This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft File: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft (raw, json) Hash identifier: Pyo8S947jc1om0CIbKtk1GnXRtJ03hzFA3H8l/yaUes= Subject key identifier: 51:E1:27:44:3B:88:A4:D2:8D:A5:B9:CA:A4:FD:08:20:D7:19:EA:16 Authority key identifier: DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 Certificate issuer: /CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Certificate serial: 303E89BBF589F78A07F229ECB63777E7099218F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject info access: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft Manifest number: 0528 Signing time: Sat 06 Dec 2025 02:41:24 +0000 Manifest this update: Sat 06 Dec 2025 02:36:24 +0000 Manifest next update: Tue 09 Dec 2025 12:38:24 +0000 Files and hashes: 1: 34332e3235322e3134342e302f32332d3234203d3e203536323333.roa (hash: u7MPei7+iN4f1OLKumfeRBmfOe2wgHqRvP7yaGUByuA=) 2: 3130332e31342e3131302e302f32332d3234203d3e203536323333.roa (hash: tDRK/Vdz8u2hhC9LdyJ4AT+BwDcg/REr12fUhDIA9Bo=) 3: 3132302e38392e39342e302f32332d3234203d3e203536323333.roa (hash: dkwLIgjutNqyS1fEiwY5jB8EjSSH9/0tY66Lo4b2moY=) 4: 3130332e3233332e38382e302f32332d3234203d3e203536323333.roa (hash: 7Q0dwA0Rc1pnpyLnXxos7sM1Wj4t+yMR55gSNZ0dsoU=) 5: 3139322e3134302e3232342e302f32332d3234203d3e203536323333.roa (hash: BlXsQ1QjfVoT6J0SDJFst3KLhMp6LiWyqHWFZlBXj2o=) 6: DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl (hash: NXMtP9t5EG8BmFmdy5kJGzEvyF5D0HA2SeGvaXUDIQ4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 12:38:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:3e:89:bb:f5:89:f7:8a:07:f2:29:ec:b6:37:77:e7:09:92:18:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF1CEA0313DA7500D70AE089169B4BBEE54CA859 Validity Not Before: Dec 6 02:36:24 2025 GMT Not After : Dec 9 12:38:24 2025 GMT Subject: CN=51E127443B88A4D28DA5B9CAA4FD0820D719EA16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:5c:0f:c5:28:42:8e:3b:88:bb:d9:52:df: eb:4e:f4:9f:86:03:d4:38:b1:a8:f7:1c:36:bb:d0: 4f:cb:00:95:9d:10:cb:eb:40:4a:6b:f8:2d:a9:9c: bd:e5:5c:db:f8:63:75:55:eb:4d:b6:24:0a:49:23: 6c:89:b0:2c:29:60:3f:2e:98:f6:3f:91:c9:f9:fa: 08:3d:f2:e6:a9:67:d6:7c:bb:46:2f:25:f5:e0:5e: 51:c8:36:f2:e0:1f:40:db:37:58:94:bc:76:6d:35: 87:7c:96:cc:0b:83:ff:6a:b4:7d:40:4b:b3:2a:b0: 9b:ca:21:ca:c2:9b:e9:b2:3a:90:a9:d1:6b:f1:18: e3:fc:2b:fc:e5:39:a4:ac:b3:0e:85:3e:35:b2:cd: 48:9b:68:69:16:e4:4a:4b:1a:a6:bb:03:c3:57:c8: 27:fa:22:74:d9:f4:43:43:93:a6:6c:e0:99:78:3f: 1b:a8:79:3b:a5:83:c2:8d:02:92:ff:30:4b:b7:b5: ff:d6:cb:fa:1c:06:7f:fd:e0:75:5a:21:21:02:79: a0:9a:e0:e7:9a:e7:d0:a5:05:eb:64:92:e3:7f:7b: ec:ca:ab:60:07:8e:3f:71:cd:e6:a1:27:24:e7:c7: 9d:9d:e2:fe:23:ee:c3:d4:9b:6b:8c:cb:45:ab:93: 4b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:E1:27:44:3B:88:A4:D2:8D:A5:B9:CA:A4:FD:08:20:D7:19:EA:16 X509v3 Authority Key Identifier: keyid:DF:1C:EA:03:13:DA:75:00:D7:0A:E0:89:16:9B:4B:BE:E5:4C:A8:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/04fd4bc2-41d4-42e6-a7ff-59493885126a/0/DF1CEA0313DA7500D70AE089169B4BBEE54CA859.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:36:2e:04:a2:dc:61:58:0f:6b:e5:9c:8d:a0:c2:e6:00:14: aa:ae:da:3a:29:8b:bc:18:59:20:5c:4b:84:e5:7a:87:b4:63: 04:9b:44:30:1f:96:34:24:1c:fd:9e:9e:c3:aa:b8:73:43:83: c5:9c:d0:23:83:5c:82:72:79:aa:0c:a0:d4:38:29:9d:bb:68: 8f:e7:1d:e3:ce:27:90:6b:79:e1:fc:42:33:ad:54:30:e7:26: 3f:4d:fe:17:81:a1:94:97:d1:42:9e:f0:be:6d:53:39:e9:3e: 45:17:37:a8:c4:d7:b8:37:6c:49:99:ec:40:2c:87:80:36:6d: 97:be:e5:b5:da:eb:29:2b:48:bc:1c:57:e3:9c:f1:dd:fb:af: f0:55:ae:92:9d:7f:62:62:8d:98:2f:49:81:33:20:08:5d:32: f8:20:6a:c5:cb:65:d2:c3:0e:f4:16:6c:0c:0a:10:ab:cc:6e: 1b:1e:14:6d:64:cb:6a:11:01:d0:cd:44:2f:d9:a2:ec:a9:b3: 50:3c:90:0d:83:77:2c:04:0c:a6:d3:09:d7:da:8e:2f:ed:a2: 48:ad:a8:94:55:e3:5b:72:89:af:6a:24:48:90:31:58:c3:9a: 64:ab:71:57:b3:ec:3b:a7:58:41:6c:e0:9a:50:5c:16:c6:2f: 64:43:89:9c -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMD6Ju/WJ94oH8instjd35wmSGPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVF NTRDQTg1OTAeFw0yNTEyMDYwMjM2MjRaFw0yNTEyMDkxMjM4MjRaMDMxMTAvBgNV BAMTKDUxRTEyNzQ0M0I4OEE0RDI4REE1QjlDQUE0RkQwODIwRDcxOUVBMTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKaFwPxShCjjuIu9lS3+tO9J+G A9Q4saj3HDa70E/LAJWdEMvrQEpr+C2pnL3lXNv4Y3VV6022JApJI2yJsCwpYD8u mPY/kcn5+gg98uapZ9Z8u0YvJfXgXlHINvLgH0DbN1iUvHZtNYd8lswLg/9qtH1A S7MqsJvKIcrCm+myOpCp0WvxGOP8K/zlOaSssw6FPjWyzUibaGkW5EpLGqa7A8NX yCf6InTZ9ENDk6Zs4Jl4PxuoeTulg8KNApL/MEu3tf/Wy/ocBn/94HVaISECeaCa 4Oea59ClBetkkuN/e+zKq2AHjj9xzeahJyTnx52d4v4j7sPUm2uMy0Wrk0vTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUUeEnRDuIpNKNpbnKpP0IINcZ6hYwHwYDVR0j BBgwFoAU3xzqAxPadQDXCuCJFptLvuVMqFkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NGZkNGJjMi00MWQ0LTQyZTYtYTdmZi01OTQ5Mzg4NTEyNmEvMC9ERjFDRUEwMzEz REE3NTAwRDcwQUUwODkxNjlCNEJCRUU1NENBODU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRCQkVFNTRD QTg1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDRmZDRiYzItNDFkNC00MmU2LWE3 ZmYtNTk0OTM4ODUxMjZhLzAvREYxQ0VBMDMxM0RBNzUwMEQ3MEFFMDg5MTY5QjRC QkVFNTRDQTg1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJE2LgSi3GFYD2vlnI2gwuYAFKqu2jopi7wY WSBcS4Tleoe0YwSbRDAfljQkHP2ensOquHNDg8Wc0CODXIJyeaoMoNQ4KZ27aI/n HePOJ5BreeH8QjOtVDDnJj9N/heBoZSX0UKe8L5tUznpPkUXN6jE17g3bEmZ7EAs h4A2bZe+5bXa6ykrSLwcV+Oc8d37r/BVrpKdf2JijZgvSYEzIAhdMvggasXLZdLD DvQWbAwKEKvMbhseFG1ky2oRAdDNRC/Zouyps1A8kA2DdywEDKbTCdfaji/tokit qJRV41tyia9qJEiQMVjDmmSrcVez7DunWEFs4JpQXBbGL2RDiZw= -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:42 2025 by rpki-client