This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: C8ukc8FhMTgMuUWJI6bKpvt2arZUOgjPHSbsYSEHSOk= Subject key identifier: 50:18:C8:6C:B6:83:5B:A0:A5:6E:23:03:AA:D2:9B:06:C7:1A:97:CE Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 553346D4CE6AC52B6CB4877007DDEA8A6A090BE0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 022D Signing time: Thu 18 Dec 2025 21:51:27 +0000 Manifest this update: Thu 18 Dec 2025 21:46:27 +0000 Manifest next update: Mon 22 Dec 2025 01:14:27 +0000 Files and hashes: 1: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: oMr7m80YkFEQAS5kjkkvdGCQtqli+/0P+jJJ8F8NZYc=) 2: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: NcRBqt1Wn/tuGvM1xfS0JFewwd6sRo22gfKxjNahc88=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 01:14:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:33:46:d4:ce:6a:c5:2b:6c:b4:87:70:07:dd:ea:8a:6a:09:0b:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Dec 18 21:46:27 2025 GMT Not After : Dec 22 01:14:27 2025 GMT Subject: CN=5018C86CB6835BA0A56E2303AAD29B06C71A97CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d8:1e:07:a4:c8:41:75:ea:30:15:dd:23:e4: 44:28:60:bf:67:3d:73:86:64:9b:b0:07:88:59:14: c4:9f:2f:b5:87:ce:3b:df:0c:c6:7a:e0:16:ad:90: cc:dc:fb:08:8b:a7:d6:e1:9d:84:de:a9:23:28:fd: f5:93:d1:4a:52:cd:09:06:67:46:d2:e8:93:e3:6d: 52:5e:45:5a:ad:f4:ea:e8:41:89:78:f1:99:24:ef: 7c:37:15:a0:a0:0a:71:a4:56:96:c7:8c:ee:ea:1d: a0:50:73:e7:fb:85:5a:60:6e:0e:89:eb:0d:ba:e1: 2c:36:c5:a4:19:e8:e6:30:e4:a4:80:b5:18:d7:f4: e5:90:fd:17:91:55:ad:64:2a:b5:0a:cd:79:3d:c5: 90:8e:ad:6a:36:4c:0c:fa:5f:e4:e0:99:be:eb:57: 10:d5:7d:c6:0a:5d:1d:4d:ac:c9:2c:03:dc:b1:97: ce:d0:89:5e:db:3f:4c:dc:b8:cd:e6:12:7a:4e:06: b5:bc:6e:69:f4:7f:db:04:23:74:b8:51:32:fe:cf: df:5d:54:cd:dd:d6:e1:d9:f8:70:1d:86:ca:dc:98: d1:7a:ca:0c:93:2f:88:e9:c5:12:de:b9:67:98:e7: 75:89:a7:df:20:41:73:f0:3e:93:d6:54:14:a7:72: f1:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:18:C8:6C:B6:83:5B:A0:A5:6E:23:03:AA:D2:9B:06:C7:1A:97:CE X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:7a:51:25:67:06:07:70:4b:58:5a:9d:98:88:e2:3e:b0:57: b5:d2:32:d8:15:d3:4d:c5:b2:55:98:82:d0:71:75:36:52:d6: 55:58:20:00:14:a6:d0:21:11:46:dc:55:07:85:21:89:eb:a3: 64:0d:29:8e:22:82:b4:08:2b:2d:fc:68:7c:c6:bc:d2:07:10: 28:3e:34:ed:34:e6:45:26:2b:67:ec:a4:4b:e4:3d:25:cc:47: dd:70:d0:60:05:c9:b3:72:c2:06:79:9e:75:f8:9d:26:f4:73: 31:52:29:db:fe:be:08:db:27:7a:a5:8f:b8:b3:13:42:09:27: 97:4e:8c:94:18:4f:e3:d0:0f:a9:eb:44:38:63:52:8a:57:80: 3b:63:a4:5b:4d:31:6e:75:71:69:f8:cd:69:92:78:5c:03:dc: c9:75:33:02:7f:e9:31:e7:65:31:4c:39:8d:a4:63:62:aa:a4: 82:18:ee:b7:a4:73:a1:06:21:95:6e:59:68:5e:0d:5d:eb:3b: c6:29:77:5d:cf:58:9d:f0:6b:40:6b:5e:55:fd:ac:e3:2b:3a: e5:34:03:d8:df:25:56:ce:c2:56:9d:af:48:d6:f7:65:ef:eb: 5b:c3:50:70:da:85:57:d5:d4:f9:a3:25:9a:d5:3e:48:b6:44: e2:c8:7d:7a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVTNG1M5qxStstIdwB93qimoJC+AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNTEyMTgyMTQ2MjdaFw0yNTEyMjIwMTE0MjdaMDMxMTAvBgNV BAMTKDUwMThDODZDQjY4MzVCQTBBNTZFMjMwM0FBRDI5QjA2QzcxQTk3Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC22B4HpMhBdeowFd0j5EQoYL9n PXOGZJuwB4hZFMSfL7WHzjvfDMZ64BatkMzc+wiLp9bhnYTeqSMo/fWT0UpSzQkG Z0bS6JPjbVJeRVqt9OroQYl48Zkk73w3FaCgCnGkVpbHjO7qHaBQc+f7hVpgbg6J 6w264Sw2xaQZ6OYw5KSAtRjX9OWQ/ReRVa1kKrUKzXk9xZCOrWo2TAz6X+Tgmb7r VxDVfcYKXR1NrMksA9yxl87QiV7bP0zcuM3mEnpOBrW8bmn0f9sEI3S4UTL+z99d VM3d1uHZ+HAdhsrcmNF6ygyTL4jpxRLeuWeY53WJp98gQXPwPpPWVBSncvEvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUBjIbLaDW6ClbiMDqtKbBscal84wHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA56USVnBgdwS1hanZiI4j6wV7XSMtgV003F slWYgtBxdTZS1lVYIAAUptAhEUbcVQeFIYnro2QNKY4igrQIKy38aHzGvNIHECg+ NO005kUmK2fspEvkPSXMR91w0GAFybNywgZ5nnX4nSb0czFSKdv+vgjbJ3qlj7iz E0IJJ5dOjJQYT+PQD6nrRDhjUopXgDtjpFtNMW51cWn4zWmSeFwD3Ml1MwJ/6THn ZTFMOY2kY2KqpIIY7rekc6EGIZVuWWheDV3rO8Ypd13PWJ3wa0BrXlX9rOMrOuU0 A9jfJVbOwladr0jW92Xv61vDUHDahVfV1PmjJZrVPki2ROLIfXo= -----END CERTIFICATE-----Generated at Fri Dec 19 03:13:41 2025 by rpki-client