This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft File: 40B5208BE500E368704ABCF5103C6E71ED3633EE.mft (raw, json) Hash identifier: mcG1p+HuI7TlhBgdZHfrn7EFJwsGEuy4HjF3FKrT9Qw= Subject key identifier: A8:3C:70:FE:88:8B:89:49:29:F9:69:D0:33:32:48:71:73:D2:AD:59 Authority key identifier: 40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE Certificate issuer: /CN=40b5208be500e368704abcf5103c6e71ed3633ee Certificate serial: 43D0EE0E3BCC70B9164393F037FE522E59124540 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer Subject info access: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft Manifest number: 0516 Signing time: Sat 20 Dec 2025 05:49:09 +0000 Manifest this update: Sat 20 Dec 2025 05:44:09 +0000 Manifest next update: Sun 21 Dec 2025 06:06:09 +0000 Files and hashes: 1: 40B5208BE500E368704ABCF5103C6E71ED3633EE.crl (hash: fN7ERSQKWpvdvhZWAYskDDpN57+zCKQOqf7XbKvAJEk=) Validation: OK Signature path: rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 21 Dec 2025 06:06:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:d0:ee:0e:3b:cc:70:b9:16:43:93:f0:37:fe:52:2e:59:12:45:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40b5208be500e368704abcf5103c6e71ed3633ee Validity Not Before: Dec 20 05:44:09 2025 GMT Not After : Dec 21 06:06:09 2025 GMT Subject: CN=A83C70FE888B894929F969D03332487173D2AD59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6c:4b:38:60:ac:b0:1d:07:a0:5e:4a:7e:5f: f1:4b:91:5b:9f:1c:3f:98:1f:d3:7e:1c:48:7b:0e: 48:f9:8d:5e:f6:ea:65:b9:de:c9:89:a4:a9:64:d7: f9:65:9f:f0:91:21:48:b8:a1:71:e0:72:92:c6:9e: 76:58:e0:19:b4:92:f0:e1:73:a2:1b:51:f1:68:ac: d9:7a:62:8c:70:b8:40:ed:d8:c9:b9:19:b2:0f:94: 99:53:93:6f:1d:d4:41:39:2b:53:0f:0c:72:a6:ee: 48:26:b2:3c:12:09:c9:05:e7:29:b4:dc:82:38:50: aa:ba:69:23:16:3b:7b:2b:60:1c:43:84:73:24:fb: 0d:97:8d:41:f8:cc:9c:f8:03:ec:97:c5:b0:06:81: 48:f2:b3:04:33:3c:4c:49:54:0f:18:6a:b2:5a:91: ab:5b:d9:d6:89:5e:99:ab:68:44:96:50:8d:8d:44: c5:a5:51:4f:9a:1b:12:02:a5:62:21:d5:9a:44:a1: f0:51:84:61:88:1a:2d:ae:80:1e:18:82:d2:64:23: 91:38:97:8a:5d:30:2a:20:4b:de:29:d5:ab:12:9a: 70:d3:4d:f6:d9:1f:cb:4b:ae:19:00:ee:5f:79:14: 95:91:34:f1:1b:38:90:21:ec:c0:1c:c1:77:cc:7c: 19:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:3C:70:FE:88:8B:89:49:29:F9:69:D0:33:32:48:71:73:D2:AD:59 X509v3 Authority Key Identifier: keyid:40:B5:20:8B:E5:00:E3:68:70:4A:BC:F5:10:3C:6E:71:ED:36:33:EE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QLUgi-UA42hwSrz1EDxuce02M-4.cer Subject Information Access: Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/de7d55f7-ee60-4005-bad7-b42818cf50e8/0/40B5208BE500E368704ABCF5103C6E71ED3633EE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:dc:a5:8b:cb:5d:6f:74:c6:0d:5b:d5:ca:4d:43:1a:74:7b: 14:c1:f6:62:54:be:98:ad:65:a2:17:7f:c2:91:da:51:9d:65: 6d:bf:b2:06:c9:e2:d8:0d:ea:99:98:ad:3d:89:67:c9:95:02: 18:ef:35:b9:9b:ba:97:15:64:ca:f3:aa:aa:55:59:c2:73:cb: 21:58:28:50:d4:e1:1e:dc:17:99:b7:66:57:c4:c8:3a:d2:68: 27:72:7c:aa:22:0f:d3:ec:bb:48:26:dd:e3:d1:e8:07:96:8a: cc:5d:4b:9f:52:a5:6a:a4:e6:75:e9:d9:e7:8d:a9:17:7d:a1: 67:89:69:c1:3e:7e:85:00:76:35:b2:89:b0:9e:c6:33:83:c3: 68:6c:89:9f:c3:03:81:03:64:38:cd:17:d4:df:f9:1b:65:a1: 47:5b:ca:89:63:db:63:64:be:2c:a2:ae:b0:f6:16:d5:83:b8: c8:f6:54:d5:dd:ca:49:4c:ca:bd:af:a6:41:5b:07:d7:39:3a: 12:70:47:55:9b:6c:e5:b3:c8:c1:50:58:b8:d0:ce:43:d4:62: 8d:4d:a9:4c:84:ae:ae:cd:0e:5e:44:cd:01:ec:40:5d:fd:b8: e5:da:0c:02:c0:ac:7e:14:b5:c3:96:78:ae:a9:01:b7:ab:69: a5:da:cc:81 -----BEGIN CERTIFICATE----- MIIFPTCCBCWgAwIBAgIUQ9DuDjvMcLkWQ5PwN/5SLlkSRUAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDBiNTIwOGJlNTAwZTM2ODcwNGFiY2Y1MTAzYzZlNzFl ZDM2MzNlZTAeFw0yNTEyMjAwNTQ0MDlaFw0yNTEyMjEwNjA2MDlaMDMxMTAvBgNV BAMTKEE4M0M3MEZFODg4Qjg5NDkyOUY5NjlEMDMzMzI0ODcxNzNEMkFENTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZbEs4YKywHQegXkp+X/FLkVuf HD+YH9N+HEh7Dkj5jV726mW53smJpKlk1/lln/CRIUi4oXHgcpLGnnZY4Bm0kvDh c6IbUfForNl6YoxwuEDt2Mm5GbIPlJlTk28d1EE5K1MPDHKm7kgmsjwSCckF5ym0 3II4UKq6aSMWO3srYBxDhHMk+w2XjUH4zJz4A+yXxbAGgUjyswQzPExJVA8YarJa katb2daJXpmraESWUI2NRMWlUU+aGxICpWIh1ZpEofBRhGGIGi2ugB4YgtJkI5E4 l4pdMCogS94p1asSmnDTTfbZH8tLrhkA7l95FJWRNPEbOJAh7MAcwXfMfBkXAgMB AAGjggJHMIICQzAdBgNVHQ4EFgQUqDxw/oiLiUkp+WnQMzJIcXPSrVkwHwYDVR0j BBgwFoAUQLUgi+UA42hwSrz1EDxuce02M+4wDgYDVR0PAQH/BAQDAgeAMIGVBgNV HR8EgY0wgYowgYeggYSggYGGf3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvZGU3ZDU1ZjctZWU2MC00MDA1LWJhZDctYjQyODE4Y2Y1 MGU4LzAvNDBCNTIwOEJFNTAwRTM2ODcwNEFCQ0Y1MTAzQzZFNzFFRDM2MzNFRS5j cmwwZAYIKwYBBQUHAQEEWDBWMFQGCCsGAQUFBzAChkhyc3luYzovL3Jwa2kucmlw ZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL1FMVWdpLVVBNDJod1NyejFFRHh1Y2Uw Mk0tNC5jZXIwgZ4GCCsGAQUFBwELBIGRMIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6 Ly9yc3luYy5wYWFzLnJwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9kZTdkNTVmNy1l ZTYwLTQwMDUtYmFkNy1iNDI4MThjZjUwZTgvMC80MEI1MjA4QkU1MDBFMzY4NzA0 QUJDRjUxMDNDNkU3MUVEMzYzM0VFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUF Bw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUH AQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAedyli8tdb3TGDVvVyk1D GnR7FMH2YlS+mK1lohd/wpHaUZ1lbb+yBsni2A3qmZitPYlnyZUCGO81uZu6lxVk yvOqqlVZwnPLIVgoUNThHtwXmbdmV8TIOtJoJ3J8qiIP0+y7SCbd49HoB5aKzF1L n1KlaqTmdenZ542pF32hZ4lpwT5+hQB2NbKJsJ7GM4PDaGyJn8MDgQNkOM0X1N/5 G2WhR1vKiWPbY2S+LKKusPYW1YO4yPZU1d3KSUzKva+mQVsH1zk6EnBHVZts5bPI wVBYuNDOQ9RijU2pTISurs0OXkTNAexAXf245doMAsCsfhS1w5Z4rqkBt6tppdrM gQ== -----END CERTIFICATE-----Generated at Sat Dec 20 23:03:32 2025 by rpki-client