This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
File:                     5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft (raw, json)
Hash identifier:          cQKJQSb+uXaUBc8F4VpS8gTUv9nuMSmyVr8N9ryXzbU=
Subject key identifier:   39:B3:82:C4:C8:E6:89:58:BA:22:DA:0F:0F:E2:04:16:E8:AC:DF:04
Authority key identifier: 5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74
Certificate issuer:       /CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
Certificate serial:       70314FF75AF4D8802E2B47BAE3639A7E44BFC59E
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft
Manifest number:          04D8
Signing time:             Fri 19 Dec 2025 06:20:02 +0000
Manifest this update:     Fri 19 Dec 2025 06:15:02 +0000
Manifest next update:     Sat 20 Dec 2025 06:59:02 +0000
Files and hashes:         1: 5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl (hash: fxWSlgYxRJJFuE38tElkDdnbEAVhqPs5Ordc894Vli0=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            70:31:4f:f7:5a:f4:d8:80:2e:2b:47:ba:e3:63:9a:7e:44:bf:c5:9e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=5aff13d5a71cfb0da38d8d3d81e13eaf40416a74
        Validity
            Not Before: Dec 19 06:15:02 2025 GMT
            Not After : Dec 20 06:59:02 2025 GMT
        Subject: CN=39B382C4C8E68958BA22DA0F0FE20416E8ACDF04
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c0:21:3c:ed:b6:fa:80:d4:7b:32:93:fd:31:bb:
                    d5:3b:12:39:eb:39:ca:b7:1c:60:79:fc:80:19:8a:
                    7e:44:13:4f:fa:fc:02:f6:6a:f5:80:83:77:8e:4a:
                    90:30:2c:24:01:79:3c:9f:d6:65:6a:6c:68:56:ab:
                    67:7b:3a:3d:7a:6e:11:96:fb:ac:e5:d4:1e:10:45:
                    ea:24:c6:3f:ab:fc:45:7b:fd:b1:ff:c1:73:d1:10:
                    34:8c:a7:b1:0b:98:ef:bf:5e:35:de:76:fd:f1:b2:
                    80:d3:ec:ec:27:e5:2e:ff:fd:ad:a3:73:bd:49:26:
                    14:de:66:b5:77:e1:54:1e:75:9c:35:27:59:60:46:
                    2c:d0:ab:4b:2d:e3:e8:90:40:b6:bc:7f:da:f0:f1:
                    29:b2:29:7c:cf:dd:3e:00:fd:4c:70:11:7b:43:55:
                    4a:4f:1a:ec:38:60:fc:75:48:dd:0f:61:73:61:bb:
                    ed:a0:80:2f:a9:a6:76:2b:92:65:46:75:aa:00:70:
                    4c:8e:f6:69:6e:c0:9e:6f:f8:f9:12:41:7a:8a:ae:
                    87:a9:88:5c:20:3e:a6:ad:01:cc:b9:64:37:a7:b3:
                    f8:c4:97:5b:da:a0:99:db:26:d1:c0:f5:94:62:53:
                    93:65:aa:24:79:ae:ae:ad:83:0d:87:56:35:82:fc:
                    6c:ef
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                39:B3:82:C4:C8:E6:89:58:BA:22:DA:0F:0F:E2:04:16:E8:AC:DF:04
            X509v3 Authority Key Identifier:
                keyid:5A:FF:13:D5:A7:1C:FB:0D:A3:8D:8D:3D:81:E1:3E:AF:40:41:6A:74

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Wv8T1acc-w2jjY09geE-r0BBanQ.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/6073c95a-aac7-43ec-818b-1f42f62275f5/0/5AFF13D5A71CFB0DA38D8D3D81E13EAF40416A74.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         23:8d:a8:82:c0:2d:67:c0:41:64:74:12:e1:23:e4:71:24:d8:
         eb:37:18:15:4f:57:f9:25:e5:5d:dc:12:af:3c:17:23:5c:ac:
         33:26:5c:9f:95:67:b7:32:38:2f:a5:f2:aa:25:da:50:8b:c0:
         19:13:94:e4:06:fc:ea:ca:6a:59:95:d5:af:3b:1d:b9:2d:69:
         93:42:9c:c7:b1:df:8a:58:ee:37:b2:14:d8:c7:5f:bc:c6:2a:
         61:8d:13:20:82:c0:f5:27:0b:97:98:c6:76:8a:fa:a1:c6:a0:
         df:60:9a:a9:fd:07:af:39:1e:35:5d:6b:01:dc:4b:1a:06:66:
         76:92:52:5b:f2:ce:d9:31:63:af:76:26:b9:87:5f:f5:25:d8:
         d2:d7:fc:b5:20:fe:8a:14:46:95:f3:61:94:26:36:22:82:dc:
         06:bf:ae:15:9f:8e:56:f2:ad:57:65:59:85:d5:99:b4:9e:f8:
         10:7a:a7:3f:e4:50:2f:87:f7:f5:a7:38:d8:f3:04:8a:bc:50:
         0a:9a:ff:5f:ab:a8:f1:6e:1a:27:99:5b:74:a0:6c:15:33:49:
         84:53:d9:98:27:1e:28:4d:00:9c:c3:6b:73:8b:7c:9f:51:1f:
         07:d9:3e:1d:95:bd:51:64:61:9b:43:1f:a2:86:75:b7:75:a4:
         05:3d:42:be
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----