This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft File: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft (raw, json) Hash identifier: PImlhmGvEUMnwd4Se7hUncCnCMHn60eXxLQs/tVkp8s= Subject key identifier: D2:FF:7B:CF:9A:11:2D:22:F2:FF:C5:B3:36:49:BF:36:C3:27:11:E9 Authority key identifier: D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD Certificate issuer: /CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Certificate serial: 44CE26B309CC3884B95226F2AE0D34F392B9CDD0 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft Manifest number: 04F0 Signing time: Fri 19 Dec 2025 18:08:51 +0000 Manifest this update: Fri 19 Dec 2025 18:03:51 +0000 Manifest next update: Sat 20 Dec 2025 20:47:51 +0000 Files and hashes: 1: AS51019.asa (hash: AiRPUbx35MM7Uk9u1a659xIRQwxzEohuToTzU6obyN0=) 2: 323030313a3637633a6264633a3a2f34382d3438203d3e203531303139.roa (hash: WwIB1vpX/Ksy3lM5t4KklPIgz20phM5/z2U20FASusY=) 3: D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl (hash: ObbCU/NZ5bXsFGFz0b6aHFuT6PQKj2mTy5RIn+D+21s=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 20:47:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:ce:26:b3:09:cc:38:84:b9:52:26:f2:ae:0d:34:f3:92:b9:cd:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d2ff07932c3f4c1b3465ff4f0d96484733e02ead Validity Not Before: Dec 19 18:03:51 2025 GMT Not After : Dec 20 20:47:51 2025 GMT Subject: CN=D2FF7BCF9A112D22F2FFC5B33649BF36C32711E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:b3:ab:83:81:1c:c3:d6:68:40:03:5c:18:5c: a6:82:86:63:ad:09:7c:40:19:04:ba:ec:2c:52:59: 90:39:04:ab:76:54:4b:6b:96:8e:3f:2f:4c:59:ad: 9f:aa:39:f3:7a:12:7d:0a:c6:08:02:bc:c7:4a:a6: f5:07:68:69:72:8e:29:f3:a0:fa:de:5a:90:9a:fe: 8c:93:7d:1b:ea:64:40:c3:70:a5:58:e2:e4:de:07: 27:3e:1e:41:92:09:a6:08:27:21:c7:db:60:73:20: 19:80:72:c6:e4:6b:69:dc:55:00:5f:cd:81:07:61: 4c:6f:34:3a:15:12:39:28:c6:d8:71:c0:b9:5d:d9: 52:ba:73:68:ce:09:12:bd:96:70:03:92:20:c4:aa: a1:49:ee:e5:0d:fe:8c:1c:cf:19:86:d8:6e:cd:fe: f8:67:21:c6:af:6d:7c:a6:ab:f7:ca:e9:ea:37:06: 22:98:17:d7:25:cb:38:7a:49:44:a9:66:08:ea:47: 60:62:e8:0d:dc:f2:b2:ed:33:15:58:5b:01:c4:5d: 71:bf:a4:20:d0:36:1f:00:3d:8f:3c:5b:d4:32:47: c9:08:38:ac:2b:ed:d3:61:79:77:fa:4b:fd:78:33: 43:22:64:1a:be:6e:6c:d5:1c:72:3d:6f:25:99:b9: 7f:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:FF:7B:CF:9A:11:2D:22:F2:FF:C5:B3:36:49:BF:36:C3:27:11:E9 X509v3 Authority Key Identifier: keyid:D2:FF:07:93:2C:3F:4C:1B:34:65:FF:4F:0D:96:48:47:33:E0:2E:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0v8Hkyw_TBs0Zf9PDZZIRzPgLq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/aa004ba1-419b-4db5-bbd3-5cca633cae3f/2/D2FF07932C3F4C1B3465FF4F0D96484733E02EAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:02:af:36:cc:a0:e0:d5:3f:80:b2:60:da:26:00:a4:c6:2f: 28:f1:18:97:52:2f:06:d6:70:5e:64:fe:62:b9:6f:f9:9c:b5: ec:5e:6f:2b:df:86:66:90:55:0d:85:5a:98:c3:ac:05:73:3d: 70:ca:e4:ab:6b:14:25:52:3f:64:75:b1:bf:a4:0c:70:19:d7: e0:1c:32:b6:fe:91:de:13:60:f4:71:75:67:6e:23:af:7a:42: 6c:ea:b7:1f:1d:a6:7d:83:04:59:65:42:8e:e1:f4:a2:6a:f5: 83:ab:8a:7c:1a:48:84:1b:86:0f:cc:8c:26:93:e7:32:2c:ba: d4:50:28:a1:ee:f3:f0:93:f8:82:f1:ba:4f:d2:52:75:af:f1: 6b:e2:90:90:c5:ac:a5:b8:17:9b:86:bb:98:e5:90:65:14:d7: 6a:a8:65:e2:18:d1:a8:da:89:bd:9f:b7:65:f0:57:9a:fe:83: 1e:4a:cc:1f:65:22:be:03:19:45:0a:c7:bc:88:5a:a9:3f:09: 88:5d:ad:08:27:ba:41:00:cc:81:c5:0c:ae:73:2f:c4:bb:3b: e3:9e:5d:54:c4:28:4a:36:2f:dc:c5:3d:03:d9:47:2f:c3:7c: 17:58:ae:2b:78:8b:67:ea:2e:b3:3b:ea:3c:96:dd:30:c3:1f: ac:6f:4f:33 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIURM4mswnMOIS5Uibyrg0085K5zdAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZDJmZjA3OTMyYzNmNGMxYjM0NjVmZjRmMGQ5NjQ4NDcz M2UwMmVhZDAeFw0yNTEyMTkxODAzNTFaFw0yNTEyMjAyMDQ3NTFaMDMxMTAvBgNV BAMTKEQyRkY3QkNGOUExMTJEMjJGMkZGQzVCMzM2NDlCRjM2QzMyNzExRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAs6uDgRzD1mhAA1wYXKaChmOt CXxAGQS67CxSWZA5BKt2VEtrlo4/L0xZrZ+qOfN6En0KxggCvMdKpvUHaGlyjinz oPreWpCa/oyTfRvqZEDDcKVY4uTeByc+HkGSCaYIJyHH22BzIBmAcsbka2ncVQBf zYEHYUxvNDoVEjkoxthxwLld2VK6c2jOCRK9lnADkiDEqqFJ7uUN/owczxmG2G7N /vhnIcavbXymq/fK6eo3BiKYF9clyzh6SUSpZgjqR2Bi6A3c8rLtMxVYWwHEXXG/ pCDQNh8APY88W9QyR8kIOKwr7dNheXf6S/14M0MiZBq+bmzVHHI9byWZuX//AgMB AAGjggJHMIICQzAdBgNVHQ4EFgQU0v97z5oRLSLy/8WzNkm/NsMnEekwHwYDVR0j BBgwFoAU0v8Hkyw/TBs0Zf9PDZZIRzPgLq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYWEwMDRiYTEtNDE5Yi00ZGI1LWJiZDMtNWNjYTYzM2Nh ZTNmLzIvRDJGRjA3OTMyQzNGNEMxQjM0NjVGRjRGMEQ5NjQ4NDczM0UwMkVBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzB2OEhreXdfVEJzMFpmOVBEWlpJUnpQ Z0xxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9hYTAwNGJhMS00 MTliLTRkYjUtYmJkMy01Y2NhNjMzY2FlM2YvMi9EMkZGMDc5MzJDM0Y0QzFCMzQ2 NUZGNEYwRDk2NDg0NzMzRTAyRUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiwKvNsyg4NU/gLJg2iYA pMYvKPEYl1IvBtZwXmT+Yrlv+Zy17F5vK9+GZpBVDYVamMOsBXM9cMrkq2sUJVI/ ZHWxv6QMcBnX4Bwytv6R3hNg9HF1Z24jr3pCbOq3Hx2mfYMEWWVCjuH0omr1g6uK fBpIhBuGD8yMJpPnMiy61FAooe7z8JP4gvG6T9JSda/xa+KQkMWspbgXm4a7mOWQ ZRTXaqhl4hjRqNqJvZ+3ZfBXmv6DHkrMH2UivgMZRQrHvIhaqT8JiF2tCCe6QQDM gcUMrnMvxLs7455dVMQoSjYv3MU9A9lHL8N8F1iuK3iLZ+ouszvqPJbdMMMfrG9P Mw== -----END CERTIFICATE-----Generated at Sat Dec 20 07:29:40 2025 by rpki-client