This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
File:                     523EE8D6F461B8FD4106F482C46C1029B1013145.mft (raw, json)
Hash identifier:          9fg4f8rgqQ0FRISQgPnrQBoZHV0kY7Hlh/RVbi0CdJA=
Subject key identifier:   E9:7F:F5:18:75:A1:DC:D3:70:EC:3D:DE:B8:13:32:56:98:18:95:FC
Authority key identifier: 52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45
Certificate issuer:       /CN=523EE8D6F461B8FD4106F482C46C1029B1013145
Certificate serial:       6247D6F569470388536EAD9C389ACB22EC39FF51
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
Manifest number:          E4
Signing time:             Sat 06 Dec 2025 01:40:38 +0000
Manifest this update:     Sat 06 Dec 2025 01:35:38 +0000
Manifest next update:     Tue 09 Dec 2025 02:55:38 +0000
Files and hashes:         1: 523EE8D6F461B8FD4106F482C46C1029B1013145.crl (hash: eNH4Ws1h/+cu7IJQWhurTk9AReg5cd/HPzozjjgEHYI=)
                          2: 3130332e3132392e3233302e302f32332d3234203d3e20313332363339.roa (hash: H0hxzRE1P/k0NGsIoy/0kaAKznrWHPdRQxgiRW4T5Qo=)
                          3: 3130332e3132392e3233312e302f32342d3234203d3e20313332363339.roa (hash: jWc0sz86L+eDtr+nDMgQgH+2S7uRf5Y8Wu7u8v4zz0Q=)
                          4: 3130332e31392e38302e302f32332d3234203d3e20313332363339.roa (hash: z0HZjcHieRuZ5HHeSmTqSUrJvHMtgbLp6o8sJVRupVI=)
                          5: 3130332e3132392e3233302e302f32342d3234203d3e20313332363339.roa (hash: zP2/XdcDOhp440RXruEyN+zWviJE7i53kBfkBKlQJ0I=)
                          6: 3130332e31392e38312e302f32342d3234203d3e20313332363339.roa (hash: jKwlGthiQpzXwnHyIqfnx5NGkz2sE+y3uVu40s6f6sc=)
                          7: 3130332e31392e38302e302f32342d3234203d3e20313332363339.roa (hash: YEDjMiqzXqQQzIDtWpx+jx5Bn+2TYkAiFHsRj0775yM=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl
                          rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Tue 09 Dec 2025 02:55:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            62:47:d6:f5:69:47:03:88:53:6e:ad:9c:38:9a:cb:22:ec:39:ff:51
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=523EE8D6F461B8FD4106F482C46C1029B1013145
        Validity
            Not Before: Dec  6 01:35:38 2025 GMT
            Not After : Dec  9 02:55:38 2025 GMT
        Subject: CN=E97FF51875A1DCD370EC3DDEB8133256981895FC
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d8:83:c2:f5:3b:77:ae:e3:fa:dd:be:93:94:bb:
                    51:cd:9f:58:5b:73:5f:d4:8a:f5:b4:c4:bf:60:ca:
                    43:7e:8b:5c:44:6e:26:90:07:7a:62:e9:b9:95:75:
                    f6:1f:c7:b8:45:bd:83:37:35:94:c8:43:f1:52:31:
                    22:2a:af:54:05:4f:9e:11:f0:cc:85:54:a8:97:3d:
                    71:4e:58:b1:94:d2:76:7f:33:95:93:05:23:a4:37:
                    67:00:4e:23:71:9f:b5:ad:bc:48:58:79:86:98:5e:
                    06:a4:de:91:d8:f1:f2:83:9e:fa:a1:d6:1f:3e:ad:
                    6d:db:1e:bf:c5:94:54:17:2f:8a:ed:65:29:a5:15:
                    a2:b6:d3:67:b4:b5:89:50:3f:67:41:2a:4d:3c:ee:
                    41:c1:0e:18:fa:42:8c:8a:5f:f8:9f:fb:bf:d0:ae:
                    f2:71:59:f6:57:f5:3c:9b:33:b3:6d:e2:14:bc:b2:
                    e3:45:68:74:bf:f6:f1:dd:fd:69:db:4f:41:e5:d6:
                    a2:a4:87:8c:ca:df:f5:03:5e:d8:c7:41:fb:f7:5e:
                    9d:e2:24:53:d6:a8:47:09:29:02:94:73:c8:e1:5e:
                    3d:46:3a:d9:8a:a7:8c:9e:79:a5:87:e0:69:3e:b5:
                    16:97:60:d2:24:b3:6d:61:0c:02:43:77:72:64:ee:
                    21:cf
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E9:7F:F5:18:75:A1:DC:D3:70:EC:3D:DE:B8:13:32:56:98:18:95:FC
            X509v3 Authority Key Identifier:
                keyid:52:3E:E8:D6:F4:61:B8:FD:41:06:F4:82:C4:6C:10:29:B1:01:31:45

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/523EE8D6F461B8FD4106F482C46C1029B1013145.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/6aa42742-89d2-49bb-8a3e-294c368971f5/0/523EE8D6F461B8FD4106F482C46C1029B1013145.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         78:70:39:45:20:eb:eb:f0:96:bf:c6:cd:ce:87:45:ea:8f:ef:
         0b:c3:27:c2:d7:78:9b:7b:52:2c:7f:e7:dc:dd:4c:3d:ed:45:
         af:97:8d:8b:84:c7:73:aa:77:dc:db:03:1e:26:ec:a1:3c:da:
         9e:46:d8:28:aa:89:c0:d3:e4:62:dc:e4:d9:f5:e8:46:c4:9a:
         2b:98:9c:7f:ed:1d:f0:51:bc:79:29:8b:68:d0:a4:37:f3:17:
         e3:b6:53:62:ab:ec:41:05:4a:53:e2:d6:f9:f2:7f:a0:50:15:
         a6:1e:89:1d:19:23:26:f1:ff:ba:45:75:60:33:29:66:f5:e7:
         6f:8f:ae:5c:2e:0a:af:2f:ce:9e:76:17:b0:d7:75:d7:ed:02:
         a6:41:b3:ba:73:6d:f4:df:41:c7:3b:7c:11:8f:55:a0:4e:bf:
         2a:df:94:83:39:66:83:f4:33:3d:45:34:62:1b:ba:8e:b2:d3:
         0f:be:0a:75:d3:7c:f4:c7:ee:8d:36:bc:22:09:fd:24:ea:d8:
         da:3e:b3:b0:a6:d2:ff:36:30:d5:61:fc:f1:c9:0a:eb:4a:51:
         f3:6c:70:70:53:26:36:ff:96:68:0e:24:e8:1e:e2:5c:e2:b0:
         c6:a9:05:2e:5b:eb:2a:82:c6:16:51:c0:38:e2:ff:4f:bd:77:
         d6:ac:4c:a3
-----BEGIN CERTIFICATE-----
MIIFMjCCBBqgAwIBAgIUYkfW9WlHA4hTbq2cOJrLIuw5/1EwDQYJKoZIhvcNAQEL
BQAwMzExMC8GA1UEAxMoNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlC
MTAxMzE0NTAeFw0yNTEyMDYwMTM1MzhaFw0yNTEyMDkwMjU1MzhaMDMxMTAvBgNV
BAMTKEU5N0ZGNTE4NzVBMURDRDM3MEVDM0RERUI4MTMzMjU2OTgxODk1RkMwggEi
MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYg8L1O3eu4/rdvpOUu1HNn1hb
c1/UivW0xL9gykN+i1xEbiaQB3pi6bmVdfYfx7hFvYM3NZTIQ/FSMSIqr1QFT54R
8MyFVKiXPXFOWLGU0nZ/M5WTBSOkN2cATiNxn7WtvEhYeYaYXgak3pHY8fKDnvqh
1h8+rW3bHr/FlFQXL4rtZSmlFaK202e0tYlQP2dBKk087kHBDhj6QoyKX/if+7/Q
rvJxWfZX9TybM7Nt4hS8suNFaHS/9vHd/WnbT0Hl1qKkh4zK3/UDXtjHQfv3Xp3i
JFPWqEcJKQKUc8jhXj1GOtmKp4yeeaWH4Gk+tRaXYNIks21hDAJDd3Jk7iHPAgMB
AAGjggI8MIICODAdBgNVHQ4EFgQU6X/1GHWh3NNw7D3euBMyVpgYlfwwHwYDVR0j
BBgwFoAUUj7o1vRhuP1BBvSCxGwQKbEBMUUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV
HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82
YWE0Mjc0Mi04OWQyLTQ5YmItOGEzZS0yOTRjMzY4OTcxZjUvMC81MjNFRThENkY0
NjFCOEZENDEwNkY0ODJDNDZDMTAyOUIxMDEzMTQ1LmNybDB0BggrBgEFBQcBAQRo
MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv
L0lETklDLUlELzIvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEwMjlCMTAx
MzE0NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6
Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNmFhNDI3NDItODlkMi00OWJiLThh
M2UtMjk0YzM2ODk3MWY1LzAvNTIzRUU4RDZGNDYxQjhGRDQxMDZGNDgyQzQ2QzEw
MjlCMTAxMzE0NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC
BQAwDQYJKoZIhvcNAQELBQADggEBAHhwOUUg6+vwlr/Gzc6HReqP7wvDJ8LXeJt7
Uix/59zdTD3tRa+XjYuEx3Oqd9zbAx4m7KE82p5G2CiqicDT5GLc5Nn16EbEmiuY
nH/tHfBRvHkpi2jQpDfzF+O2U2Kr7EEFSlPi1vnyf6BQFaYeiR0ZIybx/7pFdWAz
KWb152+PrlwuCq8vzp52F7DXddftAqZBs7pzbfTfQcc7fBGPVaBOvyrflIM5ZoP0
Mz1FNGIbuo6y0w++CnXTfPTH7o02vCIJ/STq2No+s7Cm0v82MNVh/PHJCutKUfNs
cHBTJjb/lmgOJOge4lzisMapBS5b6yqCxhZRwDji/0+9d9asTKM=
-----END CERTIFICATE-----