This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: 7eCThvyXb0CTCNl69gNavCI0TrmoEVZnZzuca9B33Ww= Subject key identifier: 8D:C2:7C:30:CA:D3:60:12:11:7B:B0:67:74:A9:BA:EE:A2:44:A6:5F Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 5D6FE85B3E57BA3AC0B32C09B5F89D16C134DE4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 01AE Signing time: Wed 24 Dec 2025 05:41:12 +0000 Manifest this update: Wed 24 Dec 2025 05:36:12 +0000 Manifest next update: Sat 27 Dec 2025 17:33:12 +0000 Files and hashes: 1: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 2: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 3: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: 5KPt4Dx+BXAkoXLsWvM88IyRg9txAssxnS/mh2axnWU=) 4: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 17:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:6f:e8:5b:3e:57:ba:3a:c0:b3:2c:09:b5:f8:9d:16:c1:34:de:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Dec 24 05:36:12 2025 GMT Not After : Dec 27 17:33:12 2025 GMT Subject: CN=8DC27C30CAD36012117BB06774A9BAEEA244A65F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:66:61:18:0d:43:44:eb:67:84:71:b1:c5:1b: df:9d:f6:1a:0e:ba:c1:8e:0e:94:02:63:2d:98:e5: 90:89:f7:d5:d9:9a:75:ca:b0:02:e0:bf:4f:e8:f2: d9:96:8d:3f:04:20:c6:aa:68:86:6b:40:7c:25:56: e1:09:5c:94:7c:89:22:cb:0a:3c:88:d2:17:3f:33: e4:37:ff:37:0f:63:f0:96:ef:ad:49:6f:ec:cf:d1: 08:39:27:88:80:2b:ec:0f:a0:c7:80:25:ec:0b:b2: e9:d1:13:58:de:75:3e:20:31:be:80:46:d7:a8:4d: bf:62:bd:d6:9e:eb:6a:a2:d5:b3:4c:83:b9:18:4c: 06:54:63:4c:79:c3:e2:26:62:43:54:bd:92:bc:f6: 94:ce:49:84:3f:d4:5b:2e:52:94:89:a1:c4:9e:75: c0:cf:5f:6e:62:16:5c:c7:b1:a9:8d:c7:3f:2c:93: 4a:23:66:7c:cb:bc:c9:06:6f:8d:9d:d1:84:d4:91: 27:09:99:4c:54:60:83:d8:8a:21:48:f3:5d:33:2c: 51:e5:48:00:33:54:cb:11:1b:26:20:39:a0:52:e4: af:7a:82:13:f4:82:e9:9e:0f:92:82:7c:84:89:83: 9e:48:1c:2d:73:f6:95:a5:0e:5a:83:96:1d:83:5e: 10:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:C2:7C:30:CA:D3:60:12:11:7B:B0:67:74:A9:BA:EE:A2:44:A6:5F X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:d4:c6:2a:70:42:0d:07:9b:55:ba:5d:d0:e4:ff:30:10:93: 48:09:38:28:59:57:48:11:cf:3f:0a:3b:05:da:d8:ba:85:4b: d3:1f:81:da:26:0b:09:20:25:22:34:c6:95:d0:5a:78:38:f2: c6:de:8b:e3:7f:e3:47:5b:b9:f0:af:1c:eb:6c:f1:e8:a9:ad: 90:e2:0b:fb:c0:92:5f:f1:4d:06:19:11:8c:d0:67:22:6f:7d: b7:97:e6:2c:3f:44:bd:fa:89:2f:81:ae:af:80:52:dd:e6:5f: cd:ba:f9:0a:dd:5b:f0:4a:8d:10:63:45:69:59:22:c8:5b:fd: af:83:a0:5e:2d:9e:e7:87:6e:34:04:92:55:49:09:c0:82:7c: 04:cd:2d:bc:cc:fa:ee:db:75:0c:ba:af:94:cb:c3:15:93:a4: 9f:1e:2c:38:d8:fd:d7:57:0e:51:d4:9e:56:16:7f:3b:a1:c5: 14:01:fc:ea:88:94:ef:7b:f2:71:78:f5:4c:f4:0b:8b:7f:28: f6:e4:12:a9:77:85:10:02:25:5e:83:57:02:cd:33:1e:1d:44: 10:33:30:cd:24:f4:01:33:3e:f6:75:bc:6e:35:aa:ff:95:1b: a5:ac:fc:bd:25:ef:f2:72:20:d8:18:25:e2:36:73:4e:4f:e5: de:bb:79:dd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXW/oWz5XujrAsywJtfidFsE03k4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTEyMjQwNTM2MTJaFw0yNTEyMjcxNzMzMTJaMDMxMTAvBgNV BAMTKDhEQzI3QzMwQ0FEMzYwMTIxMTdCQjA2Nzc0QTlCQUVFQTI0NEE2NUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ZmEYDUNE62eEcbHFG9+d9hoO usGODpQCYy2Y5ZCJ99XZmnXKsALgv0/o8tmWjT8EIMaqaIZrQHwlVuEJXJR8iSLL CjyI0hc/M+Q3/zcPY/CW761Jb+zP0Qg5J4iAK+wPoMeAJewLsunRE1jedT4gMb6A RteoTb9ivdae62qi1bNMg7kYTAZUY0x5w+ImYkNUvZK89pTOSYQ/1FsuUpSJocSe dcDPX25iFlzHsamNxz8sk0ojZnzLvMkGb42d0YTUkScJmUxUYIPYiiFI810zLFHl SAAzVMsRGyYgOaBS5K96ghP0gumeD5KCfISJg55IHC1z9pWlDlqDlh2DXhAdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjcJ8MMrTYBIRe7BndKm67qJEpl8wHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGzUxipwQg0Hm1W6XdDk/zAQk0gJOChZV0gR zz8KOwXa2LqFS9MfgdomCwkgJSI0xpXQWng48sbei+N/40dbufCvHOts8eiprZDi C/vAkl/xTQYZEYzQZyJvfbeX5iw/RL36iS+Brq+AUt3mX826+QrdW/BKjRBjRWlZ Ishb/a+DoF4tnueHbjQEklVJCcCCfATNLbzM+u7bdQy6r5TLwxWTpJ8eLDjY/ddX DlHUnlYWfzuhxRQB/OqIlO978nF49Uz0C4t/KPbkEql3hRACJV6DVwLNMx4dRBAz MM0k9AEzPvZ1vG41qv+VG6Ws/L0l7/JyINgYJeI2c05P5d67ed0= -----END CERTIFICATE-----Generated at Wed Dec 24 22:07:14 2025 by rpki-client