This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft (raw, json) Hash identifier: rxsb7hS63uHJGE/cPStNqAiJXbGYy3Nx1j//81eSG1Q= Subject key identifier: CC:F0:3F:8F:91:95:F7:0F:16:F9:19:5B:80:E6:86:29:C4:93:D4:69 Authority key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Certificate issuer: /CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Certificate serial: 6DEE1526DF8A055329B67D0C3CCB6233BB955D7F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft Manifest number: 0535 Signing time: Mon 22 Dec 2025 15:31:54 +0000 Manifest this update: Mon 22 Dec 2025 15:26:54 +0000 Manifest next update: Thu 25 Dec 2025 23:45:54 +0000 Files and hashes: 1: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl (hash: hIuO2Cbq0bY+I4yeRE3iCxqsUOJdkn/NB2nBzZOsgPo=) 2: 3130332e3139352e31392e302f32342d3234203d3e203535363833.roa (hash: NswJoPlTbkW1QbykJdu3UOhV7IqDYlomNhuRwW/poHY=) 3: 3130332e3139352e31382e302f32342d3234203d3e203535363833.roa (hash: GyTvAyiqDcz4HqvEtyjLwFP+vqa6W3Rz6dNaGJkDvBQ=) 4: 323030313a6466363a636330303a3a2f34382d3438203d3e203535363833.roa (hash: Xkph31LntzUaI1/CJr8Ltj+zXZ7Nq1uWNrqZKmCZlP8=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 23:45:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:ee:15:26:df:8a:05:53:29:b6:7d:0c:3c:cb:62:33:bb:95:5d:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Validity Not Before: Dec 22 15:26:54 2025 GMT Not After : Dec 25 23:45:54 2025 GMT Subject: CN=CCF03F8F9195F70F16F9195B80E68629C493D469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:58:59:21:1d:17:a3:be:78:bb:9f:c9:58:aa: c2:be:af:2f:78:ae:be:da:23:28:81:24:6c:e3:2a: 80:bd:2c:bd:79:b7:9d:28:13:e0:06:81:65:1f:58: c3:a5:4e:bd:b0:23:cf:27:db:e4:6b:75:74:18:fe: 19:b2:1f:bc:3f:5f:15:a4:a4:ca:c4:18:f8:40:7f: 51:8c:0e:8f:47:b0:22:86:ed:99:3c:a4:68:3a:03: e4:0a:4e:63:c2:08:b4:69:1d:78:80:33:84:ec:da: 18:d1:10:fc:5b:36:0d:de:f2:57:7a:60:06:39:05: 48:b6:73:58:b0:93:b2:ce:e9:60:f8:b9:62:83:3b: aa:b6:76:c7:8e:aa:ba:96:ee:28:be:20:b9:15:34: 66:31:1e:fd:11:a2:03:40:2d:3e:86:73:c1:a7:58: 17:9a:67:39:81:2e:ce:d4:b5:89:52:cd:b0:df:3e: 50:36:fc:83:33:7e:24:f3:7b:d5:ef:31:cb:2c:8e: 38:be:2d:7c:0a:f9:05:0b:6a:23:3b:51:75:cb:ce: 88:a9:34:dc:8e:a3:6f:c5:05:1f:67:69:5a:a1:00: 52:2f:fa:2c:77:dd:8e:94:35:d6:8f:bf:91:16:72: 7e:e3:d4:6f:05:e5:85:a4:82:6b:73:b4:79:1c:c6: 18:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:F0:3F:8F:91:95:F7:0F:16:F9:19:5B:80:E6:86:29:C4:93:D4:69 X509v3 Authority Key Identifier: keyid:35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:a1:4f:ca:4e:f4:37:7e:56:b9:e6:92:af:a8:6c:f5:22:3c: fc:0e:c0:9b:a5:c6:74:38:e2:5f:99:42:4e:d8:d6:81:87:36: dc:c5:a8:cf:af:20:ed:b3:22:a0:4b:9a:ad:90:a0:0c:16:5b: dd:40:74:41:a6:9d:6d:61:75:61:37:38:d7:fd:7a:ae:fe:6c: 10:4c:92:3c:e8:23:d4:33:61:8b:5e:8d:3c:07:b0:9d:35:18: bc:76:81:95:60:41:f7:cc:6c:b9:d7:a7:c6:12:69:ec:26:49: db:63:06:e7:cb:44:cd:50:80:13:de:64:3b:19:f2:e0:ff:93: 21:09:0f:e5:96:ab:41:c4:6d:36:d4:5c:05:b5:f4:7f:8e:75: f7:0b:af:3f:5d:9b:ec:2f:35:2c:18:02:4b:96:80:63:d8:9c: 84:f4:07:c6:e3:6c:47:a2:b4:bf:87:df:e5:89:f8:b2:96:20: 97:f1:ff:c9:49:43:5d:00:a9:b2:b7:85:71:52:bf:35:27:cc: f5:66:48:01:a3:44:73:ba:1e:7c:e0:18:38:7f:10:f0:1a:23: 37:5f:37:dd:b7:37:63:99:1c:bf:21:a9:2c:e6:44:23:52:6a: 24:ae:94:3b:92:ff:65:60:88:3e:1c:8b:30:d3:bc:c7:d5:23: 9e:b1:d2:58 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbe4VJt+KBVMptn0MPMtiM7uVXX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENC NUFEQkQyODAeFw0yNTEyMjIxNTI2NTRaFw0yNTEyMjUyMzQ1NTRaMDMxMTAvBgNV BAMTKENDRjAzRjhGOTE5NUY3MEYxNkY5MTk1QjgwRTY4NjI5QzQ5M0Q0NjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjWFkhHRejvni7n8lYqsK+ry94 rr7aIyiBJGzjKoC9LL15t50oE+AGgWUfWMOlTr2wI88n2+RrdXQY/hmyH7w/XxWk pMrEGPhAf1GMDo9HsCKG7Zk8pGg6A+QKTmPCCLRpHXiAM4Ts2hjREPxbNg3e8ld6 YAY5BUi2c1iwk7LO6WD4uWKDO6q2dseOqrqW7ii+ILkVNGYxHv0RogNALT6Gc8Gn WBeaZzmBLs7UtYlSzbDfPlA2/IMzfiTze9XvMcssjji+LXwK+QULaiM7UXXLzoip NNyOo2/FBR9naVqhAFIv+ix33Y6UNdaPv5EWcn7j1G8F5YWkgmtztHkcxhiRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzPA/j5GV9w8W+RlbgOaGKcST1GkwHwYDVR0j BBgwFoAUNWa2zwDXsLZz+LUmxWrr3LWtvSgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMC8zNTY2QjZDRjAw RDdCMEI2NzNGOEI1MjZDNTZBRUJEQ0I1QURCRDI4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVCRENCNUFE QkQyOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNiOGFlOTctNjgxOC00OGE5LWFi ZTQtZWRiOTYwNDlmM2M4LzAvMzU2NkI2Q0YwMEQ3QjBCNjczRjhCNTI2QzU2QUVC RENCNUFEQkQyOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMehT8pO9Dd+Vrnmkq+obPUiPPwOwJulxnQ4 4l+ZQk7Y1oGHNtzFqM+vIO2zIqBLmq2QoAwWW91AdEGmnW1hdWE3ONf9eq7+bBBM kjzoI9QzYYtejTwHsJ01GLx2gZVgQffMbLnXp8YSaewmSdtjBufLRM1QgBPeZDsZ 8uD/kyEJD+WWq0HEbTbUXAW19H+OdfcLrz9dm+wvNSwYAkuWgGPYnIT0B8bjbEei tL+H3+WJ+LKWIJfx/8lJQ10AqbK3hXFSvzUnzPVmSAGjRHO6HnzgGDh/EPAaIzdf N923N2OZHL8hqSzmRCNSaiSulDuS/2VgiD4cizDTvMfVI56x0lg= -----END CERTIFICATE-----Generated at Wed Dec 24 22:08:33 2025 by rpki-client