This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft File: dLOekBkiWjsP_gWoNW6-8zwnvpc.mft (raw, json) Hash identifier: E1pM71Dx28oLzxip31OzQtJjOk7PvFYPO+/sAlMhfpM= Subject key identifier: BB:6B:F1:4C:97:51:90:35:20:31:BC:2A:97:9D:8E:CB:3D:B0:B7:54 Authority key identifier: 74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97 Certificate issuer: /CN=74b39e9019225a3b0ffe05a8356ebef33c27be97 Certificate serial: 019A589CC36B339685209E51DB733479E1AF Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft Manifest number: 0705 Signing time: Thu 06 Nov 2025 10:00:59 +0000 Manifest this update: Thu 06 Nov 2025 10:00:59 +0000 Manifest next update: Fri 07 Nov 2025 10:00:59 +0000 Files and hashes: 1: ZRVv1QEy1kLLZIQQzKY3v_cBQvM.roa (hash: dP4rVEZl+sj+rbeXk/M+iHEaNgIv2c4UoqRTeljUbU8=) 2: dLOekBkiWjsP_gWoNW6-8zwnvpc.crl (hash: N9Bai5I9fzkxBp+l0N0QuMHmZdHbp3wfusujIyUl3xo=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:58:9c:c3:6b:33:96:85:20:9e:51:db:73:34:79:e1:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74b39e9019225a3b0ffe05a8356ebef33c27be97 Validity Not Before: Nov 6 10:00:59 2025 GMT Not After : Nov 7 10:00:59 2025 GMT Subject: CN=bb6bf14c975190352031bc2a979d8ecb3db0b754 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1b:da:2d:88:49:a2:39:1b:8e:36:8d:77:e3: ef:09:1a:29:f9:6e:90:d4:f1:53:af:76:60:a6:6d: 64:7b:24:53:d5:e5:f8:75:db:81:e9:74:09:8b:52: a3:7e:6f:70:43:60:5c:74:1e:1b:17:d0:80:6f:89: a2:1c:9c:35:4c:84:3d:03:51:06:a8:87:55:e6:30: 47:73:86:3c:4f:f2:38:01:ae:97:49:52:31:c8:78: 4d:cc:aa:d7:40:55:c4:a9:8c:e7:f0:20:b7:f6:c4: 1c:c9:54:4a:d9:5d:6e:a6:8f:d6:19:2d:70:10:cc: 4e:ac:ed:9f:d4:cf:59:b7:19:1d:bd:14:3c:54:a9: 86:40:e6:fd:f6:b6:5a:de:c1:c2:be:a7:77:a8:d7: 56:92:a7:4d:82:ee:94:42:db:ff:ab:a5:ac:bc:25: 51:15:c2:aa:e6:33:15:b3:4c:f0:f2:9e:57:ff:2d: 45:73:6b:82:22:3c:08:91:c1:c0:3e:bc:8b:83:d9: b6:1f:04:3a:f7:97:cc:07:ee:6d:a7:36:e4:4b:e5: f1:c6:55:8d:7b:6a:91:46:e1:c9:a5:d6:a4:76:f6: cd:68:37:0e:b2:6a:a0:6c:18:a1:e0:c3:21:e2:94: a3:0f:76:23:fd:80:39:3e:74:db:88:29:80:8b:b8: bb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:6B:F1:4C:97:51:90:35:20:31:BC:2A:97:9D:8E:CB:3D:B0:B7:54 X509v3 Authority Key Identifier: keyid:74:B3:9E:90:19:22:5A:3B:0F:FE:05:A8:35:6E:BE:F3:3C:27:BE:97 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/dLOekBkiWjsP_gWoNW6-8zwnvpc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/34/41d883-d99c-414b-9ab1-85a4926a739d/1/dLOekBkiWjsP_gWoNW6-8zwnvpc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:d3:65:b5:90:6f:51:7e:67:ce:dd:9b:ad:74:06:ac:c6:31: 5e:bc:60:0c:34:6d:b4:96:7a:60:bf:18:b8:a3:dd:a9:c4:32: 81:94:7b:9c:d5:7e:06:77:38:6a:e4:aa:cf:6e:01:d6:59:86: 52:88:e2:21:50:9a:3d:de:7e:cd:d2:49:e1:fe:31:c4:fb:56: 60:8a:d5:da:1f:b8:06:51:c3:2b:22:f5:cd:ac:83:7b:89:15: b6:4d:6e:6e:b5:ed:3e:13:2a:fa:0c:09:98:04:2e:8a:39:6a: 42:5f:aa:64:4d:9a:36:c3:a0:37:1d:b4:03:8f:ee:6c:d2:f9: e5:e8:8c:26:9b:92:44:37:76:2a:7f:07:64:7b:3d:65:07:37: 3f:e5:ce:67:f1:39:58:4e:8d:04:39:08:cf:18:b4:3b:7d:df: ec:28:22:a8:84:8c:9c:24:8f:14:cd:b3:02:dd:63:f7:9d:e2: 45:41:96:1b:b9:6e:82:67:f6:0e:0a:7c:dc:5c:b4:2c:d0:35: 50:2a:5a:fd:6a:2d:e3:4d:4e:8f:92:19:d3:e0:4c:36:db:e7: 14:5f:9d:bc:dd:59:22:a8:32:d6:d2:30:7a:41:ef:f7:04:e4: f7:94:ad:eb:51:da:7e:7b:eb:05:f6:4e:20:c2:42:a6:2f:99: 25:0b:80:a3 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpYnMNrM5aFIJ5R23M0eeGvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDc0YjM5ZTkwMTkyMjVhM2IwZmZlMDVhODM1NmViZWYzM2My N2JlOTcwHhcNMjUxMTA2MTAwMDU5WhcNMjUxMTA3MTAwMDU5WjAzMTEwLwYDVQQD EyhiYjZiZjE0Yzk3NTE5MDM1MjAzMWJjMmE5NzlkOGVjYjNkYjBiNzU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBvaLYhJojkbjjaNd+PvCRop+W6Q 1PFTr3Zgpm1keyRT1eX4dduB6XQJi1Kjfm9wQ2BcdB4bF9CAb4miHJw1TIQ9A1EG qIdV5jBHc4Y8T/I4Aa6XSVIxyHhNzKrXQFXEqYzn8CC39sQcyVRK2V1upo/WGS1w EMxOrO2f1M9ZtxkdvRQ8VKmGQOb99rZa3sHCvqd3qNdWkqdNgu6UQtv/q6WsvCVR FcKq5jMVs0zw8p5X/y1Fc2uCIjwIkcHAPryLg9m2HwQ695fMB+5tpzbkS+XxxlWN e2qRRuHJpdakdvbNaDcOsmqgbBih4MMh4pSjD3Yj/YA5PnTbiCmAi7i7DQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFLtr8UyXUZA1IDG8Kpedjss9sLdUMB8GA1UdIwQY MBaAFHSznpAZIlo7D/4FqDVuvvM8J76XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZExPZWtCa2lXanNQX2dXb05XNi04endudnBjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zNC80MWQ4ODMtZDk5Yy00MTRiLTlhYjEt ODVhNDkyNmE3MzlkLzEvZExPZWtCa2lXanNQX2dXb05XNi04endudnBjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zNC80MWQ4ODMtZDk5Yy00MTRiLTlhYjEtODVhNDkyNmE3Mzlk LzEvZExPZWtCa2lXanNQX2dXb05XNi04endudnBjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEARNNltZBv UX5nzt2brXQGrMYxXrxgDDRttJZ6YL8YuKPdqcQygZR7nNV+Bnc4auSqz24B1lmG UojiIVCaPd5+zdJJ4f4xxPtWYIrV2h+4BlHDKyL1zayDe4kVtk1ubrXtPhMq+gwJ mAQuijlqQl+qZE2aNsOgNx20A4/ubNL55eiMJpuSRDd2Kn8HZHs9ZQc3P+XOZ/E5 WE6NBDkIzxi0O33f7CgiqISMnCSPFM2zAt1j953iRUGWG7lugmf2Dgp83Fy0LNA1 UCpa/Wot401Oj5IZ0+BMNtvnFF+dvN1ZIqgy1tIwekHv9wTk95St61HafnvrBfZO IMJCpi+ZJQuAow== -----END CERTIFICATE-----Generated at Wed Dec 17 19:01:51 2025 by rpki-client