This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft File: You5JTbCD0KwW-UywNuquYt1XzU.mft (raw, json) Hash identifier: joESubl5C7Fx3U9ANzWYyC6iKQJ8nosFoTPYvkHOYJ0= Subject key identifier: BD:9C:CE:BE:CA:7B:8B:D5:29:A9:1D:94:F2:32:83:77:AB:84:6F:4A Authority key identifier: 62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35 Certificate issuer: /CN=628bb92536c20f42b05be532c0dbaab98b755f35 Certificate serial: 019B2AAE645A35246D53DB4DE7C63B780D7A Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft Manifest number: 0234 Signing time: Wed 17 Dec 2025 05:00:30 +0000 Manifest this update: Wed 17 Dec 2025 05:00:30 +0000 Manifest next update: Thu 18 Dec 2025 05:00:30 +0000 Files and hashes: 1: You5JTbCD0KwW-UywNuquYt1XzU.crl (hash: Gjx3Cj+N1jLbocdbKZcUV2WC+epnmPtgDJRjulb/Knk=) 2: lUZIxGhzOYxZGWoE_bPIsAcvBns.roa (hash: 181xs0vbEO2Q9NjKNLp5nMH7XagJ9a8i0PdC3k4WAwQ=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:2a:ae:64:5a:35:24:6d:53:db:4d:e7:c6:3b:78:0d:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=628bb92536c20f42b05be532c0dbaab98b755f35 Validity Not Before: Dec 17 05:00:30 2025 GMT Not After : Dec 18 05:00:30 2025 GMT Subject: CN=bd9ccebeca7b8bd529a91d94f2328377ab846f4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:6e:9d:ad:f8:a3:9e:18:4e:6c:c2:92:75:9a: 48:16:58:58:27:e4:b9:c7:13:29:3c:29:95:ca:19: c0:93:2b:8b:25:d9:7a:1b:5c:b5:3f:bf:12:6a:9e: 68:8d:3c:00:62:98:b2:bc:2f:c7:5e:27:de:59:bc: 72:ee:7f:3a:84:d6:69:14:2a:97:ce:1b:02:33:0a: b8:3c:23:89:4f:36:54:ce:70:8f:e5:e8:05:ec:6f: 8b:eb:a1:8d:88:15:9e:76:c2:d9:fa:5e:01:0e:8e: 42:98:8b:0c:ad:79:59:69:5d:c4:ea:e5:b5:02:1c: d3:f7:ef:51:e3:dd:cc:f1:3e:c1:ab:f7:79:86:04: 51:5b:34:67:04:ea:cb:19:79:0a:03:04:eb:c1:3b: 2f:08:35:07:62:0e:ce:7f:ec:4b:63:38:cd:ab:b5: 8f:0b:5e:84:00:be:07:b2:7f:d8:82:1f:f5:8e:f3: fa:dc:5e:92:52:95:64:c7:76:5b:37:8e:ac:4c:71: 0a:16:a8:5d:e4:7b:62:7f:51:65:33:4b:58:65:d1: 24:67:20:9f:7b:4f:05:00:68:0d:18:ce:0b:18:7d: f6:1e:2f:27:6c:28:8b:a6:4c:de:e4:7f:77:5d:cb: c1:f2:8c:18:5a:fb:bd:07:bb:59:38:ed:67:cb:1c: d6:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:9C:CE:BE:CA:7B:8B:D5:29:A9:1D:94:F2:32:83:77:AB:84:6F:4A X509v3 Authority Key Identifier: keyid:62:8B:B9:25:36:C2:0F:42:B0:5B:E5:32:C0:DB:AA:B9:8B:75:5F:35 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/You5JTbCD0KwW-UywNuquYt1XzU.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/76/205dbe-7714-4d0e-9473-2bce81a431eb/1/You5JTbCD0KwW-UywNuquYt1XzU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 35:07:dc:3b:21:5c:9f:a9:3c:62:ae:eb:6b:b3:75:73:ee:31: 8d:cb:34:cc:55:d1:9f:5e:33:86:a6:35:ef:fe:80:61:ab:21: 77:14:4c:79:1d:61:c9:f1:f3:ad:44:51:39:1e:9a:95:6f:c9: 33:6f:3b:2f:85:92:f3:17:55:3e:67:71:b4:01:cf:19:d0:6e: a8:e6:f8:8a:e1:b8:4b:ef:c2:78:de:6b:13:00:88:c5:83:49: da:5c:85:9b:e2:9f:8f:ae:39:0e:4a:02:a2:51:33:d5:28:d0: f1:d5:e4:09:64:03:85:41:db:99:0e:0a:76:a0:b1:ff:52:6c: 78:c6:0a:4d:7a:0b:85:57:13:40:c6:a6:1a:4b:97:46:58:76: a1:a2:4f:bd:16:d8:71:36:35:64:39:28:15:f6:d5:d6:35:f0: 4b:59:1f:cc:fc:a9:7f:fe:6e:b4:a1:27:4a:3d:0a:b0:3c:c0: 94:f4:b3:56:9f:83:d7:19:32:4e:68:79:99:4e:59:b3:71:32: 46:a2:67:0f:e0:1f:b0:76:aa:3a:c0:9c:d8:94:97:ad:d6:21: 94:1b:bc:11:69:e0:a6:80:f9:87:a6:d6:f2:7b:62:9c:24:33: e8:c4:2b:0c:17:7a:bc:32:6e:36:16:cc:5b:1a:34:08:5a:c0: df:7e:3b:23 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsqrmRaNSRtU9tN58Y7eA16MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDYyOGJiOTI1MzZjMjBmNDJiMDViZTUzMmMwZGJhYWI5OGI3 NTVmMzUwHhcNMjUxMjE3MDUwMDMwWhcNMjUxMjE4MDUwMDMwWjAzMTEwLwYDVQQD EyhiZDljY2ViZWNhN2I4YmQ1MjlhOTFkOTRmMjMyODM3N2FiODQ2ZjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtW6drfijnhhObMKSdZpIFlhYJ+S5 xxMpPCmVyhnAkyuLJdl6G1y1P78Sap5ojTwAYpiyvC/HXifeWbxy7n86hNZpFCqX zhsCMwq4PCOJTzZUznCP5egF7G+L66GNiBWedsLZ+l4BDo5CmIsMrXlZaV3E6uW1 AhzT9+9R493M8T7Bq/d5hgRRWzRnBOrLGXkKAwTrwTsvCDUHYg7Of+xLYzjNq7WP C16EAL4Hsn/Ygh/1jvP63F6SUpVkx3ZbN46sTHEKFqhd5Htif1FlM0tYZdEkZyCf e08FAGgNGM4LGH32Hi8nbCiLpkze5H93XcvB8owYWvu9B7tZOO1nyxzWTQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFL2czr7Ke4vVKakdlPIyg3erhG9KMB8GA1UdIwQY MBaAFGKLuSU2wg9CsFvlMsDbqrmLdV81MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWW91NUpUYkNEMEt3Vy1VeXdOdXF1WXQxWHpVLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC83Ni8yMDVkYmUtNzcxNC00ZDBlLTk0NzMt MmJjZTgxYTQzMWViLzEvWW91NUpUYkNEMEt3Vy1VeXdOdXF1WXQxWHpVLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC83Ni8yMDVkYmUtNzcxNC00ZDBlLTk0NzMtMmJjZTgxYTQzMWVi LzEvWW91NUpUYkNEMEt3Vy1VeXdOdXF1WXQxWHpVLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEANQfcOyFc n6k8Yq7ra7N1c+4xjcs0zFXRn14zhqY17/6AYashdxRMeR1hyfHzrURROR6alW/J M287L4WS8xdVPmdxtAHPGdBuqOb4iuG4S+/CeN5rEwCIxYNJ2lyFm+Kfj645DkoC olEz1SjQ8dXkCWQDhUHbmQ4KdqCx/1JseMYKTXoLhVcTQMamGkuXRlh2oaJPvRbY cTY1ZDkoFfbV1jXwS1kfzPypf/5utKEnSj0KsDzAlPSzVp+D1xkyTmh5mU5Zs3Ey RqJnD+AfsHaqOsCc2JSXrdYhlBu8EWngpoD5h6bW8ntinCQz6MQrDBd6vDJuNhbM Wxo0CFrA3347Iw== -----END CERTIFICATE-----Generated at Fri Dec 19 16:06:03 2025 by rpki-client