This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json) Hash identifier: WDp4QFKPhP38qrkOCHBUgQu9PAshXEVLKRf8CJpPnjo= Subject key identifier: 7C:AF:3C:4F:44:CA:C7:55:38:68:5F:C2:81:79:BB:89:D3:AE:27:A3 Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee Certificate serial: 32CB70B4C5C40B16C015380A690D9E713712C9C0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft Manifest number: 051E Signing time: Fri 26 Dec 2025 05:44:13 +0000 Manifest this update: Fri 26 Dec 2025 05:39:13 +0000 Manifest next update: Sat 27 Dec 2025 07:53:13 +0000 Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: hi/p4t1L0lcVdVBDCV0yx9mc8yRIVj6FoiMvxtwNBnY=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 27 Dec 2025 06:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:cb:70:b4:c5:c4:0b:16:c0:15:38:0a:69:0d:9e:71:37:12:c9:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee Validity Not Before: Dec 26 05:39:13 2025 GMT Not After : Dec 27 07:53:13 2025 GMT Subject: CN=7CAF3C4F44CAC75538685FC28179BB89D3AE27A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e4:a0:e2:be:76:41:15:9f:96:9b:2c:79:b7: 5f:e6:16:5d:b4:47:94:09:90:9f:5a:ec:cd:96:92: 0a:1e:b5:99:dd:8e:50:60:d3:32:3b:74:67:6c:bc: 96:08:e4:0b:db:bb:71:d3:b3:99:22:8d:f1:20:10: 60:61:c9:fc:5f:36:da:84:a1:8e:f6:71:80:54:cd: d7:96:b3:cf:19:f3:44:88:6e:10:9d:ac:7d:79:4e: 0f:af:c6:45:af:01:5f:77:33:f4:70:64:7e:4e:39: 44:0b:31:ab:3d:76:af:56:df:f9:bd:7d:32:2e:8a: 8a:66:ff:cf:7a:6f:20:6a:67:69:23:ba:08:e3:35: dd:f3:96:61:df:c4:fc:35:21:f8:73:9e:ba:67:d3: ce:26:e1:10:a7:3f:ab:6a:47:15:a7:27:2f:26:0a: 14:9b:cc:a6:77:9c:3a:a7:9a:b6:23:2b:ae:6e:8b: 8d:5c:54:e7:55:8f:d6:17:f5:a1:19:2f:e5:14:dd: 59:e6:1b:fd:4c:55:16:c8:c8:45:7c:15:44:3c:a7: 70:ce:82:10:e4:a7:93:74:a9:95:fb:7d:28:9e:c7: 1e:c3:e8:dd:b7:11:46:07:a2:49:19:b9:da:86:7f: 12:fb:32:7d:f2:cd:26:c7:a3:ce:34:0e:c2:54:09: c2:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:AF:3C:4F:44:CA:C7:55:38:68:5F:C2:81:79:BB:89:D3:AE:27:A3 X509v3 Authority Key Identifier: keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:cb:df:a3:3a:b3:0e:f3:43:d2:b8:8d:f8:3c:b7:5d:11:04: 1b:80:18:d3:b8:f9:8a:09:0c:c4:e4:10:3b:7f:ff:ed:13:8d: 1f:c4:85:e3:2b:48:a6:33:63:7e:b5:ec:72:40:b9:4b:f9:aa: 61:a0:57:66:28:5b:c1:00:6a:57:80:c7:b1:ae:3e:25:7f:9b: 4a:bb:fa:6e:24:04:60:8e:44:ce:84:f1:40:4c:5e:9a:40:c2: 5c:dc:4a:1f:7c:45:df:89:2e:a0:5f:73:9e:19:cd:f2:f0:cf: b2:f9:e2:ef:18:14:43:8e:06:c1:90:17:df:05:26:23:42:31: 26:29:74:ad:f1:58:c5:33:28:e0:78:00:7f:56:c3:b3:46:77: ba:19:cb:4e:09:66:21:0f:18:c2:7c:0b:85:9e:35:22:20:63: 0e:42:2e:56:4c:38:91:0f:58:81:f8:58:27:57:eb:05:c5:43: 43:0d:c9:aa:bf:29:5d:ee:94:37:48:4c:70:23:32:54:14:d8: 28:99:33:be:1c:c7:27:f6:ef:53:5e:0c:21:90:31:37:86:56: f0:81:28:42:41:df:ee:da:be:4a:28:70:b2:1d:96:12:64:d7: a9:90:f7:91:38:6b:73:fc:ca:2b:95:8e:0c:94:45:db:d1:32: 36:8b:dc:96 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUMstwtMXECxbAFTgKaQ2ecTcSycAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl ZDM2MzNlZTAeFw0yNTEyMjYwNTM5MTNaFw0yNTEyMjcwNzUzMTNaMDMxMTAvBgNV BAMTKDdDQUYzQzRGNDRDQUM3NTUzODY4NUZDMjgxNzlCQjg5RDNBRTI3QTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC85KDivnZBFZ+Wmyx5t1/mFl20 R5QJkJ9a7M2WkgoetZndjlBg0zI7dGdsvJYI5Avbu3HTs5kijfEgEGBhyfxfNtqE oY72cYBUzdeWs88Z80SIbhCdrH15Tg+vxkWvAV93M/RwZH5OOUQLMas9dq9W3/m9 fTIuiopm/896byBqZ2kjugjjNd3zlmHfxPw1Ifhznrpn084m4RCnP6tqRxWnJy8m ChSbzKZ3nDqnmrYjK65ui41cVOdVj9YX9aEZL+UU3VnmG/1MVRbIyEV8FUQ8p3DO ghDkp5N0qZX7fSiexx7D6N23EUYHokkZudqGfxL7Mn3yzSbHo840DsJUCcJ9AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUfK88T0TKx1U4aF/CgXm7idOuJ6MwHwYDVR0j BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0 QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAK8vfozqzDvND0riN+Dy3 XREEG4AY07j5igkMxOQQO3//7RONH8SF4ytIpjNjfrXsckC5S/mqYaBXZihbwQBq V4DHsa4+JX+bSrv6biQEYI5EzoTxQExemkDCXNxKH3xF34kuoF9znhnN8vDPsvni 7xgUQ44GwZAX3wUmI0IxJil0rfFYxTMo4HgAf1bDs0Z3uhnLTglmIQ8YwnwLhZ41 IiBjDkIuVkw4kQ9YgfhYJ1frBcVDQw3Jqr8pXe6UN0hMcCMyVBTYKJkzvhzHJ/bv U14MIZAxN4ZW8IEoQkHf7tq+Sihwsh2WEmTXqZD3kThrc/zKK5WODJRF29EyNovc lg== -----END CERTIFICATE-----Generated at Fri Dec 26 15:45:05 2025 by rpki-client