This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
File:                     TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft (raw, json)
Hash identifier:          TuDv9Mbn2QB4JbwCbbEIF1RcRIbeT5Z6NvgAJw+uk6A=
Subject key identifier:   CE:EB:E7:68:AC:F2:15:8B:A6:06:C3:F8:0B:41:B9:F5:89:EA:C4:C2
Authority key identifier: 4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC
Certificate issuer:       /CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
Certificate serial:       019B443820AF11C51AE09B66417ABA0B1738
Authority info access:    rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer
Subject info access:      rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft
Manifest number:          074B
Signing time:             Mon 22 Dec 2025 04:01:27 +0000
Manifest this update:     Mon 22 Dec 2025 04:01:27 +0000
Manifest next update:     Tue 23 Dec 2025 04:01:27 +0000
Files and hashes:         1: 4m_ZlqWE1YEBP4kWtbELic7ECzg.roa (hash: t8PO7dqvDfBV4dwcfBXHsLynSbU2oXoJqnNbzqZG81g=)
                          2: TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl (hash: YM93QQzOJepoL73siJ3k3QIFvBQx0LdQoQdySLv2vCA=)
                          3: risExVobQciJpjckh7R5a6pHayQ.roa (hash: smtSJjRXs0E72dzCfhCCARBzkZPKWKCqhHgp8E/C6HY=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            01:9b:44:38:20:af:11:c5:1a:e0:9b:66:41:7a:ba:0b:17:38
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=4df1811f3997b950ac89e410ea3ef018a673d5fc
        Validity
            Not Before: Dec 22 04:01:27 2025 GMT
            Not After : Dec 23 04:01:27 2025 GMT
        Subject: CN=ceebe768acf2158ba606c3f80b41b9f589eac4c2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c8:66:3a:3d:dd:28:f8:b8:37:ca:f0:b5:2e:94:
                    01:f8:a0:14:0c:4a:00:bb:7f:72:13:11:65:54:83:
                    b5:4d:24:e1:18:d7:d5:f5:ed:3b:12:47:8d:a9:59:
                    91:dc:87:b0:ff:44:66:05:5a:41:ca:05:16:4d:c5:
                    25:c6:11:ce:06:22:01:60:ef:5e:e9:dd:7b:cb:b1:
                    6d:91:0d:e9:8f:5e:42:41:1a:f0:21:c7:bd:48:26:
                    ff:f1:e6:ce:92:d1:c9:d5:5d:51:35:92:be:79:94:
                    3b:53:e5:2b:38:f0:ca:e4:ea:93:9b:c2:19:d1:d5:
                    16:ba:2d:4a:d1:43:fd:30:30:83:ef:f4:3d:9e:d3:
                    77:00:b3:c7:64:5b:c9:55:47:c2:64:b5:85:a9:60:
                    2e:4b:67:77:b6:4d:81:28:bc:82:10:3a:e9:3f:5d:
                    37:ed:ff:2d:86:12:12:2f:fd:ba:77:0a:23:64:0c:
                    a7:f3:c3:0d:d0:06:74:e9:77:45:5b:e9:7f:17:a3:
                    0a:14:52:15:39:80:f8:46:24:22:7d:31:86:be:6b:
                    93:6f:55:34:b0:51:46:46:e0:5f:3e:85:c1:53:03:
                    71:13:73:b5:d2:11:9e:2e:f0:70:41:48:57:55:b0:
                    83:b3:cd:10:e7:ed:47:62:a3:74:f8:f6:96:1f:bc:
                    05:73
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                CE:EB:E7:68:AC:F2:15:8B:A6:06:C3:F8:0B:41:B9:F5:89:EA:C4:C2
            X509v3 Authority Key Identifier:
                keyid:4D:F1:81:1F:39:97:B9:50:AC:89:E4:10:EA:3E:F0:18:A6:73:D5:FC

            X509v3 Key Usage: critical
                Digital Signature
            Authority Information Access:
                CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TfGBHzmXuVCsieQQ6j7wGKZz1fw.cer

            Subject Information Access:
                Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.mft

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.ripe.net/repository/DEFAULT/82/3fe931-7dd6-443b-aade-d9a61937a1e5/1/TfGBHzmXuVCsieQQ6j7wGKZz1fw.crl

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6c:2b:8d:94:e1:80:d0:78:fe:8b:3e:35:4f:3e:ac:a8:4c:55:
         ee:9a:1a:32:a5:7d:41:95:b9:6c:87:64:3d:bb:33:6f:d8:1c:
         84:b1:fe:25:a1:98:55:d3:ba:b3:3a:b4:21:b3:f3:6f:1b:fc:
         7f:13:57:24:00:9d:cb:a5:2d:65:8f:28:32:47:26:4d:65:27:
         5f:47:60:4c:d9:99:28:0d:5e:68:92:2a:95:d7:eb:01:ec:56:
         17:80:16:f6:fc:22:fd:8e:ad:2c:8d:e5:71:f7:a8:23:93:e5:
         4a:26:7f:98:4f:84:b0:40:67:cf:ee:7d:93:47:06:df:bb:dc:
         79:ae:bb:df:2d:ce:c6:3a:4a:92:d9:52:b3:d9:e9:3d:73:f7:
         e1:f3:7c:f2:a3:50:59:7c:99:f7:4a:a9:cf:be:de:a0:0b:da:
         60:37:30:1e:f0:c1:27:1c:d8:62:06:bd:1f:2c:04:13:7c:06:
         fe:02:fc:04:96:8b:1c:58:f0:30:ef:d5:1a:b2:17:db:34:5b:
         fd:ce:b3:f8:9f:e8:9f:5a:fe:ef:f4:13:d0:fa:62:5a:d8:13:
         8e:59:43:ef:7c:3c:f8:ae:cc:08:2f:d4:7a:e2:ba:a0:ce:96:
         6c:96:3a:1d:c6:43:e9:b1:89:62:4d:87:d3:81:7e:0c:cf:01:
         73:77:6e:1f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----