This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft File: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft (raw, json) Hash identifier: xLiREj1p55grsfT+gpEmmxIWIsQg7oW1Of5yGjGqjWQ= Subject key identifier: 63:C1:B6:4B:3E:52:7B:39:B4:F0:95:FE:44:A2:36:53:CA:70:64:E0 Authority key identifier: DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07 Certificate issuer: /CN=da3d2580c54980cab3db1356182ed8cc819ffc07 Certificate serial: 019A545168D0C4AE4C7FBDBDCAFF96DB645D Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft Manifest number: 170C Signing time: Wed 05 Nov 2025 14:00:12 +0000 Manifest this update: Wed 05 Nov 2025 14:00:12 +0000 Manifest next update: Thu 06 Nov 2025 14:00:12 +0000 Files and hashes: 1: 2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl (hash: oiSg9fqDpvEc80BEdxca52KTmKZyMBGU5ihaoapraQI=) 2: aVrm11uPiyldKPviAWZVNw7mX_s.roa (hash: +aUpO78+V+9JLiQkkmCO8C80eoccRFxUM2jJ9r7mFkY=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:54:51:68:d0:c4:ae:4c:7f:bd:bd:ca:ff:96:db:64:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=da3d2580c54980cab3db1356182ed8cc819ffc07 Validity Not Before: Nov 5 14:00:12 2025 GMT Not After : Nov 6 14:00:12 2025 GMT Subject: CN=63c1b64b3e527b39b4f095fe44a23653ca7064e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:27:e2:37:61:4d:df:5f:53:5c:02:70:b4:a1: f6:63:81:82:93:75:82:5b:92:47:0c:db:72:f2:ed: 97:58:0a:a9:d7:c3:ed:59:79:cd:2b:a7:36:39:65: 09:5c:bf:37:48:e1:f2:d2:24:38:40:1c:58:fb:11: ec:8b:33:f5:7d:87:3f:ed:86:25:7a:1a:d5:07:54: cd:39:f0:9c:19:1d:10:b9:10:51:3e:51:57:87:79: 22:ff:c6:e3:5d:1d:9c:56:83:d6:3d:67:be:89:6a: dd:b6:b2:39:54:68:80:4e:12:cb:91:9c:97:1a:1a: 07:05:1f:de:e3:ef:9a:f9:ea:51:65:fa:49:8e:13: ac:4b:ea:d6:0b:68:b4:28:85:d1:bc:9c:b4:87:b1: df:6a:80:40:76:a2:83:84:41:56:da:35:d8:bc:fa: 69:9d:f3:44:13:eb:29:96:a1:be:50:75:f0:d4:3b: 4e:1e:0e:88:c8:86:5d:53:a5:bc:04:c7:24:37:10: 5c:15:aa:77:7b:74:ea:1d:ac:1b:d6:e8:98:f1:6c: ad:85:34:05:d2:da:e9:b4:b4:1b:17:d2:72:aa:ae: 7a:31:56:0b:5b:84:53:f2:f9:1f:6d:c9:89:d3:fe: 82:1b:98:78:a4:f5:c8:59:31:22:89:1e:ca:4d:a2: 7e:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:C1:B6:4B:3E:52:7B:39:B4:F0:95:FE:44:A2:36:53:CA:70:64:E0 X509v3 Authority Key Identifier: keyid:DA:3D:25:80:C5:49:80:CA:B3:DB:13:56:18:2E:D8:CC:81:9F:FC:07 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/57e627-a45a-4673-86d2-6f2f5b4de65d/1/2j0lgMVJgMqz2xNWGC7YzIGf_Ac.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:9f:e1:21:b4:c1:a4:0d:98:98:ed:8a:e9:f9:30:a1:3c:50: f1:cb:85:17:b5:4f:77:4e:34:2a:8f:81:fa:4d:a6:a2:59:4c: dc:78:3c:ac:4f:ee:67:52:d1:7a:ff:c7:3c:9a:21:ac:b6:f2: 6e:c9:22:be:af:24:07:24:d8:73:3a:87:d4:8f:ce:a0:de:7f: 3c:bd:0e:8a:6e:65:f1:36:ce:a2:c3:e0:a3:41:cd:88:94:b4: 48:9e:bd:29:0e:89:bb:8c:95:67:31:95:91:4e:b9:4d:10:51: 93:d9:d3:8a:48:72:2c:1c:cc:d9:49:ef:80:e7:ef:79:d0:4b: 0c:aa:da:7c:ad:4d:2e:19:47:3d:ec:b6:e4:97:bc:78:b7:fb: d1:dd:d3:e4:a1:bf:48:99:27:62:a8:b3:0d:46:32:57:2e:4b: 20:1a:aa:c9:1e:28:58:47:11:e2:31:e0:ed:64:8e:b1:ac:ca: ec:ed:6c:7a:17:03:12:a7:9e:c1:c3:f1:e5:2b:fe:9a:57:83: b5:bd:ba:f9:23:c9:67:bf:0d:93:8e:44:bd:7c:17:27:60:a7: 4b:f2:bf:a8:1a:18:ca:9c:28:e0:bf:c1:15:a8:83:fd:99:f6: e4:f4:a7:a2:e2:5c:41:af:9c:4d:2a:6d:cb:18:70:ab:2b:8b: 29:d1:f4:9b -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpUUWjQxK5Mf729yv+W22RdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGRhM2QyNTgwYzU0OTgwY2FiM2RiMTM1NjE4MmVkOGNjODE5 ZmZjMDcwHhcNMjUxMTA1MTQwMDEyWhcNMjUxMTA2MTQwMDEyWjAzMTEwLwYDVQQD Eyg2M2MxYjY0YjNlNTI3YjM5YjRmMDk1ZmU0NGEyMzY1M2NhNzA2NGUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2SfiN2FN319TXAJwtKH2Y4GCk3WC W5JHDNty8u2XWAqp18PtWXnNK6c2OWUJXL83SOHy0iQ4QBxY+xHsizP1fYc/7YYl ehrVB1TNOfCcGR0QuRBRPlFXh3ki/8bjXR2cVoPWPWe+iWrdtrI5VGiAThLLkZyX GhoHBR/e4++a+epRZfpJjhOsS+rWC2i0KIXRvJy0h7HfaoBAdqKDhEFW2jXYvPpp nfNEE+splqG+UHXw1DtOHg6IyIZdU6W8BMckNxBcFap3e3TqHawb1uiY8WythTQF 0trptLQbF9Jyqq56MVYLW4RT8vkfbcmJ0/6CG5h4pPXIWTEiiR7KTaJ+FwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGPBtks+Uns5tPCV/kSiNlPKcGTgMB8GA1UdIwQY MBaAFNo9JYDFSYDKs9sTVhgu2MyBn/wHMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMmowbGdNVkpnTXF6MnhOV0dDN1l6SUdmX0FjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iZi81N2U2MjctYTQ1YS00NjczLTg2ZDIt NmYyZjViNGRlNjVkLzEvMmowbGdNVkpnTXF6MnhOV0dDN1l6SUdmX0FjLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iZi81N2U2MjctYTQ1YS00NjczLTg2ZDItNmYyZjViNGRlNjVk LzEvMmowbGdNVkpnTXF6MnhOV0dDN1l6SUdmX0FjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArZ/hIbTB pA2YmO2K6fkwoTxQ8cuFF7VPd040Ko+B+k2mollM3Hg8rE/uZ1LRev/HPJohrLby bskivq8kByTYczqH1I/OoN5/PL0Oim5l8TbOosPgo0HNiJS0SJ69KQ6Ju4yVZzGV kU65TRBRk9nTikhyLBzM2UnvgOfvedBLDKrafK1NLhlHPey25Je8eLf70d3T5KG/ SJknYqizDUYyVy5LIBqqyR4oWEcR4jHg7WSOsazK7O1sehcDEqeewcPx5Sv+mleD tb26+SPJZ78Nk45EvXwXJ2CnS/K/qBoYypwo4L/BFaiD/Zn25PSnouJcQa+cTSpt yxhwqyuLKdH0mw== -----END CERTIFICATE-----Generated at Sun Dec 21 03:27:08 2025 by rpki-client