This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft File: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft (raw, json) Hash identifier: ISMr+jppk4t7w1BWfjIsJUVrFgVzeRWjoKp2CN6rQFE= Subject key identifier: 44:BE:C2:9F:33:69:DA:79:19:84:C7:63:52:60:02:17:5E:8A:79:61 Authority key identifier: 89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E Certificate issuer: /CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Certificate serial: 5FE8EF02A56BEA63F2A20198C3DBCEB47DDFDF15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft Manifest number: 0128 Signing time: Fri 05 Dec 2025 11:30:00 +0000 Manifest this update: Fri 05 Dec 2025 11:25:00 +0000 Manifest next update: Mon 08 Dec 2025 11:58:00 +0000 Files and hashes: 1: 3135372e31302e3135382e302f32342d3234203d3e20313532333535.roa (hash: PTT9MsWDPwZ9cRzvcXmuxxhA2JhY1zsKHAXPKrnZx/M=) 2: 3135372e31302e3135382e302f32332d3233203d3e20313532333535.roa (hash: lquMzYc1A9WezJfZrkZ7IH+M206UU3pQd22VWaKYVvM=) 3: 3135372e31302e3135392e302f32342d3234203d3e20313532333535.roa (hash: dGVpmdtEGT3h+fNYGvG5smP/PxkVYYYHGNHC/rEeLpo=) 4: 89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl (hash: MVxxPpoNfRBizlkZWECQDZGbeNhUFN7v4oxgo7Y+mt0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 11:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:e8:ef:02:a5:6b:ea:63:f2:a2:01:98:c3:db:ce:b4:7d:df:df:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=89DCD9E9EB542D202BA36CB44CE75AD743EF544E Validity Not Before: Dec 5 11:25:00 2025 GMT Not After : Dec 8 11:58:00 2025 GMT Subject: CN=44BEC29F3369DA791984C763526002175E8A7961 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:10:d5:f0:15:fc:34:d8:b6:a0:3e:ab:c7:86: 2e:cf:ed:3e:87:39:33:4d:73:97:49:90:f6:82:b8: 54:4f:c8:ae:db:77:1f:9b:2e:b0:43:b0:7e:6a:a2: 00:67:15:c7:e5:9c:cf:74:9e:32:4c:3a:a6:cd:77: e5:49:26:94:93:8c:72:d4:29:ab:9c:0f:60:37:bf: a0:10:be:b8:71:79:0f:dd:6c:85:5d:c2:04:81:19: 2a:e9:0b:83:b0:cf:ed:50:11:4a:9f:d7:2c:37:e1: 65:7f:5f:aa:63:93:cb:77:f4:44:60:df:d0:bb:19: fc:6b:a0:6d:75:57:e6:5f:f3:2a:0a:2b:05:27:65: fc:cd:c2:03:9e:91:fe:ad:15:8a:72:81:71:51:9e: 2d:a3:0b:d7:94:b1:c9:4b:94:c9:30:48:9d:d2:74: cb:f1:f2:d0:4e:cb:08:a9:b2:7a:29:3e:5e:c2:19: a0:af:66:70:eb:f3:7b:16:28:a7:e5:91:8e:64:e5: 12:a1:5f:44:b9:2d:4f:69:8b:c4:1d:a4:f3:0d:88: 96:22:1b:61:31:ac:9a:07:54:e2:5b:2b:92:80:97: 27:38:8c:e7:d2:d2:b1:29:52:05:4a:85:1e:25:6e: 37:0f:43:a6:ac:c4:30:07:e3:ad:bd:28:ff:ca:ff: 58:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:BE:C2:9F:33:69:DA:79:19:84:C7:63:52:60:02:17:5E:8A:79:61 X509v3 Authority Key Identifier: keyid:89:DC:D9:E9:EB:54:2D:20:2B:A3:6C:B4:4C:E7:5A:D7:43:EF:54:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/14258e5c-0456-46a3-9632-709c767104bb/0/89DCD9E9EB542D202BA36CB44CE75AD743EF544E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 07:b8:c5:9b:41:7f:ec:15:0a:0c:7e:79:10:34:d2:e1:ca:07: ef:b4:1c:06:a0:35:c3:f9:4f:ac:39:af:41:dd:87:6b:5a:0a: 3e:f9:32:a1:22:a5:8c:76:34:fc:f9:f0:48:8a:1a:e3:b8:ab: 6d:30:ea:8f:19:43:33:d3:5d:79:a0:08:bb:31:b0:a4:1c:b9: bb:64:e6:cc:d7:d7:38:44:86:0f:f5:cc:c6:40:ad:58:44:26: 3f:e7:04:32:8a:1c:1e:b1:ec:28:ce:38:4c:ea:55:f3:4c:15: 19:ef:c3:43:2b:ad:6e:e4:8d:86:aa:c4:3f:33:48:1e:d3:ed: 12:33:0f:76:d4:45:72:a9:cc:07:a7:9f:32:af:6e:92:7a:77: bf:bb:9c:dc:cc:46:e1:31:41:94:e5:15:3d:af:25:b6:b9:3e: c8:1f:e6:0c:8c:a8:e7:9c:ca:3e:c3:09:c2:0e:6a:ef:a0:a0: ab:39:12:89:6e:24:c1:85:01:36:c1:89:b6:dc:72:43:33:4d: 7f:1a:2f:dd:ff:b2:77:e6:64:23:d2:e2:df:4f:20:e9:67:49: 9e:2b:3c:8f:9a:ea:91:22:71:98:c2:5f:af:9f:b5:15:6a:6f: b8:d7:26:6c:dc:02:63:eb:6b:ec:1f:a2:9e:0b:73:d2:ab:41: 37:0f:1c:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX+jvAqVr6mPyogGYw9vOtH3f3xUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0 M0VGNTQ0RTAeFw0yNTEyMDUxMTI1MDBaFw0yNTEyMDgxMTU4MDBaMDMxMTAvBgNV BAMTKDQ0QkVDMjlGMzM2OURBNzkxOTg0Qzc2MzUyNjAwMjE3NUU4QTc5NjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoENXwFfw02LagPqvHhi7P7T6H OTNNc5dJkPaCuFRPyK7bdx+bLrBDsH5qogBnFcflnM90njJMOqbNd+VJJpSTjHLU KaucD2A3v6AQvrhxeQ/dbIVdwgSBGSrpC4Owz+1QEUqf1yw34WV/X6pjk8t39ERg 39C7GfxroG11V+Zf8yoKKwUnZfzNwgOekf6tFYpygXFRni2jC9eUsclLlMkwSJ3S dMvx8tBOywipsnopPl7CGaCvZnDr83sWKKflkY5k5RKhX0S5LU9pi8QdpPMNiJYi G2ExrJoHVOJbK5KAlyc4jOfS0rEpUgVKhR4lbjcPQ6asxDAH4629KP/K/1jPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURL7CnzNp2nkZhMdjUmACF16KeWEwHwYDVR0j BBgwFoAUidzZ6etULSAro2y0TOda10PvVE4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDI1OGU1Yy0wNDU2LTQ2YTMtOTYzMi03MDljNzY3MTA0YmIvMC84OURDRDlFOUVC NTQyRDIwMkJBMzZDQjQ0Q0U3NUFENzQzRUY1NDRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVBRDc0M0VG NTQ0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQyNThlNWMtMDQ1Ni00NmEzLTk2 MzItNzA5Yzc2NzEwNGJiLzAvODlEQ0Q5RTlFQjU0MkQyMDJCQTM2Q0I0NENFNzVB RDc0M0VGNTQ0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAe4xZtBf+wVCgx+eRA00uHKB++0HAagNcP5 T6w5r0Hdh2taCj75MqEipYx2NPz58EiKGuO4q20w6o8ZQzPTXXmgCLsxsKQcubtk 5szX1zhEhg/1zMZArVhEJj/nBDKKHB6x7CjOOEzqVfNMFRnvw0MrrW7kjYaqxD8z SB7T7RIzD3bURXKpzAennzKvbpJ6d7+7nNzMRuExQZTlFT2vJba5Psgf5gyMqOec yj7DCcIOau+goKs5EoluJMGFATbBibbcckMzTX8aL93/snfmZCPS4t9PIOlnSZ4r PI+a6pEicZjCX6+ftRVqb7jXJmzcAmPra+wfop4Lc9KrQTcPHP4= -----END CERTIFICATE-----Generated at Sat Dec 6 20:02:47 2025 by rpki-client