This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft File: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft (raw, json) Hash identifier: /HXoctWbOyN50aWeQPXmv77I3dOqr6uxZOV1hj8Tsvo= Subject key identifier: 5B:48:0D:DC:79:53:6E:75:9B:80:15:F5:28:72:80:A9:09:49:83:E0 Authority key identifier: 5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3 Certificate issuer: /CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3 Certificate serial: 3BEBB1B7A670508CF4FEF0EA75E37C1E18E6847B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft Manifest number: 027E Signing time: Sun 28 Dec 2025 11:42:02 +0000 Manifest this update: Sun 28 Dec 2025 11:37:02 +0000 Manifest next update: Mon 29 Dec 2025 13:03:02 +0000 Files and hashes: 1: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl (hash: fSWe3wF0MCQcaQNptfOOnoTarMX8p5pXxCAVBzpRuQw=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 13:03:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:eb:b1:b7:a6:70:50:8c:f4:fe:f0:ea:75:e3:7c:1e:18:e6:84:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3 Validity Not Before: Dec 28 11:37:02 2025 GMT Not After : Dec 29 13:03:02 2025 GMT Subject: CN=5B480DDC79536E759B8015F5287280A9094983E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:cb:b3:00:7f:5a:d7:36:bf:9c:61:41:80:7c: 23:27:51:3a:87:e2:94:e1:a5:3e:66:ac:3e:32:dd: 65:be:0a:12:74:df:26:a8:97:5f:20:72:8a:c1:90: 1e:19:c9:50:73:02:0a:b3:57:6f:d7:7f:81:dd:21: 2f:a0:86:d5:2b:54:fd:9b:cd:27:6a:db:17:2e:b6: d1:42:59:6a:9d:e9:98:f8:5a:f6:ea:fd:a4:d2:84: e0:7d:c0:f5:f7:54:02:b1:a7:7b:32:4a:2f:c7:0b: 42:32:61:08:4a:01:ca:cd:10:d7:94:50:47:fe:66: 4f:90:8f:be:26:f6:f1:6a:0b:43:95:0a:c7:5d:07: 4d:3e:49:58:f3:45:2a:cd:a6:d6:46:70:13:a6:61: 61:9f:c6:eb:cb:ab:b1:6e:1c:1c:18:2f:88:2e:a6: 7f:f5:9b:33:41:d7:8b:39:85:8f:38:62:ec:e5:4a: 2a:93:b3:8f:be:8e:ad:f1:19:ec:b7:46:53:ee:ee: 16:83:ab:b0:0e:e8:08:f0:62:2d:3a:a0:62:37:d7: f3:18:64:59:02:bf:a2:41:49:db:5f:16:4a:e1:84: da:14:97:85:61:aa:03:81:f5:ba:24:00:5c:2f:5e: 1c:d3:aa:0d:ab:9b:f4:7d:89:fd:82:2d:be:21:f1: e4:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:48:0D:DC:79:53:6E:75:9B:80:15:F5:28:72:80:A9:09:49:83:E0 X509v3 Authority Key Identifier: keyid:5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:fc:e4:ae:22:d0:dd:1f:46:8f:82:5b:18:8b:d3:00:19:cc: 06:3d:dc:4f:ae:9f:b5:15:fc:1e:0f:a9:8f:ca:d3:0d:75:28: 05:6b:9e:1a:a4:8b:55:c9:5a:fa:00:af:c6:ea:99:06:81:ac: 8e:18:94:ff:b6:92:b6:35:fb:e5:bd:8d:6d:21:5e:5b:25:64: 3b:ca:d1:b3:f9:73:fc:59:e0:f5:3d:04:5d:a2:4c:35:bb:66: 4f:44:a1:e9:a9:f8:6b:b0:28:6c:75:cb:8d:a4:fd:60:9e:d7: d6:c8:b9:37:8a:60:fa:e2:65:88:2c:fa:60:5f:fe:68:11:bd: 83:35:9e:02:ac:a7:a7:7a:72:39:b2:a9:0a:46:c0:f9:5b:be: f8:f4:68:32:1e:9b:58:a4:39:13:df:e5:98:8c:04:1e:48:43: 4e:3e:09:ff:0a:35:ca:fc:e3:76:24:4f:f0:8f:a0:25:8a:94: 46:a4:5f:1b:f7:0e:78:f6:01:6f:83:75:0c:3c:7a:c0:02:e0: b1:dc:ba:d4:87:a0:81:1e:62:de:5c:06:d0:20:1f:06:a4:f0: 86:b4:57:da:06:4d:ad:2a:0f:92:68:62:75:76:0b:c6:60:67: a0:5a:6f:1e:63:04:c5:1c:af:01:02:96:48:5d:e1:8a:2e:d8: f8:2b:8e:dd -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUO+uxt6ZwUIz0/vDqdeN8HhjmhHswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRiZjgxMWU1MDRhNGZhMmMyOWQzYjRmMTFkZmI3MTM2 NDI4NzNkMzAeFw0yNTEyMjgxMTM3MDJaFw0yNTEyMjkxMzAzMDJaMDMxMTAvBgNV BAMTKDVCNDgwRERDNzk1MzZFNzU5QjgwMTVGNTI4NzI4MEE5MDk0OTgzRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzy7MAf1rXNr+cYUGAfCMnUTqH 4pThpT5mrD4y3WW+ChJ03yaol18gcorBkB4ZyVBzAgqzV2/Xf4HdIS+ghtUrVP2b zSdq2xcuttFCWWqd6Zj4Wvbq/aTShOB9wPX3VAKxp3sySi/HC0IyYQhKAcrNENeU UEf+Zk+Qj74m9vFqC0OVCsddB00+SVjzRSrNptZGcBOmYWGfxuvLq7FuHBwYL4gu pn/1mzNB14s5hY84YuzlSiqTs4++jq3xGey3RlPu7haDq7AO6AjwYi06oGI31/MY ZFkCv6JBSdtfFkrhhNoUl4VhqgOB9bokAFwvXhzTqg2rm/R9if2CLb4h8eSFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUW0gN3HlTbnWbgBX1KHKAqQlJg+AwHwYDVR0j BBgwFoAUXb+BHlBKT6LCnTtPEd+3E2Qoc9MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzAvNURCRjgxMUU1MDRBNEZBMkMyOUQzQjRGMTFERkI3MTM2NDI4NzNEMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hiLUJIbEJLVDZMQ25UdFBFZC0zRTJR b2M5TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82NWVhZTc0NS04 YWM5LTRlNzEtYmM5NC1mY2IyNjE3MDNmOTYvMC81REJGODExRTUwNEE0RkEyQzI5 RDNCNEYxMURGQjcxMzY0Mjg3M0QzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEADfzkriLQ3R9Gj4JbGIvT ABnMBj3cT66ftRX8Hg+pj8rTDXUoBWueGqSLVcla+gCvxuqZBoGsjhiU/7aStjX7 5b2NbSFeWyVkO8rRs/lz/Fng9T0EXaJMNbtmT0Sh6an4a7AobHXLjaT9YJ7X1si5 N4pg+uJliCz6YF/+aBG9gzWeAqynp3pyObKpCkbA+Vu++PRoMh6bWKQ5E9/lmIwE HkhDTj4J/wo1yvzjdiRP8I+gJYqURqRfG/cOePYBb4N1DDx6wALgsdy61IeggR5i 3lwG0CAfBqTwhrRX2gZNrSoPkmhidXYLxmBnoFpvHmMExRyvAQKWSF3hii7Y+CuO 3Q== -----END CERTIFICATE-----Generated at Mon Dec 29 05:22:34 2025 by rpki-client