This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft File: 2D18956397FA6055A44153CABF07303FD6E55E44.mft (raw, json) Hash identifier: piLCT0WY/9u6me1B5SHvuMsnK7obcjSwsmbYI9jVKnk= Subject key identifier: 4D:ED:AE:4C:E7:73:55:16:04:F2:39:3A:29:8A:2F:FA:17:8E:92:F4 Authority key identifier: 2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 Certificate issuer: /CN=2D18956397FA6055A44153CABF07303FD6E55E44 Certificate serial: 3233312F971AA54E86F7985663AC915ECFCCB12A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft Manifest number: 0539 Signing time: Fri 05 Dec 2025 14:52:13 +0000 Manifest this update: Fri 05 Dec 2025 14:47:13 +0000 Manifest next update: Mon 08 Dec 2025 18:55:13 +0000 Files and hashes: 1: 323430363a373734303a3a2f33322d3332203d3e20313431303733.roa (hash: BilMX6PAfP77Q5Ze/r2bseAvAFYgHI4D9c4hoNAPY/0=) 2: 323430363a373734303a3a2f33322d3438203d3e20313431303733.roa (hash: L3wXXsnBA+OZbTlcmfk9tvtnuCN6qKltUcu107Tb7ZI=) 3: 2D18956397FA6055A44153CABF07303FD6E55E44.crl (hash: XzdkjCbHKqj31Q4n1N8jRAgCK8PG+4JlLwZM1x7gsgA=) 4: 3130332e3135352e3230302e302f32332d3234203d3e20313431303733.roa (hash: 9xklfE4ToaNUXHfz0ScOS9CrgCGo8s6jfw/9Yuz7c2I=) 5: 3130332e3135352e3230302e302f32332d3233203d3e20313431303733.roa (hash: tLzip6pluW4kS8q/xNkX5NOxfLZpZ4mdvSRQjE8Ako0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 18:55:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:33:31:2f:97:1a:a5:4e:86:f7:98:56:63:ac:91:5e:cf:cc:b1:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D18956397FA6055A44153CABF07303FD6E55E44 Validity Not Before: Dec 5 14:47:13 2025 GMT Not After : Dec 8 18:55:13 2025 GMT Subject: CN=4DEDAE4CE773551604F2393A298A2FFA178E92F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7e:f4:41:76:86:aa:af:3e:c0:db:25:9d:87: 96:79:98:7d:70:b7:aa:50:ca:5a:fb:19:dc:1a:80: 9f:95:ba:ea:c0:bb:ad:51:9b:e4:76:da:22:4a:2d: 8b:83:fa:36:09:10:27:77:c7:ba:51:d5:fb:b1:82: f6:f5:05:6c:5c:66:4d:22:0a:b9:de:72:37:41:10: c6:52:6d:3b:a0:62:0f:aa:3d:e5:60:0a:76:2f:72: 5a:cb:03:e1:60:b3:8d:55:d2:4d:8a:7f:ba:5b:4b: f9:89:1b:be:2d:5a:ba:9d:57:85:d7:8a:3b:bd:85: 69:23:2d:be:f1:e9:cb:5e:32:4d:d4:d6:4b:19:7c: 7b:ff:16:79:72:8d:9c:78:5d:2c:d9:cc:c4:6a:99: 4b:8c:92:8c:32:c7:6c:af:c7:78:a5:4c:4f:62:05: 1a:d0:ce:be:88:3e:b5:26:94:68:fd:b5:33:14:9d: 75:35:74:3c:d3:7e:52:8f:25:14:ab:81:cf:f8:e1: c8:00:4b:8c:f1:c8:0e:a6:0a:b1:c4:e6:ae:93:64: cc:56:fd:4e:de:90:68:5a:16:f1:c5:14:ce:a7:9e: 4b:30:94:bd:16:a6:46:71:a5:16:6c:a7:9a:f9:e5: 5d:53:42:3d:b9:3a:53:1d:6b:15:e0:2b:01:75:1e: ec:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:ED:AE:4C:E7:73:55:16:04:F2:39:3A:29:8A:2F:FA:17:8E:92:F4 X509v3 Authority Key Identifier: keyid:2D:18:95:63:97:FA:60:55:A4:41:53:CA:BF:07:30:3F:D6:E5:5E:44 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D18956397FA6055A44153CABF07303FD6E55E44.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4858f85c-a458-4a58-bbde-4bfb343dc4b0/0/2D18956397FA6055A44153CABF07303FD6E55E44.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9c:6d:6f:82:01:8e:6b:0a:5b:3e:4f:3e:be:84:20:02:ee:05: 63:d2:62:a3:f3:33:32:d3:16:22:e0:7e:d4:f5:4e:f8:ec:94: 3b:c0:b3:b7:8b:d8:5c:25:63:81:ef:53:65:d9:dd:ce:fc:29: cb:05:24:13:30:0e:70:ea:f3:1b:29:7a:a3:a8:d1:75:61:54: 11:70:4a:88:66:a1:f6:da:8c:78:e3:95:76:17:5a:aa:be:26: 99:12:3e:b0:f7:f6:00:b9:f6:30:98:32:73:18:2e:6f:cf:d9: bb:cc:6e:ab:29:2a:78:6b:64:40:ad:c7:4a:9e:bb:24:0f:30: 0f:52:eb:91:55:0f:ed:a7:67:c8:65:36:08:49:81:19:e0:ad: ff:d6:ec:1f:a2:3c:55:bd:07:a8:b7:04:1b:7d:22:d5:18:34: 3f:6c:16:d6:4f:e3:32:6e:5b:df:12:1f:f4:41:45:ee:77:1c: c1:b0:56:f1:63:15:70:30:ca:17:e9:f2:3b:30:db:fc:83:38: 5b:cd:e7:9c:7b:88:46:f0:95:66:fa:d2:9d:ce:54:84:c7:8d: 70:31:09:e8:ee:cf:52:08:6b:58:20:02:aa:0a:48:14:37:e0: 17:af:55:1c:01:16:f3:af:6f:b8:4c:c0:88:02:0e:60:59:99: 03:c7:7a:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMjMxL5capU6G95hWY6yRXs/MsSowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZE NkU1NUU0NDAeFw0yNTEyMDUxNDQ3MTNaFw0yNTEyMDgxODU1MTNaMDMxMTAvBgNV BAMTKDRERURBRTRDRTc3MzU1MTYwNEYyMzkzQTI5OEEyRkZBMTc4RTkyRjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafvRBdoaqrz7A2yWdh5Z5mH1w t6pQylr7GdwagJ+VuurAu61Rm+R22iJKLYuD+jYJECd3x7pR1fuxgvb1BWxcZk0i CrnecjdBEMZSbTugYg+qPeVgCnYvclrLA+Fgs41V0k2Kf7pbS/mJG74tWrqdV4XX iju9hWkjLb7x6cteMk3U1ksZfHv/FnlyjZx4XSzZzMRqmUuMkowyx2yvx3ilTE9i BRrQzr6IPrUmlGj9tTMUnXU1dDzTflKPJRSrgc/44cgAS4zxyA6mCrHE5q6TZMxW /U7ekGhaFvHFFM6nnkswlL0WpkZxpRZsp5r55V1TQj25OlMdaxXgKwF1Huy3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTe2uTOdzVRYE8jk6KYov+heOkvQwHwYDVR0j BBgwFoAULRiVY5f6YFWkQVPKvwcwP9blXkQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ODU4Zjg1Yy1hNDU4LTRhNTgtYmJkZS00YmZiMzQzZGM0YjAvMC8yRDE4OTU2Mzk3 RkE2MDU1QTQ0MTUzQ0FCRjA3MzAzRkQ2RTU1RTQ0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMwM0ZENkU1 NUU0NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDg1OGY4NWMtYTQ1OC00YTU4LWJi ZGUtNGJmYjM0M2RjNGIwLzAvMkQxODk1NjM5N0ZBNjA1NUE0NDE1M0NBQkYwNzMw M0ZENkU1NUU0NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJxtb4IBjmsKWz5PPr6EIALuBWPSYqPzMzLT FiLgftT1TvjslDvAs7eL2FwlY4HvU2XZ3c78KcsFJBMwDnDq8xspeqOo0XVhVBFw SohmofbajHjjlXYXWqq+JpkSPrD39gC59jCYMnMYLm/P2bvMbqspKnhrZECtx0qe uyQPMA9S65FVD+2nZ8hlNghJgRngrf/W7B+iPFW9B6i3BBt9ItUYND9sFtZP4zJu W98SH/RBRe53HMGwVvFjFXAwyhfp8jsw2/yDOFvN55x7iEbwlWb60p3OVITHjXAx Cejuz1IIa1ggAqoKSBQ34BevVRwBFvOvb7hMwIgCDmBZmQPHeuA= -----END CERTIFICATE-----Generated at Sun Dec 7 01:39:37 2025 by rpki-client