This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft File: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft (raw, json) Hash identifier: oDOEFkmkZyD/EVlieodnzCNbEZsig7smgkQMHLQ0c2Y= Subject key identifier: 65:46:5A:C4:A6:84:2B:C3:12:27:48:FD:3A:AB:50:B0:32:8D:AD:16 Authority key identifier: 5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE Certificate issuer: /CN=5da3215abfa4621d57709f838a92801f2e90ddfe Certificate serial: 49E3A97DBD3E0996B251B7B20ACFA4F809C13F43 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft Manifest number: 0566 Signing time: Sat 20 Dec 2025 19:32:35 +0000 Manifest this update: Sat 20 Dec 2025 19:27:35 +0000 Manifest next update: Sun 21 Dec 2025 23:23:35 +0000 Files and hashes: 1: 34352e38312e35382e302f32342d3234203d3e20323039323432.roa (hash: Cjq2FzLN5G1VEvkKyI6FB5noxcWUxvPOvV4W7hBfw5c=) 2: 34352e38312e35392e302f32342d3234203d3e20323131343339.roa (hash: PzQrEpsLL9icV7+wAMJ22TsUek+9+7dTOPFgPD6vtOM=) 3: 34352e38312e35392e302f32342d3234203d3e20323132333834.roa (hash: Z55LDvJNhjuOlIMhPU51UoeT0VK3qlu4pE/EHJdIaDE=) 4: 326130393a643634303a3a2f32392d3239203d3e20313938333435.roa (hash: 2ZJoizA2XrGcopsLwhs8oaMaqFtkP0G9iClmvxEJgnM=) 5: 34352e38312e35362e302f32342d3234203d3e20383334.roa (hash: GXYgmjTTvXHYoiXI6BJ0o3nH+W3GLxXllcJjvr3gnkE=) 6: 34352e38312e35372e302f32342d3234203d3e203631333137.roa (hash: Nt6v0on8wvNIRTqw0ZzJ5VjTWjEZFT63u0ZbVbhKyNc=) 7: 5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl (hash: zW0SzIvmc711V5fzYRcEsNm2BkSvXTLImzyQeIb59U0=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 23:23:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:e3:a9:7d:bd:3e:09:96:b2:51:b7:b2:0a:cf:a4:f8:09:c1:3f:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5da3215abfa4621d57709f838a92801f2e90ddfe Validity Not Before: Dec 20 19:27:35 2025 GMT Not After : Dec 21 23:23:35 2025 GMT Subject: CN=65465AC4A6842BC3122748FD3AAB50B0328DAD16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:dc:20:9b:42:c5:7c:c0:a5:30:64:33:9b:32: 94:f2:c6:81:3c:24:8e:9b:df:73:90:67:b2:e7:91: 97:4e:e2:05:52:ae:b5:bf:92:60:f9:84:d8:cc:f2: 9e:f8:af:74:ef:e2:2c:b5:bf:65:22:14:d7:a5:e8: bd:e2:bb:d5:18:9b:a3:e3:b2:6d:d1:ad:20:38:68: 6b:7a:db:ce:42:18:67:57:3b:df:85:8a:e8:6d:64: 09:6c:1b:31:0a:b2:f6:6c:a1:ae:c3:a4:36:03:c9: aa:43:8f:10:9d:ba:c0:9a:a8:7e:f7:e3:d5:43:ae: 1b:e7:29:de:da:c0:82:75:43:e9:50:7c:a2:cd:23: 8a:52:55:4b:c9:93:9f:26:1f:12:06:b6:69:b9:39: 22:dd:de:fd:a9:e2:83:61:95:d3:c4:8b:c1:c9:bb: 51:f8:3d:66:d9:a1:9a:b5:87:01:a1:c5:be:02:21: 1d:61:47:07:dc:5d:6e:61:99:91:ae:a5:a8:a7:f9: 6f:00:c4:b0:3d:1d:eb:44:4f:a2:c3:04:19:e4:9f: 7b:95:52:cf:31:35:ae:a3:b2:6e:bc:86:7f:bf:4b: 3f:57:28:a5:89:57:bd:e4:28:4d:4d:93:80:15:90: 85:3a:07:7e:3b:7d:3e:43:f8:3f:ce:61:ba:a9:61: 69:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:46:5A:C4:A6:84:2B:C3:12:27:48:FD:3A:AB:50:B0:32:8D:AD:16 X509v3 Authority Key Identifier: keyid:5D:A3:21:5A:BF:A4:62:1D:57:70:9F:83:8A:92:80:1F:2E:90:DD:FE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XaMhWr-kYh1XcJ-DipKAHy6Q3f4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf24567b-7a74-4c1f-aa85-dd24af73ccbb/0/5DA3215ABFA4621D57709F838A92801F2E90DDFE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:b3:10:7d:c5:9a:b8:48:c2:96:1a:d6:98:88:fb:0a:ee:b3: fb:c7:e7:24:14:c2:2c:ed:13:b0:36:7e:41:53:bd:d7:e2:91: 95:09:e8:3b:04:a5:f5:42:0e:e6:5b:08:dc:ef:09:6c:7e:01: b0:f8:4a:d4:38:25:a2:96:6d:2a:88:68:32:4e:3a:a5:9f:39: 6a:e8:07:7a:2c:39:fe:ea:7e:f8:3c:4f:e5:eb:63:f1:45:bb: 0c:38:cf:8c:7e:07:fb:a4:c1:f5:6d:40:df:d9:88:c8:c5:e4: 92:81:3f:3b:c5:e3:a7:e9:b2:10:4e:0e:71:7f:71:be:b4:ce: a9:d0:e1:81:e1:ca:fe:89:5c:e3:ad:b7:f5:b9:fa:aa:eb:10: 41:a6:79:5d:1b:c6:a3:70:c4:bf:48:62:73:b7:13:4b:62:ea: 12:ac:81:f3:28:09:a3:bc:9a:fa:e2:f2:dd:6e:6a:6d:14:91: f7:60:20:44:00:ac:98:e5:36:c8:13:80:f6:33:18:4a:8e:62: 57:b8:41:57:36:fc:76:b6:9c:56:b8:ec:83:c7:08:b3:94:57: 76:14:9f:ea:b0:b9:b4:d6:b2:55:aa:84:88:60:02:a5:dc:5e: 80:c6:0d:ac:52:3a:c2:54:72:f0:9a:4b:c9:a5:1e:fc:65:11: c1:ad:ee:f4 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUSeOpfb0+CZayUbeyCs+k+AnBP0MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNWRhMzIxNWFiZmE0NjIxZDU3NzA5ZjgzOGE5MjgwMWYy ZTkwZGRmZTAeFw0yNTEyMjAxOTI3MzVaFw0yNTEyMjEyMzIzMzVaMDMxMTAvBgNV BAMTKDY1NDY1QUM0QTY4NDJCQzMxMjI3NDhGRDNBQUI1MEIwMzI4REFEMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDD3CCbQsV8wKUwZDObMpTyxoE8 JI6b33OQZ7LnkZdO4gVSrrW/kmD5hNjM8p74r3Tv4iy1v2UiFNel6L3iu9UYm6Pj sm3RrSA4aGt6285CGGdXO9+FiuhtZAlsGzEKsvZsoa7DpDYDyapDjxCdusCaqH73 49VDrhvnKd7awIJ1Q+lQfKLNI4pSVUvJk58mHxIGtmm5OSLd3v2p4oNhldPEi8HJ u1H4PWbZoZq1hwGhxb4CIR1hRwfcXW5hmZGupain+W8AxLA9HetET6LDBBnkn3uV Us8xNa6jsm68hn+/Sz9XKKWJV73kKE1Nk4AVkIU6B347fT5D+D/OYbqpYWmjAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUZUZaxKaEK8MSJ0j9OqtQsDKNrRYwHwYDVR0j BBgwFoAUXaMhWr+kYh1XcJ+DipKAHy6Q3f4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmYyNDU2N2ItN2E3NC00YzFmLWFhODUtZGQyNGFmNzNj Y2JiLzAvNURBMzIxNUFCRkE0NjIxRDU3NzA5RjgzOEE5MjgwMUYyRTkwRERGRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1hhTWhXci1rWWgxWGNKLURpcEtBSHk2 UTNmNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjI0NTY3Yi03 YTc0LTRjMWYtYWE4NS1kZDI0YWY3M2NjYmIvMC81REEzMjE1QUJGQTQ2MjFENTc3 MDlGODM4QTkyODAxRjJFOTBEREZFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf7MQfcWauEjClhrWmIj7 Cu6z+8fnJBTCLO0TsDZ+QVO91+KRlQnoOwSl9UIO5lsI3O8JbH4BsPhK1DglopZt KohoMk46pZ85augHeiw5/up++DxP5etj8UW7DDjPjH4H+6TB9W1A39mIyMXkkoE/ O8Xjp+myEE4OcX9xvrTOqdDhgeHK/olc46239bn6qusQQaZ5XRvGo3DEv0hic7cT S2LqEqyB8ygJo7ya+uLy3W5qbRSR92AgRACsmOU2yBOA9jMYSo5iV7hBVzb8drac Vrjsg8cIs5RXdhSf6rC5tNayVaqEiGACpdxegMYNrFI6wlRy8JpLyaUe/GURwa3u 9A== -----END CERTIFICATE-----Generated at Sun Dec 21 10:54:54 2025 by rpki-client