This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft File: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft (raw, json) Hash identifier: TmkrZazl/C0WBOgG/1//4g/LRVPvlFN3C4ml7mdf8bc= Subject key identifier: 55:81:6B:98:3F:CE:0B:5F:3B:D1:31:75:C2:C5:96:63:6A:B7:9F:E6 Authority key identifier: 52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A Certificate issuer: /CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Certificate serial: 0847A6E4E8A21C45E37562114A19A7E26EAFD467 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft Manifest number: C1 Signing time: Thu 18 Dec 2025 04:10:51 +0000 Manifest this update: Thu 18 Dec 2025 04:05:51 +0000 Manifest next update: Sun 21 Dec 2025 12:49:51 +0000 Files and hashes: 1: 3135372e31302e3138342e302f32342d3234203d3e20313532333438.roa (hash: pR6eogbZvQzPFnI0kZLcItGmRoYFBBreikW5pxdST7Q=) 2: 52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl (hash: EUti6KE/Vjee3kLmMIQRkbjTujzWqqZ/q/KLeSCigrs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 12:49:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:47:a6:e4:e8:a2:1c:45:e3:75:62:11:4a:19:a7:e2:6e:af:d4:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A Validity Not Before: Dec 18 04:05:51 2025 GMT Not After : Dec 21 12:49:51 2025 GMT Subject: CN=55816B983FCE0B5F3BD13175C2C596636AB79FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:79:c6:d9:ed:24:b5:e6:cd:29:98:a0:a1:48: 2b:eb:40:cf:a3:d0:ed:e2:43:81:a9:70:ca:42:12: 34:e2:18:f7:41:59:84:96:70:91:21:21:ca:ac:05: c0:45:2c:21:13:9d:df:84:63:03:88:cf:94:9d:db: 45:08:7c:8c:b2:f5:e9:1a:7a:39:2b:50:c9:8d:39: f2:7c:17:5f:d6:0a:1f:d7:cf:f0:e8:ab:cf:9e:42: 6f:e6:d7:44:f7:56:d9:83:82:ad:a0:70:5f:6b:44: 92:f0:1f:67:3d:84:f7:f1:77:9e:af:7a:84:a0:2e: 96:e7:08:b4:1d:59:24:7a:49:4f:df:d5:9e:fe:c9: 91:76:e6:f4:d8:2c:2e:bf:a4:ac:d7:dc:90:4e:3f: 54:a9:d0:e2:ea:13:04:e1:50:fc:f9:bd:bd:c8:02: 34:b3:d2:f8:e1:b4:73:d4:7e:02:0d:e8:d6:44:5d: ab:c5:6f:42:88:8a:ac:45:f5:f6:76:6a:91:c9:8f: fa:e9:7a:ec:17:84:02:fd:21:d5:46:36:f2:31:62: 0b:25:51:2b:d6:75:33:55:19:35:b7:ba:1f:4d:ba: c4:c6:f7:92:63:2e:38:ff:45:9b:6e:76:40:20:26: 8b:6d:79:1a:ce:18:f2:16:c0:7c:e7:ca:0a:f5:c1: 78:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:81:6B:98:3F:CE:0B:5F:3B:D1:31:75:C2:C5:96:63:6A:B7:9F:E6 X509v3 Authority Key Identifier: keyid:52:B9:C1:E5:F0:BA:F3:45:C4:0F:2E:79:66:9C:63:CB:39:E5:CF:3A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/10a8590e-e4dc-4416-a6fa-fb78d6dd12d7/0/52B9C1E5F0BAF345C40F2E79669C63CB39E5CF3A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:6e:0e:32:cc:84:06:ae:22:75:b4:c4:d8:b0:9e:cf:dc:b5: 22:9c:77:a7:23:28:6d:f8:e1:bd:cb:12:e3:20:99:d8:07:1c: f6:d8:cd:b8:2b:f9:93:32:7c:ee:6e:ba:50:4e:f2:0d:26:64: 62:60:06:25:99:fb:c6:5b:c2:b3:63:57:1f:6c:e8:3f:99:29: 36:a1:41:fb:9e:e1:3f:fb:5a:37:fc:b4:16:70:90:5c:9b:2a: 0a:90:58:7d:5e:4e:84:de:57:df:a3:77:be:64:0d:8d:37:d4: ae:df:53:31:33:c0:df:39:11:19:ea:c6:cb:9c:f5:e2:5e:2c: 7a:1a:ca:dd:8a:b2:92:05:cd:01:68:0f:c8:15:53:68:43:22: f5:73:92:67:fe:71:2f:74:95:f1:a8:56:24:85:cd:be:ca:68: 54:2f:4e:dd:ae:b8:3a:d3:36:78:7d:7a:98:5b:5a:78:ba:24: ff:3d:50:d8:78:6e:40:0d:3e:be:4f:3d:37:4c:9b:35:1b:08: 4c:8c:9b:56:b3:9a:6d:45:fd:c3:3c:1e:04:18:7f:b1:f5:16: f3:cc:5d:c3:b9:56:fd:65:97:9d:9d:42:cb:c4:a6:3a:c8:3b: 42:b1:a5:fc:83:eb:22:6c:4e:99:8b:fb:5f:3d:c3:45:84:3b: 30:30:80:27 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCEem5OiiHEXjdWIRShmn4m6v1GcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0Iz OUU1Q0YzQTAeFw0yNTEyMTgwNDA1NTFaFw0yNTEyMjExMjQ5NTFaMDMxMTAvBgNV BAMTKDU1ODE2Qjk4M0ZDRTBCNUYzQkQxMzE3NUMyQzU5NjYzNkFCNzlGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1ecbZ7SS15s0pmKChSCvrQM+j 0O3iQ4GpcMpCEjTiGPdBWYSWcJEhIcqsBcBFLCETnd+EYwOIz5Sd20UIfIyy9eka ejkrUMmNOfJ8F1/WCh/Xz/Doq8+eQm/m10T3VtmDgq2gcF9rRJLwH2c9hPfxd56v eoSgLpbnCLQdWSR6SU/f1Z7+yZF25vTYLC6/pKzX3JBOP1Sp0OLqEwThUPz5vb3I AjSz0vjhtHPUfgIN6NZEXavFb0KIiqxF9fZ2apHJj/rpeuwXhAL9IdVGNvIxYgsl USvWdTNVGTW3uh9NusTG95JjLjj/RZtudkAgJotteRrOGPIWwHznygr1wXiHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUVYFrmD/OC1870TF1wsWWY2q3n+YwHwYDVR0j BBgwFoAUUrnB5fC680XEDy55ZpxjyznlzzowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MGE4NTkwZS1lNGRjLTQ0MTYtYTZmYS1mYjc4ZDZkZDEyZDcvMC81MkI5QzFFNUYw QkFGMzQ1QzQwRjJFNzk2NjlDNjNDQjM5RTVDRjNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYzQ0IzOUU1 Q0YzQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTBhODU5MGUtZTRkYy00NDE2LWE2 ZmEtZmI3OGQ2ZGQxMmQ3LzAvNTJCOUMxRTVGMEJBRjM0NUM0MEYyRTc5NjY5QzYz Q0IzOUU1Q0YzQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAhuDjLMhAauInW0xNiwns/ctSKcd6cjKG34 4b3LEuMgmdgHHPbYzbgr+ZMyfO5uulBO8g0mZGJgBiWZ+8ZbwrNjVx9s6D+ZKTah Qfue4T/7Wjf8tBZwkFybKgqQWH1eToTeV9+jd75kDY031K7fUzEzwN85ERnqxsuc 9eJeLHoayt2KspIFzQFoD8gVU2hDIvVzkmf+cS90lfGoViSFzb7KaFQvTt2uuDrT Nnh9ephbWni6JP89UNh4bkANPr5PPTdMmzUbCEyMm1azmm1F/cM8HgQYf7H1FvPM XcO5Vv1ll52dQsvEpjrIO0KxpfyD6yJsTpmL+189w0WEOzAwgCc= -----END CERTIFICATE-----Generated at Fri Dec 19 15:59:48 2025 by rpki-client