This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/12/8a6744-39a2-4457-b845-d02eb27373e6/1/0Ul7Mkd2fTSZkemWyrivfUmUKvQ.mft File: 0Ul7Mkd2fTSZkemWyrivfUmUKvQ.mft (raw, json) Hash identifier: zQJ/JLn37lRP6GocLmbIGu8grhy/nSky6zBrL0O4qqo= Subject key identifier: 79:60:73:4D:B0:E6:2D:68:0B:25:F2:5D:5F:5B:5B:6E:B8:B6:DB:A8 Authority key identifier: D1:49:7B:32:47:76:7D:34:99:91:E9:96:CA:B8:AF:7D:49:94:2A:F4 Certificate issuer: /CN=d1497b3247767d349991e996cab8af7d49942af4 Certificate serial: 01972ECD4315A1CC268E32BADA3763F40640 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/0Ul7Mkd2fTSZkemWyrivfUmUKvQ.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/12/8a6744-39a2-4457-b845-d02eb27373e6/1/0Ul7Mkd2fTSZkemWyrivfUmUKvQ.mft Manifest number: 14FF Signing time: Mon 02 Jun 2025 04:01:33 +0000 Manifest this update: Mon 02 Jun 2025 04:01:33 +0000 Manifest next update: Tue 03 Jun 2025 04:01:33 +0000 Files and hashes: 1: 0Ul7Mkd2fTSZkemWyrivfUmUKvQ.crl (hash: wzgby3rUyM41gc0CuhmRQ3dkfVxMupIf7R/6JlzRHrQ=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:97:2e:cd:43:15:a1:cc:26:8e:32:ba:da:37:63:f4:06:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d1497b3247767d349991e996cab8af7d49942af4 Validity Not Before: Jun 2 04:01:33 2025 GMT Not After : Jun 3 04:01:33 2025 GMT Subject: CN=7960734db0e62d680b25f25d5f5b5b6eb8b6dba8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:55:06:23:be:71:f9:c0:8e:13:7f:5f:0d:3e: 52:4b:df:7d:28:79:3a:fd:94:be:bf:d7:69:74:7f: fc:5a:47:54:21:ba:c4:22:86:3b:2c:37:56:97:f5: 93:6f:3b:14:f9:aa:6f:d7:de:f7:2c:31:6a:93:32: 42:cb:59:0b:9f:f6:6d:85:08:e5:48:f2:bf:1a:61: 01:e3:83:06:b5:4d:a4:37:0d:db:dc:0c:7d:ee:38: 6f:34:d6:bf:f3:e0:dd:9f:73:56:90:89:45:fe:c5: af:49:49:33:b9:30:9c:b5:82:fa:ac:28:34:72:d6: 58:b2:96:c6:3d:6a:75:58:60:82:d2:82:91:05:4e: 08:de:fe:a5:ec:98:82:5d:4e:b4:16:88:47:fa:34: be:be:1c:72:ce:a7:6b:16:79:a0:eb:8a:c2:87:9a: 98:68:6b:24:e1:f4:a5:61:2a:5d:4f:a2:3c:3c:39: e1:2c:9e:43:d1:c6:f8:98:68:66:d0:10:51:a1:32: 4d:98:da:d9:ee:a4:7b:8c:9d:16:14:72:45:c2:49: 8a:4b:a7:36:66:84:70:51:2f:df:98:56:19:a5:68: 0e:40:36:05:95:10:d5:96:bf:a5:8e:94:4a:7b:27: 62:8f:83:ef:39:e5:44:4a:d5:68:0b:ad:22:5f:1d: e0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:60:73:4D:B0:E6:2D:68:0B:25:F2:5D:5F:5B:5B:6E:B8:B6:DB:A8 X509v3 Authority Key Identifier: keyid:D1:49:7B:32:47:76:7D:34:99:91:E9:96:CA:B8:AF:7D:49:94:2A:F4 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/0Ul7Mkd2fTSZkemWyrivfUmUKvQ.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8a6744-39a2-4457-b845-d02eb27373e6/1/0Ul7Mkd2fTSZkemWyrivfUmUKvQ.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/12/8a6744-39a2-4457-b845-d02eb27373e6/1/0Ul7Mkd2fTSZkemWyrivfUmUKvQ.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:b5:ed:a6:02:b4:a8:f8:6a:32:5b:ad:37:05:e1:49:bc:db: 38:e4:6c:a8:72:f8:a8:21:e6:9c:0f:22:0c:ab:76:94:2b:1b: 47:2f:eb:18:e4:43:37:5f:35:b6:c1:9b:58:7e:b9:ad:e0:d0: c6:e9:6d:7e:27:43:c4:e0:16:b3:7e:da:db:46:11:ab:ce:65: ac:61:2a:82:41:29:e1:40:86:29:fd:11:74:1c:99:0c:1e:4e: 4f:2d:bb:44:76:54:a4:5f:49:24:b0:bd:f9:e6:30:66:c1:1d: ad:5d:d1:f5:d1:4c:ec:37:ae:5c:cc:c4:ca:f9:c0:38:79:de: f9:02:8d:06:6f:b5:92:4a:6c:b9:b7:9f:28:0f:50:1a:9c:b0: 67:31:f4:02:65:23:e8:aa:63:ca:ea:95:7e:2d:43:b4:9b:63: 01:ee:48:81:56:48:3e:f4:29:a9:7f:83:84:26:10:be:e0:e2: 1a:a9:f8:49:d9:a0:b1:82:d2:1d:86:b1:72:c7:1b:68:49:86: 08:a7:61:c6:f1:19:c1:f3:d3:bf:01:c7:76:c3:6a:27:29:ac: 93:da:5e:60:d8:d6:14:e6:a9:ae:dd:d5:34:38:67:86:f9:b0: e5:5d:d0:85:4e:76:12:f7:ad:5e:3b:dc:59:dc:0c:fb:1d:82: db:e7:36:cb -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZcuzUMVocwmjjK62jdj9AZAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKGQxNDk3YjMyNDc3NjdkMzQ5OTkxZTk5NmNhYjhhZjdkNDk5 NDJhZjQwHhcNMjUwNjAyMDQwMTMzWhcNMjUwNjAzMDQwMTMzWjAzMTEwLwYDVQQD Eyg3OTYwNzM0ZGIwZTYyZDY4MGIyNWYyNWQ1ZjViNWI2ZWI4YjZkYmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0FUGI75x+cCOE39fDT5SS999KHk6 /ZS+v9dpdH/8WkdUIbrEIoY7LDdWl/WTbzsU+apv1973LDFqkzJCy1kLn/ZthQjl SPK/GmEB44MGtU2kNw3b3Ax97jhvNNa/8+Ddn3NWkIlF/sWvSUkzuTCctYL6rCg0 ctZYspbGPWp1WGCC0oKRBU4I3v6l7JiCXU60FohH+jS+vhxyzqdrFnmg64rCh5qY aGsk4fSlYSpdT6I8PDnhLJ5D0cb4mGhm0BBRoTJNmNrZ7qR7jJ0WFHJFwkmKS6c2 ZoRwUS/fmFYZpWgOQDYFlRDVlr+ljpRKeydij4PvOeVEStVoC60iXx3ggQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFHlgc02w5i1oCyXyXV9bW264ttuoMB8GA1UdIwQY MBaAFNFJezJHdn00mZHplsq4r31JlCr0MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvMFVsN01rZDJmVFNaa2VtV3lyaXZmVW1VS3ZRLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8xMi84YTY3NDQtMzlhMi00NDU3LWI4NDUt ZDAyZWIyNzM3M2U2LzEvMFVsN01rZDJmVFNaa2VtV3lyaXZmVW1VS3ZRLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8xMi84YTY3NDQtMzlhMi00NDU3LWI4NDUtZDAyZWIyNzM3M2U2 LzEvMFVsN01rZDJmVFNaa2VtV3lyaXZmVW1VS3ZRLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAhLXtpgK0 qPhqMlutNwXhSbzbOORsqHL4qCHmnA8iDKt2lCsbRy/rGORDN181tsGbWH65reDQ xultfidDxOAWs37a20YRq85lrGEqgkEp4UCGKf0RdByZDB5OTy27RHZUpF9JJLC9 +eYwZsEdrV3R9dFM7DeuXMzEyvnAOHne+QKNBm+1kkpsubefKA9QGpywZzH0AmUj 6KpjyuqVfi1DtJtjAe5IgVZIPvQpqX+DhCYQvuDiGqn4SdmgsYLSHYaxcscbaEmG CKdhxvEZwfPTvwHHdsNqJymsk9peYNjWFOaprt3VNDhnhvmw5V3QhU52EvetXjvc WdwM+x2C2+c2yw== -----END CERTIFICATE-----Generated at Fri Dec 19 06:09:05 2025 by rpki-client