This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: iErSISK06oItkyCCtrcafVPzhoYuG7SsYW2RA9mGDl0= Subject key identifier: 49:05:9F:E6:ED:DF:19:5D:88:50:E0:07:6B:BF:39:63:EF:6B:C4:E8 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 1A23B2BCDBA8BA114EE81AB4FB97FCF2DCBAB433 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 0536 Signing time: Tue 23 Dec 2025 16:01:21 +0000 Manifest this update: Tue 23 Dec 2025 15:56:21 +0000 Manifest next update: Fri 26 Dec 2025 19:47:21 +0000 Files and hashes: 1: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 2: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 3: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 4: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 5: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 6: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 7: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 8: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 9: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 10: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: BebCjgyk54P+mtq2QF6stdZ2aUE+Q2lwK/liuhwL4vA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 19:47:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:23:b2:bc:db:a8:ba:11:4e:e8:1a:b4:fb:97:fc:f2:dc:ba:b4:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Dec 23 15:56:21 2025 GMT Not After : Dec 26 19:47:21 2025 GMT Subject: CN=49059FE6EDDF195D8850E0076BBF3963EF6BC4E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1c:f4:03:2f:14:01:9e:f3:71:14:a8:1a:5e: 03:d3:55:22:73:d5:15:5a:39:f5:ba:55:37:09:b2: 25:66:de:05:02:98:54:ee:17:1f:40:e7:7b:5b:13: cc:cd:cf:00:6e:f6:b4:f3:e3:ca:6a:f4:db:55:31: ca:a4:66:4e:ef:75:c3:1a:af:a3:61:92:87:d1:5b: a5:0a:50:04:1d:48:a1:5c:10:3b:c2:32:5d:47:15: f0:e9:ac:fb:e9:c8:58:1d:f7:8a:51:de:23:3c:aa: a6:82:3e:13:85:a4:fb:0c:6f:da:42:1e:63:24:6f: 74:82:14:9a:3a:22:32:02:bd:a2:2e:91:39:f5:d8: 12:f2:af:70:ae:f1:54:05:36:ca:7b:d3:48:4d:7d: 2d:f9:2b:1a:65:86:7a:35:06:77:8b:88:bf:9d:31: b2:10:33:c3:a0:7c:0b:bf:b6:9f:a6:68:6b:5c:fd: 47:01:30:fe:6d:45:f1:50:3f:5e:7a:67:08:0e:0a: f6:49:18:ae:35:af:e6:82:0f:e4:de:2c:47:8c:44: 63:d6:f3:e2:ea:8a:83:d4:e9:af:69:8a:47:90:78: 3d:dc:31:33:c9:9a:dc:ec:ab:96:28:48:3f:32:92: 01:68:de:81:e8:a0:e8:bd:26:32:a4:b8:48:70:fe: 1c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:05:9F:E6:ED:DF:19:5D:88:50:E0:07:6B:BF:39:63:EF:6B:C4:E8 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:f8:92:68:91:88:bc:5b:06:67:84:70:ed:e2:de:0e:47:50: d9:81:9b:ba:e6:b1:93:db:99:4f:ab:8a:72:f9:a8:72:ad:11: c6:75:18:b5:4d:70:03:6d:cc:2c:76:d0:3e:df:54:a8:2b:ad: 00:13:74:a3:b4:4c:93:cb:8b:6d:e3:4f:c3:13:5d:34:7c:a8: 73:af:9b:e2:51:87:f9:46:98:da:5c:92:e1:84:bf:ac:b1:5d: b1:d8:75:cb:f0:37:e3:ca:3a:74:aa:77:64:6d:5f:b4:22:dc: b9:5e:a0:30:34:be:b0:a5:2c:b4:73:50:e7:b0:bc:e8:b2:1e: d1:71:26:95:d3:3b:56:dc:f6:07:26:d1:44:bb:30:69:b2:80: 5d:90:de:c7:62:5b:a0:1e:2a:29:73:cc:f4:d8:4a:f3:a9:7e: aa:40:51:fa:9c:65:c6:8b:38:f4:31:2e:c6:c8:51:5e:1b:25: f8:53:8c:47:e9:5e:a4:82:be:f4:75:83:0c:0a:22:eb:f4:30: 1d:e1:31:d6:b2:76:25:35:9a:6d:a1:59:23:f4:51:61:47:6e: 14:07:5d:f6:4f:f9:26:23:c3:65:6b:28:36:07:10:3b:36:66: 75:96:ad:7f:cc:e2:2f:e5:02:a3:5f:40:e4:ad:6a:6c:59:2d: 04:05:aa:d6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGiOyvNuouhFO6Bq0+5f88ty6tDMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTEyMjMxNTU2MjFaFw0yNTEyMjYxOTQ3MjFaMDMxMTAvBgNV BAMTKDQ5MDU5RkU2RURERjE5NUQ4ODUwRTAwNzZCQkYzOTYzRUY2QkM0RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDHPQDLxQBnvNxFKgaXgPTVSJz 1RVaOfW6VTcJsiVm3gUCmFTuFx9A53tbE8zNzwBu9rTz48pq9NtVMcqkZk7vdcMa r6NhkofRW6UKUAQdSKFcEDvCMl1HFfDprPvpyFgd94pR3iM8qqaCPhOFpPsMb9pC HmMkb3SCFJo6IjICvaIukTn12BLyr3Cu8VQFNsp700hNfS35Kxplhno1BneLiL+d MbIQM8OgfAu/tp+maGtc/UcBMP5tRfFQP156ZwgOCvZJGK41r+aCD+TeLEeMRGPW 8+LqioPU6a9pikeQeD3cMTPJmtzsq5YoSD8ykgFo3oHooOi9JjKkuEhw/hz7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSQWf5u3fGV2IUOAHa785Y+9rxOgwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIH4kmiRiLxbBmeEcO3i3g5HUNmBm7rmsZPb mU+rinL5qHKtEcZ1GLVNcANtzCx20D7fVKgrrQATdKO0TJPLi23jT8MTXTR8qHOv m+JRh/lGmNpckuGEv6yxXbHYdcvwN+PKOnSqd2RtX7Qi3LleoDA0vrClLLRzUOew vOiyHtFxJpXTO1bc9gcm0US7MGmygF2Q3sdiW6AeKilzzPTYSvOpfqpAUfqcZcaL OPQxLsbIUV4bJfhTjEfpXqSCvvR1gwwKIuv0MB3hMdaydiU1mm2hWSP0UWFHbhQH XfZP+SYjw2VrKDYHEDs2ZnWWrX/M4i/lAqNfQOStamxZLQQFqtY= -----END CERTIFICATE-----Generated at Wed Dec 24 22:10:50 2025 by rpki-client