This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: tf6/SCFcFjhfTPIjor/IjXkTAluG0X7XWu/05kR0v4g= Subject key identifier: AE:5B:15:57:98:E4:5C:5A:C8:3B:E0:D0:92:97:D9:CD:02:A9:EF:8A Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 7936775A4E392C17596B58C2BDE1021602454156 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: A7 Signing time: Tue 16 Dec 2025 13:32:10 +0000 Manifest this update: Tue 16 Dec 2025 13:27:10 +0000 Manifest next update: Fri 19 Dec 2025 19:28:10 +0000 Files and hashes: 1: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: FxaEEIT9qUTLg2aeJe2h8ABBtjWPVBq+ZzdHaSDkh1U=) 2: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: 4k5l0oKGlgrseypJOAcgbZ3voSGQS5pK7FIolyad81E=) 3: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: tGZJC6gHp+rBRUU+fviXr/Qmv6Fq3jy2euNYPnmiMt4=) 4: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: HqTyhMmIQNWyd9Uu39hBDh2ymSKez80mYyj1XdusXb0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 19:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:36:77:5a:4e:39:2c:17:59:6b:58:c2:bd:e1:02:16:02:45:41:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Dec 16 13:27:10 2025 GMT Not After : Dec 19 19:28:10 2025 GMT Subject: CN=AE5B155798E45C5AC83BE0D09297D9CD02A9EF8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:b3:93:28:f8:ca:9a:c4:16:6a:16:bc:6b:6c: e7:79:ca:76:a6:ed:2c:09:6a:a8:2e:6c:ea:7c:b1: 61:1e:89:b9:c4:33:5e:53:23:13:fb:34:f6:50:2f: 96:ab:4f:3c:5e:0b:5d:0a:43:f6:b0:d8:48:79:5d: d2:36:69:62:3a:4c:7e:54:08:18:72:23:6a:72:fd: 07:ae:34:b2:a8:1c:24:c7:0e:df:ba:be:d5:32:f8: 43:6e:c3:15:04:7d:b8:98:e9:04:2f:d9:30:30:55: c9:57:d3:fd:91:58:60:5d:94:85:76:f1:24:32:e9: 21:65:c4:6c:15:12:f6:07:6e:f3:ed:07:96:8b:5d: b7:25:88:27:e4:3b:b7:b7:73:e9:95:96:25:ce:86: cb:70:dc:0a:11:ca:b8:09:40:32:a0:85:b2:00:62: 7e:66:62:a3:ec:91:bd:5a:94:34:5b:1e:7c:08:44: 7a:ba:e8:ff:70:41:de:c9:e8:f4:2b:7a:79:ba:d6: 81:08:0f:7b:44:86:83:9e:dc:c1:0c:8c:b8:54:01: 4f:bd:30:e3:d5:45:55:21:c1:3f:6c:68:72:e1:20: f1:a8:3f:5c:76:91:74:c0:81:1f:13:41:3c:b9:0d: 81:1e:56:4c:3b:27:d8:c3:d9:fc:53:5f:17:53:41: 0a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:5B:15:57:98:E4:5C:5A:C8:3B:E0:D0:92:97:D9:CD:02:A9:EF:8A X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:0c:9b:b2:65:04:f2:ee:88:f6:07:bd:59:88:ef:0e:02:75: 64:e4:61:52:b9:0f:8a:c5:33:6f:e2:90:00:e7:30:36:85:b5: 6b:7f:e7:8c:10:4d:8d:ab:c8:a2:84:47:47:45:cf:7f:4d:93: 4d:db:a2:6a:bf:8e:04:f4:68:46:35:85:63:0b:19:47:29:b9: 21:de:c5:2c:d1:4a:db:54:97:dd:2d:ce:62:bc:6c:b7:20:4e: 5c:75:f2:d3:70:24:e3:e4:e2:0b:73:05:ae:17:4b:61:84:7f: 87:3a:de:fc:d3:af:0a:dd:c6:ca:28:25:90:16:c8:5a:16:18: e7:94:1c:20:4e:83:50:de:52:b3:0f:a4:a3:ac:c2:be:e6:64: d2:ea:63:5b:3d:73:7f:c6:e7:e9:f8:c4:f1:4c:4a:7d:07:45: 95:c6:1d:52:ad:07:e0:6d:61:c9:c0:46:cc:37:8f:c3:09:ea: c1:3c:0c:91:1e:ad:8f:58:3d:5a:73:c1:ce:a4:b6:0a:f4:6d: ee:49:40:69:d2:60:3c:99:a3:b7:29:7a:e1:be:2e:21:66:c2: 46:15:12:8b:e3:8c:e3:22:eb:78:51:94:5f:01:93:33:2d:c9: 4a:5a:cd:9a:2d:35:48:28:b9:7b:24:e3:c1:87:aa:d9:23:2b: ee:e9:99:6e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeTZ3Wk45LBdZa1jCveECFgJFQVYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTEyMTYxMzI3MTBaFw0yNTEyMTkxOTI4MTBaMDMxMTAvBgNV BAMTKEFFNUIxNTU3OThFNDVDNUFDODNCRTBEMDkyOTdEOUNEMDJBOUVGOEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDrs5Mo+MqaxBZqFrxrbOd5ynam 7SwJaqgubOp8sWEeibnEM15TIxP7NPZQL5arTzxeC10KQ/aw2Eh5XdI2aWI6TH5U CBhyI2py/QeuNLKoHCTHDt+6vtUy+ENuwxUEfbiY6QQv2TAwVclX0/2RWGBdlIV2 8SQy6SFlxGwVEvYHbvPtB5aLXbcliCfkO7e3c+mVliXOhstw3AoRyrgJQDKghbIA Yn5mYqPskb1alDRbHnwIRHq66P9wQd7J6PQrenm61oEID3tEhoOe3MEMjLhUAU+9 MOPVRVUhwT9saHLhIPGoP1x2kXTAgR8TQTy5DYEeVkw7J9jD2fxTXxdTQQoDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUrlsVV5jkXFrIO+DQkpfZzQKp74owHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACIMm7JlBPLuiPYHvVmI7w4CdWTkYVK5D4rF M2/ikADnMDaFtWt/54wQTY2ryKKER0dFz39Nk03bomq/jgT0aEY1hWMLGUcpuSHe xSzRSttUl90tzmK8bLcgTlx18tNwJOPk4gtzBa4XS2GEf4c63vzTrwrdxsooJZAW yFoWGOeUHCBOg1DeUrMPpKOswr7mZNLqY1s9c3/G5+n4xPFMSn0HRZXGHVKtB+Bt YcnARsw3j8MJ6sE8DJEerY9YPVpzwc6ktgr0be5JQGnSYDyZo7cpeuG+LiFmwkYV EovjjOMi63hRlF8BkzMtyUpazZotNUgouXsk48GHqtkjK+7pmW4= -----END CERTIFICATE-----Generated at Tue Dec 16 22:33:41 2025 by rpki-client