This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: SqSFXwAYCaM9OgIwu6phZjXcApjmCPEKVN9opRmQr2I= Subject key identifier: A6:79:AB:11:0A:95:D9:AC:DA:AD:8A:51:AC:8C:67:09:9D:A1:03:30 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 0398BFEEF64027CFB1BAF8791BADB19839D18D2C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 0228 Signing time: Mon 15 Dec 2025 09:51:11 +0000 Manifest this update: Mon 15 Dec 2025 09:46:11 +0000 Manifest next update: Thu 18 Dec 2025 14:25:11 +0000 Files and hashes: 1: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0=) 2: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk=) 3: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: kanXJTtdkfJ7zOtV6u4CbFXqpT8RIbM9yFSqb8Ax5ic=) 4: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 14:25:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:98:bf:ee:f6:40:27:cf:b1:ba:f8:79:1b:ad:b1:98:39:d1:8d:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Dec 15 09:46:11 2025 GMT Not After : Dec 18 14:25:11 2025 GMT Subject: CN=A679AB110A95D9ACDAAD8A51AC8C67099DA10330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:67:f7:61:aa:79:64:88:1a:9e:b1:b4:b7:c7: 62:55:aa:38:c4:f0:f2:27:cd:fb:20:05:12:6c:b7: 04:07:ec:1e:96:10:2b:66:9e:c0:7e:aa:da:65:fd: 8e:e9:5f:7d:8c:b4:37:ac:48:83:29:3f:69:bd:91: 65:07:62:f7:3c:92:47:c6:a3:6a:6b:26:9f:e0:6e: da:f2:a5:1d:8e:59:25:7b:e2:d9:39:d3:30:f9:db: 06:8f:70:da:27:89:0b:fa:de:15:dc:f3:73:ad:81: 65:1f:cc:5c:6c:76:6c:ba:e1:cf:90:95:ca:7c:03: 69:7c:d1:bf:c2:fc:d5:7d:25:f4:73:4c:88:1e:e5: 53:80:15:62:10:00:ed:02:b9:41:08:1f:79:d3:2a: f8:a9:97:df:4d:d8:c1:a5:53:79:95:ae:66:5d:33: 7e:04:1f:1f:62:60:be:1a:ec:8d:86:5e:35:87:32: 4b:cb:ff:fa:9d:d2:47:5b:b6:44:d9:6c:73:cd:a9: 83:c0:af:25:28:27:3c:05:7f:ac:29:39:12:48:88: 22:ad:3f:63:73:c6:89:47:4b:8f:a6:5e:1e:6a:15: 31:06:0b:fc:01:f2:01:60:3d:f6:a0:cb:87:e7:8e: 80:42:86:32:10:5a:32:c5:40:8e:c5:32:be:af:f0: 13:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:79:AB:11:0A:95:D9:AC:DA:AD:8A:51:AC:8C:67:09:9D:A1:03:30 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:c4:d4:3d:54:37:f8:b2:79:05:3f:43:c9:5d:e2:88:fa:e5: 5a:e1:99:21:34:da:43:97:e0:0f:80:3d:bf:eb:6a:a3:72:10: 9b:54:2b:ba:4b:e6:14:44:5e:44:ab:74:d0:74:df:8a:39:f2: 26:fd:5b:77:c5:7f:cc:c0:f6:66:ea:95:61:6a:71:40:17:22: 13:0e:ff:92:d6:ab:63:98:55:56:3f:01:77:7e:90:9f:3a:8c: 19:4e:13:e3:b3:96:75:a8:1c:a5:eb:f3:63:96:bf:1f:66:e4: 77:17:87:df:d6:3b:f0:8a:a0:db:43:9b:a2:83:9e:b2:2d:43: e6:81:f9:bc:40:46:7d:c9:70:0a:1a:8b:5a:b5:66:e7:1d:df: 9d:f4:f4:71:f6:70:bd:5c:60:92:15:af:2e:59:5d:b1:10:eb: a3:db:4b:b2:eb:49:e7:f8:69:a1:49:24:47:68:34:5e:7b:57: 0c:ad:5b:6b:2f:e6:68:e1:78:a5:e0:4c:03:cd:f9:4e:ca:7f: 68:c3:54:ed:dd:d4:e1:d7:3d:05:a6:b0:3b:92:a8:5c:3a:3f: d8:1a:9b:eb:05:8b:03:31:d7:84:72:6b:72:8f:ce:1f:6d:82: 15:5a:a7:ac:4f:84:bf:9a:e5:af:5b:a8:0b:31:16:38:9b:23: 61:7a:b1:2e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUA5i/7vZAJ8+xuvh5G62xmDnRjSwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTEyMTUwOTQ2MTFaFw0yNTEyMTgxNDI1MTFaMDMxMTAvBgNV BAMTKEE2NzlBQjExMEE5NUQ5QUNEQUFEOEE1MUFDOEM2NzA5OURBMTAzMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCfZ/dhqnlkiBqesbS3x2JVqjjE 8PInzfsgBRJstwQH7B6WECtmnsB+qtpl/Y7pX32MtDesSIMpP2m9kWUHYvc8kkfG o2prJp/gbtrypR2OWSV74tk50zD52waPcNoniQv63hXc83OtgWUfzFxsdmy64c+Q lcp8A2l80b/C/NV9JfRzTIge5VOAFWIQAO0CuUEIH3nTKvipl99N2MGlU3mVrmZd M34EHx9iYL4a7I2GXjWHMkvL//qd0kdbtkTZbHPNqYPAryUoJzwFf6wpORJIiCKt P2NzxolHS4+mXh5qFTEGC/wB8gFgPfagy4fnjoBChjIQWjLFQI7FMr6v8BNpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpnmrEQqV2azarYpRrIxnCZ2hAzAwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABfE1D1UN/iyeQU/Q8ld4oj65VrhmSE02kOX 4A+APb/raqNyEJtUK7pL5hREXkSrdNB034o58ib9W3fFf8zA9mbqlWFqcUAXIhMO /5LWq2OYVVY/AXd+kJ86jBlOE+OzlnWoHKXr82OWvx9m5HcXh9/WO/CKoNtDm6KD nrItQ+aB+bxARn3JcAoai1q1Zucd35309HH2cL1cYJIVry5ZXbEQ66PbS7LrSef4 aaFJJEdoNF57VwytW2sv5mjheKXgTAPN+U7Kf2jDVO3d1OHXPQWmsDuSqFw6P9ga m+sFiwMx14Rya3KPzh9tghVap6xPhL+a5a9bqAsxFjibI2F6sS4= -----END CERTIFICATE-----Generated at Tue Dec 16 07:03:52 2025 by rpki-client