This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: n9u79v11kdqj1//dSZPFHfLACpIYNsGUWrJ8vZh3txs= Subject key identifier: B4:BE:81:7A:23:4A:C9:16:89:4E:4A:9E:AD:42:E9:53:8F:2F:C1:E2 Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 3F22DFB6F706351E5F8C11FA2EC5E0A0471F288D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 02B2 Signing time: Thu 04 Dec 2025 16:30:53 +0000 Manifest this update: Thu 04 Dec 2025 16:25:53 +0000 Manifest next update: Mon 08 Dec 2025 00:30:53 +0000 Files and hashes: 1: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: SzZcwqFRIZqfdFuKFSquFHw7X3PQlKaS7pIH1GCEYb0=) 2: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 00:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:22:df:b6:f7:06:35:1e:5f:8c:11:fa:2e:c5:e0:a0:47:1f:28:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Dec 4 16:25:53 2025 GMT Not After : Dec 8 00:30:53 2025 GMT Subject: CN=B4BE817A234AC916894E4A9EAD42E9538F2FC1E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:4f:42:f1:ef:48:dd:e2:5d:76:08:0e:25:9f: ae:59:d6:08:a5:3f:fa:10:f0:0b:e3:4e:f6:39:8e: 83:23:7b:f5:7a:c6:1c:db:29:f1:89:36:11:75:5a: 02:6f:b3:35:fe:5b:5a:97:79:00:00:6f:6a:9c:61: bd:0e:98:4e:cc:34:c9:65:37:08:1a:f2:d7:18:77: 79:af:57:a9:ad:76:ac:69:0f:53:42:31:ec:64:97: de:77:de:d8:c5:7e:0a:75:d5:ae:9a:f6:08:99:c5: b1:17:8c:90:1e:5d:af:5a:6f:97:91:e0:e2:eb:a5: e1:a8:74:11:34:1a:0e:26:72:1f:d2:00:55:85:fc: ce:e5:9c:d0:c8:21:bb:f2:1d:95:bb:e6:97:c1:00: a9:59:0d:e8:74:a6:ad:90:4c:03:42:4a:2a:2f:05: bd:b7:9f:9b:02:ad:da:3c:61:9c:b7:39:b4:d4:8a: c6:df:e1:43:32:14:38:b2:ed:40:ee:b6:64:cc:0b: 61:5b:11:3e:53:cb:a9:33:39:8f:56:0a:21:60:04: 04:62:53:a5:74:67:33:c2:52:17:6a:ab:32:47:bd: 33:12:b0:98:6e:dd:f2:58:a1:1c:68:69:4d:b9:ae: 74:9f:0e:a4:8e:c6:04:e3:f1:8e:7f:9a:99:b9:0c: 85:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BE:81:7A:23:4A:C9:16:89:4E:4A:9E:AD:42:E9:53:8F:2F:C1:E2 X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c7:ea:60:64:9d:e6:42:9f:df:ea:e8:5d:bd:5f:13:ed:42:32: 85:2f:91:ba:78:6c:53:ee:eb:23:4f:69:62:95:5c:d6:4c:4c: 66:10:c0:81:5d:ad:84:4b:c0:c7:79:27:87:a5:b1:7c:db:ac: ba:92:af:b5:fd:1b:40:8b:5b:62:78:ea:4f:9e:88:87:5a:f7: be:06:f4:75:12:6f:9b:6f:df:f6:3a:54:8a:53:ad:67:fc:68: fd:29:01:92:85:ab:38:8f:d7:6b:58:19:5b:24:10:84:23:99: 25:7f:8a:2d:0a:02:9c:0a:e8:1a:55:16:54:d2:6e:93:25:3b: 9e:c8:38:b8:d4:31:d9:1d:f3:43:d9:27:bd:47:af:81:fa:52: ba:35:01:17:8e:12:fb:03:5a:01:76:50:6c:8d:86:75:7f:00: 4c:81:e8:37:fe:ec:db:25:c9:5d:3c:7d:5a:e9:6e:78:51:3e: 03:29:6c:6c:eb:dd:c3:dc:f5:c5:7f:12:ac:7c:98:09:80:71: f4:ec:c5:96:f2:f2:89:40:f0:3a:db:cf:d3:35:f1:e0:81:8f: 04:d5:bc:52:05:e8:98:c6:44:23:9e:03:89:be:b7:ee:1b:c9: 4a:e0:88:42:ae:a7:c6:f0:2a:a3:e3:ce:9c:fd:6d:77:d1:44: 66:94:68:14 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPyLftvcGNR5fjBH6LsXgoEcfKI0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNTEyMDQxNjI1NTNaFw0yNTEyMDgwMDMwNTNaMDMxMTAvBgNV BAMTKEI0QkU4MTdBMjM0QUM5MTY4OTRFNEE5RUFENDJFOTUzOEYyRkMxRTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkT0Lx70jd4l12CA4ln65Z1gil P/oQ8AvjTvY5joMje/V6xhzbKfGJNhF1WgJvszX+W1qXeQAAb2qcYb0OmE7MNMll Nwga8tcYd3mvV6mtdqxpD1NCMexkl9533tjFfgp11a6a9giZxbEXjJAeXa9ab5eR 4OLrpeGodBE0Gg4mch/SAFWF/M7lnNDIIbvyHZW75pfBAKlZDeh0pq2QTANCSiov Bb23n5sCrdo8YZy3ObTUisbf4UMyFDiy7UDutmTMC2FbET5Ty6kzOY9WCiFgBARi U6V0ZzPCUhdqqzJHvTMSsJhu3fJYoRxoaU25rnSfDqSOxgTj8Y5/mpm5DIVHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtL6BeiNKyRaJTkqerULpU48vweIwHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMfqYGSd5kKf3+roXb1fE+1CMoUvkbp4bFPu 6yNPaWKVXNZMTGYQwIFdrYRLwMd5J4elsXzbrLqSr7X9G0CLW2J46k+eiIda974G 9HUSb5tv3/Y6VIpTrWf8aP0pAZKFqziP12tYGVskEIQjmSV/ii0KApwK6BpVFlTS bpMlO57IOLjUMdkd80PZJ71Hr4H6Uro1AReOEvsDWgF2UGyNhnV/AEyB6Df+7Nsl yV08fVrpbnhRPgMpbGzr3cPc9cV/Eqx8mAmAcfTsxZby8olA8Drbz9M18eCBjwTV vFIF6JjGRCOeA4m+t+4byUrgiEKup8bwKqPjzpz9bXfRRGaUaBQ= -----END CERTIFICATE-----Generated at Sat Dec 6 17:40:36 2025 by rpki-client