This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft File: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft (raw, json) Hash identifier: 8e6bYKYLsqHZkTCpcVK5tbfoILpF5ai/5j04SaOa3Nw= Subject key identifier: F0:B1:44:F4:2C:C9:91:50:16:41:53:7C:7E:1C:A2:BF:71:21:62:BC Authority key identifier: 25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 Certificate issuer: /CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Certificate serial: 52D78419599DB7AD2544B4C801267E674F62B579 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft Manifest number: 04EE Signing time: Thu 18 Dec 2025 10:31:51 +0000 Manifest this update: Thu 18 Dec 2025 10:26:51 +0000 Manifest next update: Sun 21 Dec 2025 12:25:51 +0000 Files and hashes: 1: 3130332e3134352e31352e302f32342d3234203d3e20313339343338.roa (hash: VKvXvb3BP6384nLUH1LdjT/mbF098hu6bIg7H4DeDLk=) 2: 3130332e3134352e31342e302f32342d3234203d3e20313339343338.roa (hash: voGeHKK4ikA3uaKs2J+WeJLtpIfTnr3JdLSLAJpRJmc=) 3: 3130332e3134352e31342e302f32332d3234203d3e20313339343338.roa (hash: 1I55HZV9ASBX91G1gmKkN8XsoZ52BjLH6TscAGFfb1w=) 4: 2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl (hash: YKgEkmZumwXZ+1dXHSLEI6ny+vSoIHeJi9t73Pixf9Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 12:25:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d7:84:19:59:9d:b7:ad:25:44:b4:c8:01:26:7e:67:4f:62:b5:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2552240EFFEE2F60F5684DD03EDE49372EBD2A17 Validity Not Before: Dec 18 10:26:51 2025 GMT Not After : Dec 21 12:25:51 2025 GMT Subject: CN=F0B144F42CC991501641537C7E1CA2BF712162BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:89:94:45:87:3c:19:3c:1c:a3:4e:f9:e1:e2: 3a:a5:3d:fa:b7:be:0f:b4:2e:7b:d9:4a:89:04:df: a0:e7:73:31:e6:71:2b:38:45:cd:16:e4:3a:30:c0: 58:b6:a9:82:3d:1b:d8:78:ad:fc:ce:ae:ef:53:a8: 99:f6:3f:3d:ce:c4:76:95:be:26:e0:f6:12:60:f4: cf:1a:c4:ae:20:d6:91:45:d6:02:25:7f:3a:e0:18: ce:d3:50:0c:77:fd:bf:06:96:02:67:f4:61:c9:b0: 84:36:e8:e8:f1:0c:1d:86:61:fa:c6:8b:e1:42:a6: cb:8b:cc:13:92:ee:e8:fe:7e:35:d9:59:74:fb:13: de:84:26:f8:87:01:17:63:3b:2d:47:41:2a:cd:ea: fa:c3:06:a6:07:0e:9e:75:e6:68:40:20:e2:12:3d: 95:2f:d9:7a:f4:ae:d0:4d:0f:cf:cb:06:76:0a:4e: 15:14:5f:5a:7a:b2:80:76:ff:68:6d:d3:3a:17:66: 1c:68:f9:6a:eb:ae:0f:ba:eb:6c:c1:bd:c7:99:0d: a1:31:db:ea:30:db:73:98:79:36:15:a6:76:84:9e: 8e:f8:ff:58:c1:34:e5:34:66:98:0e:18:6e:5d:82: b0:c1:00:ac:ba:b0:a1:e1:d8:b4:b6:e7:ff:8a:e7: bc:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B1:44:F4:2C:C9:91:50:16:41:53:7C:7E:1C:A2:BF:71:21:62:BC X509v3 Authority Key Identifier: keyid:25:52:24:0E:FF:EE:2F:60:F5:68:4D:D0:3E:DE:49:37:2E:BD:2A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2004233f-bb2c-47d7-901c-e3c82f8d423c/0/2552240EFFEE2F60F5684DD03EDE49372EBD2A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:14:14:90:ac:9c:a3:bb:b6:84:86:89:36:f0:5c:1e:59:fc: bb:11:f8:9e:33:31:19:e4:39:52:b1:9d:8b:e6:5e:48:04:dd: f2:c6:f7:8c:95:a9:b3:c5:90:9f:e0:df:0d:b5:b8:e1:48:25: 18:5c:31:3f:64:e1:6a:ac:f3:b5:a1:2b:7a:5e:aa:b4:3b:52: ec:6f:b6:36:87:c0:91:f8:fc:7c:09:a0:f6:36:dc:78:b4:0c: 59:41:18:de:fd:7c:c7:f2:20:0f:15:33:a5:37:96:5c:50:11: 52:1e:ae:ca:e2:42:02:d1:a7:9f:e8:43:6a:06:83:01:04:5a: 6c:26:c1:25:c4:aa:3e:e4:86:54:7d:e0:d3:62:62:44:59:04: 4c:cf:76:5a:68:da:ee:19:ec:52:31:15:b5:a1:34:92:9f:4e: 9d:ab:cd:db:c7:d9:6e:a3:d2:46:50:75:a6:99:68:5d:e7:f6: d2:9a:ca:5e:3f:a5:99:cf:2e:a6:e4:71:f6:09:17:a5:6c:71: 39:b8:d7:f3:e7:51:0c:84:8c:39:71:3d:59:4b:49:4d:93:82: 98:b2:05:05:90:84:1f:f0:c7:41:06:06:88:e1:14:8a:8e:79: b2:46:8b:ba:02:e7:82:b8:1a:2f:9b:40:bf:de:54:29:62:b4: e4:9c:df:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUteEGVmdt60lRLTIASZ+Z09itXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5Mzcy RUJEMkExNzAeFw0yNTEyMTgxMDI2NTFaFw0yNTEyMjExMjI1NTFaMDMxMTAvBgNV BAMTKEYwQjE0NEY0MkNDOTkxNTAxNjQxNTM3QzdFMUNBMkJGNzEyMTYyQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtiZRFhzwZPByjTvnh4jqlPfq3 vg+0LnvZSokE36DnczHmcSs4Rc0W5DowwFi2qYI9G9h4rfzOru9TqJn2Pz3OxHaV vibg9hJg9M8axK4g1pFF1gIlfzrgGM7TUAx3/b8GlgJn9GHJsIQ26OjxDB2GYfrG i+FCpsuLzBOS7uj+fjXZWXT7E96EJviHARdjOy1HQSrN6vrDBqYHDp515mhAIOIS PZUv2Xr0rtBND8/LBnYKThUUX1p6soB2/2ht0zoXZhxo+Wrrrg+662zBvceZDaEx 2+ow23OYeTYVpnaEno74/1jBNOU0ZpgOGG5dgrDBAKy6sKHh2LS25/+K57yJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8LFE9CzJkVAWQVN8fhyiv3EhYrwwHwYDVR0j BBgwFoAUJVIkDv/uL2D1aE3QPt5JNy69KhcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MDA0MjMzZi1iYjJjLTQ3ZDctOTAxYy1lM2M4MmY4ZDQyM2MvMC8yNTUyMjQwRUZG RUUyRjYwRjU2ODRERDAzRURFNDkzNzJFQkQyQTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5MzcyRUJE MkExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjAwNDIzM2YtYmIyYy00N2Q3LTkw MWMtZTNjODJmOGQ0MjNjLzAvMjU1MjI0MEVGRkVFMkY2MEY1Njg0REQwM0VERTQ5 MzcyRUJEMkExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABAUFJCsnKO7toSGiTbwXB5Z/LsR+J4zMRnk OVKxnYvmXkgE3fLG94yVqbPFkJ/g3w21uOFIJRhcMT9k4Wqs87WhK3peqrQ7Uuxv tjaHwJH4/HwJoPY23Hi0DFlBGN79fMfyIA8VM6U3llxQEVIersriQgLRp5/oQ2oG gwEEWmwmwSXEqj7khlR94NNiYkRZBEzPdlpo2u4Z7FIxFbWhNJKfTp2rzdvH2W6j 0kZQdaaZaF3n9tKayl4/pZnPLqbkcfYJF6VscTm41/PnUQyEjDlxPVlLSU2Tgpiy BQWQhB/wx0EGBojhFIqOebJGi7oC54K4Gi+bQL/eVClitOSc39Y= -----END CERTIFICATE-----Generated at Fri Dec 19 11:23:43 2025 by rpki-client