This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: HhaMhzY3i46iYHylePN2OBmZJGcCyOYpbXAGFIGhFq0= Subject key identifier: 1C:FF:EC:6D:4C:61:C6:BB:48:65:6F:1A:2C:F7:AA:18:D2:DD:F7:F9 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 514FEA6991C259132BE14899310DBE1A3C566979 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 052E Signing time: Fri 05 Dec 2025 14:20:49 +0000 Manifest this update: Fri 05 Dec 2025 14:15:49 +0000 Manifest next update: Mon 08 Dec 2025 15:01:49 +0000 Files and hashes: 1: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 2: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 3: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 4: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 5: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: 1K1aebrKmK1qduQs8jld8EM1uCT6MgM0o6MvibyxMBw=) 6: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 7: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 8: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 9: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 10: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 15:01:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:4f:ea:69:91:c2:59:13:2b:e1:48:99:31:0d:be:1a:3c:56:69:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Dec 5 14:15:49 2025 GMT Not After : Dec 8 15:01:49 2025 GMT Subject: CN=1CFFEC6D4C61C6BB48656F1A2CF7AA18D2DDF7F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:45:44:88:d6:4c:dd:b1:7d:65:d2:8a:51:91: f7:a3:67:d7:e6:b5:b3:b4:3f:92:47:00:e2:d9:5e: 01:8a:c2:59:b1:b5:e2:cb:be:4e:53:97:a7:10:55: 4f:d2:68:60:a0:2e:60:87:fe:d7:c8:32:32:2b:05: 35:0c:27:d4:99:69:c5:bc:a9:30:76:08:9d:a4:40: 31:78:ab:7c:dc:8f:46:64:c8:59:28:32:4b:c0:25: 1c:af:0e:04:21:e5:68:ca:97:fb:88:38:40:2b:25: 64:95:ba:62:08:05:15:b2:01:1d:da:08:6c:8f:0b: c9:d9:ba:da:c8:1e:6e:19:97:6a:27:67:e2:a6:e2: 80:d7:43:2d:9e:a8:9d:2a:1d:0a:dd:df:92:e3:77: e3:00:36:f5:f2:9b:60:d7:32:18:7b:47:bc:32:82: d4:40:6f:58:2c:7c:be:3a:ad:91:48:75:94:92:10: 6a:84:c7:c0:d4:94:51:8e:a9:a4:3f:11:be:c1:84: 68:c8:76:6f:07:9a:9d:68:9a:e2:e7:4e:ba:be:91: 2a:bd:1c:f8:ab:97:62:71:fc:8a:42:ae:5d:d7:4c: 47:b4:10:b6:11:23:e8:0d:bc:1e:ed:f1:de:39:b8: a8:ea:38:76:5e:80:b1:25:ed:5d:2e:59:b1:43:82: 7a:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:FF:EC:6D:4C:61:C6:BB:48:65:6F:1A:2C:F7:AA:18:D2:DD:F7:F9 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bf:c5:93:21:47:d9:a2:a5:1e:05:25:70:67:c3:7f:c9:45:af: 0a:f4:87:79:59:b8:c6:52:03:74:cc:ba:6f:5e:10:a0:83:2e: 60:5f:c1:11:f4:11:64:67:fd:08:ab:c9:7a:09:14:9f:09:f0: 4a:70:54:c3:3e:55:e1:df:e7:18:7b:90:f7:14:e6:ec:44:3d: 1b:4f:f4:cb:fa:5e:e8:ea:d9:b4:81:73:31:b8:0a:50:73:b8: 59:0c:f1:a3:df:ea:aa:25:d0:71:a0:03:d3:aa:f1:19:a0:48: 70:46:b5:75:9f:5d:52:2e:24:47:c1:70:1b:9d:cd:d2:e3:98: 1e:53:f7:d4:dd:81:30:dd:c7:7d:1d:f8:99:9f:e8:f5:58:9a: 7c:d9:e0:1f:14:8c:38:d2:02:c2:65:95:e3:00:bb:fb:3f:a6: e4:3d:f5:3c:a2:67:4b:9a:90:63:9e:b5:c7:c0:4c:d7:6c:5d: 89:3c:a4:7d:8b:cb:bc:dc:6e:89:b5:17:6f:99:27:42:23:e2: fc:08:aa:ef:f6:8e:6d:57:b6:5d:37:21:af:2c:c4:0e:bc:28: 99:08:f5:5d:57:de:59:b9:46:b1:aa:fa:bb:38:c8:6e:ab:8f: 16:23:ca:45:27:5d:8e:47:52:f7:c4:a8:6b:77:3d:40:17:df: 70:31:80:a0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUU/qaZHCWRMr4UiZMQ2+GjxWaXkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTEyMDUxNDE1NDlaFw0yNTEyMDgxNTAxNDlaMDMxMTAvBgNV BAMTKDFDRkZFQzZENEM2MUM2QkI0ODY1NkYxQTJDRjdBQTE4RDJEREY3RjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdRUSI1kzdsX1l0opRkfejZ9fm tbO0P5JHAOLZXgGKwlmxteLLvk5Tl6cQVU/SaGCgLmCH/tfIMjIrBTUMJ9SZacW8 qTB2CJ2kQDF4q3zcj0ZkyFkoMkvAJRyvDgQh5WjKl/uIOEArJWSVumIIBRWyAR3a CGyPC8nZutrIHm4Zl2onZ+Km4oDXQy2eqJ0qHQrd35Ljd+MANvXym2DXMhh7R7wy gtRAb1gsfL46rZFIdZSSEGqEx8DUlFGOqaQ/Eb7BhGjIdm8Hmp1omuLnTrq+kSq9 HPirl2Jx/IpCrl3XTEe0ELYRI+gNvB7t8d45uKjqOHZegLEl7V0uWbFDgnrjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHP/sbUxhxrtIZW8aLPeqGNLd9/kwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL/FkyFH2aKlHgUlcGfDf8lFrwr0h3lZuMZS A3TMum9eEKCDLmBfwRH0EWRn/QiryXoJFJ8J8EpwVMM+VeHf5xh7kPcU5uxEPRtP 9Mv6Xujq2bSBczG4ClBzuFkM8aPf6qol0HGgA9Oq8RmgSHBGtXWfXVIuJEfBcBud zdLjmB5T99TdgTDdx30d+Jmf6PVYmnzZ4B8UjDjSAsJlleMAu/s/puQ99TyiZ0ua kGOetcfATNdsXYk8pH2Ly7zcbom1F2+ZJ0Ij4vwIqu/2jm1Xtl03Ia8sxA68KJkI 9V1X3lm5RrGq+rs4yG6rjxYjykUnXY5HUvfEqGt3PUAX33AxgKA= -----END CERTIFICATE-----Generated at Sat Dec 6 23:16:16 2025 by rpki-client