This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft File: mK_pac8OqToOjlfulYjK9VcrOyI.mft (raw, json) Hash identifier: OfuIBN5wMeQfbTpI0PwUyqG6WKrOAmr2vN8364GhpOg= Subject key identifier: D5:A0:55:7D:BA:DF:19:25:8C:F1:9D:4B:2F:B7:F0:AF:13:CE:D1:4E Authority key identifier: 98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22 Certificate issuer: /CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22 Certificate serial: 019AA07EEA6977058979E08A706FE02BE49E Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft Manifest number: 055C Signing time: Thu 20 Nov 2025 09:01:03 +0000 Manifest this update: Thu 20 Nov 2025 09:01:03 +0000 Manifest next update: Fri 21 Nov 2025 09:01:03 +0000 Files and hashes: 1: 022L9fV8F1ZZ2EE1EuaAsn4eywo.roa (hash: XmLPJO8dC104vud5SObyJBz1K1qN+7X4uqFqIhLIBZ4=) 2: mK_pac8OqToOjlfulYjK9VcrOyI.crl (hash: 72eI0KMr+raCWq5YbVrGDrjsd+hMWVoJau+BQtWDpK0=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:a0:7e:ea:69:77:05:89:79:e0:8a:70:6f:e0:2b:e4:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=98afe969cf0ea93a0e8e57ee9588caf5572b3b22 Validity Not Before: Nov 20 09:01:03 2025 GMT Not After : Nov 21 09:01:03 2025 GMT Subject: CN=d5a0557dbadf19258cf19d4b2fb7f0af13ced14e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0d:aa:37:20:95:03:56:cb:42:31:14:52:88: fa:e9:37:da:6d:00:d7:a5:f3:5f:60:67:71:03:d4: c0:7f:b9:31:7d:d8:bc:06:55:bc:ad:56:65:74:02: c1:53:84:21:a9:ce:f1:97:aa:5e:ee:bc:57:a4:fe: ec:e8:f0:ee:cd:b6:93:94:07:b3:69:93:95:08:e4: 85:cf:8e:96:62:fd:3e:ed:ac:7f:9a:b5:e7:76:07: 22:b7:4b:66:eb:b1:fa:4e:a1:c4:08:7a:d2:d8:71: 57:7b:5e:30:cf:b7:ef:8f:8f:81:bc:14:52:b4:f9: ba:ae:dc:96:6c:92:bd:0c:cc:bf:84:6e:c7:12:3a: bd:ac:c9:11:43:5d:4d:d3:8c:4d:8c:32:c2:15:2b: 2b:1f:38:57:e0:b5:95:fe:e6:65:55:99:01:f4:1e: db:a8:83:ac:50:0b:75:12:af:96:d1:6b:60:e1:62: f2:7d:71:a7:13:7d:6f:28:a8:11:fb:72:ea:0f:cd: f2:60:d3:8e:91:ac:a5:dd:73:3e:dc:36:8e:95:4e: dc:11:b6:50:af:fe:10:00:f7:8b:8b:72:ad:fd:4d: 97:31:56:bf:dd:4f:d6:3d:5f:27:a8:24:f7:c5:72: 70:d4:18:7b:60:21:87:da:1a:c4:55:83:22:ad:bc: 1d:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:A0:55:7D:BA:DF:19:25:8C:F1:9D:4B:2F:B7:F0:AF:13:CE:D1:4E X509v3 Authority Key Identifier: keyid:98:AF:E9:69:CF:0E:A9:3A:0E:8E:57:EE:95:88:CA:F5:57:2B:3B:22 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/mK_pac8OqToOjlfulYjK9VcrOyI.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/88/72bd07-3cf1-45b1-9eef-b847eb77afc8/1/mK_pac8OqToOjlfulYjK9VcrOyI.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:3d:d1:72:42:c2:99:dd:c4:31:3e:5b:17:33:e1:8d:61:5a: c7:40:71:ce:72:4c:c0:e9:7d:01:7c:3a:dc:14:c5:ec:ce:52: fc:ff:16:8f:82:95:3f:fc:68:ec:fd:1a:9a:7d:ba:98:a9:aa: 85:2c:26:9b:ac:07:b4:a4:01:a4:43:fb:df:6a:8b:5c:3e:29: 60:a7:6f:3f:5d:f9:96:68:a8:41:f8:16:3f:f3:bc:e0:63:25: 9e:f9:55:d1:8c:3a:47:07:f5:5c:2f:10:5a:a9:cd:7e:d4:33: 4c:b5:ad:07:5b:13:f0:63:b2:eb:51:4b:d4:5f:17:95:71:d5: d4:91:a0:06:55:39:b1:f0:8e:f0:f7:c2:e3:e2:62:f2:35:9a: 18:69:d7:67:26:10:5c:9d:de:50:8c:b0:0c:45:01:3f:4e:67: 87:ed:37:79:1d:b9:ce:16:17:dc:89:c8:09:29:a8:48:e8:e8: d3:88:65:e2:5c:52:a7:55:2a:d9:67:a2:ce:1d:8d:c8:2a:9e: 9e:61:4c:2c:30:45:59:73:23:2b:9c:87:05:6e:ac:3e:06:a3: 12:c0:8e:10:41:ce:e1:80:b1:67:1a:08:af:ea:66:e7:ec:fa: 0d:61:88:18:f6:bd:fe:91:cd:bc:81:00:b8:2f:41:df:fe:4f: 7b:b5:3d:0a -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqgfuppdwWJeeCKcG/gK+SeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDk4YWZlOTY5Y2YwZWE5M2EwZThlNTdlZTk1ODhjYWY1NTcy YjNiMjIwHhcNMjUxMTIwMDkwMTAzWhcNMjUxMTIxMDkwMTAzWjAzMTEwLwYDVQQD EyhkNWEwNTU3ZGJhZGYxOTI1OGNmMTlkNGIyZmI3ZjBhZjEzY2VkMTRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnw2qNyCVA1bLQjEUUoj66TfabQDX pfNfYGdxA9TAf7kxfdi8BlW8rVZldALBU4Qhqc7xl6pe7rxXpP7s6PDuzbaTlAez aZOVCOSFz46WYv0+7ax/mrXndgcit0tm67H6TqHECHrS2HFXe14wz7fvj4+BvBRS tPm6rtyWbJK9DMy/hG7HEjq9rMkRQ11N04xNjDLCFSsrHzhX4LWV/uZlVZkB9B7b qIOsUAt1Eq+W0Wtg4WLyfXGnE31vKKgR+3LqD83yYNOOkayl3XM+3DaOlU7cEbZQ r/4QAPeLi3Kt/U2XMVa/3U/WPV8nqCT3xXJw1Bh7YCGH2hrEVYMirbwdVQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNWgVX263xkljPGdSy+38K8TztFOMB8GA1UdIwQY MBaAFJiv6WnPDqk6Do5X7pWIyvVXKzsiMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvbUtfcGFjOE9xVG9PamxmdWxZaks5VmNyT3lJLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84OC83MmJkMDctM2NmMS00NWIxLTllZWYt Yjg0N2ViNzdhZmM4LzEvbUtfcGFjOE9xVG9PamxmdWxZaks5VmNyT3lJLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84OC83MmJkMDctM2NmMS00NWIxLTllZWYtYjg0N2ViNzdhZmM4 LzEvbUtfcGFjOE9xVG9PamxmdWxZaks5VmNyT3lJLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJT3RckLC md3EMT5bFzPhjWFax0BxznJMwOl9AXw63BTF7M5S/P8Wj4KVP/xo7P0amn26mKmq hSwmm6wHtKQBpEP732qLXD4pYKdvP135lmioQfgWP/O84GMlnvlV0Yw6Rwf1XC8Q WqnNftQzTLWtB1sT8GOy61FL1F8XlXHV1JGgBlU5sfCO8PfC4+Ji8jWaGGnXZyYQ XJ3eUIywDEUBP05nh+03eR25zhYX3InICSmoSOjo04hl4lxSp1Uq2Weizh2NyCqe nmFMLDBFWXMjK5yHBW6sPgajEsCOEEHO4YCxZxoIr+pm5+z6DWGIGPa9/pHNvIEA uC9B3/5Pe7U9Cg== -----END CERTIFICATE-----Generated at Thu Dec 11 23:18:37 2025 by rpki-client