This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft File: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft (raw, json) Hash identifier: QeiQq3YzBvgS8enpfZPn/WbMx8SvWIIUncMiVT0bFNA= Subject key identifier: 8B:CC:39:5B:13:66:3D:D0:10:B0:CD:0B:48:D0:EB:BC:39:B5:EA:1D Authority key identifier: 22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 Certificate issuer: /CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Certificate serial: 27CA03BB2E6B238B383254B9326FC40950ACD463 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject info access: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft Manifest number: 0217 Signing time: Fri 19 Dec 2025 21:12:31 +0000 Manifest this update: Fri 19 Dec 2025 21:07:31 +0000 Manifest next update: Tue 23 Dec 2025 01:41:31 +0000 Files and hashes: 1: 228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl (hash: 3S9UVnFft7ogAGxjtbvmJAT+msZK3GrN1U/2d1bMQ/g=) 2: 3131392e34372e38392e302f32342d3234203d3e203338353237.roa (hash: M5eMsMOetidsRy/C8PwAw9YejdbuLdHg+PDsTMdviAE=) 3: 3132342e3130392e32332e302f32342d3234203d3e203538333738.roa (hash: E8p39FK+OhNYyY8SwwTjQ8JEs2K6blfiyf4IMTEJdyY=) 4: 3130332e32352e3130382e302f32342d3234203d3e20313332363334.roa (hash: fBDOlCYFIj49Ll99j2HPW9RAkablwrcxgHTldEFv/Jk=) 5: 32372e3132342e38332e302f32342d3234203d3e20313332363334.roa (hash: 2EEYdzWr91JIl7YnldqA+u9ZlAli1CH0l6dUJ+oRlZU=) 6: 3131392e34372e39302e302f32342d3234203d3e203338353237.roa (hash: 2gYjkNpQS7rIhX41LQ5E9ZRuFubPcLm5+1qbHYEWbNU=) 7: 3131392e34372e38382e302f32342d3234203d3e203338353237.roa (hash: ZHYZolADCQ3Nh0kSpTOhEiQyqWLeuJaaRLk6yahYzfE=) 8: 3131392e34372e39352e302f32342d3234203d3e20313439343039.roa (hash: IOQi+x8HL04tSdZdkybbwTiZjcbDVMFrGx/+Tn9mObQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 00:38:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ca:03:bb:2e:6b:23:8b:38:32:54:b9:32:6f:c4:09:50:ac:d4:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=228E752BBFB8C16B3B46F3D388ECED50CF9A6473 Validity Not Before: Dec 19 21:07:31 2025 GMT Not After : Dec 23 01:41:31 2025 GMT Subject: CN=8BCC395B13663DD010B0CD0B48D0EBBC39B5EA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:a4:99:d2:2e:7d:bb:c5:14:4a:e2:fb:1b:97: 5c:1b:04:04:c0:b1:36:9a:02:06:08:74:40:f7:86: ed:97:81:f0:7d:39:7c:2e:ae:ad:4e:35:59:b2:12: 4d:0e:05:c8:79:dd:ef:1a:89:56:6a:36:68:2a:47: 22:9e:4e:b0:40:13:85:90:91:31:55:8f:d4:51:b0: 8e:63:24:c1:cf:67:8f:09:fc:e6:0e:66:87:37:33: 41:71:da:18:dc:06:1d:ec:ea:37:82:0f:7f:91:cf: 9d:00:c7:19:85:9a:24:d1:cb:82:83:66:1b:2d:b8: e0:b5:75:4a:a9:0a:71:44:60:25:57:c3:78:f7:d3: 9b:37:65:57:8b:74:b9:42:6a:6d:02:55:5e:82:f8: 6f:b7:fe:ac:cd:be:4f:c0:18:af:5d:46:22:8a:25: 04:b1:67:b7:57:48:a9:ab:18:de:81:0f:cf:be:ad: d6:af:73:78:ba:ed:8d:af:1e:07:77:e9:77:72:35: 2d:f8:ac:c9:7a:e5:d7:83:c9:2c:3a:ad:b1:3c:54: 8c:8d:aa:b5:a7:41:76:b2:77:4c:18:41:2f:66:53: c3:1c:81:e1:2f:f5:d6:9b:98:42:42:61:a8:6e:85: ce:1b:5d:de:98:40:a7:fe:c0:ee:de:8e:17:ff:d2: 8a:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CC:39:5B:13:66:3D:D0:10:B0:CD:0B:48:D0:EB:BC:39:B5:EA:1D X509v3 Authority Key Identifier: keyid:22:8E:75:2B:BF:B8:C1:6B:3B:46:F3:D3:88:EC:ED:50:CF:9A:64:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/317efd2a-02ab-4202-970f-f699dff97de5/0/228E752BBFB8C16B3B46F3D388ECED50CF9A6473.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:bb:cd:8c:9c:9d:d0:a8:6f:58:bc:46:df:67:80:9b:63:5f: 96:2e:e0:1b:2a:e3:67:ef:73:0b:88:c8:d0:0c:c0:32:c4:18: e3:b6:ed:20:0f:f0:16:a6:a1:8d:24:61:0c:8e:36:13:4c:ae: 36:61:8b:61:65:d7:a0:69:81:3a:b0:cb:da:4d:a2:9e:fe:fc: 33:0c:01:82:78:93:b6:9e:0d:10:89:94:01:71:95:3a:34:58: 08:ad:49:ec:28:4e:dc:ff:6a:6e:df:17:62:e6:e8:17:76:bc: 2a:c2:6a:0c:b0:a9:9c:f1:13:95:2d:5b:ee:20:f4:c3:a2:ec: f7:40:0f:66:95:68:64:22:f7:21:76:cf:b4:38:0d:4c:25:aa: d4:4b:d4:d9:ca:4e:f4:99:be:a1:5a:5d:0f:79:08:27:0d:1d: 38:64:f7:3c:6c:9e:db:a9:70:51:4a:26:23:0c:35:b3:07:e4: 9d:0c:e7:7c:2d:46:08:d7:26:a5:14:b6:f9:2b:d5:55:66:39: 2f:62:b7:58:51:6e:15:cb:d8:98:10:0b:af:88:d2:ef:79:96: dd:36:ec:70:32:76:43:dc:9a:98:c5:0c:3f:e2:64:e6:ec:3b: ac:3d:a3:f5:2d:c6:af:5c:20:1b:91:a5:8d:ac:8c:7b:0a:a3: 6d:8b:e5:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJ8oDuy5rI4s4MlS5Mm/ECVCs1GMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBD RjlBNjQ3MzAeFw0yNTEyMTkyMTA3MzFaFw0yNTEyMjMwMTQxMzFaMDMxMTAvBgNV BAMTKDhCQ0MzOTVCMTM2NjNERDAxMEIwQ0QwQjQ4RDBFQkJDMzlCNUVBMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOpJnSLn27xRRK4vsbl1wbBATA sTaaAgYIdED3hu2XgfB9OXwurq1ONVmyEk0OBch53e8aiVZqNmgqRyKeTrBAE4WQ kTFVj9RRsI5jJMHPZ48J/OYOZoc3M0Fx2hjcBh3s6jeCD3+Rz50AxxmFmiTRy4KD ZhstuOC1dUqpCnFEYCVXw3j305s3ZVeLdLlCam0CVV6C+G+3/qzNvk/AGK9dRiKK JQSxZ7dXSKmrGN6BD8++rdavc3i67Y2vHgd36XdyNS34rMl65deDySw6rbE8VIyN qrWnQXayd0wYQS9mU8McgeEv9dabmEJCYahuhc4bXd6YQKf+wO7ejhf/0opxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUi8w5WxNmPdAQsM0LSNDrvDm16h0wHwYDVR0j BBgwFoAUIo51K7+4wWs7RvPTiOztUM+aZHMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MTdlZmQyYS0wMmFiLTQyMDItOTcwZi1mNjk5ZGZmOTdkZTUvMC8yMjhFNzUyQkJG QjhDMTZCM0I0NkYzRDM4OEVDRUQ1MENGOUE2NDczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VENTBDRjlB NjQ3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzE3ZWZkMmEtMDJhYi00MjAyLTk3 MGYtZjY5OWRmZjk3ZGU1LzAvMjI4RTc1MkJCRkI4QzE2QjNCNDZGM0QzODhFQ0VE NTBDRjlBNjQ3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH27zYycndCob1i8Rt9ngJtjX5Yu4Bsq42fv cwuIyNAMwDLEGOO27SAP8BamoY0kYQyONhNMrjZhi2Fl16BpgTqwy9pNop7+/DMM AYJ4k7aeDRCJlAFxlTo0WAitSewoTtz/am7fF2Lm6Bd2vCrCagywqZzxE5UtW+4g 9MOi7PdAD2aVaGQi9yF2z7Q4DUwlqtRL1NnKTvSZvqFaXQ95CCcNHThk9zxsntup cFFKJiMMNbMH5J0M53wtRgjXJqUUtvkr1VVmOS9it1hRbhXL2JgQC6+I0u95lt02 7HAydkPcmpjFDD/iZObsO6w9o/Utxq9cIBuRpY2sjHsKo22L5eA= -----END CERTIFICATE-----Generated at Sat Dec 20 19:47:38 2025 by rpki-client