This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft File: 58D7A2E054D4F6B835578031386896062B0B0CED.mft (raw, json) Hash identifier: DUvFFtQBNc8FRlUmYymxgYcQY8O3LfSBgOcYJ6ad50Q= Subject key identifier: 13:B2:EC:18:4F:E3:E9:2D:9E:46:58:11:91:06:37:D5:F4:50:64:17 Authority key identifier: 58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED Certificate issuer: /CN=58D7A2E054D4F6B835578031386896062B0B0CED Certificate serial: 738798AD55ED4FA25AF9071952B96ACF1A3B897C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft Manifest number: 04FC Signing time: Fri 05 Dec 2025 09:22:04 +0000 Manifest this update: Fri 05 Dec 2025 09:17:04 +0000 Manifest next update: Mon 08 Dec 2025 13:31:04 +0000 Files and hashes: 1: 3130332e39382e3132312e302f32342d3234203d3e20313335363336.roa (hash: OexevG3DSt6IOIQ8TDJTohgp2mw8T+QrRti2PWdRftM=) 2: 3130332e3130332e3139322e302f32342d3234203d3e20313335363336.roa (hash: ZWBY3WXKjlvHg1FOOk4HRgnKTIvP5SNRhqskNyIgs+A=) 3: 58D7A2E054D4F6B835578031386896062B0B0CED.crl (hash: KLfxOlK6DKppG5uyEGPAUvDV15fDdAq8zlRVVhFzGEg=) 4: 3130332e3130332e3139332e302f32342d3234203d3e20313335363336.roa (hash: GJUhrLI0oWXDf6ZROGFSjUwnXXl9dUvh1pZu6x2DLeU=) 5: 3130332e3130332e3137352e302f32342d3234203d3e20313335363336.roa (hash: lXDC34Tc//RCk/Qkq64mSBed2Qu8SClw4SKY3H86P70=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 13:31:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:87:98:ad:55:ed:4f:a2:5a:f9:07:19:52:b9:6a:cf:1a:3b:89:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7A2E054D4F6B835578031386896062B0B0CED Validity Not Before: Dec 5 09:17:04 2025 GMT Not After : Dec 8 13:31:04 2025 GMT Subject: CN=13B2EC184FE3E92D9E465811910637D5F4506417 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b4:a4:79:71:0b:46:6e:f5:94:0b:2c:66:b0: b5:23:19:d8:fd:62:b2:fa:1a:3f:57:35:50:7c:50: 56:4d:e7:6d:03:b3:4f:bd:ff:22:1c:c7:6c:87:eb: 02:70:02:3b:1a:dd:73:0e:fa:3a:07:d4:31:be:c5: 88:69:65:e2:0a:c1:94:ec:d8:4e:a3:60:c8:48:0e: cb:cf:e8:a3:5f:20:3b:08:23:31:cf:fe:7e:2b:17: a9:57:e6:1c:f6:22:6e:42:03:18:2e:3f:40:fb:dc: d9:a1:84:59:b8:34:3f:d2:9b:15:52:e4:06:f8:d0: b4:02:c6:f6:e8:15:8d:1e:a2:a5:d5:17:ca:ef:b1: 8c:d1:3c:db:09:4a:a6:f2:e9:20:8f:64:96:f7:85: b7:c3:bb:fe:24:30:d4:1e:cc:2d:b9:91:1b:02:58: 5b:80:a0:68:0a:06:29:58:3c:62:bf:15:c0:80:02: fb:b4:53:9f:24:ad:e8:f9:a8:eb:cc:83:9f:ab:b7: 77:43:e3:bb:dc:cb:8a:dd:16:6d:34:ab:97:e2:fc: c7:e8:a8:e6:20:42:fb:e5:44:4d:43:4e:6e:fb:10: 83:62:e6:8a:60:9d:37:81:75:2d:16:e8:24:e7:1c: 97:5e:8e:ae:f3:21:f0:b4:91:ff:a3:e7:51:3b:dd: 6d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:B2:EC:18:4F:E3:E9:2D:9E:46:58:11:91:06:37:D5:F4:50:64:17 X509v3 Authority Key Identifier: keyid:58:D7:A2:E0:54:D4:F6:B8:35:57:80:31:38:68:96:06:2B:0B:0C:ED X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7A2E054D4F6B835578031386896062B0B0CED.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ebbadb3-9ac8-46df-ab91-bf39dfee1bd0/0/58D7A2E054D4F6B835578031386896062B0B0CED.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:55:de:59:91:44:d6:a8:44:d8:cc:09:80:79:c4:61:36:c3: 50:69:1d:dd:49:15:e7:1b:51:77:b6:e6:2d:1f:74:46:88:79: 69:34:c5:5a:a8:17:4e:bc:2b:b8:ea:90:ed:d4:36:7d:09:5b: 96:8a:0f:7d:00:d4:ed:91:48:fa:c4:16:e4:6e:88:eb:6a:43: 04:f5:7d:3a:a4:06:5a:b0:a1:2e:a2:c5:5e:52:fe:24:ef:2f: 5a:0b:8a:44:9a:b9:bf:1a:d0:6e:62:93:61:39:47:74:9b:20: 69:3d:48:45:ca:da:6d:41:f3:fa:cf:99:0b:5c:b2:1c:9d:20: d7:fb:67:2b:48:cd:69:a5:c3:3a:8c:78:36:7e:31:0b:b1:32: 57:9a:c9:6f:05:22:3b:14:e7:45:08:6a:bc:a1:bb:a1:12:ba: 52:c0:45:40:aa:6d:5d:7d:aa:78:64:2b:f9:fc:93:dd:4d:4b: 44:96:ee:67:77:74:ae:6e:69:75:96:92:1d:bc:8b:fe:4d:7b: ad:ed:e5:e4:a4:28:b7:ba:4f:16:21:f4:50:39:3b:af:47:3a: 5c:40:9d:e9:f0:84:19:00:c6:2f:d4:68:1e:0b:28:90:aa:bf: 4f:de:fd:43:c8:e2:33:b9:e3:ea:21:65:0d:6c:d8:de:2d:ac: aa:cf:db:81 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUc4eYrVXtT6Ja+QcZUrlqzxo7iXwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYy QjBCMENFRDAeFw0yNTEyMDUwOTE3MDRaFw0yNTEyMDgxMzMxMDRaMDMxMTAvBgNV BAMTKDEzQjJFQzE4NEZFM0U5MkQ5RTQ2NTgxMTkxMDYzN0Q1RjQ1MDY0MTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDItKR5cQtGbvWUCyxmsLUjGdj9 YrL6Gj9XNVB8UFZN520Ds0+9/yIcx2yH6wJwAjsa3XMO+joH1DG+xYhpZeIKwZTs 2E6jYMhIDsvP6KNfIDsIIzHP/n4rF6lX5hz2Im5CAxguP0D73NmhhFm4ND/SmxVS 5Ab40LQCxvboFY0eoqXVF8rvsYzRPNsJSqby6SCPZJb3hbfDu/4kMNQezC25kRsC WFuAoGgKBilYPGK/FcCAAvu0U58krej5qOvMg5+rt3dD47vcy4rdFm00q5fi/Mfo qOYgQvvlRE1DTm77EINi5opgnTeBdS0W6CTnHJdejq7zIfC0kf+j51E73W2DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUE7LsGE/j6S2eRlgRkQY31fRQZBcwHwYDVR0j BBgwFoAUWNei4FTU9rg1V4AxOGiWBisLDO0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 ZWJiYWRiMy05YWM4LTQ2ZGYtYWI5MS1iZjM5ZGZlZTFiZDAvMC81OEQ3QTJFMDU0 RDRGNkI4MzU1NzgwMzEzODY4OTYwNjJCMEIwQ0VELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2MDYyQjBC MENFRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWViYmFkYjMtOWFjOC00NmRmLWFi OTEtYmYzOWRmZWUxYmQwLzAvNThEN0EyRTA1NEQ0RjZCODM1NTc4MDMxMzg2ODk2 MDYyQjBCMENFRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACtV3lmRRNaoRNjMCYB5xGE2w1BpHd1JFecb UXe25i0fdEaIeWk0xVqoF068K7jqkO3UNn0JW5aKD30A1O2RSPrEFuRuiOtqQwT1 fTqkBlqwoS6ixV5S/iTvL1oLikSaub8a0G5ik2E5R3SbIGk9SEXK2m1B8/rPmQtc shydINf7ZytIzWmlwzqMeDZ+MQuxMleayW8FIjsU50UIaryhu6ESulLARUCqbV19 qnhkK/n8k91NS0SW7md3dK5uaXWWkh28i/5Ne63t5eSkKLe6TxYh9FA5O69HOlxA nenwhBkAxi/UaB4LKJCqv0/e/UPI4jO54+ohZQ1s2N4trKrP24E= -----END CERTIFICATE-----Generated at Sun Dec 7 07:08:46 2025 by rpki-client