This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft File: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft (raw, json) Hash identifier: ze2+xGjwfuFyGDoK3aHXbr1zS5hLiu2LNK2AM62r/dU= Subject key identifier: 9B:F7:28:9C:53:1E:8C:44:BF:0D:D2:CA:CA:D3:48:13:3D:CE:50:76 Authority key identifier: 5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3 Certificate issuer: /CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3 Certificate serial: 584813B1F91CA38C33887CD107DFF108083AE97C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft Manifest number: 0282 Signing time: Wed 31 Dec 2025 11:42:03 +0000 Manifest this update: Wed 31 Dec 2025 11:37:03 +0000 Manifest next update: Thu 01 Jan 2026 15:19:03 +0000 Files and hashes: 1: 5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl (hash: XXYbdOtZoSSDWWQfMuPaqCvJr1hWq2BKK2p09tI8Nh0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 01 Jan 2026 15:19:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:48:13:b1:f9:1c:a3:8c:33:88:7c:d1:07:df:f1:08:08:3a:e9:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5dbf811e504a4fa2c29d3b4f11dfb713642873d3 Validity Not Before: Dec 31 11:37:03 2025 GMT Not After : Jan 1 15:19:03 2026 GMT Subject: CN=9BF7289C531E8C44BF0DD2CACAD348133DCE5076 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:4e:ff:e1:db:f0:cb:d0:0f:14:23:a9:c8:9f: 77:ce:f7:b8:28:b9:d5:e0:d5:02:ea:c4:af:44:04: f1:e2:95:1b:b5:35:96:13:96:87:96:b4:3c:1d:8e: e5:86:85:05:61:7c:e5:67:ae:f1:ec:e6:8f:a4:b8: 2a:8c:0b:02:52:3a:20:f4:26:fe:da:b2:a0:4d:96: 4a:21:92:38:c4:1e:65:dc:7a:98:2b:a8:ff:a2:17: fb:a6:c1:36:23:9c:a0:7e:ee:ad:b9:5a:dc:21:a2: 3f:30:c8:d4:f2:e7:d8:b2:db:77:bc:4c:60:1f:80: b2:73:8c:8b:a2:1f:d0:fb:63:28:7d:8a:59:61:b2: e1:97:32:35:35:4a:eb:14:34:2b:34:e9:f6:5f:1d: c3:11:c0:d6:be:4c:04:da:f8:35:cd:c9:53:67:2b: 8d:3e:3f:99:5a:43:be:55:9f:6f:4d:89:5d:dc:04: ab:0e:cd:2d:06:3e:07:c8:e3:83:56:49:0c:ff:d0: 34:f2:9e:e0:6c:c3:88:29:72:b3:6a:c8:e5:35:2e: 94:08:f5:a1:ee:44:bf:aa:95:f8:88:0a:cd:f5:2a: 67:87:ee:96:ca:9a:5e:ae:e2:95:02:96:be:15:e4: d7:1a:89:48:3a:27:65:55:92:f3:bf:8c:db:ef:8b: 59:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:F7:28:9C:53:1E:8C:44:BF:0D:D2:CA:CA:D3:48:13:3D:CE:50:76 X509v3 Authority Key Identifier: keyid:5D:BF:81:1E:50:4A:4F:A2:C2:9D:3B:4F:11:DF:B7:13:64:28:73:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xb-BHlBKT6LCnTtPEd-3E2Qoc9M.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/65eae745-8ac9-4e71-bc94-fcb261703f96/0/5DBF811E504A4FA2C29D3B4F11DFB713642873D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:32:b2:03:6e:64:45:0e:2a:c1:7c:e6:28:85:09:e2:72:16: c0:b9:f7:a7:a7:71:76:69:be:8d:28:37:cb:03:a1:b2:10:a6: e6:c3:0c:78:f6:d7:ea:9c:32:f3:67:28:2e:3e:3b:0f:8c:4e: 4c:a5:d9:0a:72:d9:89:12:0f:f3:d3:0b:a8:84:a6:dd:d2:a5: 6c:11:87:54:88:89:db:f2:b3:7b:bf:fb:a6:76:ae:9a:2c:a3: a1:8b:f5:4b:1e:62:9b:83:3b:9b:31:7b:b5:cd:f9:8c:3e:3d: 7d:dd:1f:01:b5:7c:e6:81:f5:92:33:f1:49:c8:56:09:0f:98: 0a:79:2d:6f:e7:5d:9a:49:2a:fa:3b:24:eb:d8:5a:24:b5:13: 15:91:7a:c5:be:12:12:0a:b4:3f:9a:5c:e1:4b:36:d9:92:2e: 3a:3a:ff:93:9d:c2:3f:0c:ed:46:c9:f7:b3:d2:92:6f:f1:67: 84:cc:d6:fa:cb:fd:d4:e7:ca:49:b7:94:78:7e:48:9c:2b:12: 63:10:9c:d2:01:96:94:6c:bd:83:7b:aa:2a:ab:ea:44:5a:50: 02:d5:b8:0a:dd:c0:d6:ae:8c:4d:c0:ae:2c:3a:c1:06:7e:db: 21:04:a3:f3:a1:9e:31:bb:12:13:e9:6a:37:39:35:71:f1:e5: 78:7e:fb:bd -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUWEgTsfkco4wziHzRB9/xCAg66XwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRiZjgxMWU1MDRhNGZhMmMyOWQzYjRmMTFkZmI3MTM2 NDI4NzNkMzAeFw0yNTEyMzExMTM3MDNaFw0yNjAxMDExNTE5MDNaMDMxMTAvBgNV BAMTKDlCRjcyODlDNTMxRThDNDRCRjBERDJDQUNBRDM0ODEzM0RDRTUwNzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdTv/h2/DL0A8UI6nIn3fO97go udXg1QLqxK9EBPHilRu1NZYTloeWtDwdjuWGhQVhfOVnrvHs5o+kuCqMCwJSOiD0 Jv7asqBNlkohkjjEHmXcepgrqP+iF/umwTYjnKB+7q25Wtwhoj8wyNTy59iy23e8 TGAfgLJzjIuiH9D7Yyh9illhsuGXMjU1SusUNCs06fZfHcMRwNa+TATa+DXNyVNn K40+P5laQ75Vn29NiV3cBKsOzS0GPgfI44NWSQz/0DTynuBsw4gpcrNqyOU1LpQI 9aHuRL+qlfiICs31KmeH7pbKml6u4pUClr4V5NcaiUg6J2VVkvO/jNvvi1mtAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUm/conFMejES/DdLKytNIEz3OUHYwHwYDVR0j BBgwFoAUXb+BHlBKT6LCnTtPEd+3E2Qoc9MwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvNjVlYWU3NDUtOGFjOS00ZTcxLWJjOTQtZmNiMjYxNzAz Zjk2LzAvNURCRjgxMUU1MDRBNEZBMkMyOUQzQjRGMTFERkI3MTM2NDI4NzNEMy5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hiLUJIbEJLVDZMQ25UdFBFZC0zRTJR b2M5TS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS82NWVhZTc0NS04 YWM5LTRlNzEtYmM5NC1mY2IyNjE3MDNmOTYvMC81REJGODExRTUwNEE0RkEyQzI5 RDNCNEYxMURGQjcxMzY0Mjg3M0QzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKDKyA25kRQ4qwXzmKIUJ 4nIWwLn3p6dxdmm+jSg3ywOhshCm5sMMePbX6pwy82coLj47D4xOTKXZCnLZiRIP 89MLqISm3dKlbBGHVIiJ2/Kze7/7pnaumiyjoYv1Sx5im4M7mzF7tc35jD49fd0f AbV85oH1kjPxSchWCQ+YCnktb+ddmkkq+jsk69haJLUTFZF6xb4SEgq0P5pc4Us2 2ZIuOjr/k53CPwztRsn3s9KSb/FnhMzW+sv91OfKSbeUeH5InCsSYxCc0gGWlGy9 g3uqKqvqRFpQAtW4Ct3A1q6MTcCuLDrBBn7bIQSj86GeMbsSE+lqNzk1cfHleH77 vQ== -----END CERTIFICATE-----Generated at Thu Jan 1 05:44:53 2026 by rpki-client