This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft File: D1E28E396E82778793018513BD084854BE663886.mft (raw, json) Hash identifier: 9+BCD21BCc86gbze5uwX1LlmKPr7LfsY7n0M1MXybcc= Subject key identifier: A1:9C:97:44:6B:DF:E1:C5:1F:25:67:67:C2:6E:97:B1:6A:85:1D:E7 Authority key identifier: D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 Certificate issuer: /CN=D1E28E396E82778793018513BD084854BE663886 Certificate serial: 3EEF947721349CA08B2E9E1662FB4C56CEB5949F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject info access: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft Manifest number: 0289 Signing time: Sat 06 Dec 2025 11:20:48 +0000 Manifest this update: Sat 06 Dec 2025 11:15:48 +0000 Manifest next update: Tue 09 Dec 2025 15:33:48 +0000 Files and hashes: 1: D1E28E396E82778793018513BD084854BE663886.crl (hash: sGVwXcCMwKG2I4eGbWxFKaaTVjoKkZayCSWP8k2iDU0=) 2: 3130332e3136392e3233302e302f32332d3234203d3e2034383030.roa (hash: dbeooOEymowfTHu7nnG695fAge4T8FaVO8HgIWjN8ng=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:33:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ef:94:77:21:34:9c:a0:8b:2e:9e:16:62:fb:4c:56:ce:b5:94:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D1E28E396E82778793018513BD084854BE663886 Validity Not Before: Dec 6 11:15:48 2025 GMT Not After : Dec 9 15:33:48 2025 GMT Subject: CN=A19C97446BDFE1C51F256767C26E97B16A851DE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:f3:69:2e:0e:5c:21:69:67:23:cd:bb:4d:24: 59:be:e2:29:f1:9f:bf:09:f0:9e:57:e9:84:37:d2: 37:e7:8e:a4:10:9a:15:6f:3d:33:a6:8f:1f:d7:d2: f6:58:99:82:2b:2a:28:19:46:86:4a:11:8e:2c:a8: fa:30:68:e4:c4:1f:56:fd:9f:4a:20:c8:f8:15:d2: 3a:93:e4:c1:53:90:d8:18:e4:2f:3a:64:e9:57:31: 59:eb:11:87:75:47:24:e1:c7:e3:1c:ee:05:02:7a: 80:47:fb:08:d7:a0:69:c1:14:e6:7d:b9:b0:d0:8d: d8:54:43:05:3c:47:73:05:ae:8b:c4:59:43:0a:0b: a8:0b:5d:c9:8b:08:44:47:b2:26:52:4e:eb:9e:4c: 6b:c3:42:45:83:98:99:cf:e8:ce:c6:94:01:b1:bf: 8f:b5:e2:d1:20:fb:08:27:d3:4c:b3:84:36:f9:41: c1:bb:af:5f:72:3a:00:a3:01:42:52:02:6a:a7:a1: 0b:49:1b:b2:09:06:10:49:bd:58:a4:b7:90:0d:3a: 9b:83:ce:94:be:2b:35:ef:0a:58:e7:12:a0:72:e0: bf:a2:fe:55:ee:e2:68:29:3a:0b:af:d4:0e:45:4b: 74:80:e2:48:3f:32:6c:f9:6a:51:7d:cc:13:98:a6: cc:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:9C:97:44:6B:DF:E1:C5:1F:25:67:67:C2:6E:97:B1:6A:85:1D:E7 X509v3 Authority Key Identifier: keyid:D1:E2:8E:39:6E:82:77:87:93:01:85:13:BD:08:48:54:BE:66:38:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D1E28E396E82778793018513BD084854BE663886.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/16d61135-75e4-46c6-bddd-fba6834dce41/0/D1E28E396E82778793018513BD084854BE663886.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:2a:58:40:42:b2:bc:f8:4a:b0:ba:04:c9:c1:f0:fe:f9:71: 03:35:fb:3b:12:cf:1f:dd:f1:c3:11:03:93:35:fe:9f:43:06: 15:1a:c5:5f:53:57:d8:45:29:d4:53:54:7b:ab:9f:41:20:5f: b2:44:a0:da:49:31:e5:e6:c9:52:db:67:1d:3d:9c:1d:48:f6: 48:ff:9c:00:23:6a:ef:81:6f:d0:43:51:57:05:a1:e5:2e:e7: 49:cd:61:3c:98:d9:4b:a2:93:83:11:46:7c:92:7b:2f:44:25: 28:3b:e9:d9:16:0d:d3:04:b3:8f:6d:4f:cf:b3:c6:2a:4e:28: 46:4c:2b:db:e5:7a:3c:df:df:d9:c9:98:96:4e:09:9e:a4:c7: c3:06:b6:4e:4a:06:12:09:aa:db:ee:2d:a7:d0:8a:2c:b8:8d: 8b:87:95:56:1e:09:6a:05:07:86:17:30:e6:10:8c:2b:46:e9: 13:3b:c5:3a:e5:9b:05:d4:9f:40:81:5f:bc:01:3e:c2:a7:b4: 53:89:45:4b:2b:d0:be:8f:ea:35:28:36:06:10:b8:90:7a:8a: e0:d5:f3:85:16:66:cc:8d:ac:38:3f:a0:bf:8d:0f:d2:05:e5: 17:c4:6d:5e:8c:14:c1:a0:93:e2:e1:88:07:8a:96:37:13:ef: b2:53:e7:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPu+UdyE0nKCLLp4WYvtMVs61lJ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRC RTY2Mzg4NjAeFw0yNTEyMDYxMTE1NDhaFw0yNTEyMDkxNTMzNDhaMDMxMTAvBgNV BAMTKEExOUM5NzQ0NkJERkUxQzUxRjI1Njc2N0MyNkU5N0IxNkE4NTFERTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz82kuDlwhaWcjzbtNJFm+4inx n78J8J5X6YQ30jfnjqQQmhVvPTOmjx/X0vZYmYIrKigZRoZKEY4sqPowaOTEH1b9 n0ogyPgV0jqT5MFTkNgY5C86ZOlXMVnrEYd1RyThx+Mc7gUCeoBH+wjXoGnBFOZ9 ubDQjdhUQwU8R3MFrovEWUMKC6gLXcmLCERHsiZSTuueTGvDQkWDmJnP6M7GlAGx v4+14tEg+wgn00yzhDb5QcG7r19yOgCjAUJSAmqnoQtJG7IJBhBJvVikt5ANOpuD zpS+KzXvCljnEqBy4L+i/lXu4mgpOguv1A5FS3SA4kg/Mmz5alF9zBOYpszdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoZyXRGvf4cUfJWdnwm6XsWqFHecwHwYDVR0j BBgwFoAU0eKOOW6Cd4eTAYUTvQhIVL5mOIYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NmQ2MTEzNS03NWU0LTQ2YzYtYmRkZC1mYmE2ODM0ZGNlNDEvMC9EMUUyOEUzOTZF ODI3Nzg3OTMwMTg1MTNCRDA4NDg1NEJFNjYzODg2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4NTRCRTY2 Mzg4Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTZkNjExMzUtNzVlNC00NmM2LWJk ZGQtZmJhNjgzNGRjZTQxLzAvRDFFMjhFMzk2RTgyNzc4NzkzMDE4NTEzQkQwODQ4 NTRCRTY2Mzg4Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACEqWEBCsrz4SrC6BMnB8P75cQM1+zsSzx/d 8cMRA5M1/p9DBhUaxV9TV9hFKdRTVHurn0EgX7JEoNpJMeXmyVLbZx09nB1I9kj/ nAAjau+Bb9BDUVcFoeUu50nNYTyY2Uuik4MRRnySey9EJSg76dkWDdMEs49tT8+z xipOKEZMK9vlejzf39nJmJZOCZ6kx8MGtk5KBhIJqtvuLafQiiy4jYuHlVYeCWoF B4YXMOYQjCtG6RM7xTrlmwXUn0CBX7wBPsKntFOJRUsr0L6P6jUoNgYQuJB6iuDV 84UWZsyNrDg/oL+ND9IF5RfEbV6MFMGgk+LhiAeKljcT77JT584= -----END CERTIFICATE-----Generated at Sun Dec 7 04:55:46 2025 by rpki-client