This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft File: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft (raw, json) Hash identifier: Sk3vYdeaTtmKN78+wNBMNyxxiWer7tnWnu2CetND5hM= Subject key identifier: 4A:C4:4D:72:E9:EA:3D:C6:DF:CE:3B:1D:A4:99:F2:D5:5F:38:32:E5 Authority key identifier: 24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 Certificate issuer: /CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Certificate serial: 4D94930E7B2DAD1E53DFB2C8A4A9B4BC57B28F25 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft Manifest number: 04FF Signing time: Sun 07 Dec 2025 12:46:20 +0000 Manifest this update: Sun 07 Dec 2025 12:41:20 +0000 Manifest next update: Mon 08 Dec 2025 15:49:20 +0000 Files and hashes: 1: 34362e3138332e33312e302f32342d3234203d3e20313734.roa (hash: 3Z7e+5TwzBef1b9VYHjpmL+5jzamN8gXYO/wLKWP7lA=) 2: 34362e3138332e33302e302f32342d3234203d3e203631333137.roa (hash: pxnqedD3kuwz1m+9x0q4e9R46P3xXGAP6tM7JZr4zqQ=) 3: 34362e3138332e32392e302f32342d3234203d3e2039333034.roa (hash: 4l3m4JRRITIOBfhSXA3v4T1Tc1t3gHbU2TsBgQabcVg=) 4: 34362e3138332e32342e302f32342d3234203d3e20313432313436.roa (hash: U6sIE1tc5XNg8Vw7jnbxLLCNANnB9wH3voxb1FhuZwc=) 5: 34362e3138332e32372e302f32342d3234203d3e20323132323338.roa (hash: MBTQi0HOcbTwY/4fQl+vTOHLOQ2FmR/EhBIZ6Dj3u14=) 6: 34362e3138332e32352e302f32342d3234203d3e203633303233.roa (hash: 4jq0qwMJqWtfRUuzz3vPyKHtua4FM5/8Y3cvVGfTKBM=) 7: 34362e3138332e32352e302f32342d3234203d3e20323132323338.roa (hash: lxi2m0tJ4IwcIv1Qu/mxuwgzf8BGdtHdxfKNM9mKZEQ=) 8: 34362e3138332e32362e302f32342d3234203d3e2039303039.roa (hash: ckwThy9Ftd6Jb/nTbj53dd12b3F3RSR9Etp8JSW5svM=) 9: 24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl (hash: 6h5bu02IBhSyboeYOrjcLflsL0RcFiLNwg57nhrPmWo=) 10: 34362e3138332e32382e302f32342d3234203d3e203631333137.roa (hash: EQc8ZSWRYu3w3yABE1KT+uLZnchUtUDhUBMKc9gsz8U=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 08 Dec 2025 15:49:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:94:93:0e:7b:2d:ad:1e:53:df:b2:c8:a4:a9:b4:bc:57:b2:8f:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=24e53788bd4efa23b1a8207b7e74a8e1cc677b00 Validity Not Before: Dec 7 12:41:20 2025 GMT Not After : Dec 8 15:49:20 2025 GMT Subject: CN=4AC44D72E9EA3DC6DFCE3B1DA499F2D55F3832E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c3:02:8b:90:3d:17:0a:4c:37:38:d9:4d:ed: 8b:5e:11:ea:c2:f4:f8:f6:5a:f5:26:f5:db:30:e1: 24:54:f6:bb:b1:82:ab:e1:36:22:91:06:7f:69:3f: 8f:e2:c1:3a:2e:e4:0f:49:38:bc:2a:b6:40:7e:ed: 29:ea:71:44:06:ae:d1:0b:47:e2:28:c4:cd:92:06: f1:e1:86:34:eb:b7:e0:3a:21:76:88:c8:f2:08:51: ba:f3:8f:80:96:2b:77:ed:0e:5a:99:69:d5:ae:d0: 5f:b9:9f:d5:72:5a:ec:67:10:62:69:ab:65:21:98: 7b:12:9d:92:b9:3b:ee:33:8e:43:1a:b2:87:4b:d6: 2f:28:21:72:e8:91:19:46:4b:92:27:e5:7e:65:53: 14:76:98:15:ff:97:28:51:4a:67:4e:70:2e:ad:7a: aa:da:72:6a:6f:79:df:7a:cb:0b:fa:4b:6a:17:2b: 8c:cb:a5:fe:e9:3e:cd:cb:99:3d:8c:98:10:12:15: ba:92:eb:b1:65:4a:37:45:4a:88:ee:b9:49:70:48: b4:eb:e5:e7:fb:5e:6d:c5:8c:22:66:71:ca:a1:74: 09:18:22:a3:4c:cc:20:8c:58:76:2a:0f:d8:c4:40: cb:c2:b6:78:85:d6:48:ab:1d:b7:df:2b:c3:a7:dd: 00:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:C4:4D:72:E9:EA:3D:C6:DF:CE:3B:1D:A4:99:F2:D5:5F:38:32:E5 X509v3 Authority Key Identifier: keyid:24:E5:37:88:BD:4E:FA:23:B1:A8:20:7B:7E:74:A8:E1:CC:67:7B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/JOU3iL1O-iOxqCB7fnSo4cxnewA.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/16acb9a0-6d1e-4ae4-9177-d938e9804395/0/24E53788BD4EFA23B1A8207B7E74A8E1CC677B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:2b:55:21:3b:a2:fa:8e:b8:0d:72:ca:76:7f:99:bd:88:4e: 00:35:7e:17:cd:5c:74:be:e3:f9:20:0a:fc:f8:e5:c5:ba:b4: 6a:71:63:bf:d7:6e:c5:7f:3c:9b:40:21:78:25:7b:09:f7:8a: 3a:5c:21:e2:8c:89:d7:a7:b3:46:2e:41:5a:60:3a:55:cb:30: da:66:9d:f6:2c:49:33:c5:21:de:6d:b4:cb:37:b0:c4:99:28: 28:61:97:03:cd:58:7c:0e:f9:98:dd:b6:e8:3f:37:21:bf:1d: 0e:3d:d9:08:03:b4:12:c2:70:7b:5d:9d:a1:e6:9e:6d:e6:43: 93:13:d6:97:a0:57:4d:f6:a6:65:77:86:0e:ee:52:0c:d1:6e: 38:f6:55:38:a2:ad:35:48:f3:b2:39:d8:2c:dc:94:db:08:be: c9:58:d9:b3:16:ab:d6:82:1f:87:94:3b:c6:e1:af:a7:ba:06: 18:6e:a7:4b:a8:8e:cb:d0:37:c8:91:ae:a8:39:c1:58:82:b7: 92:a2:50:df:7e:0e:f9:80:c4:f9:16:aa:d3:01:21:91:65:62: 8e:78:c4:09:77:bd:ac:98:a4:e7:ef:3b:ad:e8:b2:29:6d:75: 78:12:9b:0a:dc:18:57:4d:a7:de:1f:e1:ba:2b:69:ed:a3:d3: 58:70:e5:ef -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUTZSTDnstrR5T37LIpKm0vFeyjyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjRlNTM3ODhiZDRlZmEyM2IxYTgyMDdiN2U3NGE4ZTFj YzY3N2IwMDAeFw0yNTEyMDcxMjQxMjBaFw0yNTEyMDgxNTQ5MjBaMDMxMTAvBgNV BAMTKDRBQzQ0RDcyRTlFQTNEQzZERkNFM0IxREE0OTlGMkQ1NUYzODMyRTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6wwKLkD0XCkw3ONlN7YteEerC 9Pj2WvUm9dsw4SRU9ruxgqvhNiKRBn9pP4/iwTou5A9JOLwqtkB+7SnqcUQGrtEL R+IoxM2SBvHhhjTrt+A6IXaIyPIIUbrzj4CWK3ftDlqZadWu0F+5n9VyWuxnEGJp q2UhmHsSnZK5O+4zjkMasodL1i8oIXLokRlGS5In5X5lUxR2mBX/lyhRSmdOcC6t eqracmpved96ywv6S2oXK4zLpf7pPs3LmT2MmBASFbqS67FlSjdFSojuuUlwSLTr 5ef7Xm3FjCJmccqhdAkYIqNMzCCMWHYqD9jEQMvCtniF1kirHbffK8On3QAJAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUSsRNcunqPcbfzjsdpJny1V84MuUwHwYDVR0j BBgwFoAUJOU3iL1O+iOxqCB7fnSo4cxnewAwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTZhY2I5YTAtNmQxZS00YWU0LTkxNzctZDkzOGU5ODA0 Mzk1LzAvMjRFNTM3ODhCRDRFRkEyM0IxQTgyMDdCN0U3NEE4RTFDQzY3N0IwMC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0pPVTNpTDFPLWlPeHFDQjdmblNvNGN4 bmV3QS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8xNmFjYjlhMC02 ZDFlLTRhZTQtOTE3Ny1kOTM4ZTk4MDQzOTUvMC8yNEU1Mzc4OEJENEVGQTIzQjFB ODIwN0I3RTc0QThFMUNDNjc3QjAwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcytVITui+o64DXLKdn+Z vYhOADV+F81cdL7j+SAK/Pjlxbq0anFjv9duxX88m0AheCV7CfeKOlwh4oyJ16ez Ri5BWmA6Vcsw2mad9ixJM8Uh3m20yzewxJkoKGGXA81YfA75mN226D83Ib8dDj3Z CAO0EsJwe12doeaebeZDkxPWl6BXTfamZXeGDu5SDNFuOPZVOKKtNUjzsjnYLNyU 2wi+yVjZsxar1oIfh5Q7xuGvp7oGGG6nS6iOy9A3yJGuqDnBWIK3kqJQ334O+YDE +Raq0wEhkWVijnjECXe9rJik5+87reiyKW11eBKbCtwYV02n3h/huitp7aPTWHDl 7w== -----END CERTIFICATE-----Generated at Mon Dec 8 04:25:49 2025 by rpki-client