This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft File: 53A2AA1601CC09214461D03CA771ED50EC1D6325.mft (raw, json) Hash identifier: UDxJBeiVFbSp+ce0szPy8c28tMDpmdwwEp06C/hxBko= Subject key identifier: 4E:F6:1C:58:DE:2D:54:07:D3:07:8D:DA:C2:D2:F0:AC:75:7D:7A:3B Authority key identifier: 53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25 Certificate issuer: /CN=53a2aa1601cc09214461d03ca771ed50ec1d6325 Certificate serial: 03514BB42CFBB5490AE6D0FCEDFD3818A8CC4407 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft Manifest number: 02C2 Signing time: Wed 31 Dec 2025 17:23:39 +0000 Manifest this update: Wed 31 Dec 2025 17:18:39 +0000 Manifest next update: Thu 01 Jan 2026 21:14:39 +0000 Files and hashes: 1: AS215171.asa (hash: gdJa6WG2GERDZaDbnz7OAqIN3lLaJy+y5wFkZsKkjzo=) 2: 53A2AA1601CC09214461D03CA771ED50EC1D6325.crl (hash: pjaR82QtQ430bF96pp5uDJwn/pZERQJ9/bOxac2zcGk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 21:14:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:51:4b:b4:2c:fb:b5:49:0a:e6:d0:fc:ed:fd:38:18:a8:cc:44:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53a2aa1601cc09214461d03ca771ed50ec1d6325 Validity Not Before: Dec 31 17:18:39 2025 GMT Not After : Jan 1 21:14:39 2026 GMT Subject: CN=4EF61C58DE2D5407D3078DDAC2D2F0AC757D7A3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:0d:06:33:11:4a:a2:2d:ae:4c:f2:cf:ca:20: ae:ab:a0:5b:9d:84:36:80:49:bb:0e:ce:88:eb:ef: 22:2e:68:5c:4f:ba:31:03:54:c0:3a:ce:20:16:ed: af:0e:04:be:ac:77:b6:cc:37:99:6c:8f:1b:5c:33: ee:71:62:46:d3:e5:a9:70:27:dc:46:80:bc:0f:39: 4f:5a:c5:ea:e4:b1:cd:3d:59:33:01:cb:28:c0:e8: 75:01:c3:ed:53:ef:13:24:cc:70:1f:35:04:b4:76: 1c:10:8c:c4:42:10:da:a2:0c:88:27:f8:9b:df:7b: 67:30:01:57:75:85:8f:b9:d9:7e:e8:fa:33:f3:3e: 20:2d:99:7a:38:d1:7d:dd:bc:01:aa:d3:1c:10:31: fc:65:89:07:0f:2d:e6:d4:1c:b3:90:32:64:5a:d6: 10:e4:2f:29:7b:04:c3:00:91:81:0c:72:79:26:e6: 31:57:44:48:ee:de:95:e2:2d:ca:16:42:c7:4f:cb: 0d:86:1f:2f:f0:45:14:3a:5e:46:fd:1b:98:a6:e0: 1c:10:0b:21:93:3f:fb:10:e5:e6:a7:92:74:56:86: 4f:b1:ea:69:dc:78:94:43:f4:61:bc:53:22:75:a4: a6:1f:86:3b:75:a9:70:15:2e:c3:5c:3a:d9:a5:f2: bf:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:F6:1C:58:DE:2D:54:07:D3:07:8D:DA:C2:D2:F0:AC:75:7D:7A:3B X509v3 Authority Key Identifier: keyid:53:A2:AA:16:01:CC:09:21:44:61:D0:3C:A7:71:ED:50:EC:1D:63:25 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/U6KqFgHMCSFEYdA8p3HtUOwdYyU.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/311e47c4-02f0-4657-9022-d2b83cff8755/5/53A2AA1601CC09214461D03CA771ED50EC1D6325.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:f8:20:d4:e9:75:3d:b6:6b:34:0f:e2:65:a5:a3:2d:57:c0: df:77:8b:54:19:15:cc:c4:b0:63:b4:52:d5:4a:6a:34:a9:d9: 79:67:9d:79:21:4c:3e:a4:28:5f:02:32:6c:c3:fc:84:c3:b9: 55:14:b2:8f:bf:8a:b9:77:12:af:1a:99:64:c9:17:0e:eb:79: 22:d9:89:46:ae:21:4b:c4:97:85:80:0c:9d:09:6e:29:52:87: 0c:76:0e:0d:17:b5:91:f2:ed:d6:99:e9:9c:ee:e5:74:d5:34: 05:95:bd:da:49:85:69:c2:27:56:ee:fe:14:43:92:8d:43:12: 69:ae:fb:23:4c:fb:4b:99:40:cb:8b:5a:0f:62:3c:92:df:3f: e5:64:29:6a:5f:f8:e0:3b:17:b6:50:a5:db:b8:8e:2c:05:df: 91:a5:81:98:e9:02:02:4f:df:c5:c7:c7:05:3e:bd:25:bc:81: e2:4d:45:0f:ba:d1:f4:01:2e:48:d8:f2:18:c7:71:26:af:78: a6:ca:80:93:c0:45:65:9d:ce:48:11:8a:0c:89:6a:28:dc:9b: ec:5c:f2:70:cf:d7:21:06:61:86:19:18:15:3a:d0:87:7b:9a: c5:da:6f:d0:88:2f:85:7e:aa:97:4a:c1:26:46:4b:99:ae:89: 03:e7:ee:f8 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUA1FLtCz7tUkK5tD87f04GKjMRAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTNhMmFhMTYwMWNjMDkyMTQ0NjFkMDNjYTc3MWVkNTBl YzFkNjMyNTAeFw0yNTEyMzExNzE4MzlaFw0yNjAxMDEyMTE0MzlaMDMxMTAvBgNV BAMTKDRFRjYxQzU4REUyRDU0MDdEMzA3OEREQUMyRDJGMEFDNzU3RDdBM0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD6DQYzEUqiLa5M8s/KIK6roFud hDaASbsOzojr7yIuaFxPujEDVMA6ziAW7a8OBL6sd7bMN5lsjxtcM+5xYkbT5alw J9xGgLwPOU9axerksc09WTMByyjA6HUBw+1T7xMkzHAfNQS0dhwQjMRCENqiDIgn +Jvfe2cwAVd1hY+52X7o+jPzPiAtmXo40X3dvAGq0xwQMfxliQcPLebUHLOQMmRa 1hDkLyl7BMMAkYEMcnkm5jFXREju3pXiLcoWQsdPyw2GHy/wRRQ6Xkb9G5im4BwQ CyGTP/sQ5eanknRWhk+x6mnceJRD9GG8UyJ1pKYfhjt1qXAVLsNcOtml8r9lAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUTvYcWN4tVAfTB43awtLwrHV9ejswHwYDVR0j BBgwFoAUU6KqFgHMCSFEYdA8p3HtUOwdYyUwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMzExZTQ3YzQtMDJmMC00NjU3LTkwMjItZDJiODNjZmY4 NzU1LzUvNTNBMkFBMTYwMUNDMDkyMTQ0NjFEMDNDQTc3MUVENTBFQzFENjMyNS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1U2S3FGZ0hNQ1NGRVlkQThwM0h0VU93 ZFl5VS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS8zMTFlNDdjNC0w MmYwLTQ2NTctOTAyMi1kMmI4M2NmZjg3NTUvNS81M0EyQUExNjAxQ0MwOTIxNDQ2 MUQwM0NBNzcxRUQ1MEVDMUQ2MzI1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAMvgg1Ol1PbZrNA/iZaWj LVfA33eLVBkVzMSwY7RS1UpqNKnZeWedeSFMPqQoXwIybMP8hMO5VRSyj7+KuXcS rxqZZMkXDut5ItmJRq4hS8SXhYAMnQluKVKHDHYODRe1kfLt1pnpnO7ldNU0BZW9 2kmFacInVu7+FEOSjUMSaa77I0z7S5lAy4taD2I8kt8/5WQpal/44DsXtlCl27iO LAXfkaWBmOkCAk/fxcfHBT69JbyB4k1FD7rR9AEuSNjyGMdxJq94psqAk8BFZZ3O SBGKDIlqKNyb7FzycM/XIQZhhhkYFTrQh3uaxdpv0IgvhX6ql0rBJkZLma6JA+fu +A== -----END CERTIFICATE-----Generated at Thu Jan 1 10:03:38 2026 by rpki-client