This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft File: D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft (raw, json) Hash identifier: 9K+bL6XTQN+MTMl0vi1KD8T35l2fltQm6ISTBDU7ZfE= Subject key identifier: 34:74:0F:E7:6F:0F:15:45:BB:49:18:18:D1:97:13:63:6A:71:76:A8 Authority key identifier: D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B Certificate issuer: /CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Certificate serial: 600EBE4469A784F9541C56ABC9DA81D5703A9AFC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft Manifest number: EA Signing time: Wed 17 Dec 2025 05:32:12 +0000 Manifest this update: Wed 17 Dec 2025 05:27:12 +0000 Manifest next update: Sat 20 Dec 2025 16:16:12 +0000 Files and hashes: 1: D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl (hash: 8n57n42gwnH0+aDx73y3hams8zXWPx0/ag3JsxQo3qk=) 2: 3130332e38342e3230312e302f32342d3234203d3e20313336303935.roa (hash: 6UTk6qTE+l33r+zdpJdYayRwLX5BpaOtu0Am/wxoORw=) 3: 3130332e38342e3230302e302f32342d3234203d3e20313336303935.roa (hash: ajCQWCbIuLR2rdyLkSz/8WmAOj/J1v9eHfGi8P7WLFg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 16:16:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:0e:be:44:69:a7:84:f9:54:1c:56:ab:c9:da:81:d5:70:3a:9a:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B Validity Not Before: Dec 17 05:27:12 2025 GMT Not After : Dec 20 16:16:12 2025 GMT Subject: CN=34740FE76F0F1545BB491818D19713636A7176A8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:af:66:78:53:b1:0a:d5:c0:ad:e1:15:a4:b8: cf:31:e9:26:96:98:dd:46:75:96:bf:2f:6c:9b:f3: 2d:2a:ad:f4:de:5d:54:d1:75:45:2a:c3:34:ed:8b: 13:f1:ec:46:5b:7f:f6:86:5e:c8:04:d1:72:37:0b: 23:b4:9b:9a:a7:99:8a:fd:e7:8b:2d:68:82:7d:57: b3:4d:39:41:99:75:52:b5:c3:2f:36:a3:91:9f:92: 69:ac:8b:52:14:85:5c:00:a3:67:67:c7:0c:53:f8: f9:24:df:bf:0c:49:2d:6f:62:ab:c6:35:e5:11:71: 0f:be:a5:a3:d0:2d:8a:3b:2d:67:ab:ab:f1:16:16: 95:c9:17:fd:99:c4:f9:e2:fb:00:3b:eb:73:64:5f: 93:f3:d2:5b:2c:b6:e3:6e:02:60:4d:cd:05:47:78: 0c:26:df:f1:9b:b2:e8:8d:9d:5c:35:2b:1a:71:24: 27:df:16:1e:44:5e:a4:8f:2d:f4:cb:6c:f1:20:9d: e3:52:ad:b5:aa:47:1b:a1:6c:a6:79:3a:fb:91:b9: 31:16:b8:7a:28:24:0d:98:2e:66:5a:fc:6f:37:d7: 38:1c:34:5f:62:09:d3:28:b5:c9:ae:dd:f3:e9:7a: a0:d5:04:36:db:e8:3a:27:1d:30:db:5e:e1:4b:4d: 7c:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:74:0F:E7:6F:0F:15:45:BB:49:18:18:D1:97:13:63:6A:71:76:A8 X509v3 Authority Key Identifier: keyid:D2:8B:A9:D5:E3:21:93:DE:E2:9E:B4:C1:94:4F:35:FC:32:D8:B1:9B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/25e2415c-7d4f-4427-832d-59b4c79aae5a/0/D28BA9D5E32193DEE29EB4C1944F35FC32D8B19B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ad:3f:ef:f0:e7:db:fa:5c:c0:8f:cf:4f:47:e6:1a:1f:ed:b2: 1e:f3:77:25:1e:8a:c2:72:6b:00:06:ea:9a:8c:46:de:bf:31: 75:51:a7:0f:3f:ff:0c:c5:37:89:97:c2:19:36:06:19:4d:e3: df:8c:2d:04:80:e7:b6:8d:21:99:c0:ce:be:35:13:d7:0e:0f: c6:c1:ef:1f:57:20:1d:3c:7b:60:33:30:1a:40:d2:13:7f:5c: 81:80:9d:30:ad:4b:c2:c6:15:57:99:69:1a:b0:0c:98:6e:3b: fc:9e:e0:0b:bd:4a:c9:d3:e9:5f:57:2d:07:d3:e4:bb:76:ff: 76:6b:4c:ea:a7:72:86:c8:ae:9b:55:23:76:33:c4:2f:cd:b9: e1:82:fd:f4:cc:49:bb:79:62:13:44:c6:b3:3b:d7:28:83:b9: 09:c2:12:c0:97:47:05:6f:5d:8a:4b:05:65:d7:98:90:fd:6a: 6e:a5:67:cf:4f:a9:97:6e:2a:10:c2:53:6b:21:76:29:b2:40: 79:20:ba:43:47:a2:d9:a1:46:5e:17:0e:0d:7f:32:ed:b2:88: 5d:a5:42:52:5a:fd:0e:20:37:95:05:56:9d:38:21:8f:95:84: 10:3a:ae:7e:0c:54:c4:a1:8c:b8:fd:5d:da:28:38:06:f7:fd: 2c:e7:9e:b2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYA6+RGmnhPlUHFarydqB1XA6mvwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI4QkE5RDVFMzIxOTNERUUyOUVCNEMxOTQ0RjM1RkMz MkQ4QjE5QjAeFw0yNTEyMTcwNTI3MTJaFw0yNTEyMjAxNjE2MTJaMDMxMTAvBgNV BAMTKDM0NzQwRkU3NkYwRjE1NDVCQjQ5MTgxOEQxOTcxMzYzNkE3MTc2QTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlr2Z4U7EK1cCt4RWkuM8x6SaW mN1GdZa/L2yb8y0qrfTeXVTRdUUqwzTtixPx7EZbf/aGXsgE0XI3CyO0m5qnmYr9 54staIJ9V7NNOUGZdVK1wy82o5Gfkmmsi1IUhVwAo2dnxwxT+Pkk378MSS1vYqvG NeURcQ++paPQLYo7LWerq/EWFpXJF/2ZxPni+wA763NkX5Pz0lsstuNuAmBNzQVH eAwm3/GbsuiNnVw1KxpxJCffFh5EXqSPLfTLbPEgneNSrbWqRxuhbKZ5OvuRuTEW uHooJA2YLmZa/G831zgcNF9iCdMotcmu3fPpeqDVBDbb6DonHTDbXuFLTXzFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUNHQP528PFUW7SRgY0ZcTY2pxdqgwHwYDVR0j BBgwFoAU0oup1eMhk97inrTBlE81/DLYsZswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NWUyNDE1Yy03ZDRmLTQ0MjctODMyZC01OWI0Yzc5YWFlNWEvMC9EMjhCQTlENUUz MjE5M0RFRTI5RUI0QzE5NDRGMzVGQzMyRDhCMTlCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI4QkE5RDVFMzIxOTNERUUyOUVCNEMxOTQ0RjM1RkMzMkQ4 QjE5Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjVlMjQxNWMtN2Q0Zi00NDI3LTgz MmQtNTliNGM3OWFhZTVhLzAvRDI4QkE5RDVFMzIxOTNERUUyOUVCNEMxOTQ0RjM1 RkMzMkQ4QjE5Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAK0/7/Dn2/pcwI/PT0fmGh/tsh7zdyUeisJy awAG6pqMRt6/MXVRpw8//wzFN4mXwhk2BhlN49+MLQSA57aNIZnAzr41E9cOD8bB 7x9XIB08e2AzMBpA0hN/XIGAnTCtS8LGFVeZaRqwDJhuO/ye4Au9SsnT6V9XLQfT 5Lt2/3ZrTOqncobIrptVI3YzxC/NueGC/fTMSbt5YhNExrM71yiDuQnCEsCXRwVv XYpLBWXXmJD9am6lZ89PqZduKhDCU2shdimyQHkgukNHotmhRl4XDg1/Mu2yiF2l QlJa/Q4gN5UFVp04IY+VhBA6rn4MVMShjLj9XdooOAb3/SznnrI= -----END CERTIFICATE-----Generated at Fri Dec 19 03:05:40 2025 by rpki-client