This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft File: k0S0h58Z7nGaNRRjABcm9obWWe8.mft (raw, json) Hash identifier: pb8NOaWdk9ffvIm40J6bMmPbeR+ogD7n7ZypAMcvexA= Subject key identifier: 32:4E:B6:38:EC:A0:F2:3B:FB:18:9C:0E:EE:90:5C:A0:1A:10:5F:85 Authority key identifier: 93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF Certificate issuer: /CN=9344b4879f19ee719a351463001726f686d659ef Certificate serial: 01990414428AFBBDBACA4EA72EE184D571C7 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft Manifest number: 1662 Signing time: Mon 01 Sep 2025 07:01:00 +0000 Manifest this update: Mon 01 Sep 2025 07:01:00 +0000 Manifest next update: Tue 02 Sep 2025 07:01:00 +0000 Files and hashes: 1: Nt9ND-MMeXw4WMscugEXD9h-l2k.roa (hash: +O2AiXlzhayfdWcajRKOtp0UP/P93QZHuIrykLEb3Xo=) 2: k0S0h58Z7nGaNRRjABcm9obWWe8.crl (hash: qTEvY5o0BWTmH+laG886U30Do5CjNx1rUwfna+QHJ+A=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:04:14:42:8a:fb:bd:ba:ca:4e:a7:2e:e1:84:d5:71:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9344b4879f19ee719a351463001726f686d659ef Validity Not Before: Sep 1 07:01:00 2025 GMT Not After : Sep 2 07:01:00 2025 GMT Subject: CN=324eb638eca0f23bfb189c0eee905ca01a105f85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:95:57:7b:1f:b3:4e:64:87:93:ee:fa:f7:76: 55:74:e6:67:e3:9c:80:52:fa:76:e9:f0:18:33:9c: d4:ef:af:81:0d:7e:4e:c9:06:0d:9e:8d:9a:9d:81: 94:8b:f6:e9:20:82:d1:c6:70:54:0f:26:fe:50:77: a2:aa:cc:29:c4:06:f5:27:a7:fa:9f:04:0e:6e:d6: 8a:a3:98:29:0b:48:91:71:43:5f:1f:e5:a4:a3:75: f2:05:ce:12:84:57:3b:dc:63:cc:ce:03:8e:bc:e4: 12:93:ed:0b:9a:e9:1c:62:d8:fd:e1:72:ae:6f:8f: e0:05:f5:aa:4b:25:b3:11:de:07:76:5e:db:c7:16: 97:7e:d7:e9:72:7b:d8:c4:d1:ee:92:74:1d:a8:db: 8e:e2:28:c6:da:55:39:ed:57:4b:b6:08:d5:09:76: 9d:b0:4a:fb:75:d5:03:29:e5:27:9f:b8:8b:7d:ac: b9:5d:74:d0:e9:10:af:67:52:5a:7d:2e:91:ad:51: 50:97:71:02:2b:6e:0a:1d:02:84:2b:c4:75:b4:23: 8d:0d:15:16:19:43:f2:62:2b:0b:9d:d4:d0:41:f7: d2:8a:08:34:d9:35:b1:51:0e:a6:70:a1:2e:30:36: 13:2e:78:ed:de:bb:0e:65:04:f3:99:a0:45:33:bf: 0e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4E:B6:38:EC:A0:F2:3B:FB:18:9C:0E:EE:90:5C:A0:1A:10:5F:85 X509v3 Authority Key Identifier: keyid:93:44:B4:87:9F:19:EE:71:9A:35:14:63:00:17:26:F6:86:D6:59:EF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/k0S0h58Z7nGaNRRjABcm9obWWe8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/5858f1-29c5-46e6-a76d-5a40e52cd481/1/k0S0h58Z7nGaNRRjABcm9obWWe8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:7f:ab:6d:ff:e3:37:08:04:07:c4:8b:01:08:34:ca:2f:df: e0:4b:be:6e:ad:85:25:e6:80:0f:5d:b2:94:de:34:0e:79:5e: a6:38:f2:5c:f8:2c:e9:41:4c:cf:56:3a:b7:ad:67:93:1d:64: 5a:e0:dc:e7:c4:39:19:5b:e4:60:a5:20:18:84:d0:d5:d4:53: 59:ae:44:74:16:d8:c3:ef:4e:7f:bf:ee:5f:b6:96:11:62:ed: fa:b7:6b:68:84:e3:19:bb:c6:7c:97:ff:90:eb:e8:56:4e:a5: 16:1b:77:a5:6c:1e:53:7c:e8:ca:9b:78:f9:2a:e2:06:e3:56: b4:3c:6d:6a:c8:9e:46:33:cb:84:c2:9c:76:96:a7:86:78:11: 27:8a:f2:07:61:8e:9b:c0:1e:b3:a4:bd:09:a8:89:c5:a3:1b: e0:c8:ef:24:a0:2b:14:80:2e:fa:39:52:8e:20:52:a0:5b:e7: ef:9b:86:82:2e:1d:8a:58:0a:d4:83:2b:8f:5b:10:ce:b9:2c: 0b:7e:bb:1d:c9:0f:38:e5:e4:22:4f:26:5c:13:1d:85:40:f6: 1c:3e:0f:2b:bd:94:c0:4d:d0:f1:56:15:73:02:94:e0:08:8e: 0d:5c:2b:b8:d6:71:cc:50:13:c3:b3:a5:ec:ed:ef:e1:37:ad: 29:c1:0c:c0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZkEFEKK+726yk6nLuGE1XHHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkzNDRiNDg3OWYxOWVlNzE5YTM1MTQ2MzAwMTcyNmY2ODZk NjU5ZWYwHhcNMjUwOTAxMDcwMTAwWhcNMjUwOTAyMDcwMTAwWjAzMTEwLwYDVQQD EygzMjRlYjYzOGVjYTBmMjNiZmIxODljMGVlZTkwNWNhMDFhMTA1Zjg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArJVXex+zTmSHk+7693ZVdOZn45yA Uvp26fAYM5zU76+BDX5OyQYNno2anYGUi/bpIILRxnBUDyb+UHeiqswpxAb1J6f6 nwQObtaKo5gpC0iRcUNfH+Wko3XyBc4ShFc73GPMzgOOvOQSk+0LmukcYtj94XKu b4/gBfWqSyWzEd4Hdl7bxxaXftfpcnvYxNHuknQdqNuO4ijG2lU57VdLtgjVCXad sEr7ddUDKeUnn7iLfay5XXTQ6RCvZ1JafS6RrVFQl3ECK24KHQKEK8R1tCONDRUW GUPyYisLndTQQffSigg02TWxUQ6mcKEuMDYTLnjt3rsOZQTzmaBFM78OGwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDJOtjjsoPI7+xicDu6QXKAaEF+FMB8GA1UdIwQY MBaAFJNEtIefGe5xmjUUYwAXJvaG1lnvMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvazBTMGg1OFo3bkdhTlJSakFCY205b2JXV2U4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80Yy81ODU4ZjEtMjljNS00NmU2LWE3NmQt NWE0MGU1MmNkNDgxLzEvazBTMGg1OFo3bkdhTlJSakFCY205b2JXV2U4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80Yy81ODU4ZjEtMjljNS00NmU2LWE3NmQtNWE0MGU1MmNkNDgx LzEvazBTMGg1OFo3bkdhTlJSakFCY205b2JXV2U4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAOH+rbf/j NwgEB8SLAQg0yi/f4Eu+bq2FJeaAD12ylN40DnlepjjyXPgs6UFMz1Y6t61nkx1k WuDc58Q5GVvkYKUgGITQ1dRTWa5EdBbYw+9Of7/uX7aWEWLt+rdraITjGbvGfJf/ kOvoVk6lFht3pWweU3zoypt4+SriBuNWtDxtasieRjPLhMKcdpanhngRJ4ryB2GO m8Aes6S9CaiJxaMb4MjvJKArFIAu+jlSjiBSoFvn75uGgi4dilgK1IMrj1sQzrks C367HckPOOXkIk8mXBMdhUD2HD4PK72UwE3Q8VYVcwKU4AiODVwruNZxzFATw7Ol 7O3v4TetKcEMwA== -----END CERTIFICATE-----Generated at Fri Dec 19 16:40:09 2025 by rpki-client