This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft File: hDz1u4drdyt63kMpBctpbxNMqjk.mft (raw, json) Hash identifier: f8Q9LwHIz3A+Ra7nZ0vHbzH1Uh1WkFrQPVuPBWsQlUY= Subject key identifier: AF:9E:3F:72:12:1B:22:0D:0C:96:BF:0C:0D:E2:9F:5D:CF:8F:47:7D Authority key identifier: 84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39 Certificate issuer: /CN=843cf5bb876b772b7ade432905cb696f134caa39 Certificate serial: 019B48832975E7CF46B6E3239C698F4350D1 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft Manifest number: 1792 Signing time: Tue 23 Dec 2025 00:01:53 +0000 Manifest this update: Tue 23 Dec 2025 00:01:53 +0000 Manifest next update: Wed 24 Dec 2025 00:01:53 +0000 Files and hashes: 1: 8SOVzbdZRi1TiXuPdQBPQag2b1I.roa (hash: 4UxgH1Bm5rLISlPUt1abtwizcDNcCBaAAK4mH1Wxzxk=) 2: hDz1u4drdyt63kMpBctpbxNMqjk.crl (hash: 1xBi1EanR8yz5ypW5sFjgFOBeLp5itYZ9acw3mVG5JE=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:48:83:29:75:e7:cf:46:b6:e3:23:9c:69:8f:43:50:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=843cf5bb876b772b7ade432905cb696f134caa39 Validity Not Before: Dec 23 00:01:53 2025 GMT Not After : Dec 24 00:01:53 2025 GMT Subject: CN=af9e3f72121b220d0c96bf0c0de29f5dcf8f477d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:9e:2b:c1:1c:e0:6f:4b:5e:23:6c:ec:8b:7c: 2d:09:f4:d1:dc:83:69:ea:84:01:3a:67:71:7c:0f: 06:d1:97:73:62:6b:d0:62:64:ae:1d:27:29:e8:45: 00:67:4b:b8:0c:fa:e7:f8:e5:03:9a:53:10:97:37: 0d:40:d2:df:cc:4b:77:f5:d0:8d:8c:1f:16:50:5f: ee:db:80:f8:50:77:36:68:21:1c:10:af:16:6c:ca: f6:b8:be:7c:ac:b9:d7:9d:28:30:17:d2:e9:3c:cc: b8:25:9d:d5:cc:44:12:52:84:bb:82:00:10:ce:09: e7:6b:74:98:45:d0:fe:52:3b:24:a0:84:cd:f2:9b: 5d:43:f1:a6:1a:8b:72:d8:9a:54:77:85:f2:80:f4: 27:59:8f:91:8a:81:f6:a7:e7:f1:87:4a:3d:be:48: ae:18:bd:a2:e8:d9:d6:50:b6:b2:67:b8:fc:9e:30: 46:14:5c:f8:42:d4:8d:77:0c:59:28:13:9a:9c:c2: a8:69:c7:f3:57:41:4e:55:9a:c3:43:4c:e7:8c:04: fe:1f:7f:5d:38:6b:b6:bc:52:e5:f4:d0:17:2e:d5: 5e:1a:55:69:c0:fd:28:e6:ce:60:16:83:f1:a6:56: 19:94:d6:35:ad:a7:ea:c1:f6:13:53:e9:f7:d8:de: 75:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:9E:3F:72:12:1B:22:0D:0C:96:BF:0C:0D:E2:9F:5D:CF:8F:47:7D X509v3 Authority Key Identifier: keyid:84:3C:F5:BB:87:6B:77:2B:7A:DE:43:29:05:CB:69:6F:13:4C:AA:39 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hDz1u4drdyt63kMpBctpbxNMqjk.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/87/512214-e78e-4931-bfbb-16f5a5636244/1/hDz1u4drdyt63kMpBctpbxNMqjk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:ec:9e:b0:ac:ab:e3:8b:4d:5b:e4:21:65:09:60:0f:d5:61: d9:17:57:e5:aa:f6:61:27:42:62:89:e6:da:f5:26:fb:67:71: 22:1a:5c:2e:c6:d8:fb:8b:ae:bc:7d:e4:17:a2:07:7a:42:77: 3d:0b:f2:5c:66:46:c7:e3:70:e3:5d:ad:33:61:68:78:eb:ce: ed:35:c8:8b:b4:06:65:3b:cd:d0:89:4e:1d:e0:6d:5b:c5:c1: 24:69:f4:a3:78:af:17:b7:34:a6:49:55:db:d4:94:6d:77:94: 9e:2a:fa:1c:07:e7:14:ac:2e:93:23:22:40:05:50:eb:4d:b4: 28:87:6e:56:d7:4d:7d:18:3a:96:16:ac:4c:ea:28:a4:8d:19: fb:31:51:e5:23:0d:20:16:e8:2a:8a:35:ad:02:8c:a4:00:81: ac:26:a8:83:bf:71:69:99:16:f0:7f:56:d0:0e:fd:96:ee:01: 6f:21:97:43:f6:d4:33:49:69:e1:31:f9:40:f9:3d:2a:73:08: bc:5d:ef:1e:1e:09:2b:18:5a:cd:b5:0d:67:3a:9d:a6:59:9c: 02:99:9d:05:3d:63:0b:1e:48:41:d9:4d:1b:25:09:f6:fb:51: 6d:bc:2e:3b:d6:c8:c5:ac:7f:4c:65:e5:d8:38:d4:0e:43:65: f5:82:6e:bb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtIgyl1589GtuMjnGmPQ1DRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDg0M2NmNWJiODc2Yjc3MmI3YWRlNDMyOTA1Y2I2OTZmMTM0 Y2FhMzkwHhcNMjUxMjIzMDAwMTUzWhcNMjUxMjI0MDAwMTUzWjAzMTEwLwYDVQQD EyhhZjllM2Y3MjEyMWIyMjBkMGM5NmJmMGMwZGUyOWY1ZGNmOGY0NzdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn54rwRzgb0teI2zsi3wtCfTR3INp 6oQBOmdxfA8G0ZdzYmvQYmSuHScp6EUAZ0u4DPrn+OUDmlMQlzcNQNLfzEt39dCN jB8WUF/u24D4UHc2aCEcEK8WbMr2uL58rLnXnSgwF9LpPMy4JZ3VzEQSUoS7ggAQ zgnna3SYRdD+UjskoITN8ptdQ/GmGoty2JpUd4XygPQnWY+RioH2p+fxh0o9vkiu GL2i6NnWULayZ7j8njBGFFz4QtSNdwxZKBOanMKoacfzV0FOVZrDQ0znjAT+H39d OGu2vFLl9NAXLtVeGlVpwP0o5s5gFoPxplYZlNY1rafqwfYTU+n32N51ywIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFK+eP3ISGyINDJa/DA3in13Pj0d9MB8GA1UdIwQY MBaAFIQ89buHa3cret5DKQXLaW8TTKo5MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvaER6MXU0ZHJkeXQ2M2tNcEJjdHBieE5NcWprLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84Ny81MTIyMTQtZTc4ZS00OTMxLWJmYmIt MTZmNWE1NjM2MjQ0LzEvaER6MXU0ZHJkeXQ2M2tNcEJjdHBieE5NcWprLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84Ny81MTIyMTQtZTc4ZS00OTMxLWJmYmItMTZmNWE1NjM2MjQ0 LzEvaER6MXU0ZHJkeXQ2M2tNcEJjdHBieE5NcWprLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAreyesKyr 44tNW+QhZQlgD9Vh2RdX5ar2YSdCYonm2vUm+2dxIhpcLsbY+4uuvH3kF6IHekJ3 PQvyXGZGx+Nw412tM2FoeOvO7TXIi7QGZTvN0IlOHeBtW8XBJGn0o3ivF7c0pklV 29SUbXeUnir6HAfnFKwukyMiQAVQ6020KIduVtdNfRg6lhasTOoopI0Z+zFR5SMN IBboKoo1rQKMpACBrCaog79xaZkW8H9W0A79lu4BbyGXQ/bUM0lp4TH5QPk9KnMI vF3vHh4JKxhazbUNZzqdplmcApmdBT1jCx5IQdlNGyUJ9vtRbbwuO9bIxax/TGXl 2DjUDkNl9YJuuw== -----END CERTIFICATE-----Generated at Tue Jan 27 08:29:53 2026 by rpki-client