This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft File: fXrxi3mJleFLOBNhoGu2aEm36Fo.mft (raw, json) Hash identifier: drghR8OGn8SSSKSgdMW08K0D1kp/vsuxYrhIPIcjB5s= Subject key identifier: DA:C0:C8:80:DF:09:FE:8A:2F:FB:30:23:C3:0C:B8:A7:4B:6E:87:46 Authority key identifier: 7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A Certificate issuer: /CN=7d7af18b798995e14b381361a06bb66849b7e85a Certificate serial: 019B25F6189ADBD26654CCA0C96E97830F64 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft Manifest number: 08A7 Signing time: Tue 16 Dec 2025 07:00:43 +0000 Manifest this update: Tue 16 Dec 2025 07:00:43 +0000 Manifest next update: Wed 17 Dec 2025 07:00:43 +0000 Files and hashes: 1: fXrxi3mJleFLOBNhoGu2aEm36Fo.crl (hash: g3GoXqEkZgDT2ERiUXTt1C3pph6BOvpSEoG02IWgjhY=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:25:f6:18:9a:db:d2:66:54:cc:a0:c9:6e:97:83:0f:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7d7af18b798995e14b381361a06bb66849b7e85a Validity Not Before: Dec 16 07:00:43 2025 GMT Not After : Dec 17 07:00:43 2025 GMT Subject: CN=dac0c880df09fe8a2ffb3023c30cb8a74b6e8746 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:0c:85:e7:82:a0:89:54:04:16:d1:10:be:c5: 4e:0b:a9:6a:37:34:d9:ac:cb:9e:95:79:1c:6c:7a: 60:50:95:68:09:65:d8:66:dd:c9:9f:00:cc:e3:a2: 5c:64:f4:02:f7:b0:a3:0c:2d:ad:3d:da:10:6c:49: 52:b1:f0:e7:c8:3a:48:a1:23:d7:16:53:1e:4f:8f: c6:dd:ed:42:a9:79:42:6f:99:4d:d3:b8:ea:83:a5: 67:c3:ef:79:2e:d9:91:54:46:c2:16:bf:ae:97:16: d3:27:20:18:73:04:9a:55:06:c2:6f:08:e9:4d:d0: e5:f2:d0:aa:de:11:07:3b:7b:ee:14:43:e3:61:73: 43:77:dc:57:c8:65:f4:ab:ce:23:af:65:2d:d2:44: 37:7a:61:50:87:a8:54:41:13:99:c7:0f:6a:74:8a: b8:6b:3e:46:a3:eb:8c:dd:67:db:99:0c:a7:47:6d: e8:b3:fa:62:b2:ea:09:3f:f1:5a:f1:57:a8:89:82: 9b:3e:99:72:4b:6b:b9:76:54:a7:83:30:79:b5:5c: 65:e5:77:3d:59:62:1e:b0:17:69:72:40:ef:f8:74: c4:98:32:2d:d5:ed:d9:02:f2:c0:07:6d:3d:f2:9e: 1d:db:5e:1f:a3:bb:2f:05:b2:18:28:4b:bd:08:fb: a9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:C0:C8:80:DF:09:FE:8A:2F:FB:30:23:C3:0C:B8:A7:4B:6E:87:46 X509v3 Authority Key Identifier: keyid:7D:7A:F1:8B:79:89:95:E1:4B:38:13:61:A0:6B:B6:68:49:B7:E8:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/fXrxi3mJleFLOBNhoGu2aEm36Fo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/ba/78697d-b54e-4d7b-a8e0-7c6252c5f45d/1/fXrxi3mJleFLOBNhoGu2aEm36Fo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:ac:32:f9:fd:97:ac:0c:82:82:a4:32:1f:0a:dd:92:22:2d: 33:bd:b1:85:18:c3:95:0e:43:e2:c9:38:72:79:52:60:5a:6e: f0:7e:33:ea:e2:1b:46:a1:16:1a:cd:10:80:69:22:87:35:fc: 79:7b:08:37:ce:dc:f5:42:74:51:ea:ac:fa:49:ab:c1:f5:b7: 41:a5:81:fe:eb:e7:4f:cd:6c:05:ca:30:6d:eb:b1:d6:cb:13: b3:c1:42:6f:c8:b3:32:67:1e:83:e3:ab:8a:f6:2e:68:e3:58: d4:de:fe:98:88:32:9a:4c:13:f6:7d:57:b1:1e:53:4c:bf:49: e1:0b:3b:06:9c:82:10:3d:c9:f3:5e:78:d3:60:cb:43:36:bb: c2:36:46:8a:89:0a:e7:07:4b:fe:ca:31:e3:ec:9d:c0:3e:b9: 72:e6:f5:88:e6:59:46:30:65:34:7e:e0:20:61:46:ec:03:21: 37:d5:58:c9:9a:f7:ee:aa:74:ac:d8:84:b7:2d:60:71:cf:7f: 75:e5:43:81:31:ab:97:d2:11:66:13:e9:c6:01:b1:1e:d8:2d: 5a:22:61:e1:74:02:dc:90:c4:0a:37:1e:00:b2:3b:ce:39:3d: 5b:68:f1:51:bc:29:5b:e3:53:df:6b:da:2a:2b:f4:c4:fd:37: 8f:5b:99:c5 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZsl9hia29JmVMygyW6Xgw9kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDdkN2FmMThiNzk4OTk1ZTE0YjM4MTM2MWEwNmJiNjY4NDli N2U4NWEwHhcNMjUxMjE2MDcwMDQzWhcNMjUxMjE3MDcwMDQzWjAzMTEwLwYDVQQD EyhkYWMwYzg4MGRmMDlmZThhMmZmYjMwMjNjMzBjYjhhNzRiNmU4NzQ2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmgyF54KgiVQEFtEQvsVOC6lqNzTZ rMuelXkcbHpgUJVoCWXYZt3JnwDM46JcZPQC97CjDC2tPdoQbElSsfDnyDpIoSPX FlMeT4/G3e1CqXlCb5lN07jqg6Vnw+95LtmRVEbCFr+ulxbTJyAYcwSaVQbCbwjp TdDl8tCq3hEHO3vuFEPjYXNDd9xXyGX0q84jr2Ut0kQ3emFQh6hUQROZxw9qdIq4 az5Go+uM3WfbmQynR23os/pisuoJP/Fa8VeoiYKbPplyS2u5dlSngzB5tVxl5Xc9 WWIesBdpckDv+HTEmDIt1e3ZAvLAB2098p4d214fo7svBbIYKEu9CPuprwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFNrAyIDfCf6KL/swI8MMuKdLbodGMB8GA1UdIwQY MBaAFH168Yt5iZXhSzgTYaBrtmhJt+haMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvZlhyeGkzbUpsZUZMT0JOaG9HdTJhRW0zNkZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9iYS83ODY5N2QtYjU0ZS00ZDdiLWE4ZTAt N2M2MjUyYzVmNDVkLzEvZlhyeGkzbUpsZUZMT0JOaG9HdTJhRW0zNkZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9iYS83ODY5N2QtYjU0ZS00ZDdiLWE4ZTAtN2M2MjUyYzVmNDVk LzEvZlhyeGkzbUpsZUZMT0JOaG9HdTJhRW0zNkZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASawy+f2X rAyCgqQyHwrdkiItM72xhRjDlQ5D4sk4cnlSYFpu8H4z6uIbRqEWGs0QgGkihzX8 eXsIN87c9UJ0Ueqs+kmrwfW3QaWB/uvnT81sBcowbeux1ssTs8FCb8izMmceg+Or ivYuaONY1N7+mIgymkwT9n1XsR5TTL9J4Qs7BpyCED3J815402DLQza7wjZGiokK 5wdL/sox4+ydwD65cub1iOZZRjBlNH7gIGFG7AMhN9VYyZr37qp0rNiEty1gcc9/ deVDgTGrl9IRZhPpxgGxHtgtWiJh4XQC3JDECjceALI7zjk9W2jxUbwpW+NT32va Kiv0xP03j1uZxQ== -----END CERTIFICATE-----Generated at Mon Dec 22 10:42:54 2025 by rpki-client