This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft File: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft (raw, json) Hash identifier: 4kUqyC+tcgdABN2Gn+XuRu46aGs9dVx36PrgvyIDQq8= Subject key identifier: 6F:BD:C3:C2:E0:84:4E:97:02:2F:D1:D4:BF:EF:F4:05:13:70:68:6A Authority key identifier: 7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 Certificate issuer: /CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Certificate serial: 7DCA8E3E232F419DF9FA5055514A55918AB803F7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft Manifest number: 0186 Signing time: Fri 19 Dec 2025 18:24:39 +0000 Manifest this update: Fri 19 Dec 2025 18:19:39 +0000 Manifest next update: Sat 20 Dec 2025 21:58:39 +0000 Files and hashes: 1: 326130653a666434353a326535303a3a2f34382d3438203d3e20323135333730.roa (hash: S2x/glwBFQqLmSWyNwtm4qEtJyulbbnFBue99o2JPS8=) 2: 326130653a666434353a326538303a3a2f34382d3438203d3e20323134373233.roa (hash: OBdYMpDCrnydUqYR/9aR6OWDxV3xrASuK04QdHbbnp4=) 3: 7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl (hash: Pa0JFt1q55jH2QdPAATcMpYCEkfgcFrm7s28iZ+5B3M=) 4: 326130653a666434353a326634303a3a2f34342d3438203d3e20323132353931.roa (hash: m8ac/OmE29DqLuwrvKPJFKpYCamTHx1fmPvpHqRkArI=) 5: 326130653a666434353a353030303a3a2f34302d3438203d3e20323034383330.roa (hash: 9ztDCaU6aAMVKVrLFNLTSsl1A84X7CinJDw99b10Wgk=) 6: 326130653a666434353a326630303a3a2f34382d3438203d3e20323132393636.roa (hash: fCahoT0DASmE4L0CnNku4FHnUTfBEMsJKaoRBnEvKJY=) 7: 326130653a666434353a326633303a3a2f34382d3438203d3e20323039333130.roa (hash: Ah9wB6P+J6/u6bq6IHZMWUCN9kLwcy3+ovMQjaM+Mjs=) 8: 326130653a666434353a326366303a3a2f34382d3438203d3e20323032383535.roa (hash: lpEMU1X1JLSHAOWUFG4frUPhBZsu7LhlBnijuGC43xs=) 9: 326130393a626534303a323830303a3a2f34302d3438203d3e20313939393530.roa (hash: AiP13DNBwIkSFzdQdSir0FYGd4okcKOcyfxhs/nt0mM=) 10: 326130393a626534303a323830303a3a2f34302d3438203d3e20323133313730.roa (hash: bGsR+5RlWB67shIeVpz1QNwpCAPKyIXgoOV7T0RQXx8=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 16:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ca:8e:3e:23:2f:41:9d:f9:fa:50:55:51:4a:55:91:8a:b8:03:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7f216f49a3b9a84a0e85e80a2c42874f09ea3985 Validity Not Before: Dec 19 18:19:39 2025 GMT Not After : Dec 20 21:58:39 2025 GMT Subject: CN=6FBDC3C2E0844E97022FD1D4BFEFF4051370686A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7e:b3:d5:0c:c9:0c:93:71:1f:cc:d7:e1:83: 9e:71:39:11:15:da:18:5d:48:61:67:1e:04:bb:c7: fc:ca:ee:21:e9:4e:db:dd:35:58:75:b0:11:84:13: c4:e5:e5:42:00:2c:9b:a5:11:5e:b5:51:00:1d:64: 9a:4d:03:01:76:49:a2:cd:a3:7c:75:d1:2b:84:c8: 27:5a:6c:02:66:66:f6:84:e3:69:b7:9d:91:f6:8d: 54:3f:36:fa:9c:2f:f2:cb:46:63:d1:d8:4e:e2:6d: b5:a9:0d:44:6f:50:5f:ea:ca:9f:57:c8:aa:29:ca: 16:1c:bc:eb:fc:c5:c6:6d:88:6e:e1:56:ba:7d:53: 3a:b6:7f:b6:d6:0c:7e:f2:6d:db:43:70:21:ee:a6: 7d:6f:de:c6:7d:81:14:8d:c3:0e:41:95:c1:38:69: 26:80:c6:66:b6:7b:0e:f9:cc:fd:b9:02:db:5f:3c: 73:24:80:87:f6:4b:0e:73:ac:bd:cc:b9:ce:c7:16: 42:ca:af:5a:c3:5a:8c:59:bf:58:ee:cf:ed:fd:dd: c4:7b:91:d0:c5:58:ac:20:79:fc:79:26:86:51:04: 11:2c:37:29:99:67:b9:b4:1c:c6:e7:d1:c8:3d:01: cf:12:0f:33:d7:51:13:75:03:f4:30:42:2f:f0:88: 1c:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:BD:C3:C2:E0:84:4E:97:02:2F:D1:D4:BF:EF:F4:05:13:70:68:6A X509v3 Authority Key Identifier: keyid:7F:21:6F:49:A3:B9:A8:4A:0E:85:E8:0A:2C:42:87:4F:09:EA:39:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fyFvSaO5qEoOhegKLEKHTwnqOYU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/2dfb30ca-e1c2-4921-b054-d4af09165af1/0/7F216F49A3B9A84A0E85E80A2C42874F09EA3985.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d4:f2:91:44:5e:f5:27:0a:2e:a0:99:1b:14:67:11:63:89:cd: 1a:c0:76:47:ca:2c:48:26:32:11:42:24:11:b4:66:a5:06:fb: 55:e3:49:a7:00:c6:11:65:e9:77:a0:b3:e9:3b:77:cf:cc:64: e0:51:fe:c7:b0:00:f0:c2:fb:5b:dc:7d:f8:b5:fa:4b:61:94: 74:5d:fa:ea:5e:be:0a:bd:ce:23:52:cc:60:f6:fa:ab:8e:c3: 14:55:5c:40:cc:d0:df:d9:21:14:62:63:3f:84:d1:06:58:bf: bb:c4:b5:b2:d8:c2:3c:45:d3:91:f7:5d:63:a0:8e:b6:8f:63: 95:8d:99:65:88:90:ba:21:ec:a2:ea:0d:0e:35:68:74:a7:40: 3e:33:6f:00:ed:c3:d5:5f:9d:56:1e:16:39:05:57:31:96:fc: 85:cb:9b:d2:23:d1:6e:6b:e2:6c:8d:31:8f:11:06:61:e8:94: 5c:4d:b9:f6:29:4f:df:42:2c:c1:55:0c:83:45:41:32:da:c1: ea:1c:56:25:3d:33:56:f0:4c:b7:ce:81:26:31:6a:0c:f1:4c: bc:e2:ba:59:15:a7:c8:8f:31:17:e5:16:0d:6b:a2:2f:d3:4f: f7:dd:5e:03:d7:6c:d9:12:04:71:ba:e8:0a:86:8b:f7:41:1c: bc:2a:97:76 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUfcqOPiMvQZ35+lBVUUpVkYq4A/cwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoN2YyMTZmNDlhM2I5YTg0YTBlODVlODBhMmM0Mjg3NGYw OWVhMzk4NTAeFw0yNTEyMTkxODE5MzlaFw0yNTEyMjAyMTU4MzlaMDMxMTAvBgNV BAMTKDZGQkRDM0MyRTA4NDRFOTcwMjJGRDFENEJGRUZGNDA1MTM3MDY4NkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCWfrPVDMkMk3EfzNfhg55xOREV 2hhdSGFnHgS7x/zK7iHpTtvdNVh1sBGEE8Tl5UIALJulEV61UQAdZJpNAwF2SaLN o3x10SuEyCdabAJmZvaE42m3nZH2jVQ/NvqcL/LLRmPR2E7ibbWpDURvUF/qyp9X yKopyhYcvOv8xcZtiG7hVrp9Uzq2f7bWDH7ybdtDcCHupn1v3sZ9gRSNww5BlcE4 aSaAxma2ew75zP25AttfPHMkgIf2Sw5zrL3Muc7HFkLKr1rDWoxZv1juz+393cR7 kdDFWKwgefx5JoZRBBEsNymZZ7m0HMbn0cg9Ac8SDzPXURN1A/QwQi/wiByfAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUb73DwuCETpcCL9HUv+/0BRNwaGowHwYDVR0j BBgwFoAUfyFvSaO5qEoOhegKLEKHTwnqOYUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMmRmYjMwY2EtZTFjMi00OTIxLWIwNTQtZDRhZjA5MTY1 YWYxLzAvN0YyMTZGNDlBM0I5QTg0QTBFODVFODBBMkM0Mjg3NEYwOUVBMzk4NS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Z5RnZTYU81cUVvT2hlZ0tMRUtIVHdu cU9ZVS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8yZGZiMzBjYS1l MWMyLTQ5MjEtYjA1NC1kNGFmMDkxNjVhZjEvMC83RjIxNkY0OUEzQjlBODRBMEU4 NUU4MEEyQzQyODc0RjA5RUEzOTg1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA1PKRRF71JwouoJkbFGcR Y4nNGsB2R8osSCYyEUIkEbRmpQb7VeNJpwDGEWXpd6Cz6Tt3z8xk4FH+x7AA8ML7 W9x9+LX6S2GUdF366l6+Cr3OI1LMYPb6q47DFFVcQMzQ39khFGJjP4TRBli/u8S1 stjCPEXTkfddY6COto9jlY2ZZYiQuiHsouoNDjVodKdAPjNvAO3D1V+dVh4WOQVX MZb8hcub0iPRbmvibI0xjxEGYeiUXE259ilP30IswVUMg0VBMtrB6hxWJT0zVvBM t86BJjFqDPFMvOK6WRWnyI8xF+UWDWuiL9NP991eA9ds2RIEcbroCoaL90EcvCqX dg== -----END CERTIFICATE-----Generated at Fri Dec 19 21:12:02 2025 by rpki-client