This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft File: tIKj5Qem8UAPb74uFI-hZERH5s0.mft (raw, json) Hash identifier: SlzfGHKqCKPIazxlxUFvy5saJAivJ2NWoP2sq42myl4= Subject key identifier: 1C:B7:25:18:4B:3C:DE:EC:22:EA:4A:F2:C4:75:D8:C9:37:D5:E5:89 Authority key identifier: B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD Certificate issuer: /CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd Certificate serial: 01971EB51FFD4838C0F9F6E698A3873231E1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft Manifest number: 0D80 Signing time: Fri 30 May 2025 01:01:15 +0000 Manifest this update: Fri 30 May 2025 01:01:15 +0000 Manifest next update: Sat 31 May 2025 01:01:15 +0000 Files and hashes: 1: jc3nJE4HlaAIZYtU9WTa-kp6P_0.roa (hash: ni65Uin42OxyzHPEODsDWUqZ0OwEhmfq3oGGPy0ODBg=) 2: tIKj5Qem8UAPb74uFI-hZERH5s0.crl (hash: CNFEGJtPrOlnY1X1shhkWfxOyL2oIfHGGu/oIZO7+I8=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:1e:b5:1f:fd:48:38:c0:f9:f6:e6:98:a3:87:32:31:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b482a3e507a6f1400f6fbe2e148fa1644447e6cd Validity Not Before: May 30 01:01:15 2025 GMT Not After : May 31 01:01:15 2025 GMT Subject: CN=1cb725184b3cdeec22ea4af2c475d8c937d5e589 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5a:93:22:6c:eb:a9:03:48:49:dc:cf:f8:da: b4:61:44:a5:7c:20:c4:56:fa:20:aa:fa:96:19:a5: 71:71:36:a0:c3:5b:89:0c:9e:2d:e1:b8:09:61:18: b1:64:8f:c4:92:05:fd:82:f5:8e:c4:bc:66:ac:0f: 34:c6:6d:aa:3e:6b:ec:a2:a0:a9:c7:c5:f0:1e:c6: 09:2b:e0:10:3e:36:4b:15:0d:36:84:28:fc:18:3b: 2c:c1:c1:48:d4:51:99:25:aa:71:04:a7:b1:01:0d: dd:17:4e:cf:1c:f9:fd:35:9d:25:1f:69:db:70:f7: b5:eb:65:96:6d:48:2c:fd:9b:bb:0e:0e:34:43:f0: 29:c1:4e:3c:d3:85:aa:8b:6b:af:e6:d2:df:7b:cd: 52:9f:0a:03:f6:bd:f9:cc:98:52:73:2e:18:bb:15: 2c:b7:16:6e:61:9e:70:ea:95:e3:e7:6d:31:fe:67: a7:f0:5e:23:8c:93:d5:68:9c:a1:04:55:88:e8:a7: d2:22:fc:e5:1c:b4:cc:f2:a5:b6:bc:31:67:a7:ea: 3f:2b:1a:8e:fd:55:bc:e5:83:7a:a2:01:c3:d2:c2: c0:78:c9:29:16:63:24:65:62:55:dd:dd:c2:05:a0: 73:a1:b2:06:69:63:d2:1b:06:21:d9:8b:34:9f:e1: d9:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:B7:25:18:4B:3C:DE:EC:22:EA:4A:F2:C4:75:D8:C9:37:D5:E5:89 X509v3 Authority Key Identifier: keyid:B4:82:A3:E5:07:A6:F1:40:0F:6F:BE:2E:14:8F:A1:64:44:47:E6:CD X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tIKj5Qem8UAPb74uFI-hZERH5s0.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/6b/18ce6c-7132-447d-8f0e-756274e447ea/1/tIKj5Qem8UAPb74uFI-hZERH5s0.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c4:b3:84:6f:b8:cc:de:67:43:89:9c:25:36:53:0b:30:52:03: 59:48:f7:02:2f:d6:ee:b9:d2:88:57:7f:04:4c:51:15:2a:09: 19:f4:f5:56:a7:df:03:72:4b:0e:cf:09:21:c2:b0:48:49:d8: d9:8e:27:35:84:a5:24:5b:b4:b0:00:17:35:1c:eb:44:ff:6e: 16:52:8c:72:38:01:4a:1e:e7:47:7d:2e:a0:50:52:20:7c:87: 4c:ea:df:c9:e5:21:8b:62:81:20:1b:d7:78:97:d5:d2:23:39: 58:8a:fb:a5:da:f6:a1:6a:4f:f5:39:d2:ee:ba:b3:4b:86:e1: 16:3d:09:a5:e4:ff:fb:20:4b:79:58:67:a4:be:81:27:da:d8: d8:24:bc:2c:3e:df:05:c9:09:e0:57:5c:da:ef:ce:62:d0:18: db:1b:d0:c0:34:5e:44:8e:5b:28:37:41:68:99:e9:30:49:53: 8f:7e:58:0c:62:74:da:40:ff:ce:1f:1f:48:a0:ae:5a:ee:a3: ce:6b:cd:9c:d3:aa:7c:77:6f:5c:88:1f:a1:fa:58:cf:08:3a: d4:69:74:3d:ac:12:07:9b:2b:63:13:21:e2:80:9c:f3:73:fd: 04:de:81:b4:0a:bc:88:5e:8f:c2:5f:bc:84:c9:60:56:dc:f4: f3:4a:e3:0b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZcetR/9SDjA+fbmmKOHMjHhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGI0ODJhM2U1MDdhNmYxNDAwZjZmYmUyZTE0OGZhMTY0NDQ0 N2U2Y2QwHhcNMjUwNTMwMDEwMTE1WhcNMjUwNTMxMDEwMTE1WjAzMTEwLwYDVQQD EygxY2I3MjUxODRiM2NkZWVjMjJlYTRhZjJjNDc1ZDhjOTM3ZDVlNTg5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxVqTImzrqQNISdzP+Nq0YUSlfCDE VvogqvqWGaVxcTagw1uJDJ4t4bgJYRixZI/EkgX9gvWOxLxmrA80xm2qPmvsoqCp x8XwHsYJK+AQPjZLFQ02hCj8GDsswcFI1FGZJapxBKexAQ3dF07PHPn9NZ0lH2nb cPe162WWbUgs/Zu7Dg40Q/ApwU4804Wqi2uv5tLfe81SnwoD9r35zJhScy4YuxUs txZuYZ5w6pXj520x/men8F4jjJPVaJyhBFWI6KfSIvzlHLTM8qW2vDFnp+o/KxqO /VW85YN6ogHD0sLAeMkpFmMkZWJV3d3CBaBzobIGaWPSGwYh2Ys0n+HZywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFBy3JRhLPN7sIupK8sR12Mk31eWJMB8GA1UdIwQY MBaAFLSCo+UHpvFAD2++LhSPoWRER+bNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvdElLajVRZW04VUFQYjc0dUZJLWhaRVJINXMwLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC82Yi8xOGNlNmMtNzEzMi00NDdkLThmMGUt NzU2Mjc0ZTQ0N2VhLzEvdElLajVRZW04VUFQYjc0dUZJLWhaRVJINXMwLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC82Yi8xOGNlNmMtNzEzMi00NDdkLThmMGUtNzU2Mjc0ZTQ0N2Vh LzEvdElLajVRZW04VUFQYjc0dUZJLWhaRVJINXMwLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxLOEb7jM 3mdDiZwlNlMLMFIDWUj3Ai/W7rnSiFd/BExRFSoJGfT1VqffA3JLDs8JIcKwSEnY 2Y4nNYSlJFu0sAAXNRzrRP9uFlKMcjgBSh7nR30uoFBSIHyHTOrfyeUhi2KBIBvX eJfV0iM5WIr7pdr2oWpP9TnS7rqzS4bhFj0JpeT/+yBLeVhnpL6BJ9rY2CS8LD7f BckJ4Fdc2u/OYtAY2xvQwDReRI5bKDdBaJnpMElTj35YDGJ02kD/zh8fSKCuWu6j zmvNnNOqfHdvXIgfofpYzwg61Gl0PawSB5srYxMh4oCc83P9BN6BtAq8iF6Pwl+8 hMlgVtz080rjCw== -----END CERTIFICATE-----Generated at Fri Dec 12 09:47:45 2025 by rpki-client