This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft File: kiluMEh7qUY-S2rcgat9pkfDn-c.mft (raw, json) Hash identifier: N/UEWK4CVxquqRrzyXHazYu7X+xb5dMFrJLQwNA7J1w= Subject key identifier: 37:32:A3:9B:AC:15:E7:C8:37:B4:6F:F3:62:46:DE:9E:60:CB:32:3D Authority key identifier: 92:29:6E:30:48:7B:A9:46:3E:4B:6A:DC:81:AB:7D:A6:47:C3:9F:E7 Certificate issuer: /CN=92296e30487ba9463e4b6adc81ab7da647c39fe7 Certificate serial: 0199E5D05534A5B884E63373B4E419BCBE4A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft Manifest number: 16D8 Signing time: Wed 15 Oct 2025 03:00:59 +0000 Manifest this update: Wed 15 Oct 2025 03:00:59 +0000 Manifest next update: Thu 16 Oct 2025 03:00:59 +0000 Files and hashes: 1: kiluMEh7qUY-S2rcgat9pkfDn-c.crl (hash: aIAv/slTZOomRJ+dru490MJvaENKe2lI0CjGHwuExGg=) 2: nuzJyWgNTyeIsJAxoqlDeteOT-0.roa (hash: YV/35ZRCjtD11JrCmO8U8TS11W8FRnC1JZ1YVphe9mk=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:99:e5:d0:55:34:a5:b8:84:e6:33:73:b4:e4:19:bc:be:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92296e30487ba9463e4b6adc81ab7da647c39fe7 Validity Not Before: Oct 15 03:00:59 2025 GMT Not After : Oct 16 03:00:59 2025 GMT Subject: CN=3732a39bac15e7c837b46ff36246de9e60cb323d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:0a:70:fa:0c:b7:c5:62:5f:11:06:8d:de:7c: fe:f8:16:f2:10:1e:be:46:a9:2d:5f:1c:00:1a:5c: e1:57:5d:34:a4:ea:ec:b5:4d:93:1e:ea:40:cc:73: 8f:0e:98:bb:75:b1:4d:4f:c4:b2:c5:44:91:32:21: 97:ee:f7:df:cd:76:91:2e:15:41:24:7d:40:b0:96: f3:70:71:63:9b:96:8c:a6:68:38:0a:05:af:b8:03: 5f:75:f8:03:fb:52:92:3f:ef:b7:44:1f:e6:41:4e: 1b:57:14:49:79:2a:2f:fa:6f:f7:50:1c:ed:80:0f: 01:71:dc:8b:0d:bd:be:de:fd:e9:e1:67:6d:21:be: 74:bc:78:da:d3:fb:53:fa:95:65:c7:4e:34:be:85: 12:39:fb:2d:09:e7:b3:cf:d3:34:db:99:b1:90:26: cd:fc:f8:b6:c2:45:7f:30:55:e4:f9:bd:dc:7d:36: 29:6f:91:ba:a8:8c:a6:d4:54:28:fb:a3:4e:69:32: df:8b:b0:4b:71:1d:da:5d:72:f4:de:2b:2d:0d:3e: 48:be:9f:93:ec:5d:41:37:6a:e7:a8:65:f9:fb:8c: 94:58:57:0f:72:d3:da:ad:3b:b4:c9:78:e9:12:2d: 03:0b:e0:72:c8:bd:bb:f6:49:5b:fd:36:d6:02:b4: 21:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:32:A3:9B:AC:15:E7:C8:37:B4:6F:F3:62:46:DE:9E:60:CB:32:3D X509v3 Authority Key Identifier: keyid:92:29:6E:30:48:7B:A9:46:3E:4B:6A:DC:81:AB:7D:A6:47:C3:9F:E7 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/kiluMEh7qUY-S2rcgat9pkfDn-c.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/43/3bb178-b336-489c-9e8d-0d1164daa1e4/1/kiluMEh7qUY-S2rcgat9pkfDn-c.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:9a:03:bb:e0:39:e3:c1:0c:2a:3f:09:09:ed:d0:df:14:98: a1:89:07:57:e2:c2:fa:63:7f:d4:a6:2a:d6:fe:80:77:0e:0d: b2:f5:22:4b:57:11:16:14:cd:db:7f:a2:9d:86:cb:6e:9f:ce: 2d:5c:02:87:47:d6:f1:63:af:34:79:54:8c:18:f1:e4:d4:ac: e8:2f:2a:21:a6:90:10:cf:d0:e9:43:75:01:84:7f:ec:df:de: 27:45:be:68:ea:42:65:9c:c2:87:50:5c:ef:d6:f7:22:8d:a5: 03:78:a4:2e:92:da:c7:49:42:23:d8:c5:73:46:1f:19:55:93: 71:84:b9:2e:20:c7:3e:bc:00:25:f1:e0:d3:d4:64:b5:4a:f2: 27:4f:6c:6f:76:e7:ca:94:38:12:99:90:f5:8f:e4:37:e8:ed: 92:83:d5:b0:e2:12:80:e7:3a:3f:8a:d9:8b:9a:f1:86:e3:17: fb:79:6b:eb:c5:13:03:f6:f8:af:6b:25:6d:4d:58:bf:ef:9e: 1d:23:e5:60:46:84:71:39:ef:83:4e:65:89:22:35:93:11:d5: 42:e2:32:bf:b0:69:76:a8:25:9c:87:00:2b:a5:d6:2a:32:c2: ef:fd:a7:48:d4:38:e9:e1:22:76:1d:b6:c1:d0:47:fe:de:87: c8:b7:b8:d0 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZnl0FU0pbiE5jNztOQZvL5KMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDkyMjk2ZTMwNDg3YmE5NDYzZTRiNmFkYzgxYWI3ZGE2NDdj MzlmZTcwHhcNMjUxMDE1MDMwMDU5WhcNMjUxMDE2MDMwMDU5WjAzMTEwLwYDVQQD EygzNzMyYTM5YmFjMTVlN2M4MzdiNDZmZjM2MjQ2ZGU5ZTYwY2IzMjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3wpw+gy3xWJfEQaN3nz++BbyEB6+ RqktXxwAGlzhV100pOrstU2THupAzHOPDpi7dbFNT8SyxUSRMiGX7vffzXaRLhVB JH1AsJbzcHFjm5aMpmg4CgWvuANfdfgD+1KSP++3RB/mQU4bVxRJeSov+m/3UBzt gA8BcdyLDb2+3v3p4WdtIb50vHja0/tT+pVlx040voUSOfstCeezz9M025mxkCbN /Pi2wkV/MFXk+b3cfTYpb5G6qIym1FQo+6NOaTLfi7BLcR3aXXL03istDT5Ivp+T 7F1BN2rnqGX5+4yUWFcPctParTu0yXjpEi0DC+ByyL279klb/TbWArQhWQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFDcyo5usFefIN7Rv82JG3p5gyzI9MB8GA1UdIwQY MBaAFJIpbjBIe6lGPktq3IGrfaZHw5/nMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQva2lsdU1FaDdxVVktUzJyY2dhdDlwa2ZEbi1jLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC80My8zYmIxNzgtYjMzNi00ODljLTllOGQt MGQxMTY0ZGFhMWU0LzEva2lsdU1FaDdxVVktUzJyY2dhdDlwa2ZEbi1jLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC80My8zYmIxNzgtYjMzNi00ODljLTllOGQtMGQxMTY0ZGFhMWU0 LzEva2lsdU1FaDdxVVktUzJyY2dhdDlwa2ZEbi1jLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnJoDu+A5 48EMKj8JCe3Q3xSYoYkHV+LC+mN/1KYq1v6Adw4NsvUiS1cRFhTN23+inYbLbp/O LVwCh0fW8WOvNHlUjBjx5NSs6C8qIaaQEM/Q6UN1AYR/7N/eJ0W+aOpCZZzCh1Bc 79b3Io2lA3ikLpLax0lCI9jFc0YfGVWTcYS5LiDHPrwAJfHg09RktUryJ09sb3bn ypQ4EpmQ9Y/kN+jtkoPVsOISgOc6P4rZi5rxhuMX+3lr68UTA/b4r2slbU1Yv++e HSPlYEaEcTnvg05liSI1kxHVQuIyv7BpdqglnIcAK6XWKjLC7/2nSNQ46eEidh22 wdBH/t6HyLe40A== -----END CERTIFICATE-----Generated at Thu Dec 18 18:37:17 2025 by rpki-client