This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft File: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft (raw, json) Hash identifier: 3+zDtVyjnr8+8Ksjm3pfRNr+NoYcLV5Lq/x3mLto4yo= Subject key identifier: F6:BC:2A:E4:C8:97:5C:15:17:0A:E6:B6:62:92:5D:B2:9B:04:B7:38 Authority key identifier: CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C Certificate issuer: /CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Certificate serial: 7233470EA40EC4D8C34AF52B2352B633307531D8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft Manifest number: 0535 Signing time: Tue 23 Dec 2025 00:01:35 +0000 Manifest this update: Mon 22 Dec 2025 23:56:35 +0000 Manifest next update: Fri 26 Dec 2025 07:14:35 +0000 Files and hashes: 1: 323430333a353763303a3a2f33322d3438203d3e20313333383135.roa (hash: qJMxf0aJqdHPfbLPNvUiMxKhq3U6DmyX3ZCQXdLa44w=) 2: 3130332e3133302e3133362e302f32322d3234203d3e20313333383135.roa (hash: gDwS3CZNot9PKNbXfgVaxRg3XKEAojqRRjZmWUnIieM=) 3: CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl (hash: 10CcuSEeEtQ2KD8Kl2TliB6khZnLTpj3MyiB9HfBWAM=) 4: 3130332e35322e34342e302f32322d3234203d3e20313333383135.roa (hash: +hHtMHqrRgOxnxPgQ1JDtVaqmRcnzLdlLvloLKvOcZA=) 5: 323430333a626163303a3a2f33322d3438203d3e20313333383135.roa (hash: bj03wSoaB1PZHhqBBV4Wr4Sjs0onXCgWYauPl2mcWtw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 07:14:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:33:47:0e:a4:0e:c4:d8:c3:4a:f5:2b:23:52:b6:33:30:75:31:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CEA03A07989107F547A2B2ABAA6AD4E70312AD5C Validity Not Before: Dec 22 23:56:35 2025 GMT Not After : Dec 26 07:14:35 2025 GMT Subject: CN=F6BC2AE4C8975C15170AE6B662925DB29B04B738 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:bf:78:5d:8d:f5:32:17:80:55:03:38:4c:ea: 98:c1:3f:1b:59:bc:8b:96:b3:09:cb:e6:0b:d4:de: 63:50:d8:aa:b6:dc:d3:d6:57:10:2d:9b:61:81:49: 5a:1f:65:5a:b9:d0:a5:d4:55:5e:2d:f8:a6:a4:9d: 1e:1c:2a:2c:49:36:a3:2e:c9:a5:9d:b0:11:a2:f8: 40:49:b2:0c:11:37:f9:f3:be:a2:2f:6f:d7:e1:1d: 79:43:b6:2f:ed:6f:36:f5:d7:14:1f:7e:79:37:bf: 54:c2:ae:b8:3a:54:51:91:08:e3:40:d4:29:05:3d: 4b:3e:78:45:65:2c:db:a1:c7:4c:39:ea:5e:f5:ae: ba:f6:4e:9d:0f:19:e0:d9:5d:6c:a4:4c:44:73:77: ba:f8:4d:00:39:cf:56:fd:1a:c2:f5:8b:be:0a:2c: f7:7c:d0:3b:e4:1e:1d:17:67:05:bd:7e:2e:21:c6: 88:a6:0c:a1:87:22:ca:d9:02:58:bd:6c:13:ea:57: f0:22:23:71:36:df:13:27:ad:19:f9:e7:b9:c6:d3: b7:b2:72:2b:e9:13:99:7c:94:4b:17:5e:f8:52:e5: 5b:bb:b6:b6:d1:1b:84:7a:d8:fb:11:e7:c4:f6:23: c8:92:ee:de:7b:cc:1e:85:ae:c9:21:e1:3f:e5:26: e7:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:BC:2A:E4:C8:97:5C:15:17:0A:E6:B6:62:92:5D:B2:9B:04:B7:38 X509v3 Authority Key Identifier: keyid:CE:A0:3A:07:98:91:07:F5:47:A2:B2:AB:AA:6A:D4:E7:03:12:AD:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2a3ae485-a658-4c5c-abe2-1e7fd8b038a0/0/CEA03A07989107F547A2B2ABAA6AD4E70312AD5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption da:7a:fc:55:3c:86:ec:2d:6a:1c:90:7f:77:d4:fd:fc:6d:46: ef:2d:50:2d:b7:c8:36:68:78:3f:08:94:f7:24:08:6f:43:3e: 65:19:ae:3f:c0:26:c1:c7:d2:44:81:68:99:8b:73:f8:34:8a: 22:56:36:2b:67:da:9c:8d:06:c5:da:34:46:c3:87:96:66:8d: 54:a3:d5:1e:04:43:c1:4f:08:40:fb:86:07:eb:c8:9f:a8:e9: 35:24:05:f9:f7:ac:fa:3b:e5:b4:72:49:cb:18:af:2c:7b:6e: 45:51:5b:5d:14:c0:e1:48:f1:4b:ce:bc:a5:de:b9:d8:c6:20: 76:b1:f2:6d:61:3b:8e:15:7f:1a:4a:8f:06:a2:38:df:79:88: a3:7b:6e:c5:df:94:74:7a:d4:32:e2:58:ca:3f:7c:6b:c0:f0: ef:5f:12:97:3e:7a:46:29:39:c0:d2:8f:01:16:b9:c4:9e:21: dc:53:03:f8:08:1a:ba:2d:5f:82:26:85:f8:29:f9:e4:18:e7: d2:63:f0:48:ee:87:22:5b:73:e3:f4:2d:d0:c0:68:7a:67:f8: e0:91:71:16:6a:f8:83:9f:4c:27:54:ad:a9:51:1f:de:66:7a: d4:74:0f:b3:f2:7f:69:cc:da:b7:c2:27:6b:65:2f:e0:26:43: 59:32:68:c4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcjNHDqQOxNjDSvUrI1K2MzB1MdgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcw MzEyQUQ1QzAeFw0yNTEyMjIyMzU2MzVaFw0yNTEyMjYwNzE0MzVaMDMxMTAvBgNV BAMTKEY2QkMyQUU0Qzg5NzVDMTUxNzBBRTZCNjYyOTI1REIyOUIwNEI3MzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNv3hdjfUyF4BVAzhM6pjBPxtZ vIuWswnL5gvU3mNQ2Kq23NPWVxAtm2GBSVofZVq50KXUVV4t+KaknR4cKixJNqMu yaWdsBGi+EBJsgwRN/nzvqIvb9fhHXlDti/tbzb11xQffnk3v1TCrrg6VFGRCONA 1CkFPUs+eEVlLNuhx0w56l71rrr2Tp0PGeDZXWykTERzd7r4TQA5z1b9GsL1i74K LPd80DvkHh0XZwW9fi4hxoimDKGHIsrZAli9bBPqV/AiI3E23xMnrRn557nG07ey civpE5l8lEsXXvhS5Vu7trbRG4R62PsR58T2I8iS7t57zB6Frskh4T/lJufzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9rwq5MiXXBUXCua2YpJdspsEtzgwHwYDVR0j BBgwFoAUzqA6B5iRB/VHorKrqmrU5wMSrVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YTNhZTQ4NS1hNjU4LTRjNWMtYWJlMi0xZTdmZDhiMDM4YTAvMC9DRUEwM0EwNzk4 OTEwN0Y1NDdBMkIyQUJBQTZBRDRFNzAzMTJBRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0RTcwMzEy QUQ1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmEzYWU0ODUtYTY1OC00YzVjLWFi ZTItMWU3ZmQ4YjAzOGEwLzAvQ0VBMDNBMDc5ODkxMDdGNTQ3QTJCMkFCQUE2QUQ0 RTcwMzEyQUQ1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANp6/FU8huwtahyQf3fU/fxtRu8tUC23yDZo eD8IlPckCG9DPmUZrj/AJsHH0kSBaJmLc/g0iiJWNitn2pyNBsXaNEbDh5ZmjVSj 1R4EQ8FPCED7hgfryJ+o6TUkBfn3rPo75bRyScsYryx7bkVRW10UwOFI8UvOvKXe udjGIHax8m1hO44VfxpKjwaiON95iKN7bsXflHR61DLiWMo/fGvA8O9fEpc+ekYp OcDSjwEWucSeIdxTA/gIGrotX4Imhfgp+eQY59Jj8EjuhyJbc+P0LdDAaHpn+OCR cRZq+IOfTCdUralRH95metR0D7Pyf2nM2rfCJ2tlL+AmQ1kyaMQ= -----END CERTIFICATE-----Generated at Wed Dec 24 20:23:45 2025 by rpki-client