This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/1069ef-3dc1-444e-a7df-0eab8139b23a/1/cZSy_8iUT-E1eWAoERzOc0cew38.mft File: cZSy_8iUT-E1eWAoERzOc0cew38.mft (raw, json) Hash identifier: kfLpJGZNLn7qinbXaLhWMg+wRA4xu76jIvg8wHXQbGI= Subject key identifier: B9:41:A9:BC:3B:55:42:A5:06:80:9D:F3:4E:C2:00:82:71:8A:19:63 Authority key identifier: 71:94:B2:FF:C8:94:4F:E1:35:79:60:28:11:1C:CE:73:47:1E:C3:7F Certificate issuer: /CN=7194b2ffc8944fe135796028111cce73471ec37f Certificate serial: 01994C9B946D666E0E53E711382332D05846 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/cZSy_8iUT-E1eWAoERzOc0cew38.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/1069ef-3dc1-444e-a7df-0eab8139b23a/1/cZSy_8iUT-E1eWAoERzOc0cew38.mft Manifest number: 0581 Signing time: Mon 15 Sep 2025 09:01:28 +0000 Manifest this update: Mon 15 Sep 2025 09:01:28 +0000 Manifest next update: Tue 16 Sep 2025 09:01:28 +0000 Files and hashes: 1: cZSy_8iUT-E1eWAoERzOc0cew38.crl (hash: Z8ig+eRDJzOPijXdS7azUs+4aR1uukHYlp32r2obGq0=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:4c:9b:94:6d:66:6e:0e:53:e7:11:38:23:32:d0:58:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7194b2ffc8944fe135796028111cce73471ec37f Validity Not Before: Sep 15 09:01:28 2025 GMT Not After : Sep 16 09:01:28 2025 GMT Subject: CN=b941a9bc3b5542a506809df34ec20082718a1963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:e1:30:cb:85:7f:17:ab:82:b7:5e:29:7c:38: d8:16:bf:37:58:bc:25:9e:7d:cd:12:38:2d:f2:74: c0:40:51:0b:9f:88:96:2e:a3:84:3f:91:c6:dd:52: 97:00:ef:e3:59:90:f1:38:c0:c8:9a:2a:94:e8:83: 31:a0:e1:72:14:ca:5b:17:86:20:42:c3:21:30:a2: 30:b4:16:5a:85:a6:d4:ad:6e:e8:1f:8c:99:7d:d6: 03:ad:6d:15:b1:02:47:db:18:4c:c8:50:54:6c:46: cb:3c:df:af:ac:1e:ba:44:fa:99:fc:a0:5c:b6:44: b9:9c:e7:4b:0f:37:25:89:b7:2d:36:34:37:aa:98: 05:68:fd:d0:55:7e:e6:b3:bd:62:af:32:e6:9c:3e: b3:ae:c7:01:94:15:47:da:98:7c:c1:7d:43:e2:0a: 32:58:be:96:f0:67:23:c4:96:33:a4:3b:21:6e:cc: 08:98:7a:a2:1f:da:c6:6a:79:46:8c:a6:3f:69:f7: 0c:f1:96:d7:0a:65:23:18:10:c3:ac:d9:37:3e:12: 2b:c8:c2:49:19:19:85:93:94:b1:6d:65:e4:97:2e: 26:e3:24:5c:fe:c4:0d:25:a9:c2:9a:dc:6b:00:bd: 78:7d:67:33:55:e3:af:6f:99:b3:ac:bc:97:fd:11: 5d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:41:A9:BC:3B:55:42:A5:06:80:9D:F3:4E:C2:00:82:71:8A:19:63 X509v3 Authority Key Identifier: keyid:71:94:B2:FF:C8:94:4F:E1:35:79:60:28:11:1C:CE:73:47:1E:C3:7F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/cZSy_8iUT-E1eWAoERzOc0cew38.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/1069ef-3dc1-444e-a7df-0eab8139b23a/1/cZSy_8iUT-E1eWAoERzOc0cew38.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/29/1069ef-3dc1-444e-a7df-0eab8139b23a/1/cZSy_8iUT-E1eWAoERzOc0cew38.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:98:72:7f:e4:57:c2:36:3d:ef:b3:73:e5:9e:77:a4:02:b5: 6f:98:c6:57:37:80:60:4c:7f:36:59:c5:09:16:ee:70:15:97: 61:58:b3:42:d9:e6:4a:2f:bf:7b:27:33:9a:85:51:bd:e1:83: bb:8a:97:95:50:7a:b1:ba:09:fb:75:f6:a4:b5:07:17:57:a7: 41:1c:46:34:76:77:00:ef:e0:dc:86:dc:27:57:3d:2a:66:e5: 99:70:5f:49:38:29:56:ab:36:1e:db:4a:58:ce:7d:e3:ef:64: 00:9e:10:96:c6:97:ec:f3:8c:b6:6a:4b:54:91:23:a6:f3:43: 0f:f3:ae:dc:6d:42:2c:23:7b:c9:a5:dd:31:0f:a4:c8:5c:27: 98:fe:80:6c:3d:23:c3:11:29:1c:91:91:cb:92:aa:33:e5:c0: 64:ad:30:a2:9c:56:1f:88:08:0d:68:6d:7f:c5:7f:7b:03:b4: 31:ef:ef:a7:a0:c5:0e:84:3d:5a:ba:99:73:49:f5:48:c6:e7: d6:1d:57:ed:28:04:0e:3c:84:70:d5:bb:e8:a2:3d:68:26:2c: fe:2d:47:b8:a5:5a:a2:01:85:77:55:10:16:9a:e7:aa:45:02: 2a:8b:56:a3:e0:9a:82:2b:18:ab:b9:69:80:fe:62:6d:cd:02: 5f:fb:cc:e0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZlMm5RtZm4OU+cROCMy0FhGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDcxOTRiMmZmYzg5NDRmZTEzNTc5NjAyODExMWNjZTczNDcx ZWMzN2YwHhcNMjUwOTE1MDkwMTI4WhcNMjUwOTE2MDkwMTI4WjAzMTEwLwYDVQQD EyhiOTQxYTliYzNiNTU0MmE1MDY4MDlkZjM0ZWMyMDA4MjcxOGExOTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnOEwy4V/F6uCt14pfDjYFr83WLwl nn3NEjgt8nTAQFELn4iWLqOEP5HG3VKXAO/jWZDxOMDImiqU6IMxoOFyFMpbF4Yg QsMhMKIwtBZahabUrW7oH4yZfdYDrW0VsQJH2xhMyFBUbEbLPN+vrB66RPqZ/KBc tkS5nOdLDzclibctNjQ3qpgFaP3QVX7ms71irzLmnD6zrscBlBVH2ph8wX1D4goy WL6W8GcjxJYzpDshbswImHqiH9rGanlGjKY/afcM8ZbXCmUjGBDDrNk3PhIryMJJ GRmFk5SxbWXkly4m4yRc/sQNJanCmtxrAL14fWczVeOvb5mzrLyX/RFdXwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLlBqbw7VUKlBoCd807CAIJxihljMB8GA1UdIwQY MBaAFHGUsv/IlE/hNXlgKBEcznNHHsN/MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY1pTeV84aVVULUUxZVdBb0VSek9jMGNldzM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yOS8xMDY5ZWYtM2RjMS00NDRlLWE3ZGYt MGVhYjgxMzliMjNhLzEvY1pTeV84aVVULUUxZVdBb0VSek9jMGNldzM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yOS8xMDY5ZWYtM2RjMS00NDRlLWE3ZGYtMGVhYjgxMzliMjNh LzEvY1pTeV84aVVULUUxZVdBb0VSek9jMGNldzM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAS5hyf+RX wjY977Nz5Z53pAK1b5jGVzeAYEx/NlnFCRbucBWXYVizQtnmSi+/eyczmoVRveGD u4qXlVB6sboJ+3X2pLUHF1enQRxGNHZ3AO/g3IbcJ1c9KmblmXBfSTgpVqs2HttK WM594+9kAJ4QlsaX7POMtmpLVJEjpvNDD/Ou3G1CLCN7yaXdMQ+kyFwnmP6AbD0j wxEpHJGRy5KqM+XAZK0wopxWH4gIDWhtf8V/ewO0Me/vp6DFDoQ9WrqZc0n1SMbn 1h1X7SgEDjyEcNW76KI9aCYs/i1HuKVaogGFd1UQFprnqkUCKotWo+CagisYq7lp gP5ibc0CX/vM4A== -----END CERTIFICATE-----Generated at Mon Dec 15 12:05:00 2025 by rpki-client