This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft File: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft (raw, json) Hash identifier: 0Oh7taOWmepuYY4lBWJcc9I3SSgAdpIyO2pJ3Szj6XI= Subject key identifier: DF:33:1B:DA:E0:DF:79:1E:E2:F7:87:CD:42:78:80:95:A0:85:32:0C Authority key identifier: 85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA Certificate issuer: /CN=852ece9c9a324d45c35f9559f329d8869dab53ba Certificate serial: 019A910C7C70A374043E2A4636C1F2520F1C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft Manifest number: 173A Signing time: Mon 17 Nov 2025 09:01:45 +0000 Manifest this update: Mon 17 Nov 2025 09:01:45 +0000 Manifest next update: Tue 18 Nov 2025 09:01:45 +0000 Files and hashes: 1: POUPcBO03DMIXVf_MFYgEgCOm2c.roa (hash: U70/4wMtnCfwgqCkp7u+PlnT2NS/US0B2K04xMH3TNI=) 2: hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl (hash: ndJZ9CT4o91km4bLfUOeXLWWaqySV2ns649BYI/3eHM=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:91:0c:7c:70:a3:74:04:3e:2a:46:36:c1:f2:52:0f:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=852ece9c9a324d45c35f9559f329d8869dab53ba Validity Not Before: Nov 17 09:01:45 2025 GMT Not After : Nov 18 09:01:45 2025 GMT Subject: CN=df331bdae0df791ee2f787cd42788095a085320c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:45:4a:fb:6f:4c:e8:ab:a1:fd:7b:59:c0:21: 79:50:76:ff:aa:8a:db:a6:c4:b8:0b:a1:0f:79:2d: 28:f0:41:37:79:26:31:df:28:08:6c:1e:06:f7:e9: 80:b7:7d:7b:cf:39:b6:03:0d:3d:9b:c0:d5:17:87: 7e:e8:34:6e:9f:75:9d:de:5e:5b:89:1d:a3:cf:aa: 1e:4c:c0:ae:9d:3c:0a:76:52:21:60:25:0e:90:e6: 56:a0:01:4b:40:35:fd:a8:52:9f:ca:a3:20:f4:f4: 85:78:13:25:db:24:17:aa:08:19:36:7b:46:e0:17: 49:1b:38:34:30:ab:be:12:fd:0d:aa:35:42:4e:77: 32:9b:9f:41:bc:7d:64:e2:78:b9:2b:2a:5a:fd:91: 13:ca:21:36:bd:29:45:f9:8f:da:56:3f:41:59:53: 42:1d:97:50:6a:57:ca:d0:64:84:56:7e:e2:af:0c: 54:1d:4d:4b:9f:b9:18:a0:c3:7c:8b:aa:ec:fa:08: 37:a0:58:8d:dd:63:eb:17:09:65:e4:f8:30:b1:a3: 34:e2:ea:e9:34:16:54:5a:ce:aa:f6:a8:6d:28:28: 6f:13:61:51:01:e0:e8:b5:b9:d1:e1:e7:c5:ef:23: 4e:57:b5:68:31:b6:2f:0c:dd:1a:a2:d4:75:ff:c3: 84:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:33:1B:DA:E0:DF:79:1E:E2:F7:87:CD:42:78:80:95:A0:85:32:0C X509v3 Authority Key Identifier: keyid:85:2E:CE:9C:9A:32:4D:45:C3:5F:95:59:F3:29:D8:86:9D:AB:53:BA X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/38/d3cce6-b47b-4d06-a30f-eb2411d212ab/1/hS7OnJoyTUXDX5VZ8ynYhp2rU7o.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 04:f0:90:3f:d9:a6:37:bb:b7:54:81:32:0b:8b:83:05:bb:60: 3f:1f:53:9c:8d:19:95:6e:6a:44:55:93:25:d1:f8:7f:e6:8c: b0:72:e4:89:1d:82:b7:78:c3:d4:cf:3c:18:b1:13:5d:20:19: 79:ae:66:76:a5:5c:33:db:fb:8a:b1:3f:ad:40:97:c8:69:c9: ab:ed:33:93:8a:da:2b:c4:79:6a:70:a5:21:1b:33:a5:cc:4f: 61:e4:e1:0b:35:dd:09:45:d6:53:0d:50:68:89:4a:3b:19:10: 70:03:4d:55:c5:62:5c:7a:dd:05:cf:b1:90:f8:9e:a2:58:db: 7d:1e:20:56:d8:4c:14:65:9a:4a:53:3a:7d:7e:43:58:75:78: bb:f6:c3:f7:70:e1:3c:ac:18:a5:73:15:ec:19:df:56:43:a5: e5:08:7c:95:1b:d5:bb:a8:5a:cf:db:df:1e:7c:12:04:14:8e: 62:a3:35:1b:42:c9:fa:91:43:d9:6d:79:78:bb:6b:82:7b:36: 2e:0a:e2:ee:cb:a6:d8:74:ab:36:00:0c:c2:82:8f:dd:76:aa: 7b:34:5c:59:13:f9:3b:2e:87:5b:21:de:b3:56:27:45:22:ba: 8a:23:cc:3e:66:20:5d:f6:a8:94:3e:c9:7e:7a:5a:55:f7:6e: ed:8a:5e:c4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqRDHxwo3QEPipGNsHyUg8cMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg1MmVjZTljOWEzMjRkNDVjMzVmOTU1OWYzMjlkODg2OWRh YjUzYmEwHhcNMjUxMTE3MDkwMTQ1WhcNMjUxMTE4MDkwMTQ1WjAzMTEwLwYDVQQD EyhkZjMzMWJkYWUwZGY3OTFlZTJmNzg3Y2Q0Mjc4ODA5NWEwODUzMjBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEVK+29M6Kuh/XtZwCF5UHb/qorb psS4C6EPeS0o8EE3eSYx3ygIbB4G9+mAt317zzm2Aw09m8DVF4d+6DRun3Wd3l5b iR2jz6oeTMCunTwKdlIhYCUOkOZWoAFLQDX9qFKfyqMg9PSFeBMl2yQXqggZNntG 4BdJGzg0MKu+Ev0NqjVCTncym59BvH1k4ni5Kypa/ZETyiE2vSlF+Y/aVj9BWVNC HZdQalfK0GSEVn7irwxUHU1Ln7kYoMN8i6rs+gg3oFiN3WPrFwll5PgwsaM04urp NBZUWs6q9qhtKChvE2FRAeDotbnR4efF7yNOV7VoMbYvDN0aotR1/8OEFQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFN8zG9rg33ke4veHzUJ4gJWghTIMMB8GA1UdIwQY MBaAFIUuzpyaMk1Fw1+VWfMp2Iadq1O6MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8zOC9kM2NjZTYtYjQ3Yi00ZDA2LWEzMGYt ZWIyNDExZDIxMmFiLzEvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8zOC9kM2NjZTYtYjQ3Yi00ZDA2LWEzMGYtZWIyNDExZDIxMmFi LzEvaFM3T25Kb3lUVVhEWDVWWjh5bllocDJyVTdvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEABPCQP9mm N7u3VIEyC4uDBbtgPx9TnI0ZlW5qRFWTJdH4f+aMsHLkiR2Ct3jD1M88GLETXSAZ ea5mdqVcM9v7irE/rUCXyGnJq+0zk4raK8R5anClIRszpcxPYeThCzXdCUXWUw1Q aIlKOxkQcANNVcViXHrdBc+xkPieoljbfR4gVthMFGWaSlM6fX5DWHV4u/bD93Dh PKwYpXMV7BnfVkOl5Qh8lRvVu6haz9vfHnwSBBSOYqM1G0LJ+pFD2W15eLtrgns2 Lgri7sum2HSrNgAMwoKP3XaqezRcWRP5Oy6HWyHes1YnRSK6iiPMPmYgXfaolD7J fnpaVfdu7YpexA== -----END CERTIFICATE-----Generated at Sun Dec 14 08:38:50 2025 by rpki-client