This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft File: 35B589224D641562D0CFE2019F733A965FC8E0C7.mft (raw, json) Hash identifier: U5g2pZQ6WROxJ6GsRVlN5ItmyZc7iRY8S0wIdZDF9+A= Subject key identifier: 4D:0B:5E:46:DE:C0:A9:9D:9B:ED:6E:E8:A7:B1:03:24:8F:EA:AE:E3 Authority key identifier: 35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 Certificate issuer: /CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Certificate serial: 04E562059A64699BA245C47A476DD4C78F0848E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft Manifest number: 01A6 Signing time: Sat 06 Dec 2025 10:01:09 +0000 Manifest this update: Sat 06 Dec 2025 09:56:09 +0000 Manifest next update: Tue 09 Dec 2025 12:51:09 +0000 Files and hashes: 1: 35B589224D641562D0CFE2019F733A965FC8E0C7.crl (hash: uHQ53yozRtzEYoOs4v8Tyw9A/a9qdMISesCqo+TF4mw=) 2: 3130332e36392e3130362e302f32342d3234203d3e20313437303837.roa (hash: UzX8Svg8RWfpm+6J8R9XONBilrHJl2/jgcv7jngYYIc=) 3: 3130332e36392e3130362e302f32332d3233203d3e20313437303837.roa (hash: vX6oIYot0ycD+h0R9asR+LMCFZ+FsK/gdUHsH6J7G3g=) 4: 3130332e36392e3130372e302f32342d3234203d3e20313437303837.roa (hash: Zyj+cmEJLF5ueQ1WHGcb/jz6upmbCBDhF01uw2n8mqU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 12:51:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e5:62:05:9a:64:69:9b:a2:45:c4:7a:47:6d:d4:c7:8f:08:48:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35B589224D641562D0CFE2019F733A965FC8E0C7 Validity Not Before: Dec 6 09:56:09 2025 GMT Not After : Dec 9 12:51:09 2025 GMT Subject: CN=4D0B5E46DEC0A99D9BED6EE8A7B103248FEAAEE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:58:99:34:68:42:59:99:48:7b:cf:65:9e: 07:c9:0b:53:41:94:14:6b:ef:e3:bb:8c:47:ad:d9: 6f:6d:30:d8:60:ee:23:c9:37:b8:9d:b4:6b:0d:52: 3d:0c:e4:34:14:06:d0:78:90:aa:95:a8:c7:17:2f: db:c1:26:f5:65:cc:8d:07:9e:f2:1a:1b:99:4f:ff: c8:0e:e1:12:62:5e:75:db:b5:b0:73:02:92:47:c6: 8c:63:98:98:21:4c:fc:49:de:4d:c4:c1:c3:2b:ba: bb:b9:87:9a:88:78:90:39:c5:c9:af:56:64:24:c0: 3a:33:c3:e8:5d:7a:99:c2:ca:6a:cf:dc:64:09:cf: 66:5e:1b:e1:1d:c6:ba:bd:e4:8e:1c:2a:b0:82:c4: 8a:94:8e:a5:99:8e:4f:01:81:00:88:11:c8:20:19: 08:5a:b6:a9:ed:5e:b9:ea:3f:f1:a0:44:07:71:d7: 70:6d:e9:bc:2b:1e:64:4c:29:bd:0c:c9:f1:6f:3d: d8:bb:40:b0:6f:b8:43:6a:c0:ed:aa:02:fd:8a:33: 93:2a:48:5b:61:14:0f:69:ad:a3:89:9e:1b:45:01: c0:59:51:c2:7d:07:f2:29:af:5d:00:f5:27:06:dc: c5:70:f0:ec:16:07:8f:0b:a1:b6:89:42:64:46:dc: 49:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:0B:5E:46:DE:C0:A9:9D:9B:ED:6E:E8:A7:B1:03:24:8F:EA:AE:E3 X509v3 Authority Key Identifier: keyid:35:B5:89:22:4D:64:15:62:D0:CF:E2:01:9F:73:3A:96:5F:C8:E0:C7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/35B589224D641562D0CFE2019F733A965FC8E0C7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2ebde-6311-488a-82b7-9d4c05530987/0/35B589224D641562D0CFE2019F733A965FC8E0C7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:fc:ea:a1:f5:9c:88:c2:3f:92:4d:32:d9:a6:dd:a8:74:fd: 4f:76:a2:6b:3b:a6:02:f4:a0:a4:45:d5:5b:dd:95:75:0a:17: 59:7e:ff:f0:45:b5:05:ad:cf:fb:3f:4c:d4:10:de:e0:64:c2: 1c:6d:1c:79:c1:2c:5e:41:e2:e2:1e:ae:b8:ee:ea:c5:71:ad: b8:01:2e:40:f7:38:d8:56:23:8e:2b:eb:c7:24:40:7f:09:bf: 98:02:34:e6:9a:dc:0e:ba:aa:4e:47:80:cf:48:94:73:04:97: 3f:3a:ac:ad:88:cb:19:ea:b3:c9:d3:a6:b8:fb:c8:df:4b:d1: d7:e1:ff:13:b4:5e:c2:95:aa:57:61:6a:87:6e:8b:eb:e9:16: 29:0c:79:d5:57:f2:f7:1f:0e:52:3a:e6:26:d7:c1:57:89:59: 57:57:f5:79:93:e1:91:37:21:e7:ca:76:85:0a:e2:0a:7d:c8: 6a:cd:d8:72:60:9c:a1:90:7a:ef:b3:b0:c3:8d:15:2c:7a:7f: 2e:42:c7:f6:a0:22:43:5b:7d:ec:c4:d3:0b:86:27:3b:99:c8: 64:e8:10:23:a3:2f:09:86:26:0f:c8:db:91:6a:95:d7:2d:42: 9e:cf:a8:28:8f:65:b0:ce:99:c3:49:cf:cc:9f:84:30:f6:c0: 89:33:42:6d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBOViBZpkaZuiRcR6R23Ux48ISOMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1 RkM4RTBDNzAeFw0yNTEyMDYwOTU2MDlaFw0yNTEyMDkxMjUxMDlaMDMxMTAvBgNV BAMTKDREMEI1RTQ2REVDMEE5OUQ5QkVENkVFOEE3QjEwMzI0OEZFQUFFRTMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5HliZNGhCWZlIe89lngfJC1NB lBRr7+O7jEet2W9tMNhg7iPJN7idtGsNUj0M5DQUBtB4kKqVqMcXL9vBJvVlzI0H nvIaG5lP/8gO4RJiXnXbtbBzApJHxoxjmJghTPxJ3k3EwcMruru5h5qIeJA5xcmv VmQkwDozw+hdepnCymrP3GQJz2ZeG+Edxrq95I4cKrCCxIqUjqWZjk8BgQCIEcgg GQhatqntXrnqP/GgRAdx13Bt6bwrHmRMKb0MyfFvPdi7QLBvuENqwO2qAv2KM5Mq SFthFA9praOJnhtFAcBZUcJ9B/Ipr10A9ScG3MVw8OwWB48LobaJQmRG3EllAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUTQteRt7AqZ2b7W7op7EDJI/qruMwHwYDVR0j BBgwFoAUNbWJIk1kFWLQz+IBn3M6ll/I4McwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyZWJkZS02MzExLTQ4OGEtODJiNy05ZDRjMDU1MzA5ODcvMC8zNUI1ODkyMjRE NjQxNTYyRDBDRkUyMDE5RjczM0E5NjVGQzhFMEM3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNBOTY1RkM4 RTBDNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmViZGUtNjMxMS00ODhhLTgy YjctOWQ0YzA1NTMwOTg3LzAvMzVCNTg5MjI0RDY0MTU2MkQwQ0ZFMjAxOUY3MzNB OTY1RkM4RTBDNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADv86qH1nIjCP5JNMtmm3ah0/U92oms7pgL0 oKRF1VvdlXUKF1l+//BFtQWtz/s/TNQQ3uBkwhxtHHnBLF5B4uIerrju6sVxrbgB LkD3ONhWI44r68ckQH8Jv5gCNOaa3A66qk5HgM9IlHMElz86rK2Iyxnqs8nTprj7 yN9L0dfh/xO0XsKVqldhaodui+vpFikMedVX8vcfDlI65ibXwVeJWVdX9XmT4ZE3 IefKdoUK4gp9yGrN2HJgnKGQeu+zsMONFSx6fy5Cx/agIkNbfezE0wuGJzuZyGTo ECOjLwmGJg/I25FqldctQp7PqCiPZbDOmcNJz8yfhDD2wIkzQm0= -----END CERTIFICATE-----Generated at Sun Dec 7 03:42:17 2025 by rpki-client