This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf rsync.paas.rpki.ripe.net/repository/03fd0b76-7243-4b26-9760-cc07b94bfe23/1/258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.mft
File:                     258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.mft (raw, json)
Hash identifier:          dbEuRnSzPZO8WY5lrJNY24E+0zM6VghTjcVyNJO90vo=
Subject key identifier:   73:63:71:85:41:E5:FE:36:E4:EA:75:C8:F0:67:53:63:46:77:B0:21
Authority key identifier: 25:8D:1C:E0:CB:76:A9:86:E5:6C:7A:90:A6:6B:A7:DC:72:F5:95:2A
Certificate issuer:       /CN=258D1CE0CB76A986E56C7A90A66BA7DC72F5952A
Certificate serial:       71CA7483D53F9029DFD869E2D9222E8FDDD558C7
Authority info access:    rsync://rpki.axivora.net/repo/Axivora-Net/2/258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.cer
Subject info access:      rsync://rsync.paas.rpki.ripe.net/repository/03fd0b76-7243-4b26-9760-cc07b94bfe23/1/258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.mft
Manifest number:          74
Signing time:             Sat 17 Jan 2026 11:15:00 +0000
Manifest this update:     Sat 17 Jan 2026 11:10:00 +0000
Manifest next update:     Sun 18 Jan 2026 12:22:00 +0000
Files and hashes:         1: 326131343a373538303a3737353a3a2f34382d3438203d3e203134363138.roa (hash: MfUF2laHihcgibdMapv7JAFGkNEIH6JIdDfIW/lhqFE=)
                          2: 258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.crl (hash: pFhABZd9pMooql8FTDO7Kk0Ihh3Mj6HGNOVsDXQVZ4Q=)
                          3: 326131343a373538303a3737373a3a2f34382d3438203d3e203134363138.roa (hash: RTK2m9QZnNSKC5ZVcuz7+tdRZKTs7/hzcAu/hXd2ZTc=)
                          4: 326131343a373538303a3737353a3a2f34382d3438203d3e203136353039.roa (hash: LbzBckLICgXq7UKYaeP/CXL1PXD0JCr+a84omRC/7VY=)
                          5: 326131343a373538303a3737373a3a2f34382d3438203d3e203136353039.roa (hash: xvnqSl1qLoVMIEzXN9sXRb87iGsN7N/pVeZWynFQufE=)
                          6: 326131343a373538303a3737303a3a2f34342d3438203d3e20323133383931.roa (hash: woLwL0VEJzWnepdsx0zvpMFwwJXef1WYeYkaz1KcaHg=)
Validation:               Failed, unable to get local issuer certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            71:ca:74:83:d5:3f:90:29:df:d8:69:e2:d9:22:2e:8f:dd:d5:58:c7
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=258D1CE0CB76A986E56C7A90A66BA7DC72F5952A
        Validity
            Not Before: Jan 17 11:10:00 2026 GMT
            Not After : Jan 18 12:22:00 2026 GMT
        Subject: CN=7363718541E5FE36E4EA75C8F06753634677B021
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:e4:0a:9c:2f:e8:fa:63:23:b0:81:34:12:27:
                    4f:25:7f:dc:d3:6a:cf:bd:c0:ef:51:6b:0d:10:b2:
                    af:8f:ab:2d:d7:14:69:a4:0d:2d:98:41:b1:c5:58:
                    b2:7c:bf:c9:69:6f:2b:8d:8a:d6:05:11:d3:b2:59:
                    35:3a:fc:43:17:a0:9b:f1:22:52:63:24:06:56:ec:
                    3e:9b:e9:cd:23:74:ab:06:4b:6c:63:7b:72:1c:67:
                    31:43:32:7a:7f:32:1c:ce:3c:f4:fe:69:ad:a8:09:
                    92:f3:8b:c2:2c:f5:0a:31:d8:57:90:b2:6a:76:5a:
                    da:71:0b:b6:da:e8:80:d1:48:6d:76:40:b7:bb:6d:
                    a0:7a:3d:7f:e8:27:a1:d9:27:ec:0a:75:2b:1b:52:
                    a9:a7:d7:f5:93:0c:cf:4e:fe:cb:a2:4d:4a:50:de:
                    2d:67:d8:94:b3:26:9f:3b:69:ae:87:a3:20:60:1c:
                    99:e1:fd:e4:bd:0a:30:3c:1e:13:f6:55:6f:3e:5b:
                    5a:8b:14:d0:f2:1f:78:a7:4b:7d:fa:bb:f6:d6:42:
                    18:32:c4:65:ff:9a:27:35:66:fe:74:bc:41:ad:74:
                    73:c3:7e:79:3f:60:68:7e:ce:76:65:1e:3b:cc:bf:
                    c0:76:44:ba:f9:99:a5:d6:29:5d:32:e9:c8:44:21:
                    ee:c5
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                73:63:71:85:41:E5:FE:36:E4:EA:75:C8:F0:67:53:63:46:77:B0:21
            X509v3 Authority Key Identifier:
                keyid:25:8D:1C:E0:CB:76:A9:86:E5:6C:7A:90:A6:6B:A7:DC:72:F5:95:2A

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rsync.paas.rpki.ripe.net/repository/03fd0b76-7243-4b26-9760-cc07b94bfe23/1/258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.axivora.net/repo/Axivora-Net/2/258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.cer

            Subject Information Access:
                Signed Object - URI:rsync://rsync.paas.rpki.ripe.net/repository/03fd0b76-7243-4b26-9760-cc07b94bfe23/1/258D1CE0CB76A986E56C7A90A66BA7DC72F5952A.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         6b:3b:50:20:3c:81:76:84:bb:43:0c:a4:e3:17:6c:05:13:e8:
         d6:a0:56:de:6f:83:0e:8d:6e:3f:86:e9:b2:02:7d:7c:e3:ff:
         d7:38:24:8c:db:cf:b6:43:58:ad:95:50:4c:45:68:47:aa:1e:
         5d:bf:c3:27:95:7e:4f:9e:d1:f4:a6:35:51:9f:84:50:d5:b0:
         12:85:d9:35:2f:2f:03:be:bb:35:c2:b1:d6:c5:cc:f8:f3:da:
         42:d5:b5:92:86:f8:b9:2d:35:82:78:8c:8b:8e:50:d6:21:80:
         da:57:e8:22:84:67:dc:b8:fc:64:b0:51:81:91:97:2a:c1:d0:
         1e:59:31:76:11:32:c2:64:1f:70:73:23:71:fa:12:89:d7:a9:
         34:27:9e:0d:b2:f1:fc:26:0b:c8:96:1f:03:11:7b:d0:e7:c0:
         5b:f7:65:2e:89:1a:96:1b:d8:96:32:c6:4b:ce:35:51:26:23:
         ab:98:b2:30:ab:93:9c:87:3f:6d:fe:d5:70:d5:52:7f:21:4e:
         5e:09:76:d3:12:1c:4d:c3:1d:ff:c5:ab:b4:48:fd:09:24:d9:
         18:97:f1:ad:87:32:9f:1c:28:40:22:af:3d:bf:4f:5e:fa:10:
         b2:22:74:46:93:db:5e:29:36:61:fa:9c:70:1b:61:a9:b1:be:
         32:f3:bb:16
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----