This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/00/85fc11-e23a-4942-b0de-22f8d4a027ae/1/Xl5k_r-lZnT03hZCn13eSdnOk2g.mft File: Xl5k_r-lZnT03hZCn13eSdnOk2g.mft (raw, json) Hash identifier: 1Z6Rnx+PjPTKGL9Jp9XgiXsEoP6POEszUl9eBYZ4dqk= Subject key identifier: 68:CD:16:16:57:28:BF:9C:3B:F2:75:6E:45:47:E2:A5:E3:E3:6E:51 Authority key identifier: 5E:5E:64:FE:BF:A5:66:74:F4:DE:16:42:9F:5D:DE:49:D9:CE:93:68 Certificate issuer: /CN=5e5e64febfa56674f4de16429f5dde49d9ce9368 Certificate serial: 019A730174C4CF56D5C1D45E18744DCAF88C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Xl5k_r-lZnT03hZCn13eSdnOk2g.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/00/85fc11-e23a-4942-b0de-22f8d4a027ae/1/Xl5k_r-lZnT03hZCn13eSdnOk2g.mft Manifest number: 13B1 Signing time: Tue 11 Nov 2025 13:01:06 +0000 Manifest this update: Tue 11 Nov 2025 13:01:06 +0000 Manifest next update: Wed 12 Nov 2025 13:01:06 +0000 Files and hashes: 1: Xl5k_r-lZnT03hZCn13eSdnOk2g.crl (hash: vg/PHtJjnh6SAVq0JyTsU0fJetlPxkQDL4R1TierYmE=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:73:01:74:c4:cf:56:d5:c1:d4:5e:18:74:4d:ca:f8:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5e5e64febfa56674f4de16429f5dde49d9ce9368 Validity Not Before: Nov 11 13:01:06 2025 GMT Not After : Nov 12 13:01:06 2025 GMT Subject: CN=68cd16165728bf9c3bf2756e4547e2a5e3e36e51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:28:d7:4f:4e:bd:99:3c:7d:75:02:08:7e:a2: ed:26:e7:36:b9:a9:98:62:14:1d:22:78:3b:56:7f: c4:6e:90:60:91:68:0d:92:21:6e:57:fd:89:50:a9: 2d:fe:4e:9b:da:e4:85:9c:92:c5:c2:2f:16:7e:dd: 41:9f:65:c7:21:f7:8f:38:de:d0:76:f3:9a:8c:9c: 21:ba:04:ad:4f:a1:13:dd:3c:bf:de:b8:e6:67:ba: e5:bb:11:68:38:c6:93:67:dc:85:7d:ec:25:dd:08: 89:2d:bd:e5:c9:15:02:27:23:62:ac:eb:9c:65:d1: e3:1b:33:90:d6:ee:ba:b4:fe:be:21:d6:8d:c7:3d: d9:8e:b1:48:85:49:f9:b8:38:88:8e:f9:bd:68:23: 2a:68:a1:ac:19:e9:96:f2:52:cd:dc:24:11:32:cc: 09:3b:fb:2f:2f:7c:3c:95:03:e0:51:a1:e4:dd:10: f9:25:35:15:33:cd:33:f8:6e:92:5d:c8:ab:09:22: a5:ff:e1:a7:30:5c:b1:c9:33:03:db:cc:dd:a5:00: f3:b2:50:ca:43:a6:fb:5b:11:54:19:66:ae:39:f3: ce:95:77:2a:c6:04:73:2e:35:08:99:e0:64:33:db: 27:f8:19:37:ee:d8:b8:f3:eb:58:7c:36:a3:70:4c: 1a:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:CD:16:16:57:28:BF:9C:3B:F2:75:6E:45:47:E2:A5:E3:E3:6E:51 X509v3 Authority Key Identifier: keyid:5E:5E:64:FE:BF:A5:66:74:F4:DE:16:42:9F:5D:DE:49:D9:CE:93:68 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Xl5k_r-lZnT03hZCn13eSdnOk2g.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/00/85fc11-e23a-4942-b0de-22f8d4a027ae/1/Xl5k_r-lZnT03hZCn13eSdnOk2g.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/00/85fc11-e23a-4942-b0de-22f8d4a027ae/1/Xl5k_r-lZnT03hZCn13eSdnOk2g.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 89:0f:bc:d6:0c:bc:df:8d:87:33:8f:7e:d5:8b:78:89:dd:49: 8c:d4:8d:4c:0f:7e:19:1a:53:f7:6a:f7:3b:62:ea:e7:95:3c: ea:18:3d:ee:14:11:9e:d7:20:ee:d4:84:45:54:30:e3:cb:da: 7c:57:b6:e6:ee:9f:48:f8:68:83:ab:c1:d1:6e:61:02:af:81: 03:b1:cc:49:89:42:e6:d0:73:8c:96:13:1e:1b:dd:81:6e:71: 7c:64:26:5f:da:0c:06:b4:80:b7:e3:b1:81:eb:a9:06:09:32: 4f:de:d9:57:b5:74:86:85:f3:1f:ca:ac:3c:db:8d:d1:85:cf: ef:a0:68:d9:1f:57:e1:8b:f9:bd:11:43:00:24:52:e1:99:4d: 1d:34:65:f2:12:8d:82:0c:6d:43:29:72:21:de:81:9a:cb:78: f7:00:8f:76:88:b5:72:37:72:52:75:ce:4d:61:f6:7c:3d:e6: 6e:99:3e:5c:a3:87:83:08:53:0b:45:e8:ff:06:f7:66:6a:78: 66:8f:73:ce:2b:4f:0c:67:07:6c:cc:e6:14:6b:f6:5e:db:5b: 98:67:e9:06:95:b2:5f:56:f2:b2:51:e4:0b:a7:26:9a:d9:9a: 4b:37:e3:ee:14:cb:03:9b:b6:81:5b:49:7a:c3:8b:d8:37:93: 00:8e:7c:8f -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZpzAXTEz1bVwdReGHRNyviMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVlNWU2NGZlYmZhNTY2NzRmNGRlMTY0MjlmNWRkZTQ5ZDlj ZTkzNjgwHhcNMjUxMTExMTMwMTA2WhcNMjUxMTEyMTMwMTA2WjAzMTEwLwYDVQQD Eyg2OGNkMTYxNjU3MjhiZjljM2JmMjc1NmU0NTQ3ZTJhNWUzZTM2ZTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSjXT069mTx9dQIIfqLtJuc2uamY YhQdIng7Vn/EbpBgkWgNkiFuV/2JUKkt/k6b2uSFnJLFwi8Wft1Bn2XHIfePON7Q dvOajJwhugStT6ET3Ty/3rjmZ7rluxFoOMaTZ9yFfewl3QiJLb3lyRUCJyNirOuc ZdHjGzOQ1u66tP6+IdaNxz3ZjrFIhUn5uDiIjvm9aCMqaKGsGemW8lLN3CQRMswJ O/svL3w8lQPgUaHk3RD5JTUVM80z+G6SXcirCSKl/+GnMFyxyTMD28zdpQDzslDK Q6b7WxFUGWauOfPOlXcqxgRzLjUImeBkM9sn+Bk37ti48+tYfDajcEwaLQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFGjNFhZXKL+cO/J1bkVH4qXj425RMB8GA1UdIwQY MBaAFF5eZP6/pWZ09N4WQp9d3knZzpNoMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWGw1a19yLWxablQwM2haQ24xM2VTZG5PazJnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wMC84NWZjMTEtZTIzYS00OTQyLWIwZGUt MjJmOGQ0YTAyN2FlLzEvWGw1a19yLWxablQwM2haQ24xM2VTZG5PazJnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8wMC84NWZjMTEtZTIzYS00OTQyLWIwZGUtMjJmOGQ0YTAyN2Fl LzEvWGw1a19yLWxablQwM2haQ24xM2VTZG5PazJnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiQ+81gy8 342HM49+1Yt4id1JjNSNTA9+GRpT92r3O2Lq55U86hg97hQRntcg7tSERVQw48va fFe25u6fSPhog6vB0W5hAq+BA7HMSYlC5tBzjJYTHhvdgW5xfGQmX9oMBrSAt+Ox geupBgkyT97ZV7V0hoXzH8qsPNuN0YXP76Bo2R9X4Yv5vRFDACRS4ZlNHTRl8hKN ggxtQylyId6Bmst49wCPdoi1cjdyUnXOTWH2fD3mbpk+XKOHgwhTC0Xo/wb3Zmp4 Zo9zzitPDGcHbMzmFGv2XttbmGfpBpWyX1byslHkC6cmmtmaSzfj7hTLA5u2gVtJ esOL2DeTAI58jw== -----END CERTIFICATE-----Generated at Wed Dec 17 15:27:34 2025 by rpki-client