This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft File: ZKPnXG0KuryTHChHzaqGX7jX-c8.mft (raw, json) Hash identifier: LCQ2stn7NR89IbQlMHsOg7kdvWR1uL0b1nN7Dl2Vjso= Subject key identifier: 45:1F:95:90:F4:DC:C2:D0:44:02:FD:36:A5:85:F5:0A:E3:49:99:BD Authority key identifier: 64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF Certificate issuer: /CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf Certificate serial: 019A0147EEE52987E00668EE21DEDB3CC334 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft Manifest number: 1676 Signing time: Mon 20 Oct 2025 11:01:22 +0000 Manifest this update: Mon 20 Oct 2025 11:01:22 +0000 Manifest next update: Tue 21 Oct 2025 11:01:22 +0000 Files and hashes: 1: ZKPnXG0KuryTHChHzaqGX7jX-c8.crl (hash: a7Eq5qu0DjOaF/s2YUn4/KeUdeWFu+Hj+NvB4h3r7eg=) 2: y9vY7PQkblV9_5mGvnjpI_1sy2c.roa (hash: IUOwXFsA4FATdHPgwe2EY1C0pHGXri80WzQO/bHofMM=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:01:47:ee:e5:29:87:e0:06:68:ee:21:de:db:3c:c3:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=64a3e75c6d0ababc931c2847cdaa865fb8d7f9cf Validity Not Before: Oct 20 11:01:22 2025 GMT Not After : Oct 21 11:01:22 2025 GMT Subject: CN=451f9590f4dcc2d04402fd36a585f50ae34999bd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e3:c5:fe:0d:88:09:7a:5a:d3:85:cf:f7:b8: a8:1c:f4:71:10:83:68:07:c3:39:2e:38:e7:4b:b3: 75:f4:53:20:62:46:b1:36:84:17:3b:00:94:d9:b4: 3c:bc:8b:ef:08:b8:21:bf:88:08:9a:54:0c:8a:92: 77:ad:06:3a:4a:db:ac:93:25:f2:bc:4d:be:c0:77: 32:9e:fd:05:be:d8:32:35:b9:97:e0:a7:a5:d9:d0: 74:2b:5d:62:7f:d8:0c:ac:5a:ba:b0:e3:f6:c9:55: f1:7a:56:51:3f:95:ff:cc:5e:df:0a:ea:61:ce:d1: 22:32:93:8d:d8:38:0f:9b:63:55:15:37:6b:04:2f: d7:13:4f:06:83:fa:1e:3e:85:ec:06:99:6d:56:5d: f5:0f:d7:06:5b:2f:3d:a8:eb:35:72:d8:4d:19:5e: c6:8f:b0:f9:e9:22:81:2f:ce:c0:12:99:5e:2c:24: 47:23:c8:c1:9d:39:78:1b:0b:08:a7:c5:92:ff:0c: 2f:3c:7b:56:ef:e2:af:4c:4c:a3:fb:b6:22:74:24: f9:ba:cb:06:63:28:9b:45:17:1a:ba:8a:22:91:d9: d1:38:7f:7e:d8:aa:3e:20:f5:6c:d9:a2:85:7c:d3: 66:a1:32:dd:05:af:ff:90:c6:03:a5:ca:92:1b:c0: 82:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1F:95:90:F4:DC:C2:D0:44:02:FD:36:A5:85:F5:0A:E3:49:99:BD X509v3 Authority Key Identifier: keyid:64:A3:E7:5C:6D:0A:BA:BC:93:1C:28:47:CD:AA:86:5F:B8:D7:F9:CF X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ZKPnXG0KuryTHChHzaqGX7jX-c8.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/40c07a-0323-4424-aeb3-f65826ffcbf8/1/ZKPnXG0KuryTHChHzaqGX7jX-c8.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:fb:06:c2:0a:40:34:dd:29:64:2a:f8:e1:6f:aa:72:07:5a: 26:f7:ea:7d:aa:fd:ad:91:22:cf:c2:80:ae:75:70:c9:e7:68: ad:52:2b:9f:be:6b:38:0a:83:8c:1c:15:1b:9b:9d:ee:87:16: f3:d2:8d:ea:93:7a:48:9d:02:7d:73:d8:f8:af:25:52:25:80: 1c:22:4f:56:36:41:a4:ce:e1:d1:1d:6f:38:1f:e1:09:13:6f: 4b:af:23:16:34:6b:3b:3c:1c:c7:e8:cf:ab:c2:62:5c:24:fb: 4d:09:c8:ea:d6:2f:f5:8f:ba:0c:54:d0:d4:d8:f0:d1:93:11: f5:38:9a:a6:a0:1e:53:07:e4:97:8c:69:b0:33:bd:bc:27:14: 47:8f:a5:07:c0:2f:cd:ce:36:ff:9d:23:4f:43:02:07:fa:11: 5e:fd:84:44:18:20:50:fb:b9:f8:35:73:e6:41:66:25:69:68: 88:73:3c:f6:dc:62:ed:22:10:fe:f1:fd:7e:61:1f:d8:ad:54: b2:52:b8:f9:b1:49:cc:92:ad:5b:db:ff:1c:dc:36:61:ce:12: 41:26:ca:c0:87:86:b3:4f:d6:05:d6:6a:68:2e:20:47:d5:45: b7:e0:51:d4:a0:fd:c2:5e:2c:b7:08:0e:49:e8:75:22:be:36: 40:8d:16:d4 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZoBR+7lKYfgBmjuId7bPMM0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDY0YTNlNzVjNmQwYWJhYmM5MzFjMjg0N2NkYWE4NjVmYjhk N2Y5Y2YwHhcNMjUxMDIwMTEwMTIyWhcNMjUxMDIxMTEwMTIyWjAzMTEwLwYDVQQD Eyg0NTFmOTU5MGY0ZGNjMmQwNDQwMmZkMzZhNTg1ZjUwYWUzNDk5OWJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxePF/g2ICXpa04XP97ioHPRxEINo B8M5LjjnS7N19FMgYkaxNoQXOwCU2bQ8vIvvCLghv4gImlQMipJ3rQY6StuskyXy vE2+wHcynv0FvtgyNbmX4Kel2dB0K11if9gMrFq6sOP2yVXxelZRP5X/zF7fCuph ztEiMpON2DgPm2NVFTdrBC/XE08Gg/oePoXsBpltVl31D9cGWy89qOs1cthNGV7G j7D56SKBL87AEpleLCRHI8jBnTl4GwsIp8WS/wwvPHtW7+KvTEyj+7YidCT5ussG YyibRRcauooikdnROH9+2Ko+IPVs2aKFfNNmoTLdBa//kMYDpcqSG8CC2wIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFEUflZD03MLQRAL9NqWF9QrjSZm9MB8GA1UdIwQY MBaAFGSj51xtCrq8kxwoR82qhl+41/nPMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4LmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84YS80MGMwN2EtMDMyMy00NDI0LWFlYjMt ZjY1ODI2ZmZjYmY4LzEvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4Lm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC84YS80MGMwN2EtMDMyMy00NDI0LWFlYjMtZjY1ODI2ZmZjYmY4 LzEvWktQblhHMEt1cnlUSENoSHphcUdYN2pYLWM4LmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/sGwgpA NN0pZCr44W+qcgdaJvfqfar9rZEiz8KArnVwyedorVIrn75rOAqDjBwVG5ud7ocW 89KN6pN6SJ0CfXPY+K8lUiWAHCJPVjZBpM7h0R1vOB/hCRNvS68jFjRrOzwcx+jP q8JiXCT7TQnI6tYv9Y+6DFTQ1Njw0ZMR9TiapqAeUwfkl4xpsDO9vCcUR4+lB8Av zc42/50jT0MCB/oRXv2ERBggUPu5+DVz5kFmJWloiHM89txi7SIQ/vH9fmEf2K1U slK4+bFJzJKtW9v/HNw2Yc4SQSbKwIeGs0/WBdZqaC4gR9VFt+BR1KD9wl4stwgO Seh1Ir42QI0W1A== -----END CERTIFICATE-----Generated at Sun Dec 14 13:49:48 2025 by rpki-client