This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft File: J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft (raw, json) Hash identifier: HoJZb31W+e6qmL59zvFgaGeWXLC/sNMv/ScQ23mZfnY= Subject key identifier: 60:F9:08:7F:4E:F8:5A:FF:8A:B9:CF:6E:A1:3F:CE:AD:65:08:27:0D Authority key identifier: 27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0 Certificate issuer: /CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0 Certificate serial: 019B44DC70772C402CEFA5811F7EA879D976 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft Manifest number: 0805 Signing time: Mon 22 Dec 2025 07:00:55 +0000 Manifest this update: Mon 22 Dec 2025 07:00:55 +0000 Manifest next update: Tue 23 Dec 2025 07:00:55 +0000 Files and hashes: 1: J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl (hash: OPU0cvyt0BrSWBFhY1yuOnxH7MxddExv/chd6iYVlgM=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:44:dc:70:77:2c:40:2c:ef:a5:81:1f:7e:a8:79:d9:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27c406df29be9f2ad50b3ec5bd53dfb922d1afa0 Validity Not Before: Dec 22 07:00:55 2025 GMT Not After : Dec 23 07:00:55 2025 GMT Subject: CN=60f9087f4ef85aff8ab9cf6ea13fcead6508270d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:2b:7b:2f:65:2f:17:a3:a0:e7:3e:2a:ac:97: 8c:62:71:82:15:ac:cc:ef:30:3b:d1:0d:23:d8:9d: 0b:45:e9:2d:ee:d1:79:e6:89:a6:79:c3:28:2a:52: 71:dc:10:e6:09:60:f8:a1:ab:a0:e2:21:b7:56:45: 34:15:64:33:c9:a7:12:c2:1f:77:4f:3f:9a:17:e7: 2e:62:f6:9a:f6:7a:0f:5c:b4:ee:ad:cd:1a:1d:14: 4d:96:0a:f9:6b:c0:ab:74:a5:57:67:94:bb:52:f8: 30:a8:5b:e9:8c:24:e1:6f:10:fe:9a:3c:ac:e7:38: e8:aa:3b:f0:b3:04:31:a9:2b:bf:c7:aa:8e:5f:15: af:11:7f:75:d5:6e:23:c9:98:ae:f3:f1:2e:42:3a: e0:14:cb:7e:7d:9c:bc:df:ea:12:b2:61:0b:7d:89: ae:52:47:67:02:bc:be:a9:f5:3c:03:52:95:18:88: a1:b1:39:e6:b7:92:9d:47:15:59:da:f5:09:d0:c0: cb:67:e6:64:f4:8a:fa:1d:3e:2c:cf:08:c2:50:44: b7:e9:c2:81:0d:6b:d3:36:49:f1:82:88:43:e2:72: 4d:b9:0b:9d:a5:10:83:18:61:b8:7f:f7:21:a2:2b: 37:f5:54:3e:99:c7:25:ca:47:5f:4f:22:53:d3:fd: c2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:F9:08:7F:4E:F8:5A:FF:8A:B9:CF:6E:A1:3F:CE:AD:65:08:27:0D X509v3 Authority Key Identifier: keyid:27:C4:06:DF:29:BE:9F:2A:D5:0B:3E:C5:BD:53:DF:B9:22:D1:AF:A0 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/J8QG3ym-nyrVCz7FvVPfuSLRr6A.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/1e/41b8f8-3900-4514-8dbf-27d362e96d40/1/J8QG3ym-nyrVCz7FvVPfuSLRr6A.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:33:87:f2:35:9e:a1:a7:c6:3e:90:cb:55:55:b8:c6:0b:5b: cc:20:74:37:66:86:7d:24:29:9b:0a:e6:6b:42:c2:05:c6:f4: f8:29:c1:3d:27:84:c9:c4:ae:cb:e4:a2:a8:38:c9:ce:18:1e: 55:4b:7c:f8:04:46:c6:b9:e5:b5:40:30:6a:90:f4:01:26:64: 8a:8b:d0:b4:ef:02:9c:1d:4d:68:cd:fb:16:65:06:ac:3a:d6: 98:d9:18:b3:2e:59:06:b2:c3:bd:85:95:a2:fe:9e:1e:04:77: 44:9b:ca:c6:63:ae:1c:09:8a:1c:4e:d5:a1:43:44:59:28:e6: 5c:bb:a6:e5:7e:6e:08:38:50:f9:c2:d7:3b:02:70:e1:37:94: d3:21:7e:b0:08:e1:46:b3:bc:1a:dc:a9:2f:8e:45:fa:75:6a: b7:27:8a:97:ed:c8:68:7d:80:de:ab:58:e6:33:b4:38:f1:de: 70:8a:61:cd:5b:c2:d9:94:9e:6f:7d:c1:78:05:ab:47:bf:de: 70:0f:fb:04:c0:96:88:53:d7:9a:9c:bc:1f:49:f2:21:87:d2: 3e:85:05:10:7b:92:1f:df:f5:f0:35:fe:c4:e8:e0:2d:46:16: c1:15:98:c9:c1:0b:1c:76:9d:18:b8:64:19:ef:e9:69:d6:d8: a9:3f:0a:6f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZtE3HB3LEAs76WBH36oedl2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDI3YzQwNmRmMjliZTlmMmFkNTBiM2VjNWJkNTNkZmI5MjJk MWFmYTAwHhcNMjUxMjIyMDcwMDU1WhcNMjUxMjIzMDcwMDU1WjAzMTEwLwYDVQQD Eyg2MGY5MDg3ZjRlZjg1YWZmOGFiOWNmNmVhMTNmY2VhZDY1MDgyNzBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqit7L2UvF6Og5z4qrJeMYnGCFazM 7zA70Q0j2J0LRekt7tF55ommecMoKlJx3BDmCWD4oaug4iG3VkU0FWQzyacSwh93 Tz+aF+cuYvaa9noPXLTurc0aHRRNlgr5a8CrdKVXZ5S7UvgwqFvpjCThbxD+mjys 5zjoqjvwswQxqSu/x6qOXxWvEX911W4jyZiu8/EuQjrgFMt+fZy83+oSsmELfYmu UkdnAry+qfU8A1KVGIihsTnmt5KdRxVZ2vUJ0MDLZ+Zk9Ir6HT4szwjCUES36cKB DWvTNknxgohD4nJNuQudpRCDGGG4f/chois39VQ+mcclykdfTyJT0/3CHQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGD5CH9O+Fr/irnPbqE/zq1lCCcNMB8GA1UdIwQY MBaAFCfEBt8pvp8q1Qs+xb1T37ki0a+gMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvSjhRRzN5bS1ueXJWQ3o3RnZWUGZ1U0xScjZBLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xZS80MWI4ZjgtMzkwMC00NTE0LThkYmYt MjdkMzYyZTk2ZDQwLzEvSjhRRzN5bS1ueXJWQ3o3RnZWUGZ1U0xScjZBLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xZS80MWI4ZjgtMzkwMC00NTE0LThkYmYtMjdkMzYyZTk2ZDQw LzEvSjhRRzN5bS1ueXJWQ3o3RnZWUGZ1U0xScjZBLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAGzOH8jWe oafGPpDLVVW4xgtbzCB0N2aGfSQpmwrma0LCBcb0+CnBPSeEycSuy+SiqDjJzhge VUt8+ARGxrnltUAwapD0ASZkiovQtO8CnB1NaM37FmUGrDrWmNkYsy5ZBrLDvYWV ov6eHgR3RJvKxmOuHAmKHE7VoUNEWSjmXLum5X5uCDhQ+cLXOwJw4TeU0yF+sAjh RrO8GtypL45F+nVqtyeKl+3IaH2A3qtY5jO0OPHecIphzVvC2ZSeb33BeAWrR7/e cA/7BMCWiFPXmpy8H0nyIYfSPoUFEHuSH9/18DX+xOjgLUYWwRWYycELHHadGLhk Ge/padbYqT8Kbw== -----END CERTIFICATE-----Generated at Mon Dec 29 14:58:16 2025 by rpki-client