This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft File: 407DAF8DC897D3F1C43D866EA945305303AD73ED.mft (raw, json) Hash identifier: nFl9PdjuQNQWKOguRwksHLYET7uE3MFHjzlGOLneXXk= Subject key identifier: 8D:AB:A1:80:FB:D9:01:73:73:70:08:C5:75:B6:1C:7E:E2:DF:40:9B Authority key identifier: 40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED Certificate issuer: /CN=407daf8dc897d3f1c43d866ea945305303ad73ed Certificate serial: 444CA4BAD075703367045183BA89A6D34D443DF2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft Manifest number: 25 Signing time: Wed 10 Dec 2025 18:51:36 +0000 Manifest this update: Wed 10 Dec 2025 18:46:36 +0000 Manifest next update: Thu 11 Dec 2025 20:27:36 +0000 Files and hashes: 1: 407DAF8DC897D3F1C43D866EA945305303AD73ED.crl (hash: gGKuFrQNdv5dX8J+2DIeC13HlZcOKg9wIYOg+Pp92p4=) 2: 323030313a3637383a6531303a3a2f34382d3438203d3e20323038393135.roa (hash: Q+rBjBtdmpkMnJJ1scyQFgFf7p0XTL49lt2rh8zsejE=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 11 Dec 2025 19:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:4c:a4:ba:d0:75:70:33:67:04:51:83:ba:89:a6:d3:4d:44:3d:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=407daf8dc897d3f1c43d866ea945305303ad73ed Validity Not Before: Dec 10 18:46:36 2025 GMT Not After : Dec 11 20:27:36 2025 GMT Subject: CN=8DABA180FBD90173737008C575B61C7EE2DF409B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:29:e2:fd:6c:9e:79:5d:b2:2b:9e:43:2d:cb: de:82:4f:40:0a:9e:25:60:f5:c2:8e:4e:db:ea:30: 41:68:63:8a:8d:7d:4c:16:fa:be:fc:65:05:57:ad: 91:de:31:11:c8:aa:b4:1f:8c:d9:a2:46:67:0d:5c: ac:65:00:da:58:a2:d0:6d:d6:b6:1a:f6:19:e5:03: f7:a9:48:8e:90:23:91:1b:9b:d5:ed:2d:bf:db:2e: 30:01:31:59:2d:a0:59:5e:71:80:ba:81:10:bd:4a: 52:ea:58:7a:6e:88:18:c8:6a:2a:4b:e1:43:c7:78: 5b:30:26:43:91:08:22:aa:f8:e2:3b:af:26:8f:f7: 78:46:8d:7f:a8:79:b3:d4:12:c7:af:4c:82:e5:14: b6:2e:2c:1f:fd:90:62:20:fd:98:80:ef:0d:cf:eb: 4b:dc:42:29:7c:46:7b:92:34:81:e3:78:ff:41:de: 3f:a5:18:4b:1e:34:03:e6:de:e2:29:11:62:bf:95: 99:3e:0b:63:df:fb:2b:fc:a1:a3:b8:d9:14:f9:63: cc:ec:12:c9:6d:b0:0f:72:38:c8:fa:57:b5:37:3b: b8:c2:0a:1c:8f:73:ee:22:e1:95:ee:dc:54:bb:7f: 25:bd:40:5b:97:f0:39:6c:05:c6:31:d3:be:fa:40: 91:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:AB:A1:80:FB:D9:01:73:73:70:08:C5:75:B6:1C:7E:E2:DF:40:9B X509v3 Authority Key Identifier: keyid:40:7D:AF:8D:C8:97:D3:F1:C4:3D:86:6E:A9:45:30:53:03:AD:73:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QH2vjciX0_HEPYZuqUUwUwOtc-0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/9dccb4b0-e30e-426c-84dc-464fd1899116/0/407DAF8DC897D3F1C43D866EA945305303AD73ED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 95:2c:d5:c6:f9:a0:c6:8b:1a:8f:26:71:ea:d9:46:72:68:0a: c2:12:7a:76:5c:fe:08:a0:30:f2:89:c2:c8:ed:51:2d:89:71: 5b:9e:93:90:e9:3f:3f:9f:ef:18:d9:11:df:e1:c0:95:67:7b: 95:e9:7e:b4:13:2a:5d:69:48:45:41:12:60:0c:97:4b:e7:16: ec:8f:24:1e:f8:4b:22:15:d9:e5:98:ba:ad:39:97:12:42:34: c1:be:4e:bc:47:2e:62:8b:cc:75:71:b7:ce:67:0d:d1:c3:a8: 47:8e:8f:f3:65:ce:29:0a:15:23:43:ca:d6:43:0c:a3:0c:9a: df:b4:cf:d4:01:98:ac:c1:73:cb:39:55:bd:76:b9:0a:0b:b7: 68:88:48:ed:22:1c:0c:74:e8:73:13:1f:15:45:56:f5:ac:ff: 22:45:16:b3:56:c5:28:eb:98:ac:cc:1f:2e:57:c8:fa:5f:6d: 14:d7:d1:dd:4d:27:15:d2:e6:aa:7a:d4:88:5f:fb:ae:71:47: 12:66:2f:28:6b:61:60:f4:81:6a:ba:fa:ce:57:e0:4a:d1:f9: ba:af:93:e3:ce:86:08:80:b0:e7:e7:36:d1:3c:a7:31:cb:23: 54:ae:23:e5:84:30:7f:b4:f8:18:fe:0b:49:eb:34:36:61:8c: 7d:fe:35:f3 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUREykutB1cDNnBFGDuomm001EPfIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDA3ZGFmOGRjODk3ZDNmMWM0M2Q4NjZlYTk0NTMwNTMw M2FkNzNlZDAeFw0yNTEyMTAxODQ2MzZaFw0yNTEyMTEyMDI3MzZaMDMxMTAvBgNV BAMTKDhEQUJBMTgwRkJEOTAxNzM3MzcwMDhDNTc1QjYxQzdFRTJERjQwOUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9KeL9bJ55XbIrnkMty96CT0AK niVg9cKOTtvqMEFoY4qNfUwW+r78ZQVXrZHeMRHIqrQfjNmiRmcNXKxlANpYotBt 1rYa9hnlA/epSI6QI5Ebm9XtLb/bLjABMVktoFlecYC6gRC9SlLqWHpuiBjIaipL 4UPHeFswJkORCCKq+OI7ryaP93hGjX+oebPUEsevTILlFLYuLB/9kGIg/ZiA7w3P 60vcQil8RnuSNIHjeP9B3j+lGEseNAPm3uIpEWK/lZk+C2Pf+yv8oaO42RT5Y8zs EsltsA9yOMj6V7U3O7jCChyPc+4i4ZXu3FS7fyW9QFuX8DlsBcYx0776QJGHAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUjauhgPvZAXNzcAjFdbYcfuLfQJswHwYDVR0j BBgwFoAUQH2vjciX0/HEPYZuqUUwUwOtc+0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvOWRjY2I0YjAtZTMwZS00MjZjLTg0ZGMtNDY0ZmQxODk5 MTE2LzAvNDA3REFGOERDODk3RDNGMUM0M0Q4NjZFQTk0NTMwNTMwM0FENzNFRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FIMnZqY2lYMF9IRVBZWnVxVVV3VXdP dGMtMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS85ZGNjYjRiMC1l MzBlLTQyNmMtODRkYy00NjRmZDE4OTkxMTYvMC80MDdEQUY4REM4OTdEM0YxQzQz RDg2NkVBOTQ1MzA1MzAzQUQ3M0VELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAlSzVxvmgxosajyZx6tlG cmgKwhJ6dlz+CKAw8onCyO1RLYlxW56TkOk/P5/vGNkR3+HAlWd7lel+tBMqXWlI RUESYAyXS+cW7I8kHvhLIhXZ5Zi6rTmXEkI0wb5OvEcuYovMdXG3zmcN0cOoR46P 82XOKQoVI0PK1kMMowya37TP1AGYrMFzyzlVvXa5Cgu3aIhI7SIcDHTocxMfFUVW 9az/IkUWs1bFKOuYrMwfLlfI+l9tFNfR3U0nFdLmqnrUiF/7rnFHEmYvKGthYPSB arr6zlfgStH5uq+T486GCICw5+c20TynMcsjVK4j5YQwf7T4GP4LSes0NmGMff41 8w== -----END CERTIFICATE-----Generated at Wed Dec 10 22:31:29 2025 by rpki-client