This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft File: 58OrlrdMKsTwSuYqt-gs3xmI7UA.mft (raw, json) Hash identifier: Ux5NoNKD57Ywo5K4VO7Fxl8Y8JzzMOROtjpzTuZWG/4= Subject key identifier: 21:49:31:10:B0:36:69:8C:75:49:08:3F:A4:B3:48:C2:C5:49:20:0C Authority key identifier: E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40 Certificate issuer: /CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40 Certificate serial: 019A958D43FAAD078F283EBDF0F08B878353 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft Manifest number: 08B3 Signing time: Tue 18 Nov 2025 06:00:54 +0000 Manifest this update: Tue 18 Nov 2025 06:00:54 +0000 Manifest next update: Wed 19 Nov 2025 06:00:54 +0000 Files and hashes: 1: 58OrlrdMKsTwSuYqt-gs3xmI7UA.crl (hash: myvemdwkeNBEGIABGIQXYzHOeXKhMVmvL0UU5MD6ueY=) 2: tRQVAZPhSI7yY2YBf58wHloNtVk.roa (hash: x6U/gqCwfyDYCGrA4HX4YKbEtJbHihcQ4Z9Ks5Bgn58=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:95:8d:43:fa:ad:07:8f:28:3e:bd:f0:f0:8b:87:83:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=e7c3ab96b74c2ac4f04ae62ab7e82cdf1988ed40 Validity Not Before: Nov 18 06:00:54 2025 GMT Not After : Nov 19 06:00:54 2025 GMT Subject: CN=21493110b036698c7549083fa4b348c2c549200c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:4a:5b:5f:27:01:a5:bc:d2:35:95:1d:72:54: 69:bb:c4:ea:9e:c7:bb:c4:d7:60:0d:63:f3:3c:d8: d5:d9:8c:51:de:90:8f:33:bc:f3:fc:93:9e:ab:03: c6:fb:c1:70:40:27:da:4c:25:46:52:91:7c:c0:e4: 8e:12:81:f4:5a:ea:f1:de:eb:9c:09:3e:36:06:21: b3:7b:87:8e:d8:4d:cb:76:df:40:af:62:09:d1:83: 0c:18:8e:97:9e:f8:85:b5:96:a6:45:f6:19:4f:98: 46:3b:49:95:39:08:9d:4a:93:5c:6e:33:84:0f:94: 4d:ab:18:37:50:15:2f:37:bd:1a:5c:a2:16:80:35: f3:66:11:73:9b:8b:29:a8:e9:d4:38:e8:14:65:52: 8e:f0:16:0a:ae:79:c3:18:54:68:14:42:79:c7:a7: 9e:08:13:87:ab:e6:75:7d:a6:dd:7b:8f:e7:d3:8a: 14:17:e4:ef:9e:70:a0:32:1c:27:4e:04:74:78:80: a6:72:ea:c0:90:d6:0e:7b:ec:61:36:31:76:31:5c: 9c:59:ec:8b:51:0d:3c:cc:46:2b:2c:2b:cc:66:5f: 51:19:a6:8f:5c:c8:41:2a:83:aa:f1:8f:5d:50:9d: ef:48:e7:ed:61:8f:59:b4:d2:ab:89:02:a8:6d:d6: 4a:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:49:31:10:B0:36:69:8C:75:49:08:3F:A4:B3:48:C2:C5:49:20:0C X509v3 Authority Key Identifier: keyid:E7:C3:AB:96:B7:4C:2A:C4:F0:4A:E6:2A:B7:E8:2C:DF:19:88:ED:40 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/58OrlrdMKsTwSuYqt-gs3xmI7UA.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/e7d974-e258-41fe-880a-4ec2d94e2ede/1/58OrlrdMKsTwSuYqt-gs3xmI7UA.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:3d:ab:19:23:d7:ef:f9:1d:9b:dd:b5:44:a4:64:87:63:ad: 80:8b:2c:05:7b:19:78:29:e3:63:97:af:cb:53:ea:b9:d8:14: 43:26:50:11:f1:56:66:6e:5d:9a:e1:d3:73:86:4b:da:86:d9: 48:a0:e3:62:80:f5:6d:a7:0e:80:2b:2c:82:d2:19:d0:79:55: d7:a9:2c:89:8d:fe:c4:61:8a:db:61:72:0f:96:8f:1f:d6:ec: 64:6a:be:7b:56:33:1c:85:fa:8f:00:e4:b5:73:0a:5d:a4:c5: 38:bd:18:20:e2:43:bc:8a:66:35:51:04:6e:ff:59:24:e0:be: 17:28:1f:2e:40:a0:1b:f4:44:47:26:69:e4:25:4f:40:08:cf: 06:19:fd:41:54:1c:a1:22:2d:59:21:5e:4d:32:f9:a2:d2:a9: 37:30:36:9e:4e:96:b2:45:c7:42:75:ee:3a:d0:c3:4a:b2:c2: 3f:ce:74:35:2f:fe:0f:d1:0f:4e:ca:ba:e4:37:10:b4:06:d9: 67:cf:97:ce:8c:a8:8a:97:21:07:ab:ef:2c:4e:27:d8:ef:7b: ed:df:68:7b:0d:60:6c:cc:5a:52:56:51:6d:25:4f:37:12:e6: 7f:0c:51:05:43:c8:c1:10:90:a2:2b:02:58:36:b1:56:4c:c1: 68:47:c6:9f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqVjUP6rQePKD698PCLh4NTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGU3YzNhYjk2Yjc0YzJhYzRmMDRhZTYyYWI3ZTgyY2RmMTk4 OGVkNDAwHhcNMjUxMTE4MDYwMDU0WhcNMjUxMTE5MDYwMDU0WjAzMTEwLwYDVQQD EygyMTQ5MzExMGIwMzY2OThjNzU0OTA4M2ZhNGIzNDhjMmM1NDkyMDBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoEpbXycBpbzSNZUdclRpu8Tqnse7 xNdgDWPzPNjV2YxR3pCPM7zz/JOeqwPG+8FwQCfaTCVGUpF8wOSOEoH0Wurx3uuc CT42BiGze4eO2E3Ldt9Ar2IJ0YMMGI6XnviFtZamRfYZT5hGO0mVOQidSpNcbjOE D5RNqxg3UBUvN70aXKIWgDXzZhFzm4spqOnUOOgUZVKO8BYKrnnDGFRoFEJ5x6ee CBOHq+Z1fabde4/n04oUF+TvnnCgMhwnTgR0eICmcurAkNYOe+xhNjF2MVycWeyL UQ08zEYrLCvMZl9RGaaPXMhBKoOq8Y9dUJ3vSOftYY9ZtNKriQKobdZKDQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCFJMRCwNmmMdUkIP6SzSMLFSSAMMB8GA1UdIwQY MBaAFOfDq5a3TCrE8ErmKrfoLN8ZiO1AMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvNThPcmxyZE1Lc1R3U3VZcXQtZ3MzeG1JN1VBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81ZC9lN2Q5NzQtZTI1OC00MWZlLTg4MGEt NGVjMmQ5NGUyZWRlLzEvNThPcmxyZE1Lc1R3U3VZcXQtZ3MzeG1JN1VBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81ZC9lN2Q5NzQtZTI1OC00MWZlLTg4MGEtNGVjMmQ5NGUyZWRl LzEvNThPcmxyZE1Lc1R3U3VZcXQtZ3MzeG1JN1VBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAVT2rGSPX 7/kdm921RKRkh2OtgIssBXsZeCnjY5evy1PqudgUQyZQEfFWZm5dmuHTc4ZL2obZ SKDjYoD1bacOgCssgtIZ0HlV16ksiY3+xGGK22FyD5aPH9bsZGq+e1YzHIX6jwDk tXMKXaTFOL0YIOJDvIpmNVEEbv9ZJOC+FygfLkCgG/RERyZp5CVPQAjPBhn9QVQc oSItWSFeTTL5otKpNzA2nk6WskXHQnXuOtDDSrLCP850NS/+D9EPTsq65DcQtAbZ Z8+XzoyoipchB6vvLE4n2O977d9oew1gbMxaUlZRbSVPNxLmfwxRBUPIwRCQoisC WDaxVkzBaEfGnw== -----END CERTIFICATE-----Generated at Tue Dec 16 01:09:47 2025 by rpki-client