This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft File: XEzh8ZMxT2k5vxw_nawjafYpWFo.mft (raw, json) Hash identifier: G+YTeE9/ibD2YtwCVJ665Kd//fjX6r8MNUkn6smynAQ= Subject key identifier: A9:84:30:1B:FA:BE:70:3F:F0:61:3C:9F:15:AA:F1:EC:1A:DB:9D:28 Authority key identifier: 5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A Certificate issuer: /CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a Certificate serial: 019A95FB707625B6070AEB76601D0BCC3F12 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft Manifest number: 1731 Signing time: Tue 18 Nov 2025 08:01:14 +0000 Manifest this update: Tue 18 Nov 2025 08:01:14 +0000 Manifest next update: Wed 19 Nov 2025 08:01:14 +0000 Files and hashes: 1: NeVlE-PzPHn5ppNlSgj87PhylgM.roa (hash: +i1WA9cuFFrQg1WFh0BGIYlKWMIvdmOqwrDe9C8B0aM=) 2: XEzh8ZMxT2k5vxw_nawjafYpWFo.crl (hash: PH2bq5aQgSifTMEXMa0mlQzK2nkpjPPckrtVJYEdW2E=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:95:fb:70:76:25:b6:07:0a:eb:76:60:1d:0b:cc:3f:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5c4ce1f193314f6939bf1c3f9dac2369f629585a Validity Not Before: Nov 18 08:01:14 2025 GMT Not After : Nov 19 08:01:14 2025 GMT Subject: CN=a984301bfabe703ff0613c9f15aaf1ec1adb9d28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:69:ea:7c:b1:b9:c4:e0:99:da:85:a1:f9:ae: 2a:fd:23:50:df:2f:15:07:6b:b6:1a:64:5a:2b:1b: 1c:e3:c1:bd:18:d0:6b:f4:4f:95:30:7f:48:e6:dd: c8:00:ff:d9:85:33:87:f8:12:3e:77:42:28:35:ea: a6:23:02:65:96:8a:27:40:6d:a1:2d:3d:e9:e7:dc: d4:c8:3d:30:91:d3:56:d4:08:1d:0f:51:b4:62:9c: f5:ef:13:78:05:87:2b:7e:49:3d:67:3d:1e:88:81: 40:7d:05:54:25:1e:4a:68:bc:32:19:2f:40:b5:7b: 87:4d:01:01:6c:9f:ea:5b:78:e6:d7:08:74:4e:74: a9:40:d5:6d:a1:63:11:e3:e3:8a:b7:ea:63:5a:1d: bd:f3:e1:a6:38:c4:29:16:71:6e:76:18:d2:38:39: 01:b9:39:47:19:05:df:3c:05:7f:a8:b2:34:e0:08: 29:32:02:66:14:e6:5e:d1:b4:91:64:a2:72:19:b7: 06:84:61:01:a5:40:19:e5:45:2c:21:11:9b:b9:80: 45:bf:6e:70:b4:ff:13:42:09:de:ce:37:f7:d7:52: cd:6a:1f:b5:55:4f:47:2c:06:5d:a6:a7:b5:9a:79: f5:36:f2:dc:51:04:36:32:aa:cc:ed:e7:c3:82:f7: 84:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:84:30:1B:FA:BE:70:3F:F0:61:3C:9F:15:AA:F1:EC:1A:DB:9D:28 X509v3 Authority Key Identifier: keyid:5C:4C:E1:F1:93:31:4F:69:39:BF:1C:3F:9D:AC:23:69:F6:29:58:5A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XEzh8ZMxT2k5vxw_nawjafYpWFo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/dbf502-9f31-4d70-87d4-e066d022e927/1/XEzh8ZMxT2k5vxw_nawjafYpWFo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:db:68:f8:1f:68:19:d1:70:d5:5f:60:30:3d:91:5e:14:db: 02:b3:b8:bf:aa:aa:43:fa:ef:7e:5e:2c:24:ed:44:69:b6:8e: 56:39:16:1a:a7:8f:77:75:1b:7a:c9:62:74:07:37:54:7a:c2: 8d:a4:fa:8b:98:ab:f5:8b:91:6f:ed:a2:ff:5a:9c:54:45:f4: 2a:71:64:df:3a:73:5a:09:ff:56:bd:c9:a6:c7:9a:8f:ff:41: 95:dd:a1:23:0f:91:c5:d1:8d:13:ee:78:81:e6:f2:ce:3c:dc: 12:19:56:f5:9c:c1:ce:ac:86:cc:2f:d3:f8:dc:54:a4:cd:87: 8a:7a:9d:6c:9d:88:b1:65:f8:7a:ff:fc:86:d5:5c:f2:dd:21: 89:6b:a9:80:af:90:48:5c:53:8f:f9:19:39:3a:d4:d3:e1:24: 43:41:ec:50:9e:e9:01:a2:db:0d:df:3f:1b:50:ba:9c:de:1d: 8d:b4:78:c9:56:47:57:b5:84:be:33:ca:79:82:88:72:9a:25: 21:a2:18:14:29:ab:00:df:0b:f0:60:8f:ab:8b:05:18:e4:b9: 0b:6a:ce:5d:ee:07:69:2a:67:8d:ab:aa:2d:bd:39:b7:5f:ae: 78:bd:03:af:bc:86:c6:5c:5b:03:09:8d:05:52:35:80:68:02: d1:85:a7:4c -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZqV+3B2JbYHCut2YB0LzD8SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDVjNGNlMWYxOTMzMTRmNjkzOWJmMWMzZjlkYWMyMzY5ZjYy OTU4NWEwHhcNMjUxMTE4MDgwMTE0WhcNMjUxMTE5MDgwMTE0WjAzMTEwLwYDVQQD EyhhOTg0MzAxYmZhYmU3MDNmZjA2MTNjOWYxNWFhZjFlYzFhZGI5ZDI4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAimnqfLG5xOCZ2oWh+a4q/SNQ3y8V B2u2GmRaKxsc48G9GNBr9E+VMH9I5t3IAP/ZhTOH+BI+d0IoNeqmIwJlloonQG2h LT3p59zUyD0wkdNW1AgdD1G0Ypz17xN4BYcrfkk9Zz0eiIFAfQVUJR5KaLwyGS9A tXuHTQEBbJ/qW3jm1wh0TnSpQNVtoWMR4+OKt+pjWh298+GmOMQpFnFudhjSODkB uTlHGQXfPAV/qLI04AgpMgJmFOZe0bSRZKJyGbcGhGEBpUAZ5UUsIRGbuYBFv25w tP8TQgnezjf311LNah+1VU9HLAZdpqe1mnn1NvLcUQQ2MqrM7efDgveE8QIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFKmEMBv6vnA/8GE8nxWq8ewa250oMB8GA1UdIwQY MBaAFFxM4fGTMU9pOb8cP52sI2n2KVhaMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvWEV6aDhaTXhUMms1dnh3X25hd2phZllwV0ZvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9kYmY1MDItOWYzMS00ZDcwLTg3ZDQt ZTA2NmQwMjJlOTI3LzEvWEV6aDhaTXhUMms1dnh3X25hd2phZllwV0ZvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9kYmY1MDItOWYzMS00ZDcwLTg3ZDQtZTA2NmQwMjJlOTI3 LzEvWEV6aDhaTXhUMms1dnh3X25hd2phZllwV0ZvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASNto+B9o GdFw1V9gMD2RXhTbArO4v6qqQ/rvfl4sJO1EabaOVjkWGqePd3UbeslidAc3VHrC jaT6i5ir9YuRb+2i/1qcVEX0KnFk3zpzWgn/Vr3Jpseaj/9Bld2hIw+RxdGNE+54 gebyzjzcEhlW9ZzBzqyGzC/T+NxUpM2HinqdbJ2IsWX4ev/8htVc8t0hiWupgK+Q SFxTj/kZOTrU0+EkQ0HsUJ7pAaLbDd8/G1C6nN4djbR4yVZHV7WEvjPKeYKIcpol IaIYFCmrAN8L8GCPq4sFGOS5C2rOXe4HaSpnjauqLb05t1+ueL0Dr7yGxlxbAwmN BVI1gGgC0YWnTA== -----END CERTIFICATE-----Generated at Sat Dec 20 22:23:15 2025 by rpki-client