=) 25: 3138352e3134392e3135332e302f32342d3234203d3e203133313934.roa (hash: DudKC7EbN/x1z3E3UcohZZDxNJCJJwujdDPss+8DrkI=) 26: 3138352e3134392e3135332e302f32342d3234203d3e203434373731.roa (hash: 3LQCLtbZ2cAzmsqD8inTKmHS0+b4RIJVefCUUonuvB0=) 27: 38322e3134302e3137382e302f32342d3234203d3e203135343139.roa (hash: kVZlSJSrWOIFgbVyyqSUiD6jECTpvfhx5mx8hRL1cGE=) 28: D34606949D385DB42714FE71274FAC9948EF279C.cer (hash: TQCZQkzK1CqgemnKR/erluvTKMYq58W//DcXZ16FiAE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 11:00:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:4d:99:4f:b2:af:86:c4:22:25:18:26:c5:95:63:f7:fb:67:c2:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9df85997b1b9b358e1c43f36765aa0a4a02144ae Validity Not Before: Dec 5 11:33:47 2025 GMT Not After : Dec 6 15:09:47 2025 GMT Subject: CN=41F2BC74C248F513AE5020B7CB72C0AC1B46F2CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b8:a6:15:d6:1a:1b:0a:b5:b9:a5:0f:e9:15: aa:4f:58:18:63:e2:5e:f3:aa:37:d1:34:54:46:5a: f6:bd:f0:1c:87:b5:0e:85:15:66:c3:23:12:25:4b: 12:bc:d8:49:56:81:2e:a8:53:fc:f5:2c:4a:93:c2: 17:78:1a:91:06:ef:a8:68:14:7d:ac:97:42:46:d1: 1a:cb:c5:ad:9f:ef:5c:60:4b:26:76:72:d7:fe:4e: a2:23:6a:dc:8e:36:8a:89:4f:0e:79:cd:b4:f1:f0: 4e:a3:aa:95:57:5c:34:9d:02:6e:eb:78:96:00:f5: fe:f5:2d:80:b1:ee:28:a8:22:d5:21:07:d4:a0:0a: 4d:14:53:6e:80:9c:8b:72:aa:3d:d3:21:d7:db:cb: 85:65:b8:a5:4d:b0:ab:cb:b6:40:fa:a2:f3:a5:b3: f5:1f:85:cc:1c:7b:b0:52:c7:f2:2f:94:4f:9b:7d: f4:bf:47:dd:82:ed:c0:e4:f8:a2:29:d0:b6:e4:02: 53:a5:6b:b6:48:87:8c:ae:d7:1f:87:f9:25:ed:78: a0:9d:89:08:ff:7e:b0:73:09:e9:ca:b2:c7:67:ff: 4e:31:b3:06:eb:31:61:0c:5a:2a:d4:d5:22:35:7c: 52:40:27:5e:74:37:d2:c6:cd:09:28:27:d7:89:80: 05:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:F2:BC:74:C2:48:F5:13:AE:50:20:B7:CB:72:C0:AC:1B:46:F2:CE X509v3 Authority Key Identifier: keyid:9D:F8:59:97:B1:B9:B3:58:E1:C4:3F:36:76:5A:A0:A4:A0:21:44:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/nfhZl7G5s1jhxD82dlqgpKAhRK4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/002e0ba3-fe60-45b1-9160-868a2f8a43b1/3/9DF85997B1B9B358E1C43F36765AA0A4A02144AE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:db:ee:fe:2e:ad:74:5e:cd:cc:3a:fd:e8:7c:bd:ca:15:61: 85:37:d9:22:85:6a:28:07:68:ad:3d:de:1c:1a:a0:dc:57:6e: 3c:dd:05:31:15:80:df:90:e0:60:fa:35:10:ac:e3:7a:72:2b: 20:d8:ce:f2:69:77:18:f8:51:28:e6:3c:79:66:f7:a5:d7:a4: 81:79:8a:63:ad:c9:13:fd:63:53:c0:c4:56:73:58:db:5b:53: 7d:0d:2e:25:e1:94:7e:97:7a:a0:6c:ac:55:94:5b:e5:27:92: de:cd:a1:c9:b9:ba:4a:fd:08:b4:62:12:44:d0:9b:b1:66:35: a2:0f:39:70:33:cd:c6:86:98:02:fd:28:8a:48:5d:7d:05:1c: 77:36:32:e2:9d:fe:13:a2:bb:a3:08:9e:e0:bb:3a:a1:14:db: 35:0e:80:11:ec:63:d5:26:0a:7e:28:1b:82:60:07:82:59:d6: 33:2c:3b:6a:79:60:57:f6:11:7a:68:dd:73:5e:44:72:f3:64: f6:9c:01:c0:09:8a:c5:4c:58:09:21:26:d0:8c:22:f9:23:ba: 6e:07:2b:cb:96:83:f4:8d:fb:1a:6a:e4:f8:06:4c:4f:3e:70: 4d:b0:25:58:55:6f:33:45:0d:56:29:6b:bc:49:be:61:50:9e: a1:11:10:2e -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUeU2ZT7KvhsQiJRgmxZVj9/tnwgUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOWRmODU5OTdiMWI5YjM1OGUxYzQzZjM2NzY1YWEwYTRh MDIxNDRhZTAeFw0yNTEyMDUxMTMzNDdaFw0yNTEyMDYxNTA5NDdaMDMxMTAvBgNV BAMTKDQxRjJCQzc0QzI0OEY1MTNBRTUwMjBCN0NCNzJDMEFDMUI0NkYyQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAuKYV1hobCrW5pQ/pFapPWBhj 4l7zqjfRNFRGWva98ByHtQ6FFWbDIxIlSxK82ElWgS6oU/z1LEqTwhd4GpEG76ho FH2sl0JG0RrLxa2f71xgSyZ2ctf+TqIjatyONoqJTw55zbTx8E6jqpVXXDSdAm7r eJYA9f71LYCx7iioItUhB9SgCk0UU26AnItyqj3TIdfby4VluKVNsKvLtkD6ovOl s/Ufhcwce7BSx/IvlE+bffS/R92C7cDk+KIp0LbkAlOla7ZIh4yu1x+H+SXteKCd iQj/frBzCenKssdn/04xswbrMWEMWirU1SI1fFJAJ150N9LGzQkoJ9eJgAWtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUQfK8dMJI9ROuUCC3y3LArBtG8s4wHwYDVR0j BBgwFoAUnfhZl7G5s1jhxD82dlqgpKAhRK4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMDAyZTBiYTMtZmU2MC00NWIxLTkxNjAtODY4YTJmOGE0 M2IxLzMvOURGODU5OTdCMUI5QjM1OEUxQzQzRjM2NzY1QUEwQTRBMDIxNDRBRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL25maFpsN0c1czFqaHhEODJkbHFncEtB aFJLNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8wMDJlMGJhMy1m ZTYwLTQ1YjEtOTE2MC04NjhhMmY4YTQzYjEvMy85REY4NTk5N0IxQjlCMzU4RTFD NDNGMzY3NjVBQTBBNEEwMjE0NEFFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJNvu/i6tdF7NzDr96Hy9 yhVhhTfZIoVqKAdorT3eHBqg3FduPN0FMRWA35DgYPo1EKzjenIrINjO8ml3GPhR KOY8eWb3pdekgXmKY63JE/1jU8DEVnNY21tTfQ0uJeGUfpd6oGysVZRb5SeS3s2h ybm6Sv0ItGISRNCbsWY1og85cDPNxoaYAv0oikhdfQUcdzYy4p3+E6K7owie4Ls6 oRTbNQ6AEexj1SYKfigbgmAHglnWMyw7anlgV/YRemjdc15EcvNk9pwBwAmKxUxY CSEm0Iwi+SO6bgcry5aD9I37Gmrk+AZMTz5wTbAlWFVvM0UNVilrvEm+YVCeoREQ Lg== -----END CERTIFICATE-----Generated at Fri Dec 5 15:53:49 2025 by rpki-client