This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft File: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft (raw, json) Hash identifier: gAfx6hjnAQ3Ef8QCSoY4xtst/fYXg7rWVDPn8mI/w5k= Subject key identifier: A5:42:DE:60:01:42:78:9F:A9:53:F5:EC:B4:A0:5F:C7:ED:B9:84:D7 Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 6F1B7EFF6614190A8F699AD2CCFA56C1A76E8493 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft Manifest number: 0197 Signing time: Sat 06 Dec 2025 04:51:48 +0000 Manifest this update: Sat 06 Dec 2025 04:46:48 +0000 Manifest next update: Tue 09 Dec 2025 16:06:48 +0000 Files and hashes: 1: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (hash: 6LOGBCF5zTr7iAtxuc25TGgWiHmJgXAtcLTxMujO3no=) 2: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (hash: uLA8drzoTGDdLRLknWkZIaOJdJxpC+UKHzjWLF3FpOA=) 3: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl (hash: pCgL/w0gA1ZmEocYDqXLJtvsNTWWeC+/CUtQ4pFKhqE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:1b:7e:ff:66:14:19:0a:8f:69:9a:d2:cc:fa:56:c1:a7:6e:84:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Dec 6 04:46:48 2025 GMT Not After : Dec 9 16:06:48 2025 GMT Subject: CN=A542DE600142789FA953F5ECB4A05FC7EDB984D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:fd:ac:6b:7b:c0:8b:26:a8:4c:97:f8:1a:de: 92:83:bc:6b:e7:1f:9b:8c:bc:95:5e:9b:21:2c:5d: 75:eb:00:74:f3:df:ab:71:65:a3:d2:1b:08:53:0f: 97:ef:3e:b1:4a:0a:b9:fb:c6:d5:4b:cb:96:51:91: 6d:74:4b:c8:6e:d6:9f:06:c6:98:90:bd:8c:6e:b8: 83:f0:ee:4a:29:5a:d9:1b:e4:b7:46:d9:14:41:61: 47:f6:89:33:c4:14:2d:ce:fc:09:f7:d5:ee:77:ed: 28:60:42:f7:f6:13:a2:ab:fb:4a:64:25:cd:17:03: 5f:b1:14:a2:29:d9:bc:c1:3a:8d:cc:8b:e8:8c:12: af:96:b2:d5:5e:37:a9:56:42:15:8a:08:af:a6:b7: 4c:6c:52:48:63:75:6b:c7:75:86:87:cc:d3:34:3d: 93:50:44:01:06:f5:f3:90:d2:d1:74:03:78:7f:3c: 96:f3:9e:92:15:9b:8e:21:60:3e:dd:f0:24:78:d9: 41:0c:69:72:a2:48:f9:67:d1:60:14:71:11:1d:b6: 81:df:d9:b1:a9:57:fc:85:01:82:f3:f1:06:cf:24: d1:47:6c:f0:c7:9d:21:e2:81:a7:9d:2c:92:22:77: 5d:21:8f:90:05:02:23:7d:01:85:1a:8a:cd:f7:3c: 8d:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:42:DE:60:01:42:78:9F:A9:53:F5:EC:B4:A0:5F:C7:ED:B9:84:D7 X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:c4:19:0d:83:4f:72:bd:13:1a:fe:94:1d:7c:5e:5b:ec:d3: eb:89:cd:ec:b4:55:09:de:3d:df:b0:b9:4f:09:18:3e:c2:e6: 48:1b:54:85:e3:eb:1b:37:3b:d9:05:f2:47:d6:58:bf:7f:87: 6a:c4:57:30:3c:2e:4b:19:ef:4d:1c:67:1c:7a:0f:c7:69:58: 4a:9a:54:58:f0:33:58:43:a3:61:35:95:71:ca:ac:fe:32:77: 30:49:bd:3e:5b:0e:1a:a0:cc:10:3c:a5:40:8b:6e:bc:58:42: 80:ae:e4:a9:c5:84:04:6d:7a:c8:52:53:33:5a:b8:17:19:97: ba:32:a7:f5:62:7a:68:c2:4a:4d:76:b4:29:bf:be:06:0f:f6: 24:db:4d:4e:c4:0e:7e:9b:6a:23:60:0d:33:6f:55:03:93:38: 90:51:e8:64:68:7e:60:4e:bc:ea:f4:23:c6:cd:96:fd:15:75: 1b:d3:77:13:8a:7a:59:dc:eb:c1:41:32:4c:5a:7e:6b:d6:22: 3d:5f:b2:00:64:c9:fd:51:92:04:d4:25:70:76:26:4a:c5:df: 1e:c1:fb:54:40:2e:60:f0:86:78:04:37:8a:31:ec:54:41:1a: e7:26:1f:4c:a4:e9:6a:9f:4c:0e:b1:9b:0d:9d:7a:ca:46:d9: 8f:bc:20:87 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbxt+/2YUGQqPaZrSzPpWwaduhJMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNTEyMDYwNDQ2NDhaFw0yNTEyMDkxNjA2NDhaMDMxMTAvBgNV BAMTKEE1NDJERTYwMDE0Mjc4OUZBOTUzRjVFQ0I0QTA1RkM3RURCOTg0RDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn/axre8CLJqhMl/ga3pKDvGvn H5uMvJVemyEsXXXrAHTz36txZaPSGwhTD5fvPrFKCrn7xtVLy5ZRkW10S8hu1p8G xpiQvYxuuIPw7kopWtkb5LdG2RRBYUf2iTPEFC3O/An31e537ShgQvf2E6Kr+0pk Jc0XA1+xFKIp2bzBOo3Mi+iMEq+WstVeN6lWQhWKCK+mt0xsUkhjdWvHdYaHzNM0 PZNQRAEG9fOQ0tF0A3h/PJbznpIVm44hYD7d8CR42UEMaXKiSPln0WAUcREdtoHf 2bGpV/yFAYLz8QbPJNFHbPDHnSHigaedLJIid10hj5AFAiN9AYUais33PI2TAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpULeYAFCeJ+pU/XstKBfx+25hNcwHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmJiZTY4MTUtMzEwZS00MjA2LWE1 MDAtNmJiOWQzMjYzYWJmLzAvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVB RDgyRkFCM0Q1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGrEGQ2DT3K9Exr+lB18Xlvs0+uJzey0VQne Pd+wuU8JGD7C5kgbVIXj6xs3O9kF8kfWWL9/h2rEVzA8LksZ700cZxx6D8dpWEqa VFjwM1hDo2E1lXHKrP4ydzBJvT5bDhqgzBA8pUCLbrxYQoCu5KnFhARteshSUzNa uBcZl7oyp/ViemjCSk12tCm/vgYP9iTbTU7EDn6baiNgDTNvVQOTOJBR6GRofmBO vOr0I8bNlv0VdRvTdxOKelnc68FBMkxafmvWIj1fsgBkyf1RkgTUJXB2JkrF3x7B +1RALmDwhngEN4ox7FRBGucmH0yk6WqfTA6xmw2despG2Y+8IIc= -----END CERTIFICATE-----Generated at Sat Dec 6 23:51:01 2025 by rpki-client