This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft File: PqFIQth34nvEBouYH-dK64vufnM.mft (raw, json) Hash identifier: HrIrrK9VqUGJRwMYbxJLE3d3yo1KeezKr2+Xbu4FHs4= Subject key identifier: D8:2B:DF:09:E5:8A:6E:CB:B8:7E:1A:2B:E8:B9:4A:88:33:0A:35:FC Authority key identifier: 3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73 Certificate issuer: /CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73 Certificate serial: 019AED51C4C2B3FDB95514006129405361F3 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft Manifest number: 175F Signing time: Fri 05 Dec 2025 07:02:30 +0000 Manifest this update: Fri 05 Dec 2025 07:02:30 +0000 Manifest next update: Sat 06 Dec 2025 07:02:30 +0000 Files and hashes: 1: PqFIQth34nvEBouYH-dK64vufnM.crl (hash: El2XfCLzjPDDZLiQEppifEe67UqnXp4e/8ce6RAUG5s=) 2: h5AoEy-X54Db83-jTlFH2Y1fCVw.roa (hash: HOh3C7TWeQ0O5hO+1P91yiEiZozSeSnp7F1/q290vZs=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:ed:51:c4:c2:b3:fd:b9:55:14:00:61:29:40:53:61:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3ea14842d877e27bc4068b981fe74aeb8bee7e73 Validity Not Before: Dec 5 07:02:30 2025 GMT Not After : Dec 6 07:02:30 2025 GMT Subject: CN=d82bdf09e58a6ecbb87e1a2be8b94a88330a35fc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:25:92:b0:9c:5d:16:85:50:e7:1b:1f:55:99: 8f:7c:ff:a6:c3:c4:86:2b:d6:04:91:f1:ba:da:c5: 4d:b7:1b:9e:cc:71:1a:b1:39:0d:29:a3:d4:b9:50: 42:54:8f:44:56:70:2d:b1:0e:94:64:7b:b0:42:47: 12:08:87:da:b9:23:79:21:80:c8:d2:78:96:66:cc: aa:0c:20:8b:af:77:b3:8f:3e:19:47:23:97:24:5f: f3:d5:dd:c0:28:46:68:9d:83:c6:bb:85:7d:8a:8a: dd:12:52:f6:6c:02:cb:95:46:87:3e:0c:41:a9:8e: ed:6e:5b:cb:5b:8d:20:87:1d:50:f5:f1:ec:5e:e4: d1:0e:5d:c7:98:7c:6a:c4:45:ee:c0:b0:91:c7:ff: b3:d4:a7:02:2e:e4:b6:7e:e4:70:b0:47:67:98:24: 5e:97:25:be:b6:66:d4:17:9c:df:ff:e3:cb:11:a2: 30:ac:68:a0:dd:7d:54:a5:12:d9:9c:d7:86:e4:c2: 9e:be:c9:ac:ba:b2:9f:83:8c:c7:2c:3d:74:f5:dc: 37:12:6d:d5:14:d4:fa:d8:ca:8b:d0:8d:d7:d7:54: 5e:6e:5d:64:a7:40:96:57:2d:23:78:dd:9e:6c:8c: c6:82:8c:06:36:e3:ae:82:cd:55:d6:34:ef:b8:db: 75:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:2B:DF:09:E5:8A:6E:CB:B8:7E:1A:2B:E8:B9:4A:88:33:0A:35:FC X509v3 Authority Key Identifier: keyid:3E:A1:48:42:D8:77:E2:7B:C4:06:8B:98:1F:E7:4A:EB:8B:EE:7E:73 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/PqFIQth34nvEBouYH-dK64vufnM.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/797057-278a-4f73-80a1-4dce4f3ea13e/1/PqFIQth34nvEBouYH-dK64vufnM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:79:8e:01:8d:78:46:a4:1b:a1:3d:9e:df:1c:23:ca:00:c1: ee:b8:96:5e:f7:31:d9:8a:f7:74:a4:e1:3a:82:de:85:fe:12: a2:81:83:66:9f:aa:e7:04:67:4e:43:67:19:0d:e2:67:ca:2a: d8:87:d6:c9:d4:0e:02:45:46:91:23:ed:00:ed:77:5c:ae:86: 01:a8:df:95:b4:cc:40:fb:03:6e:29:95:78:e9:0c:8f:23:51: 52:dd:7f:a0:94:5e:8f:42:b2:08:25:0b:13:30:28:f6:e8:90: 0e:cc:30:5a:51:74:1e:97:64:ff:b8:dd:38:68:d7:7d:96:de: ed:56:2d:fd:ee:fd:f6:f2:56:b8:04:42:b4:ba:8f:68:2a:a3: 90:dc:dc:4d:e0:db:1b:9c:28:a6:dc:ac:37:3d:7a:b4:e0:2f: 38:ee:39:0d:fb:7f:59:b8:15:ed:24:06:d9:8e:fd:a4:be:62: 75:d9:cb:8a:96:fe:88:b5:d7:72:eb:f6:bc:e9:dd:ab:e4:dd: 89:6a:c3:a7:a5:05:d7:d0:07:d6:f9:d1:d0:22:4a:d6:9a:01: 46:dc:75:d0:b5:28:fc:f0:25:0d:b2:f3:41:90:e5:43:f4:82: 6a:ea:5e:4c:cc:b0:2b:ab:67:cc:2d:2b:45:0f:48:60:e3:75: ca:7b:fa:87 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZrtUcTCs/25VRQAYSlAU2HzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDNlYTE0ODQyZDg3N2UyN2JjNDA2OGI5ODFmZTc0YWViOGJl ZTdlNzMwHhcNMjUxMjA1MDcwMjMwWhcNMjUxMjA2MDcwMjMwWjAzMTEwLwYDVQQD EyhkODJiZGYwOWU1OGE2ZWNiYjg3ZTFhMmJlOGI5NGE4ODMzMGEzNWZjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9iWSsJxdFoVQ5xsfVZmPfP+mw8SG K9YEkfG62sVNtxuezHEasTkNKaPUuVBCVI9EVnAtsQ6UZHuwQkcSCIfauSN5IYDI 0niWZsyqDCCLr3ezjz4ZRyOXJF/z1d3AKEZonYPGu4V9iordElL2bALLlUaHPgxB qY7tblvLW40ghx1Q9fHsXuTRDl3HmHxqxEXuwLCRx/+z1KcCLuS2fuRwsEdnmCRe lyW+tmbUF5zf/+PLEaIwrGig3X1UpRLZnNeG5MKevsmsurKfg4zHLD109dw3Em3V FNT62MqL0I3X11Rebl1kp0CWVy0jeN2ebIzGgowGNuOugs1V1jTvuNt1ZwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNgr3wnlim7LuH4aK+i5SogzCjX8MB8GA1UdIwQY MBaAFD6hSELYd+J7xAaLmB/nSuuL7n5zMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvUHFGSVF0aDM0bnZFQm91WUgtZEs2NHZ1Zm5NLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZC83OTcwNTctMjc4YS00ZjczLTgwYTEt NGRjZTRmM2VhMTNlLzEvUHFGSVF0aDM0bnZFQm91WUgtZEs2NHZ1Zm5NLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZC83OTcwNTctMjc4YS00ZjczLTgwYTEtNGRjZTRmM2VhMTNl LzEvUHFGSVF0aDM0bnZFQm91WUgtZEs2NHZ1Zm5NLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAM3mOAY14 RqQboT2e3xwjygDB7riWXvcx2Yr3dKThOoLehf4SooGDZp+q5wRnTkNnGQ3iZ8oq 2IfWydQOAkVGkSPtAO13XK6GAajflbTMQPsDbimVeOkMjyNRUt1/oJRej0KyCCUL EzAo9uiQDswwWlF0Hpdk/7jdOGjXfZbe7VYt/e799vJWuARCtLqPaCqjkNzcTeDb G5woptysNz16tOAvOO45Dft/WbgV7SQG2Y79pL5iddnLipb+iLXXcuv2vOndq+Td iWrDp6UF19AH1vnR0CJK1poBRtx10LUo/PAlDbLzQZDlQ/SCaupeTMywK6tnzC0r RQ9IYON1ynv6hw== -----END CERTIFICATE-----Generated at Sat Dec 20 09:11:56 2025 by rpki-client