This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft File: 528A271B82B6185862B06F250499140113F6FE20.mft (raw, json) Hash identifier: ggJYOHjGtLruvUV+iWvDP/QWGUWVc52lKx+GJ12HAQg= Subject key identifier: CE:85:67:B9:10:91:C0:A9:62:77:7E:EB:4D:A0:72:7E:63:98:F6:99 Authority key identifier: 52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 Certificate issuer: /CN=528A271B82B6185862B06F250499140113F6FE20 Certificate serial: 1EB1CFF8393518D1B33B0D7B3F4FD6A05E7CC82E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft Manifest number: 0244 Signing time: Wed 24 Dec 2025 15:11:04 +0000 Manifest this update: Wed 24 Dec 2025 15:06:04 +0000 Manifest next update: Sat 27 Dec 2025 21:17:04 +0000 Files and hashes: 1: 528A271B82B6185862B06F250499140113F6FE20.crl (hash: hetRdREgPdEBlxfs5iVhHsSllqArDOWINcpWDpw/WiQ=) 2: 3130332e3138392e36302e302f32332d3234203d3e20313439373432.roa (hash: uC/qnArDdSiiufGjxuhvh3127pXhWNHzqVlIjcIb2ME=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b1:cf:f8:39:35:18:d1:b3:3b:0d:7b:3f:4f:d6:a0:5e:7c:c8:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A271B82B6185862B06F250499140113F6FE20 Validity Not Before: Dec 24 15:06:04 2025 GMT Not After : Dec 27 21:17:04 2025 GMT Subject: CN=CE8567B91091C0A962777EEB4DA0727E6398F699 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:5c:67:fa:67:60:b1:9d:55:42:66:bf:38:d6: 2a:a7:12:30:5c:c4:7e:35:b0:9c:e8:7b:0b:a2:ba: f1:59:b5:d2:e1:3f:b5:53:1a:77:33:37:46:2d:24: 79:e4:68:e2:14:58:f6:df:ce:f9:ef:a9:a6:b3:d0: ee:b7:a8:2f:19:79:ae:52:9d:82:20:eb:c7:7d:03: 7f:9e:63:d1:54:f5:47:d1:f0:10:53:c1:26:d6:50: 60:d8:f2:cc:a4:50:07:c6:af:c4:21:56:89:f0:c3: ea:10:1c:7e:76:0b:7e:6c:f5:62:34:3f:09:85:13: 76:90:3a:33:b1:13:d6:cb:5a:b9:ff:5d:85:59:bc: 83:23:3f:39:d4:15:57:14:fd:f0:ff:44:62:ed:e1: 70:50:6e:3b:fe:b2:6d:ba:7c:23:a8:c9:dc:8b:12: 48:9c:44:c5:8b:9e:40:c8:2f:24:62:08:b1:13:ce: c1:bb:ba:00:e8:ec:dc:6c:0d:4f:08:38:c5:7c:68: 06:2c:2d:05:43:90:ef:21:22:26:67:70:70:26:b1: 78:29:29:b6:7a:78:51:96:79:ce:cd:29:29:18:42: 37:19:28:ad:43:79:d6:bd:42:8f:d0:3e:34:8c:28: d2:a1:c3:6a:80:20:f5:93:98:6b:00:58:46:71:bb: 0c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:85:67:B9:10:91:C0:A9:62:77:7E:EB:4D:A0:72:7E:63:98:F6:99 X509v3 Authority Key Identifier: keyid:52:8A:27:1B:82:B6:18:58:62:B0:6F:25:04:99:14:01:13:F6:FE:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A271B82B6185862B06F250499140113F6FE20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0ad3cc8a-9738-451b-a798-7b76b0940b4b/0/528A271B82B6185862B06F250499140113F6FE20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:18:a8:d7:f9:86:48:40:97:31:f7:30:0c:4e:db:bc:e6:4d: 52:85:45:6c:25:8e:4e:0d:52:36:71:ac:32:3f:c9:56:44:38: 60:7d:57:e7:b4:9e:12:40:9a:3d:60:d3:d1:ed:8d:7d:d4:ca: 8b:b5:b0:d7:33:8a:c7:f6:a0:19:87:0c:a2:0c:12:a1:6e:1d: 10:6e:8d:9e:1d:50:01:86:54:b2:12:9f:67:87:fe:64:2f:39: 0d:6f:e0:47:6a:fa:17:10:91:5c:b6:41:44:f3:50:45:5e:c0: 0c:95:99:33:ef:ee:a7:96:2b:5b:23:b2:64:06:b2:31:a7:73: 0b:74:5c:72:70:6b:6a:77:80:b3:b4:ca:97:a1:24:6e:6f:51: 60:32:a8:d5:6b:27:53:a0:0d:69:03:ac:7c:46:e1:dd:a2:cd: c4:c2:7f:c4:2d:c8:ae:dc:da:be:9b:6b:2d:a9:32:1a:59:8e: 10:14:18:a6:bd:09:ac:4d:34:3b:10:b9:72:b5:0c:46:c0:7a: f7:d8:28:36:84:3d:3a:66:26:76:8b:e6:64:f3:21:b0:43:d4: 93:11:58:33:91:a6:51:05:b0:f0:da:a7:ce:bc:11:bb:7c:91: ac:d9:b3:65:62:ac:37:49:31:79:d6:00:82:a6:36:ab:90:26: 9f:18:37:5d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHrHP+Dk1GNGzOw17P0/WoF58yC4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDEx M0Y2RkUyMDAeFw0yNTEyMjQxNTA2MDRaFw0yNTEyMjcyMTE3MDRaMDMxMTAvBgNV BAMTKENFODU2N0I5MTA5MUMwQTk2Mjc3N0VFQjREQTA3MjdFNjM5OEY2OTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDEXGf6Z2CxnVVCZr841iqnEjBc xH41sJzoewuiuvFZtdLhP7VTGnczN0YtJHnkaOIUWPbfzvnvqaaz0O63qC8Zea5S nYIg68d9A3+eY9FU9UfR8BBTwSbWUGDY8sykUAfGr8QhVonww+oQHH52C35s9WI0 PwmFE3aQOjOxE9bLWrn/XYVZvIMjPznUFVcU/fD/RGLt4XBQbjv+sm26fCOoydyL EkicRMWLnkDILyRiCLETzsG7ugDo7NxsDU8IOMV8aAYsLQVDkO8hIiZncHAmsXgp KbZ6eFGWec7NKSkYQjcZKK1Deda9Qo/QPjSMKNKhw2qAIPWTmGsAWEZxuwwrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzoVnuRCRwKlid37rTaByfmOY9pkwHwYDVR0j BBgwFoAUUoonG4K2GFhisG8lBJkUARP2/iAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w YWQzY2M4YS05NzM4LTQ1MWItYTc5OC03Yjc2YjA5NDBiNGIvMC81MjhBMjcxQjgy QjYxODU4NjJCMDZGMjUwNDk5MTQwMTEzRjZGRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0MDExM0Y2 RkUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGFkM2NjOGEtOTczOC00NTFiLWE3 OTgtN2I3NmIwOTQwYjRiLzAvNTI4QTI3MUI4MkI2MTg1ODYyQjA2RjI1MDQ5OTE0 MDExM0Y2RkUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADMYqNf5hkhAlzH3MAxO27zmTVKFRWwljk4N UjZxrDI/yVZEOGB9V+e0nhJAmj1g09HtjX3Uyou1sNczisf2oBmHDKIMEqFuHRBu jZ4dUAGGVLISn2eH/mQvOQ1v4Edq+hcQkVy2QUTzUEVewAyVmTPv7qeWK1sjsmQG sjGncwt0XHJwa2p3gLO0ypehJG5vUWAyqNVrJ1OgDWkDrHxG4d2izcTCf8QtyK7c 2r6bay2pMhpZjhAUGKa9CaxNNDsQuXK1DEbAevfYKDaEPTpmJnaL5mTzIbBD1JMR WDORplEFsPDap868Ebt8kazZs2VirDdJMXnWAIKmNquQJp8YN10= -----END CERTIFICATE-----Generated at Wed Dec 24 22:08:34 2025 by rpki-client