This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft File: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft (raw, json) Hash identifier: mPAwXH8Gsvw/sSyULBDvYD5gXYfoJindfQ9edCT3oCY= Subject key identifier: CD:25:6E:1E:86:8F:21:36:5B:A6:14:EB:DA:79:EE:D5:B6:6F:71:C7 Authority key identifier: 28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C Certificate issuer: /CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Certificate serial: 4A6FDB5CD18B20802009FF33333D833E79A45497 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft Manifest number: 019C Signing time: Wed 17 Dec 2025 13:51:47 +0000 Manifest this update: Wed 17 Dec 2025 13:46:47 +0000 Manifest next update: Sat 20 Dec 2025 21:30:47 +0000 Files and hashes: 1: 289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl (hash: yRWAdXZu7hDdzjWZeBI8bBvlqtMYAQN75nrkP56h2+Q=) 2: 323030313a6466313a633263303a3a2f34382d3438203d3e20313439393039.roa (hash: 6LOGBCF5zTr7iAtxuc25TGgWiHmJgXAtcLTxMujO3no=) 3: 3130332e3139312e35382e302f32332d3234203d3e20313439393039.roa (hash: uLA8drzoTGDdLRLknWkZIaOJdJxpC+UKHzjWLF3FpOA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 21:30:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:6f:db:5c:d1:8b:20:80:20:09:ff:33:33:3d:83:3e:79:a4:54:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=289151EF8AE8A79D8F426683D1525AD82FAB3D5C Validity Not Before: Dec 17 13:46:47 2025 GMT Not After : Dec 20 21:30:47 2025 GMT Subject: CN=CD256E1E868F21365BA614EBDA79EED5B66F71C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:98:ca:1a:61:07:92:db:a3:bd:04:3e:57:52: 71:cc:25:8a:80:f4:c9:f8:b8:ee:1b:d8:de:28:82: 2f:f1:93:c9:ea:f5:5f:85:8a:e6:3a:6a:26:23:57: d7:80:14:0a:59:49:e8:85:4b:98:8c:19:d0:2e:07: 71:bf:a3:f3:82:43:94:9c:8b:fe:70:83:b8:61:37: 60:5d:f3:ec:24:63:74:b3:8e:2a:f4:66:55:c0:90: 41:b8:d2:c3:8e:6a:bb:ca:6f:0f:3c:8d:66:26:98: 2e:c2:f1:5f:fa:4e:98:02:8f:97:77:28:9f:a7:a3: 0d:8c:bf:25:55:92:ee:31:ea:d0:74:bf:3b:95:aa: 1f:16:b3:da:49:43:ed:93:62:cc:cc:bf:b0:2d:67: d1:b5:d9:55:b1:4f:4a:63:f6:3e:67:94:23:a5:0b: 22:d9:5e:7b:4d:9b:42:41:51:7f:33:2b:8c:37:b4: 89:77:8b:b3:4f:6f:c8:bb:9b:bc:61:9d:4c:72:f9: a0:7c:63:20:f2:0e:dd:b2:89:04:08:82:78:0b:ab: 4f:3a:d9:20:fe:a1:74:3a:24:f5:af:85:46:eb:17: 9a:24:cb:4b:b5:fc:d8:8c:8d:cb:4d:70:f3:94:f6: 9b:78:63:b0:ca:e5:3b:b4:60:3f:a7:17:d2:4a:01: ac:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:25:6E:1E:86:8F:21:36:5B:A6:14:EB:DA:79:EE:D5:B6:6F:71:C7 X509v3 Authority Key Identifier: keyid:28:91:51:EF:8A:E8:A7:9D:8F:42:66:83:D1:52:5A:D8:2F:AB:3D:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2bbe6815-310e-4206-a500-6bb9d3263abf/0/289151EF8AE8A79D8F426683D1525AD82FAB3D5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:df:99:f3:a4:ff:93:c8:ba:e7:9d:8a:89:a5:fc:f9:28:80: 9d:a1:f7:fe:3f:c5:b6:91:ab:29:be:9d:97:7b:5a:8d:70:c5: 66:aa:22:2c:77:cf:0d:2e:db:5c:21:8e:b8:21:db:d9:94:89: 8f:f0:a8:de:d2:87:02:ae:0e:27:a7:00:1b:6b:52:de:ae:ef: 4b:2d:ea:eb:c6:08:98:34:5e:27:6e:f7:04:17:7e:23:62:ee: ba:d2:7c:ce:0a:70:2b:34:bb:da:9f:ca:9d:2a:e0:59:0f:c8: 01:21:05:4a:2a:ec:92:cf:50:b8:c6:4b:30:47:53:9c:43:7d: a5:06:43:27:a2:d4:fe:5d:3f:a0:08:ad:78:3a:2e:25:d2:5c: 56:db:88:a1:07:af:84:ae:14:27:f5:04:44:1a:e7:e1:ca:6e: ec:6c:f1:d8:6d:09:60:c0:14:a4:2d:50:ec:09:bb:3d:d3:af: 8b:49:c0:b0:66:15:5c:63:66:5e:67:73:40:40:2d:0c:9e:28: 97:97:db:27:dc:d0:f4:d9:23:af:da:c6:8a:01:11:f1:31:ca: 8a:ba:17:74:6b:61:1f:f3:a3:7d:c6:f0:cc:a6:a2:21:de:a4: 5d:d3:0a:b5:e4:34:2c:77:ef:dd:4d:8a:b6:b1:fa:9a:58:2c: 9d:ae:98:ad -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSm/bXNGLIIAgCf8zMz2DPnmkVJcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgy RkFCM0Q1QzAeFw0yNTEyMTcxMzQ2NDdaFw0yNTEyMjAyMTMwNDdaMDMxMTAvBgNV BAMTKENEMjU2RTFFODY4RjIxMzY1QkE2MTRFQkRBNzlFRUQ1QjY2RjcxQzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+mMoaYQeS26O9BD5XUnHMJYqA 9Mn4uO4b2N4ogi/xk8nq9V+FiuY6aiYjV9eAFApZSeiFS5iMGdAuB3G/o/OCQ5Sc i/5wg7hhN2Bd8+wkY3Szjir0ZlXAkEG40sOOarvKbw88jWYmmC7C8V/6TpgCj5d3 KJ+now2MvyVVku4x6tB0vzuVqh8Ws9pJQ+2TYszMv7AtZ9G12VWxT0pj9j5nlCOl CyLZXntNm0JBUX8zK4w3tIl3i7NPb8i7m7xhnUxy+aB8YyDyDt2yiQQIgngLq086 2SD+oXQ6JPWvhUbrF5oky0u1/NiMjctNcPOU9pt4Y7DK5Tu0YD+nF9JKAaz1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzSVuHoaPITZbphTr2nnu1bZvcccwHwYDVR0j BBgwFoAUKJFR74rop52PQmaD0VJa2C+rPVwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YmJlNjgxNS0zMTBlLTQyMDYtYTUwMC02YmI5ZDMyNjNhYmYvMC8yODkxNTFFRjhB RThBNzlEOEY0MjY2ODNEMTUyNUFEODJGQUIzRDVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVBRDgyRkFC M0Q1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmJiZTY4MTUtMzEwZS00MjA2LWE1 MDAtNmJiOWQzMjYzYWJmLzAvMjg5MTUxRUY4QUU4QTc5RDhGNDI2NjgzRDE1MjVB RDgyRkFCM0Q1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMvfmfOk/5PIuuedioml/PkogJ2h9/4/xbaR qym+nZd7Wo1wxWaqIix3zw0u21whjrgh29mUiY/wqN7ShwKuDienABtrUt6u70st 6uvGCJg0Xidu9wQXfiNi7rrSfM4KcCs0u9qfyp0q4FkPyAEhBUoq7JLPULjGSzBH U5xDfaUGQyei1P5dP6AIrXg6LiXSXFbbiKEHr4SuFCf1BEQa5+HKbuxs8dhtCWDA FKQtUOwJuz3Tr4tJwLBmFVxjZl5nc0BALQyeKJeX2yfc0PTZI6/axooBEfExyoq6 F3RrYR/zo33G8MymoiHepF3TCrXkNCx3791Nirax+ppYLJ2umK0= -----END CERTIFICATE-----Generated at Thu Dec 18 05:41:15 2025 by rpki-client