This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft File: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft (raw, json) Hash identifier: GNKIcKhOvsrLz6c+j/Un3mqx8ysOd4dSBVW+ds0mGAI= Subject key identifier: 1D:8E:DF:83:F2:D8:00:DE:E1:21:97:F1:3E:5C:CC:B5:4A:1F:78:5D Authority key identifier: F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 Certificate issuer: /CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Certificate serial: 5842BDC470A4CF40EF165E447B9C86ADC4501DAA Authority info access: rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft Manifest number: 01CF Signing time: Sat 20 Dec 2025 18:36:22 +0000 Manifest this update: Sat 20 Dec 2025 18:31:22 +0000 Manifest next update: Sun 21 Dec 2025 18:54:22 +0000 Files and hashes: 1: 326131343a373538303a663330313a3a2f34382d3438203d3e20323135343730.roa (hash: AE4p/Aixbf8sW/I3bLOtRbnycH5RSiNSfyRxjv0S1Bw=) 2: 326131343a373538303a663334303a3a2f34342d3438203d3e20323133343238.roa (hash: Z7InVHvKI4/fqGkdwdL0zl1WS4Iyc09xlEsVxaD8p5A=) 3: 326131343a373538303a663335303a3a2f34342d3438203d3e20323135343730.roa (hash: QilIoQFDy86/kZThJ8L3yMVtIo9IuLOdGRNLTOrhh2s=) 4: 326131343a373538303a663333303a3a2f34342d3438203d3e20323134303330.roa (hash: xT802+pU8TCiwwtqUkMgmyrnKplgnOIvmjCKunR0EEU=) 5: 326131343a373538303a383030303a3a2f33362d3438203d3e20323135343730.roa (hash: eW78302x42s0yWxTWFOWa+EI8gsEah6kU2PGz4oxB3o=) 6: F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl (hash: 8QyyjbtfwmQF6a9XHEzIJzwKnNH1o8MZ3l73rK2N/0w=) 7: 326131343a373538303a663330323a3a2f34382d3438203d3e20323135343730.roa (hash: cnH25DZSJN2OBLW6Zt+bGPFETNQaOmZLaMlgHZ7R4qw=) 8: 326131343a373538303a663330303a3a2f34302d3430203d3e20323135343730.roa (hash: NYjufeU5nji5tNLR9669xX3/zAC6IxnZWFE8KHjLm6Y=) 9: 326131343a373538303a663332303a3a2f34342d3434203d3e20323135343730.roa (hash: XgYHMfBb1tBckmqvYy7acYD3hSj36S+vN34vUn5oaD4=) 10: 326131343a373538303a343030303a3a2f33362d3336203d3e20323133343238.roa (hash: f38GGJwA8aLs49rknYyp3/ozCmX5eTGnavOZGUBAqUw=) 11: 326131343a373538303a663331303a3a2f34342d3438203d3e20323134303834.roa (hash: CM6yYKZbtILEkjFEjxVgY2XszlZITvyYfxEqji4AD0c=) 12: 326131343a373538303a363030303a3a2f33362d3438203d3e20323039353534.roa (hash: 7bwiHUB+0vEKFxOfRTRz/zFRAxgK1WxBsECd2SJxocI=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.crl rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/A83D48652F3B2DF74F6BF9BAA8A9C174CCFD3772.mft rsync://rpki.ripe.net/repository/DEFAULT/qD1IZS87LfdPa_m6qKnBdMz9N3I.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 15:46:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:42:bd:c4:70:a4:cf:40:ef:16:5e:44:7b:9c:86:ad:c4:50:1d:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4 Validity Not Before: Dec 20 18:31:22 2025 GMT Not After : Dec 21 18:54:22 2025 GMT Subject: CN=1D8EDF83F2D800DEE12197F13E5CCCB54A1F785D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7d:38:c6:62:53:83:93:a6:e5:0f:3f:4d:a0: 63:a6:79:ce:a3:dc:cf:94:4f:33:1e:dc:0d:92:7e: 24:2c:9d:39:5d:fd:0a:19:af:ae:01:90:21:0f:fb: 5d:ed:59:7c:2e:8b:39:a3:51:ec:e4:b1:2c:67:32: f0:1c:26:5f:7f:b7:2a:af:ed:65:3b:8e:f9:7b:c3: 44:0c:18:4c:c8:d6:e8:de:99:30:20:36:84:5f:60: 37:45:0f:96:ac:ef:14:f0:ea:d3:a1:f7:f0:0b:1c: c5:fc:3d:0d:98:ef:ac:67:37:04:05:82:a6:d6:ff: 56:36:9b:a8:5c:ee:6a:3b:39:f2:a8:d9:0c:0d:11: b0:c0:e3:cc:53:92:e5:b2:4c:19:2a:f9:7f:aa:2e: 3d:db:ef:12:e9:85:e7:44:6e:5c:98:0c:a9:25:b4: a2:cf:5c:52:4b:f6:cb:21:26:c2:55:8b:4f:50:8f: c7:0c:51:8f:a6:ec:ef:37:e5:01:43:57:ca:ac:5f: 69:24:3f:fe:07:3e:5a:11:a1:8e:55:55:50:5b:07: 3d:dc:03:89:50:1a:c3:39:85:b9:53:c3:42:e8:ee: 28:8f:91:4e:eb:ea:8f:e4:33:2e:50:3f:10:08:7c: 71:5e:03:ec:c3:3f:fc:90:9e:6d:91:e8:d5:65:fc: 62:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8E:DF:83:F2:D8:00:DE:E1:21:97:F1:3E:5C:CC:B5:4A:1F:78:5D X509v3 Authority Key Identifier: keyid:F4:00:72:FF:DC:0F:1B:15:A6:9E:5B:C7:9A:2F:58:8C:F9:39:F4:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.crl Authority Information Access: CA Issuers - URI:rsync://rsync.paas.rpki.ripe.net/repository/89270f6c-a3fe-4299-b079-309ed97f3824/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/19aa9da7-f1e4-4d98-bf95-9fdfcf448f77/0/F40072FFDC0F1B15A69E5BC79A2F588CF939F4F4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:de:f9:63:99:eb:a9:b7:85:b8:9d:c1:8d:ac:34:49:69:11: ec:da:0f:93:57:fc:ed:7d:08:56:3b:87:20:69:f7:ba:7b:d5: 9d:94:93:87:1b:52:5e:61:e4:a4:84:7d:52:d6:53:7b:20:75: cf:55:b7:e5:b8:b5:7f:8a:fd:2c:99:25:1a:fb:7b:0d:d1:2d: 72:e1:ac:8e:69:92:f4:5f:14:1a:3a:08:a6:dd:0a:90:0d:d4: 56:3a:6b:26:b8:1a:bf:0c:92:bc:d2:9c:ab:c8:4d:0b:75:07: 20:b4:96:ae:7f:78:37:22:a0:e1:df:c7:74:27:a3:9e:0f:b1: a2:5d:cc:22:89:58:3f:65:24:88:9e:af:29:b5:63:c5:31:09: 45:87:dd:ad:ba:df:75:1f:1c:71:65:0b:1b:51:34:9c:91:6d: 96:d4:58:ee:59:29:1c:6f:f7:e3:32:25:ab:d3:90:48:62:3b: 9d:9c:e7:f3:cb:3c:62:cd:e5:f9:82:ad:51:b9:4d:7c:a7:22: 7a:bd:28:3d:bc:96:aa:cd:74:bf:89:de:f8:ec:15:26:06:9c: 62:42:c4:3f:6b:d1:0f:e4:ef:e9:97:71:f8:4e:16:df:dd:8c: 78:46:f7:19:7e:d0:0f:eb:d4:89:87:9f:4b:a5:23:df:6f:fe: 58:2c:7a:69 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgIUWEK9xHCkz0DvFl5Ee5yGrcRQHaowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENG OTM5RjRGNDAeFw0yNTEyMjAxODMxMjJaFw0yNTEyMjExODU0MjJaMDMxMTAvBgNV BAMTKDFEOEVERjgzRjJEODAwREVFMTIxOTdGMTNFNUNDQ0I1NEExRjc4NUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsfTjGYlODk6blDz9NoGOmec6j 3M+UTzMe3A2SfiQsnTld/QoZr64BkCEP+13tWXwuizmjUezksSxnMvAcJl9/tyqv 7WU7jvl7w0QMGEzI1ujemTAgNoRfYDdFD5as7xTw6tOh9/ALHMX8PQ2Y76xnNwQF gqbW/1Y2m6hc7mo7OfKo2QwNEbDA48xTkuWyTBkq+X+qLj3b7xLphedEblyYDKkl tKLPXFJL9sshJsJVi09Qj8cMUY+m7O835QFDV8qsX2kkP/4HPloRoY5VVVBbBz3c A4lQGsM5hblTw0Lo7iiPkU7r6o/kMy5QPxAIfHFeA+zDP/yQnm2R6NVl/GLfAgMB AAGjggKCMIICfjAdBgNVHQ4EFgQUHY7fg/LYAN7hIZfxPlzMtUofeF0wHwYDVR0j BBgwFoAU9ABy/9wPGxWmnlvHmi9YjPk59PQwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvMTlhYTlkYTctZjFlNC00ZDk4LWJmOTUtOWZkZmNmNDQ4 Zjc3LzAvRjQwMDcyRkZEQzBGMUIxNUE2OUU1QkM3OUEyRjU4OENGOTM5RjRGNC5j cmwwgZ4GCCsGAQUFBwEBBIGRMIGOMIGLBggrBgEFBQcwAoZ/cnN5bmM6Ly9yc3lu Yy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS84OTI3MGY2Yy1hM2ZlLTQy OTktYjA3OS0zMDllZDk3ZjM4MjQvMC9GNDAwNzJGRkRDMEYxQjE1QTY5RTVCQzc5 QTJGNTg4Q0Y5MzlGNEY0LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUF BzALhn9yc3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5 LzE5YWE5ZGE3LWYxZTQtNGQ5OC1iZjk1LTlmZGZjZjQ0OGY3Ny8wL0Y0MDA3MkZG REMwRjFCMTVBNjlFNUJDNzlBMkY1ODhDRjkzOUY0RjQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB33vlj meupt4W4ncGNrDRJaRHs2g+TV/ztfQhWO4cgafe6e9WdlJOHG1JeYeSkhH1S1lN7 IHXPVbfluLV/iv0smSUa+3sN0S1y4ayOaZL0XxQaOgim3QqQDdRWOmsmuBq/DJK8 0pyryE0LdQcgtJauf3g3IqDh38d0J6OeD7GiXcwiiVg/ZSSInq8ptWPFMQlFh92t ut91HxxxZQsbUTSckW2W1FjuWSkcb/fjMiWr05BIYjudnOfzyzxizeX5gq1RuU18 pyJ6vSg9vJaqzXS/id747BUmBpxiQsQ/a9EP5O/pl3H4Thbf3Yx4RvcZftAP69SJ h59LpSPfb/5YLHpp -----END CERTIFICATE-----Generated at Sat Dec 20 22:35:18 2025 by rpki-client