This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: /Gg2SSKnUOOTW4zeIIpAhTvEBUFKHieJ//sGD5nXIQA= Subject key identifier: 1A:90:FF:A1:27:42:98:CA:DE:F8:E4:86:6A:69:59:13:4E:C7:89:F0 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 3DC38BF2568F8179D58ED29F12F61635E7A21D21 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 0502 Signing time: Fri 19 Dec 2025 03:14:05 +0000 Manifest this update: Fri 19 Dec 2025 03:09:05 +0000 Manifest next update: Mon 22 Dec 2025 03:32:05 +0000 Files and hashes: 1: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: NFUjzvHJ+efotBDQwR2cLMgS6Ci0I8y9PG+RyzpcOzg=) 2: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 3: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 4: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) 5: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:32:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:c3:8b:f2:56:8f:81:79:d5:8e:d2:9f:12:f6:16:35:e7:a2:1d:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Dec 19 03:09:05 2025 GMT Not After : Dec 22 03:32:05 2025 GMT Subject: CN=1A90FFA1274298CADEF8E4866A6959134EC789F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b4:35:2c:d3:bd:f3:e9:37:33:a8:7c:22:48: 7e:87:09:a1:b8:11:83:43:9b:31:f1:0f:bc:91:71: 1b:db:fe:e0:18:59:5b:07:f4:77:79:0c:06:ab:cf: 6a:98:ab:08:a0:24:e3:15:7f:91:66:e9:eb:09:4e: 86:92:c1:b6:3f:cd:0c:72:92:0a:d3:cc:83:a5:30: 5b:de:d7:76:c7:a2:4e:93:f1:64:f4:59:78:39:37: 8d:cb:37:a9:79:33:1c:02:60:0b:fe:4d:fe:2f:4a: 38:70:8e:d7:c3:19:88:72:42:71:25:33:5f:0a:1a: ca:e3:1f:3f:2e:fd:48:cd:0e:a2:81:76:ce:93:c6: b8:91:33:06:fb:14:f2:1d:36:a1:6c:ef:92:0f:3e: d1:b5:87:0d:bd:68:11:7c:b8:3e:40:9f:dd:57:5b: 2f:d0:0f:13:8b:3d:a4:f9:30:7f:51:70:31:18:ac: 99:f4:21:88:10:6d:18:d8:95:dd:e8:4b:ea:c5:00: 14:55:d0:1d:39:2c:25:92:d8:37:ac:d7:2a:c0:94: 26:ea:7f:18:81:e5:d7:b5:6f:ff:56:1e:dd:52:02: a5:f0:97:8e:31:8d:40:95:02:93:78:80:e9:ba:4a: c9:ae:c2:42:35:7e:1d:3e:1e:af:f6:78:2d:d9:46: a0:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:90:FF:A1:27:42:98:CA:DE:F8:E4:86:6A:69:59:13:4E:C7:89:F0 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:0b:4e:77:fb:bf:8f:8a:9c:98:b0:50:28:47:da:3e:01:81: 55:da:45:e3:7d:3f:f8:41:93:e8:e4:24:36:d5:b6:9e:01:cf: 93:a9:72:de:dc:63:e9:b0:8a:3e:08:df:20:7f:0f:ab:14:a0: 7d:28:e0:24:2d:2e:0d:cf:5d:11:3b:22:a5:40:9e:03:db:44: 3c:c5:83:04:d9:80:6a:69:c0:b3:98:3a:e1:c4:78:5d:63:a7: 18:bd:00:52:3c:c6:06:0b:9c:e9:81:9f:94:ba:a5:e8:80:33: cb:9b:29:25:54:19:10:d0:1b:13:52:eb:45:0c:84:cc:35:4e: be:be:f4:dd:82:4d:b5:af:cd:bf:c6:35:e2:39:e6:06:a6:85: 07:54:f6:15:78:33:87:01:a4:49:a5:03:81:7b:62:52:6f:a4: 3e:38:b4:de:d7:87:4d:1b:c3:bd:2c:8a:3e:b0:06:9a:4d:19: bb:e4:fd:9c:99:a3:54:0f:58:2e:f4:8e:3f:ff:8f:8f:cb:2c: 6f:fb:59:41:8f:e8:e2:77:1b:1e:1d:52:11:23:1f:7c:08:06: 9c:68:a7:04:8d:55:71:07:92:b9:10:c0:90:ed:40:8c:d5:01: 0e:f1:ac:e8:31:a9:8e:e2:94:d9:ac:2c:d3:04:5a:ca:51:f7: b2:a7:4f:41 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPcOL8laPgXnVjtKfEvYWNeeiHSEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTEyMTkwMzA5MDVaFw0yNTEyMjIwMzMyMDVaMDMxMTAvBgNV BAMTKDFBOTBGRkExMjc0Mjk4Q0FERUY4RTQ4NjZBNjk1OTEzNEVDNzg5RjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOtDUs073z6TczqHwiSH6HCaG4 EYNDmzHxD7yRcRvb/uAYWVsH9Hd5DAarz2qYqwigJOMVf5Fm6esJToaSwbY/zQxy kgrTzIOlMFve13bHok6T8WT0WXg5N43LN6l5MxwCYAv+Tf4vSjhwjtfDGYhyQnEl M18KGsrjHz8u/UjNDqKBds6TxriRMwb7FPIdNqFs75IPPtG1hw29aBF8uD5An91X Wy/QDxOLPaT5MH9RcDEYrJn0IYgQbRjYld3oS+rFABRV0B05LCWS2Des1yrAlCbq fxiB5de1b/9WHt1SAqXwl44xjUCVApN4gOm6SsmuwkI1fh0+Hq/2eC3ZRqA9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUGpD/oSdCmMre+OSGamlZE07HifAwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEULTnf7v4+KnJiwUChH2j4BgVXaReN9P/hB k+jkJDbVtp4Bz5Opct7cY+mwij4I3yB/D6sUoH0o4CQtLg3PXRE7IqVAngPbRDzF gwTZgGppwLOYOuHEeF1jpxi9AFI8xgYLnOmBn5S6peiAM8ubKSVUGRDQGxNS60UM hMw1Tr6+9N2CTbWvzb/GNeI55gamhQdU9hV4M4cBpEmlA4F7YlJvpD44tN7Xh00b w70sij6wBppNGbvk/ZyZo1QPWC70jj//j4/LLG/7WUGP6OJ3Gx4dUhEjH3wIBpxo pwSNVXEHkrkQwJDtQIzVAQ7xrOgxqY7ilNmsLNMEWspR97KnT0E= -----END CERTIFICATE-----Generated at Sun Dec 21 02:00:19 2025 by rpki-client