This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft File: qrHbDgCCCHbfogvsm3Gap5Wswd4.mft (raw, json) Hash identifier: Guc1hXIYDB7kWQNECCKwEpVwJz9jf5UUThnpMDcKZwU= Subject key identifier: 18:54:F0:2E:CB:73:D5:C0:35:9C:28:DC:ED:4E:AA:6A:54:08:EA:E2 Authority key identifier: AA:B1:DB:0E:00:82:08:76:DF:A2:0B:EC:9B:71:9A:A7:95:AC:C1:DE Certificate issuer: /CN=aab1db0e00820876dfa20bec9b719aa795acc1de Certificate serial: 019A902FF3585FDEC60F627CBAC97E83B9DA Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft Manifest number: 1731 Signing time: Mon 17 Nov 2025 05:00:52 +0000 Manifest this update: Mon 17 Nov 2025 05:00:52 +0000 Manifest next update: Tue 18 Nov 2025 05:00:52 +0000 Files and hashes: 1: qrHbDgCCCHbfogvsm3Gap5Wswd4.crl (hash: uWCpTzDh3Qhg14VwTSrX4/fUVXDXSIk/FLT5CtG+lxo=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:90:2f:f3:58:5f:de:c6:0f:62:7c:ba:c9:7e:83:b9:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=aab1db0e00820876dfa20bec9b719aa795acc1de Validity Not Before: Nov 17 05:00:52 2025 GMT Not After : Nov 18 05:00:52 2025 GMT Subject: CN=1854f02ecb73d5c0359c28dced4eaa6a5408eae2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:47:ae:fe:65:5c:6c:03:ff:29:d0:27:99: 5b:61:a8:28:e2:37:07:8e:c8:0e:af:ba:55:b4:08: 4a:de:f3:23:97:6e:27:e9:74:72:3c:4e:2c:06:f7: ee:ee:9d:f0:6f:28:dc:3d:1d:6b:23:1b:b3:a9:95: 46:c3:ab:c0:64:c7:71:fe:b3:c6:0d:10:27:6a:fd: d6:c4:99:d5:05:77:b5:e0:c6:bc:65:c5:23:00:c7: d8:a0:64:d7:54:32:11:ac:70:62:39:fd:42:81:9c: b7:4b:e4:5e:21:22:a3:e1:b2:fe:52:dc:e9:37:23: 57:16:56:ec:68:c5:81:da:03:e6:a0:d8:b0:c4:f0: 5a:86:51:7c:01:5d:58:f8:fc:95:48:78:3e:ac:39: 48:92:8f:a5:9c:20:55:f2:03:cc:0e:9c:1b:93:7a: 7d:63:74:cd:9e:e0:bc:83:9f:a1:80:df:47:de:5f: 97:ff:9c:ba:08:d6:df:9c:66:53:c2:e3:0a:25:21: 61:79:6d:6d:b9:a9:d0:2a:de:c2:ca:e9:86:6d:17: 36:e4:f3:ba:46:60:7c:e9:43:66:db:4a:7e:ab:97: 51:b6:6a:c7:6c:26:fb:4a:00:ea:2d:43:d7:24:9e: 8a:9d:de:f2:f2:32:b0:6a:47:bc:1a:fc:cd:ed:b3: 05:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:54:F0:2E:CB:73:D5:C0:35:9C:28:DC:ED:4E:AA:6A:54:08:EA:E2 X509v3 Authority Key Identifier: keyid:AA:B1:DB:0E:00:82:08:76:DF:A2:0B:EC:9B:71:9A:A7:95:AC:C1:DE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/qrHbDgCCCHbfogvsm3Gap5Wswd4.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/25/6add07-e6ad-4dba-9b8b-23e3813651d4/1/qrHbDgCCCHbfogvsm3Gap5Wswd4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:e0:ec:eb:f7:f9:27:f7:a4:24:32:05:23:a1:7e:9b:3b:e3: 43:2c:cc:95:c5:43:a6:4f:05:18:29:d7:f9:87:09:d0:38:9e: 0b:5a:73:59:85:b6:4c:ae:ff:68:59:3f:c2:c4:d2:c9:82:86: fc:46:c0:f6:0c:fc:30:59:51:f2:2f:92:2d:91:20:0b:7e:c6: 0e:86:a6:75:45:02:6a:f2:36:59:57:2a:6a:ab:cf:28:39:0a: 26:ec:3a:11:0d:8b:83:e2:58:a7:58:ee:2c:e5:3b:02:32:d1: 30:21:b0:f8:75:4d:4d:78:1a:02:51:51:9d:6a:5e:6f:dc:79: 06:71:67:9a:d8:50:7c:f3:50:a7:b6:db:0c:71:81:45:f4:84: c9:04:b0:fd:1a:62:48:4a:60:7a:58:cf:e3:fb:38:8d:88:21: 7f:c0:e2:f7:e4:02:6d:a4:6b:9e:49:cd:46:34:b4:43:74:03: 97:24:29:df:fa:cb:71:73:d8:54:7d:43:74:15:41:d7:58:6b: e1:76:d2:8a:92:20:64:7f:74:4d:b2:79:c9:51:a8:2d:bc:f8: 91:25:7f:25:7e:f0:1a:c6:26:42:1a:89:6f:75:95:92:a2:10: 66:f5:fd:a8:0b:be:b2:d8:e1:86:bc:2f:b9:05:c2:b2:2a:1b: 12:82:34:8d -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqQL/NYX97GD2J8usl+g7naMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGFhYjFkYjBlMDA4MjA4NzZkZmEyMGJlYzliNzE5YWE3OTVh Y2MxZGUwHhcNMjUxMTE3MDUwMDUyWhcNMjUxMTE4MDUwMDUyWjAzMTEwLwYDVQQD EygxODU0ZjAyZWNiNzNkNWMwMzU5YzI4ZGNlZDRlYWE2YTU0MDhlYWUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxdhHrv5lXGwD/ynQJ5lbYago4jcH jsgOr7pVtAhK3vMjl24n6XRyPE4sBvfu7p3wbyjcPR1rIxuzqZVGw6vAZMdx/rPG DRAnav3WxJnVBXe14Ma8ZcUjAMfYoGTXVDIRrHBiOf1CgZy3S+ReISKj4bL+Utzp NyNXFlbsaMWB2gPmoNiwxPBahlF8AV1Y+PyVSHg+rDlIko+lnCBV8gPMDpwbk3p9 Y3TNnuC8g5+hgN9H3l+X/5y6CNbfnGZTwuMKJSFheW1tuanQKt7CyumGbRc25PO6 RmB86UNm20p+q5dRtmrHbCb7SgDqLUPXJJ6Knd7y8jKwake8GvzN7bMF/QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBhU8C7Lc9XANZwo3O1OqmpUCOriMB8GA1UdIwQY MBaAFKqx2w4Aggh236IL7JtxmqeVrMHeMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvcXJIYkRnQ0NDSGJmb2d2c20zR2FwNVdzd2Q0LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNS82YWRkMDctZTZhZC00ZGJhLTliOGIt MjNlMzgxMzY1MWQ0LzEvcXJIYkRnQ0NDSGJmb2d2c20zR2FwNVdzd2Q0Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNS82YWRkMDctZTZhZC00ZGJhLTliOGItMjNlMzgxMzY1MWQ0 LzEvcXJIYkRnQ0NDSGJmb2d2c20zR2FwNVdzd2Q0LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAo+Ds6/f5 J/ekJDIFI6F+mzvjQyzMlcVDpk8FGCnX+YcJ0DieC1pzWYW2TK7/aFk/wsTSyYKG /EbA9gz8MFlR8i+SLZEgC37GDoamdUUCavI2WVcqaqvPKDkKJuw6EQ2Lg+JYp1ju LOU7AjLRMCGw+HVNTXgaAlFRnWpeb9x5BnFnmthQfPNQp7bbDHGBRfSEyQSw/Rpi SEpgeljP4/s4jYghf8Di9+QCbaRrnknNRjS0Q3QDlyQp3/rLcXPYVH1DdBVB11hr 4XbSipIgZH90TbJ5yVGoLbz4kSV/JX7wGsYmQhqJb3WVkqIQZvX9qAu+stjhhrwv uQXCsiobEoI0jQ== -----END CERTIFICATE-----Generated at Mon Dec 15 14:57:29 2025 by rpki-client