This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft File: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft (raw, json) Hash identifier: Lvm+tAkzhGNS3Gr58n03S6E4WQ7CYcnJ8+SxFDdTT64= Subject key identifier: 91:9E:39:56:C2:F8:52:2F:4E:57:5E:6F:EA:A6:7B:B8:44:EC:44:86 Authority key identifier: 0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 Certificate issuer: /CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Certificate serial: 796926BAF79BF1D296585B6E19758B38353CECCA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft Manifest number: 021C Signing time: Tue 16 Dec 2025 01:17:17 +0000 Manifest this update: Tue 16 Dec 2025 01:12:17 +0000 Manifest next update: Wed 17 Dec 2025 04:54:17 +0000 Files and hashes: 1: 3139342e33342e3235332e302f32342d3234203d3e2035303635.roa (hash: tD+eYvXQsGkCcpnz6s7EBRYpOf8Iu4vdb3Qy27wUI6g=) 2: 38352e3131372e3233312e302f32342d3234203d3e20323133373234.roa (hash: ohyXGo6Fwg3029u2hdROae+jQf4VI2skgvLUXH3jI8w=) 3: 38352e3131372e3233302e302f32342d3234203d3e2035303635.roa (hash: 8/mMTd8OI6hx+rEazKaA5i9flVTt9So8wwSfFF6xpVo=) 4: 3138352e3231332e3235312e302f32342d3234203d3e20393834.roa (hash: A919/Bekrj6rZbVlRAQ3zY8i9Bm4Qio6XVxQpWLOfQM=) 5: 3139342e33342e3235342e302f32342d3234203d3e203231383539.roa (hash: oRJ6rz+Ka3hQ2WzKZBHZ2DPnxmRlyUWLsU5w15SE0A0=) 6: 38352e3131372e3232382e302f32342d3234203d3e20323134343538.roa (hash: rcAG2FX2+ZD0Qb1+KeZK9os832Q7CwzkoxVHQi9yY7k=) 7: 38352e3131372e3232392e302f32342d3234203d3e20313439313037.roa (hash: Mdj3IIZJ097ibJGhSOfHP4GOBLdG4jAp1zNpVSxesFg=) 8: 3138352e3231332e3235302e302f32342d3234203d3e20383334.roa (hash: AdBhWG3tduIcvZfuPBuZ6+H3XrmqS9vxHZW/13wo/SQ=) 9: 3139342e33342e3235352e302f32342d3234203d3e20313431393638.roa (hash: iQ9RYSqOmsvIqARX4nqI9wEFn//drkKsHCDo7XaSdTU=) 10: 3138352e3231332e3234392e302f32342d3234203d3e20343030393039.roa (hash: 4O3foUV7f18NUYJQaeBYgK+aW1lr+7o+ea8CcQjVzCw=) 11: 0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl (hash: 9OPeernCbgJaWyMIB9MyZIcs5vFF0dS+5TIwAgJg7vk=) 12: 38352e3131372e3232392e302f32342d3234203d3e203138353236.roa (hash: VL0qbnMthkW/z4M9i7RCycr128NaCWPDKcNp8MPhOx8=) 13: 3139342e33342e3235322e302f32342d3234203d3e203439353831.roa (hash: CdOWg7XQ7TdzzLDF2E3vbhyf4TDBRs7VuKir2QIc0i4=) 14: 3138352e3231332e3234382e302f32342d3234203d3e20323035383836.roa (hash: ODfn5/rpX0/qAWjZsS/cv+gVh3kFgfI7CdBECTg9zww=) 15: 3138352e3231332e3234382e302f32342d3234203d3e203235313938.roa (hash: sZxo3uMJdWqVPeybtzRbPRus3n/g4Q3Q2K1jBCVUZj0=) 16: 3138352e3231332e3234392e302f32342d3234203d3e203235313938.roa (hash: RAmqdtOqt2GXnv4T7A8gAKdg4H2+TG5CqjE3/MvQxnU=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 17 Dec 2025 04:54:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:69:26:ba:f7:9b:f1:d2:96:58:5b:6e:19:75:8b:38:35:3c:ec:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0d7ffae300def0876bf84890fb6ea17be841a4d3 Validity Not Before: Dec 16 01:12:17 2025 GMT Not After : Dec 17 04:54:17 2025 GMT Subject: CN=919E3956C2F8522F4E575E6FEAA67BB844EC4486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:3e:77:20:d4:47:1f:77:a5:77:3b:96:af:13: c7:07:13:f8:8c:10:a3:a5:49:fe:37:74:ce:f3:ae: 60:66:a2:b4:0a:61:7c:83:e4:0b:d8:79:89:1c:98: a6:73:a9:d2:ac:e1:95:82:c1:7f:8f:a9:ad:24:22: 04:65:73:b3:c4:b2:2a:73:cd:24:12:7d:aa:95:91: 09:f3:ec:c8:3c:fb:ed:1c:41:58:31:17:43:2f:3d: 2c:d1:87:4e:78:a0:60:25:f8:f2:8b:14:96:df:8f: 0d:e0:cc:2d:12:1a:0c:20:ac:8c:5b:a3:e3:cc:26: 30:c7:10:10:87:4a:42:69:95:cd:7b:ed:9d:b9:71: 4e:bc:fd:df:77:05:bb:96:73:e6:98:e2:03:bc:2d: 15:86:11:13:70:b7:78:30:15:bb:c9:54:4d:09:33: 74:63:26:66:de:41:c4:91:20:94:91:3b:a5:e0:0b: 39:f7:42:59:0e:3c:9a:25:51:4f:5d:34:6b:af:4b: 07:1f:44:52:cd:62:6d:60:35:f7:91:f4:58:bd:f7: 06:f0:ce:13:b2:e9:12:9f:8a:da:9f:10:45:79:56: 2e:bf:f7:62:f8:da:ad:92:83:2e:06:9e:6e:f7:e2: 5f:46:52:28:18:36:48:2c:f7:53:5d:05:79:f9:01: 8d:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:9E:39:56:C2:F8:52:2F:4E:57:5E:6F:EA:A6:7B:B8:44:EC:44:86 X509v3 Authority Key Identifier: keyid:0D:7F:FA:E3:00:DE:F0:87:6B:F8:48:90:FB:6E:A1:7B:E8:41:A4:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/DX_64wDe8Idr-EiQ-26he-hBpNM.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/8113dda6-7ade-445d-8c6e-448a78e48ca1/1/0D7FFAE300DEF0876BF84890FB6EA17BE841A4D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:98:69:f0:78:69:5c:eb:20:d4:a9:62:6b:19:28:9c:3d:df: 5e:31:8c:82:fc:8d:c6:d9:7b:7f:3f:cf:2f:74:01:8c:4e:20: 71:16:fe:e2:5f:ba:f4:d8:dd:9f:e9:93:18:1b:50:63:d0:94: 66:48:51:9c:64:2d:31:1d:ad:38:7c:07:40:4d:c2:fc:e0:02: 93:80:5f:a0:28:b5:d2:49:06:7f:99:7b:4b:1c:57:66:1d:ad: 80:ff:9a:15:1c:29:14:a2:48:1a:73:ef:2a:54:93:67:67:9c: e2:25:d2:40:4a:e1:db:42:49:a7:ee:8a:23:5d:2f:3c:b8:a4: b3:f7:51:ad:ed:81:e3:37:50:e3:36:23:c8:17:65:2a:24:9e: 48:80:b7:a9:9e:07:b7:d7:54:81:91:65:8a:1b:e6:c6:09:bc: 82:2a:16:f3:7b:3e:d9:d2:0d:fb:04:21:71:d2:af:64:1f:07: e3:99:bb:01:a0:13:c8:a2:d9:3d:bb:ad:9c:7a:4e:01:3d:d7: e7:3a:c1:67:80:24:96:c9:c4:74:4c:c4:67:14:ae:fd:1b:59: 12:e3:72:db:38:81:01:bd:41:7c:fc:3f:71:3a:03:f7:c1:c0: 08:3e:ce:cd:fe:f4:44:43:0e:30:71:74:31:1a:b2:22:6f:ba: 7d:d7:93:f7 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUeWkmuveb8dKWWFtuGXWLODU87MowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMGQ3ZmZhZTMwMGRlZjA4NzZiZjg0ODkwZmI2ZWExN2Jl ODQxYTRkMzAeFw0yNTEyMTYwMTEyMTdaFw0yNTEyMTcwNDU0MTdaMDMxMTAvBgNV BAMTKDkxOUUzOTU2QzJGODUyMkY0RTU3NUU2RkVBQTY3QkI4NDRFQzQ0ODYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwPncg1Ecfd6V3O5avE8cHE/iM EKOlSf43dM7zrmBmorQKYXyD5AvYeYkcmKZzqdKs4ZWCwX+Pqa0kIgRlc7PEsipz zSQSfaqVkQnz7Mg8++0cQVgxF0MvPSzRh054oGAl+PKLFJbfjw3gzC0SGgwgrIxb o+PMJjDHEBCHSkJplc177Z25cU68/d93BbuWc+aY4gO8LRWGERNwt3gwFbvJVE0J M3RjJmbeQcSRIJSRO6XgCzn3QlkOPJolUU9dNGuvSwcfRFLNYm1gNfeR9Fi99wbw zhOy6RKfitqfEEV5Vi6/92L42q2Sgy4Gnm734l9GUigYNkgs91NdBXn5AY2HAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUkZ45VsL4Ui9OV15v6qZ7uETsRIYwHwYDVR0j BBgwFoAUDX/64wDe8Idr+EiQ+26he+hBpNMwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvODExM2RkYTYtN2FkZS00NDVkLThjNmUtNDQ4YTc4ZTQ4 Y2ExLzEvMEQ3RkZBRTMwMERFRjA4NzZCRjg0ODkwRkI2RUExN0JFODQxQTREMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0RYXzY0d0RlOElkci1FaVEtMjZoZS1o QnBOTS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84MTEzZGRhNi03 YWRlLTQ0NWQtOGM2ZS00NDhhNzhlNDhjYTEvMS8wRDdGRkFFMzAwREVGMDg3NkJG ODQ4OTBGQjZFQTE3QkU4NDFBNEQzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbphp8HhpXOsg1Kliaxko nD3fXjGMgvyNxtl7fz/PL3QBjE4gcRb+4l+69Njdn+mTGBtQY9CUZkhRnGQtMR2t OHwHQE3C/OACk4BfoCi10kkGf5l7SxxXZh2tgP+aFRwpFKJIGnPvKlSTZ2ec4iXS QErh20JJp+6KI10vPLiks/dRre2B4zdQ4zYjyBdlKiSeSIC3qZ4Ht9dUgZFlihvm xgm8gioW83s+2dIN+wQhcdKvZB8H45m7AaATyKLZPbutnHpOAT3X5zrBZ4AklsnE dEzEZxSu/RtZEuNy2ziBAb1BfPw/cToD98HACD7Ozf70REMOMHF0MRqyIm+6fdeT 9w== -----END CERTIFICATE-----Generated at Tue Dec 16 19:48:31 2025 by rpki-client