This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft File: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft (raw, json) Hash identifier: MRQZ+qK9bVqV/HZ5qstRIWle37DQU20oYJ48gqgW7rw= Subject key identifier: 7F:7E:39:67:70:74:B0:FC:1D:02:0D:8C:89:73:A9:F4:65:3B:08:A7 Authority key identifier: F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD Certificate issuer: /CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Certificate serial: 69602F7BC4354228ADF2C22C743EB2CFBBD94AD4 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft Manifest number: 05DA Signing time: Fri 19 Dec 2025 19:02:33 +0000 Manifest this update: Fri 19 Dec 2025 18:57:33 +0000 Manifest next update: Sat 20 Dec 2025 21:59:33 +0000 Files and hashes: 1: 326130303a386530303a313a3a2f34382d3438203d3e203230373132.roa (hash: 2qiBxfK+UGsXjYXrt6Cm3jSdVu6qoZhGBCRhmjYUhjg=) 2: F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl (hash: oeOihhVBHpIRIdcU7BXAhXZJP/2c6ilhX5ojyyGbUnw=) 3: 34362e3235302e3232342e302f32302d3234203d3e20313431393935.roa (hash: ht90MUomGkgWhJETWF0rvugOS8SI8qvW9OndsUlGu80=) 4: 34362e3235302e3234302e302f32302d3234203d3e20313431393935.roa (hash: 5zFYerIngzLwSwbeiiGPHVQadLBE1/J7oEEXeFR/OFM=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 20 Dec 2025 21:59:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:60:2f:7b:c4:35:42:28:ad:f2:c2:2c:74:3e:b2:cf:bb:d9:4a:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=f29fbab4db867f6bd9a7eff6aa55d98c162e1aad Validity Not Before: Dec 19 18:57:33 2025 GMT Not After : Dec 20 21:59:33 2025 GMT Subject: CN=7F7E39677074B0FC1D020D8C8973A9F4653B08A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:a7:29:36:85:10:e0:8f:38:00:47:8c:56:4d: e0:80:68:a0:a0:94:68:60:47:cf:6f:78:0b:e4:c9: fd:5a:d8:3f:a7:ee:de:fe:b7:0b:90:e7:19:21:48: c7:28:4f:d7:53:ff:4d:09:7c:f0:89:71:96:d8:88: 40:95:a8:d7:cc:09:6e:3e:d1:7f:29:19:61:ca:38: 35:35:cd:5c:fd:97:ea:15:a7:3d:bf:76:f8:ea:6d: 86:f1:b0:fa:18:b5:1d:64:c3:8d:35:04:55:2b:46: f0:40:4c:7b:c5:88:5d:00:ad:df:99:1e:db:ac:6b: 4a:7b:e1:18:41:1c:96:42:0f:72:52:bb:31:2e:ae: 36:34:5d:10:c0:4f:76:8b:d2:fe:53:6c:e3:72:de: c1:1a:ff:e9:7c:2a:4a:b2:1e:7f:2d:27:c3:e7:8e: 0d:64:aa:8a:57:01:23:db:9e:1c:b0:6a:70:cd:7c: 35:25:6b:95:8e:63:b6:ae:7b:56:01:dc:48:e9:1d: f8:0a:b4:00:1f:30:a1:a4:5c:8b:c3:55:e4:e7:09: 79:a1:47:2a:8e:8f:20:11:2f:8c:33:dc:39:30:66: 5b:28:24:50:94:10:5c:e1:8b:53:a7:a2:07:95:ad: 34:cc:6b:32:98:1e:72:9d:e0:77:dc:3b:c6:71:60: 3b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:7E:39:67:70:74:B0:FC:1D:02:0D:8C:89:73:A9:F4:65:3B:08:A7 X509v3 Authority Key Identifier: keyid:F2:9F:BA:B4:DB:86:7F:6B:D9:A7:EF:F6:AA:55:D9:8C:16:2E:1A:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/8p-6tNuGf2vZp-_2qlXZjBYuGq0.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/bf52d814-3d2f-4df4-8140-dfb530f74912/0/F29FBAB4DB867F6BD9A7EFF6AA55D98C162E1AAD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:91:84:14:f8:6d:35:13:78:1a:83:86:ca:7d:fa:f1:24:fe: 58:59:38:b3:59:ff:c0:c0:57:ab:b4:94:19:2d:72:9a:a1:d2: 37:67:09:49:f3:74:a5:b5:3c:3d:d2:87:a2:31:c5:c7:0d:38: dc:c6:98:c0:cc:33:2d:0f:33:04:0f:00:a6:1e:66:c7:5c:85: fd:b3:0f:6a:1e:27:61:a5:77:85:bd:18:b9:58:94:44:4c:52: 60:86:a7:f7:2b:7e:77:00:ba:67:47:54:5c:3c:67:87:a1:10: 4a:b4:89:6a:8e:fc:94:b0:04:99:ef:57:7c:91:68:95:2a:35: 78:12:24:f2:8f:5d:64:70:d3:26:05:0b:c3:64:7a:db:e2:52: 1b:07:41:18:56:0f:28:64:a2:39:f1:87:9a:9a:85:c9:fe:5b: c9:e7:3b:74:e8:76:be:7d:01:79:2a:55:bc:c2:af:5a:ba:c3: 2a:39:f0:ce:e6:f5:58:f4:a2:6a:90:17:0a:dd:5d:24:1f:84: 33:6a:c6:8a:2e:4d:26:b9:f9:83:56:a5:14:8a:08:ff:eb:78: 0d:88:25:f4:f2:70:bf:24:46:3d:a3:1f:79:66:da:b4:9e:4b: 6e:af:dd:fa:36:a5:37:2f:c5:e2:c3:08:b1:d0:90:fc:0e:60: 47:69:93:75 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUaWAve8Q1Qiit8sIsdD6yz7vZStQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoZjI5ZmJhYjRkYjg2N2Y2YmQ5YTdlZmY2YWE1NWQ5OGMx NjJlMWFhZDAeFw0yNTEyMTkxODU3MzNaFw0yNTEyMjAyMTU5MzNaMDMxMTAvBgNV BAMTKDdGN0UzOTY3NzA3NEIwRkMxRDAyMEQ4Qzg5NzNBOUY0NjUzQjA4QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZpyk2hRDgjzgAR4xWTeCAaKCg lGhgR89veAvkyf1a2D+n7t7+twuQ5xkhSMcoT9dT/00JfPCJcZbYiECVqNfMCW4+ 0X8pGWHKODU1zVz9l+oVpz2/dvjqbYbxsPoYtR1kw401BFUrRvBATHvFiF0Ard+Z Htusa0p74RhBHJZCD3JSuzEurjY0XRDAT3aL0v5TbONy3sEa/+l8KkqyHn8tJ8Pn jg1kqopXASPbnhywanDNfDUla5WOY7aue1YB3EjpHfgKtAAfMKGkXIvDVeTnCXmh RyqOjyARL4wz3DkwZlsoJFCUEFzhi1OnogeVrTTMazKYHnKd4HfcO8ZxYDsFAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUf345Z3B0sPwdAg2MiXOp9GU7CKcwHwYDVR0j BBgwFoAU8p+6tNuGf2vZp+/2qlXZjBYuGq0wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvYmY1MmQ4MTQtM2QyZi00ZGY0LTgxNDAtZGZiNTMwZjc0 OTEyLzAvRjI5RkJBQjREQjg2N0Y2QkQ5QTdFRkY2QUE1NUQ5OEMxNjJFMUFBRC5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhwLTZ0TnVHZjJ2WnAtXzJxbFhaakJZ dUdxMC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9iZjUyZDgxNC0z ZDJmLTRkZjQtODE0MC1kZmI1MzBmNzQ5MTIvMC9GMjlGQkFCNERCODY3RjZCRDlB N0VGRjZBQTU1RDk4QzE2MkUxQUFELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAoZGEFPhtNRN4GoOGyn36 8ST+WFk4s1n/wMBXq7SUGS1ymqHSN2cJSfN0pbU8PdKHojHFxw043MaYwMwzLQ8z BA8Aph5mx1yF/bMPah4nYaV3hb0YuViURExSYIan9yt+dwC6Z0dUXDxnh6EQSrSJ ao78lLAEme9XfJFolSo1eBIk8o9dZHDTJgULw2R62+JSGwdBGFYPKGSiOfGHmpqF yf5byec7dOh2vn0BeSpVvMKvWrrDKjnwzub1WPSiapAXCt1dJB+EM2rGii5NJrn5 g1alFIoI/+t4DYgl9PJwvyRGPaMfeWbatJ5Lbq/d+jalNy/F4sMIsdCQ/A5gR2mT dQ== -----END CERTIFICATE-----Generated at Sat Dec 20 14:08:22 2025 by rpki-client