This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft File: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft (raw, json) Hash identifier: WQ5xLhftB5cONtoVJJZMk1/tnURPdcPE9tx6WTtLZ3A= Subject key identifier: 0D:DF:61:5F:5E:EB:6A:B3:DE:D1:AC:09:F7:6A:62:15:02:BA:21:B6 Authority key identifier: 68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 Certificate issuer: /CN=68d097afd88aef3f10282f3218fc13f01a0de486 Certificate serial: 7E5D6DBF9AE6E90F5E7CA0639C53FA94B761031E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft Manifest number: 03B4 Signing time: Thu 25 Dec 2025 10:07:50 +0000 Manifest this update: Thu 25 Dec 2025 10:02:50 +0000 Manifest next update: Fri 26 Dec 2025 12:51:50 +0000 Files and hashes: 1: 3138352e3230362e3235332e302f32342d3234203d3e203630373831.roa (hash: SQPPpGAfcWzeQjBcG69M0Ql5cnWUCRPHaAkbYVbbBkE=) 2: 68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl (hash: WuvtoT7A7DhyjFb4maHnwLz0tm5cHVfPweAaNLRMA1U=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 26 Dec 2025 10:17:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:5d:6d:bf:9a:e6:e9:0f:5e:7c:a0:63:9c:53:fa:94:b7:61:03:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68d097afd88aef3f10282f3218fc13f01a0de486 Validity Not Before: Dec 25 10:02:50 2025 GMT Not After : Dec 26 12:51:50 2025 GMT Subject: CN=0DDF615F5EEB6AB3DED1AC09F76A621502BA21B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:e9:9c:68:d9:49:07:30:ab:44:29:c0:e0:be: 84:30:47:72:c5:71:62:50:dc:d8:d0:f2:2b:42:b1: 2c:a6:d9:43:16:a6:20:a3:af:bf:77:8c:f0:33:39: 93:dd:1a:22:b9:c4:d5:83:ae:cf:16:1e:3a:67:21: 21:b5:78:7c:78:00:b6:39:f6:97:bd:4e:e2:5c:45: 4f:d7:1f:ca:6f:53:7b:10:ba:2d:9c:4c:b0:09:75: af:6a:b5:41:ff:5e:cd:33:e6:72:b8:af:79:92:d4: 2d:9f:75:0a:bf:c6:d9:da:cb:a3:f8:9c:19:27:c0: 68:79:31:25:13:dd:8b:19:4d:fa:41:ef:01:8b:35: 9b:6c:9e:89:80:ca:ac:98:c2:0e:f5:af:d3:18:8d: 4e:6b:4e:6d:c8:01:3b:a4:d6:aa:3f:b4:b7:73:c3: 0d:22:41:72:93:72:78:fc:0d:e2:7e:bc:02:95:98: e1:0e:80:23:5c:ed:59:e0:35:7d:d6:75:7d:20:b5: cb:d7:71:5a:26:18:ec:26:4b:72:81:c9:b6:0f:48: 7e:e1:6e:49:03:3a:a1:7f:33:24:c4:61:6e:f9:3e: 68:e6:ea:86:01:79:e9:db:81:53:38:20:2f:73:b3: 24:64:99:01:7f:b0:2f:d8:d6:1c:a3:86:b6:07:7d: 36:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:DF:61:5F:5E:EB:6A:B3:DE:D1:AC:09:F7:6A:62:15:02:BA:21:B6 X509v3 Authority Key Identifier: keyid:68:D0:97:AF:D8:8A:EF:3F:10:28:2F:32:18:FC:13:F0:1A:0D:E4:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/aNCXr9iK7z8QKC8yGPwT8BoN5IY.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/7c11b819-d459-4136-9987-f0292a87e640/0/68D097AFD88AEF3F10282F3218FC13F01A0DE486.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:c5:d8:54:ab:df:46:9a:90:c0:4a:a4:14:99:e9:69:b3:6a: a6:96:88:af:fa:d7:6f:fb:ee:63:8c:3b:69:f7:a9:57:4a:fa: 73:d7:1c:7a:b7:4e:55:32:9b:9d:ba:40:8e:5c:a7:d0:50:7e: 00:57:be:5e:30:4d:77:3a:0e:d5:c2:5b:f2:0a:24:aa:f1:7c: 46:11:75:5a:ad:db:d2:c0:a7:17:d4:f4:84:89:80:12:d5:9c: 66:99:b3:16:2e:66:90:fe:d7:00:c0:0e:36:03:e3:1d:f9:83: ad:cb:72:19:68:2c:72:9b:45:aa:88:13:4c:c4:d7:2c:e9:cf: 20:50:c9:0f:6d:e5:f0:e6:07:38:b9:19:19:6e:14:0c:3f:a1: df:86:bd:7a:87:0f:ee:c7:33:0e:7d:f5:16:99:05:68:74:ba: b6:5c:a4:17:0e:18:e9:e1:c3:d3:f6:53:9b:e3:93:48:d6:b3: ec:cd:8a:aa:9e:ae:e9:db:e1:2b:43:6e:b8:ea:eb:69:8a:8c: 81:24:a0:6e:37:8f:10:30:a4:6d:2a:65:5c:a6:97:7b:33:bc: 93:0e:ac:aa:da:be:f9:26:2f:cc:20:31:33:10:be:66:95:92: 0e:c9:4a:94:57:28:64:e5:dc:09:93:dc:41:a9:a5:08:0e:c5: 9e:6b:f9:40 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUfl1tv5rm6Q9efKBjnFP6lLdhAx4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhkMDk3YWZkODhhZWYzZjEwMjgyZjMyMThmYzEzZjAx YTBkZTQ4NjAeFw0yNTEyMjUxMDAyNTBaFw0yNTEyMjYxMjUxNTBaMDMxMTAvBgNV BAMTKDBEREY2MTVGNUVFQjZBQjNERUQxQUMwOUY3NkE2MjE1MDJCQTIxQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCW6Zxo2UkHMKtEKcDgvoQwR3LF cWJQ3NjQ8itCsSym2UMWpiCjr793jPAzOZPdGiK5xNWDrs8WHjpnISG1eHx4ALY5 9pe9TuJcRU/XH8pvU3sQui2cTLAJda9qtUH/Xs0z5nK4r3mS1C2fdQq/xtnay6P4 nBknwGh5MSUT3YsZTfpB7wGLNZtsnomAyqyYwg71r9MYjU5rTm3IATuk1qo/tLdz ww0iQXKTcnj8DeJ+vAKVmOEOgCNc7VngNX3WdX0gtcvXcVomGOwmS3KBybYPSH7h bkkDOqF/MyTEYW75Pmjm6oYBeenbgVM4IC9zsyRkmQF/sC/Y1hyjhrYHfTYzAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUDd9hX17rarPe0awJ92piFQK6IbYwHwYDVR0j BBgwFoAUaNCXr9iK7z8QKC8yGPwT8BoN5IYwDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvN2MxMWI4MTktZDQ1OS00MTM2LTk5ODctZjAyOTJhODdl NjQwLzAvNjhEMDk3QUZEODhBRUYzRjEwMjgyRjMyMThGQzEzRjAxQTBERTQ4Ni5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FOQ1hyOWlLN3o4UUtDOHlHUHdUOEJv TjVJWS5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS83YzExYjgxOS1k NDU5LTQxMzYtOTk4Ny1mMDI5MmE4N2U2NDAvMC82OEQwOTdBRkQ4OEFFRjNGMTAy ODJGMzIxOEZDMTNGMDFBMERFNDg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAQMXYVKvfRpqQwEqkFJnp abNqppaIr/rXb/vuY4w7afepV0r6c9ccerdOVTKbnbpAjlyn0FB+AFe+XjBNdzoO 1cJb8gokqvF8RhF1Wq3b0sCnF9T0hImAEtWcZpmzFi5mkP7XAMAONgPjHfmDrcty GWgscptFqogTTMTXLOnPIFDJD23l8OYHOLkZGW4UDD+h34a9eocP7sczDn31FpkF aHS6tlykFw4Y6eHD0/ZTm+OTSNaz7M2Kqp6u6dvhK0NuuOrraYqMgSSgbjePEDCk bSplXKaXezO8kw6sqtq++SYvzCAxMxC+ZpWSDslKlFcoZOXcCZPcQamlCA7Fnmv5 QA== -----END CERTIFICATE-----Generated at Thu Dec 25 19:42:23 2025 by rpki-client