This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft (raw, json) Hash identifier: kDStwmQF8d5RCbGX9zsE/bYaBpuwbf2Ldn3kfEeoWN4= Subject key identifier: A4:0F:42:CC:DF:F6:02:7B:EA:7A:AE:37:17:57:D6:BE:25:F2:EF:25 Authority key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Certificate issuer: /CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Certificate serial: 3D5D84081ACAC6B30D42D661FF121F5B5F1151F1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject info access: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft Manifest number: 0224 Signing time: Sat 06 Dec 2025 04:41:11 +0000 Manifest this update: Sat 06 Dec 2025 04:36:11 +0000 Manifest next update: Tue 09 Dec 2025 12:53:11 +0000 Files and hashes: 1: 3130332e3138342e32302e302f32332d3233203d3e20313439383833.roa (hash: +E4T7dUXV6aX4bEXGLU3jVOr97rI3sHCGNsBCv/YCaI=) 2: 3130332e3138342e32312e302f32342d3234203d3e20313439383833.roa (hash: SYGWmmOnwGKD6Y/4QC0HTfwuXQyWf4xsNcK5v8re6i0=) 3: 3130332e3138342e32302e302f32342d3234203d3e20313439383833.roa (hash: GTF74Ft0qa3Ml/qzXNfnDXeDnWgSofyFjshmuk26klk=) 4: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl (hash: A+8zRiZfHxGlG3FQBAvNteQ0n5MevNbU8meoyVgBMrA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 12:53:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:5d:84:08:1a:ca:c6:b3:0d:42:d6:61:ff:12:1f:5b:5f:11:51:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Validity Not Before: Dec 6 04:36:11 2025 GMT Not After : Dec 9 12:53:11 2025 GMT Subject: CN=A40F42CCDFF6027BEA7AAE371757D6BE25F2EF25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:dd:ad:7a:87:7f:5e:29:88:ca:99:41:d5:83: c1:4a:24:aa:f2:e7:99:f8:4b:32:53:e3:62:a8:3c: 24:24:3d:56:3a:1f:b8:e4:0d:85:83:7d:0b:b1:05: 02:7c:45:8e:63:b7:c5:6e:9c:16:27:62:f5:a9:98: 2e:95:bc:07:1a:40:68:98:08:db:d3:7f:e4:a6:0c: bc:e3:0c:7f:de:73:6f:ff:f2:ef:31:7d:d1:49:e0: 34:8b:02:95:6b:79:9b:be:25:fd:f4:91:15:02:01: c5:80:d1:9b:a2:07:b6:ca:65:d6:95:c7:5e:47:b5: 5b:ec:a4:37:8d:4a:61:a8:1b:ae:3c:bd:ac:50:2b: d6:56:f7:cf:7d:34:fe:b3:60:a4:d8:1b:69:59:ae: 96:bb:60:60:4b:e1:e0:59:95:5c:68:f8:f0:5b:5b: e8:cd:0c:3a:9c:1a:89:5a:2a:33:99:06:97:c9:7b: 48:30:ea:8e:58:c1:44:1a:10:dc:53:37:89:fd:93: d4:49:81:97:05:4d:f7:2d:23:01:3d:c9:09:f8:61: c1:df:3d:b9:fb:12:94:b3:8b:3b:95:5f:61:4e:79: ad:26:7c:e4:62:68:1f:01:3b:bf:0f:19:07:6b:37: f9:44:f6:12:5d:c1:31:50:c4:0f:51:42:b2:45:e9: 7d:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:0F:42:CC:DF:F6:02:7B:EA:7A:AE:37:17:57:D6:BE:25:F2:EF:25 X509v3 Authority Key Identifier: keyid:58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:eb:3b:9c:87:fa:0e:d6:f8:74:6c:08:04:22:d0:75:24:80: 43:12:1c:9a:6c:a8:77:e0:6d:b4:46:7a:2c:00:9f:8e:a9:86: f9:6b:2a:11:7d:f9:47:89:64:d9:c0:a9:1c:eb:74:21:e8:51: a2:67:6d:11:0d:a9:4c:7a:5f:2b:ae:b9:b5:e6:8c:9a:ac:07: d4:54:4c:2b:f6:80:3f:bc:ca:c0:c0:fa:eb:c3:e1:8a:ab:65: f6:7a:59:9e:8b:85:76:cd:f1:ec:22:d0:0d:de:df:12:61:93: 55:24:1b:c3:67:69:db:51:9d:83:f0:ab:a2:49:5d:9e:8d:b9: c5:08:40:05:32:0f:6c:f6:d8:15:b2:d6:40:21:56:4c:e9:3e: 30:e4:97:c2:9a:13:90:c4:8e:8c:cf:f4:6f:01:c3:46:d0:62: ce:a8:04:23:6d:fc:02:33:33:b0:2f:44:ca:7f:61:98:ec:00: e8:1a:33:fb:58:cd:94:e5:8b:1e:33:c8:a5:08:c2:69:37:21: 9f:46:5c:28:b0:7d:17:5d:95:6e:af:a9:77:75:81:06:e9:95: c1:86:78:ac:6e:23:08:4f:b6:00:1a:2a:c9:4d:62:08:bd:69: f0:9c:ce:88:6d:eb:6d:57:43:15:e3:97:04:99:e0:7e:49:b8: 20:54:f8:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPV2ECBrKxrMNQtZh/xIfW18RUfEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1 QTY5QzU5NjAeFw0yNTEyMDYwNDM2MTFaFw0yNTEyMDkxMjUzMTFaMDMxMTAvBgNV BAMTKEE0MEY0MkNDREZGNjAyN0JFQTdBQUUzNzE3NTdENkJFMjVGMkVGMjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDN3a16h39eKYjKmUHVg8FKJKry 55n4SzJT42KoPCQkPVY6H7jkDYWDfQuxBQJ8RY5jt8VunBYnYvWpmC6VvAcaQGiY CNvTf+SmDLzjDH/ec2//8u8xfdFJ4DSLApVreZu+Jf30kRUCAcWA0ZuiB7bKZdaV x15HtVvspDeNSmGoG648vaxQK9ZW9899NP6zYKTYG2lZrpa7YGBL4eBZlVxo+PBb W+jNDDqcGolaKjOZBpfJe0gw6o5YwUQaENxTN4n9k9RJgZcFTfctIwE9yQn4YcHf Pbn7EpSzizuVX2FOea0mfORiaB8BO78PGQdrN/lE9hJdwTFQxA9RQrJF6X1bAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpA9CzN/2Anvqeq43F1fWviXy7yUwHwYDVR0j BBgwFoAUWKcG6nRo3w0UyhgXx8xdvVppxZYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMC81OEE3MDZFQTc0 NjhERjBEMTRDQTE4MTdDN0NDNURCRDVBNjlDNTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVEQkQ1QTY5 QzU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzJiZmFiMDktYzFlOS00NGQ4LTgx OWUtZmRmNjU0OWM2YjNmLzAvNThBNzA2RUE3NDY4REYwRDE0Q0ExODE3QzdDQzVE QkQ1QTY5QzU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACvrO5yH+g7W+HRsCAQi0HUkgEMSHJpsqHfg bbRGeiwAn46phvlrKhF9+UeJZNnAqRzrdCHoUaJnbRENqUx6XyuuubXmjJqsB9RU TCv2gD+8ysDA+uvD4YqrZfZ6WZ6LhXbN8ewi0A3e3xJhk1UkG8NnadtRnYPwq6JJ XZ6NucUIQAUyD2z22BWy1kAhVkzpPjDkl8KaE5DEjozP9G8Bw0bQYs6oBCNt/AIz M7AvRMp/YZjsAOgaM/tYzZTlix4zyKUIwmk3IZ9GXCiwfRddlW6vqXd1gQbplcGG eKxuIwhPtgAaKslNYgi9afCczoht621XQxXjlwSZ4H5JuCBU+Ck= -----END CERTIFICATE-----Generated at Sun Dec 7 03:36:05 2025 by rpki-client