This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft File: IQm0ddOrXNHMHElnHnf_nbXOGfE.mft (raw, json) Hash identifier: yRBlCQJALXITuQK4H2suEY8E5Adki0itZzyJtCQTTa0= Subject key identifier: FA:23:27:EE:6A:45:C8:34:80:AB:1F:62:6F:1F:2A:08:18:A2:30:20 Authority key identifier: 21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1 Certificate issuer: /CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1 Certificate serial: 01993794CD6BF4CF1369C258AB8ACF6519B2 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft Manifest number: 1077 Signing time: Thu 11 Sep 2025 07:02:02 +0000 Manifest this update: Thu 11 Sep 2025 07:02:02 +0000 Manifest next update: Fri 12 Sep 2025 07:02:02 +0000 Files and hashes: 1: IQm0ddOrXNHMHElnHnf_nbXOGfE.crl (hash: OhMRvxTCdz9iqVg6ahvm2fiS51YlIIzp8fjRc8oIjJ0=) 2: gxfPyS5KakpFEwmfLQLrUMtzDuA.roa (hash: rxllc4raZ48lNaZN0VdX0i2mHb0wFctajLKxvoGGQes=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:37:94:cd:6b:f4:cf:13:69:c2:58:ab:8a:cf:65:19:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2109b475d3ab5cd1cc1c49671e77ff9db5ce19f1 Validity Not Before: Sep 11 07:02:02 2025 GMT Not After : Sep 12 07:02:02 2025 GMT Subject: CN=fa2327ee6a45c83480ab1f626f1f2a0818a23020 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b7:60:f8:fa:60:be:51:03:cb:14:f2:08:95: 06:3d:ab:d7:28:cd:fc:6f:ff:69:fc:e5:a9:01:73: 14:4b:e9:cd:9e:8d:e2:bf:8a:6a:de:f8:7c:4a:ef: 45:c9:c8:f3:59:cc:8c:53:62:cf:22:85:3e:e4:43: f4:62:a6:57:8d:d8:e3:ac:50:05:0e:38:e5:1a:59: 3e:97:b8:32:62:f3:04:79:48:79:bd:69:db:9b:1f: 0d:75:11:af:67:8d:5c:97:08:a4:a0:b4:18:28:1a: 5c:3b:90:3f:cd:98:3f:08:08:b4:e8:8f:da:8a:71: bb:d0:29:16:76:67:1a:4e:ce:5d:d8:17:74:e6:90: f8:b8:9c:7d:5a:c7:9d:ba:26:b5:33:a9:77:87:09: b9:ae:41:90:57:a7:bc:a9:fe:6d:98:d6:7b:51:84: 73:a3:29:32:73:d5:4f:fc:d1:f3:79:e1:c5:1a:8a: 5f:4e:e4:6a:86:32:43:04:47:e7:ff:b0:6d:6f:23: c7:99:80:c0:1c:63:1b:05:94:23:f1:46:2a:fe:53: 2e:ec:91:b7:bf:3a:dc:de:90:b7:ff:fd:ed:2b:e5: 1b:e2:28:4d:b9:b1:70:1c:9d:d1:85:e2:19:14:b5: f1:b2:96:4d:91:a4:d9:4b:88:5f:05:fe:e8:ac:fe: 4c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:23:27:EE:6A:45:C8:34:80:AB:1F:62:6F:1F:2A:08:18:A2:30:20 X509v3 Authority Key Identifier: keyid:21:09:B4:75:D3:AB:5C:D1:CC:1C:49:67:1E:77:FF:9D:B5:CE:19:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IQm0ddOrXNHMHElnHnf_nbXOGfE.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/505b1a-0298-4e82-9161-09ad3277e84f/1/IQm0ddOrXNHMHElnHnf_nbXOGfE.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:b3:91:05:61:d7:39:49:52:8e:03:07:62:eb:8f:c7:08:73: 52:4c:a3:94:69:a6:41:8b:74:f5:53:9e:8a:56:1b:5c:a3:5a: 26:15:6c:f8:5e:a6:9c:c6:e4:bc:15:1b:65:e6:c7:16:85:79: b2:d2:57:34:52:08:09:17:ba:b8:f2:f3:d0:17:4f:e7:09:e2: b7:d3:f1:e1:12:13:31:11:e4:bc:ec:fc:7b:36:f4:4a:89:d6: 68:2d:3f:93:27:53:c3:45:42:36:19:72:fd:e7:8e:ec:88:8b: ac:56:45:57:1a:c6:2c:29:1f:14:1a:bb:ca:2c:a3:be:56:76: dd:e5:77:ab:0d:bf:dc:33:63:72:d1:9d:50:d7:69:f8:a1:85: e1:ce:74:c3:15:11:3f:0b:06:b0:09:77:da:ac:43:dd:01:f5: a0:b5:29:f3:33:c8:4e:98:26:7a:bd:46:5a:3a:e0:d0:ed:b0: e6:dc:f5:1d:f4:bb:09:b0:fd:92:c9:8d:3e:e3:6e:6b:ed:81: 93:cf:74:d7:c1:3c:79:37:0c:fd:18:4c:fb:cd:12:0b:c7:cb: 14:92:44:19:e3:f2:c3:c3:31:08:c1:73:3d:67:ff:ce:a2:1b: 76:ed:a9:38:d5:bd:c5:52:ef:e4:20:41:fc:69:52:68:81:a2: b4:21:92:91 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZk3lM1r9M8TacJYq4rPZRmyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDIxMDliNDc1ZDNhYjVjZDFjYzFjNDk2NzFlNzdmZjlkYjVj ZTE5ZjEwHhcNMjUwOTExMDcwMjAyWhcNMjUwOTEyMDcwMjAyWjAzMTEwLwYDVQQD EyhmYTIzMjdlZTZhNDVjODM0ODBhYjFmNjI2ZjFmMmEwODE4YTIzMDIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwrdg+PpgvlEDyxTyCJUGPavXKM38 b/9p/OWpAXMUS+nNno3iv4pq3vh8Su9FycjzWcyMU2LPIoU+5EP0YqZXjdjjrFAF DjjlGlk+l7gyYvMEeUh5vWnbmx8NdRGvZ41clwikoLQYKBpcO5A/zZg/CAi06I/a inG70CkWdmcaTs5d2Bd05pD4uJx9Wseduia1M6l3hwm5rkGQV6e8qf5tmNZ7UYRz oykyc9VP/NHzeeHFGopfTuRqhjJDBEfn/7BtbyPHmYDAHGMbBZQj8UYq/lMu7JG3 vzrc3pC3//3tK+Ub4ihNubFwHJ3RheIZFLXxspZNkaTZS4hfBf7orP5MmQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFPojJ+5qRcg0gKsfYm8fKggYojAgMB8GA1UdIwQY MBaAFCEJtHXTq1zRzBxJZx53/521zhnxMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSVFtMGRkT3JYTkhNSEVsbkhuZl9uYlhPR2ZFLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9hNS81MDViMWEtMDI5OC00ZTgyLTkxNjEt MDlhZDMyNzdlODRmLzEvSVFtMGRkT3JYTkhNSEVsbkhuZl9uYlhPR2ZFLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9hNS81MDViMWEtMDI5OC00ZTgyLTkxNjEtMDlhZDMyNzdlODRm LzEvSVFtMGRkT3JYTkhNSEVsbkhuZl9uYlhPR2ZFLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfbORBWHX OUlSjgMHYuuPxwhzUkyjlGmmQYt09VOeilYbXKNaJhVs+F6mnMbkvBUbZebHFoV5 stJXNFIICRe6uPLz0BdP5wnit9Px4RITMRHkvOz8ezb0SonWaC0/kydTw0VCNhly /eeO7IiLrFZFVxrGLCkfFBq7yiyjvlZ23eV3qw2/3DNjctGdUNdp+KGF4c50wxUR PwsGsAl32qxD3QH1oLUp8zPITpgmer1GWjrg0O2w5tz1HfS7CbD9ksmNPuNua+2B k89018E8eTcM/RhM+80SC8fLFJJEGePyw8MxCMFzPWf/zqIbdu2pONW9xVLv5CBB /GlSaIGitCGSkQ== -----END CERTIFICATE-----Generated at Thu Dec 18 12:28:13 2025 by rpki-client