This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft (raw, json) Hash identifier: z8KqJ4fwE55dK6X17yRgqol3oi1ysHwbQuCGFH5EzB4= Subject key identifier: 65:BC:F5:F8:5C:C2:53:31:77:DE:62:44:6E:66:82:64:8A:E5:2D:87 Authority key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Certificate issuer: /CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Certificate serial: 44A68FD124261354B71BFDC82D748252F853F9B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft Manifest number: 0156 Signing time: Sat 06 Dec 2025 05:32:11 +0000 Manifest this update: Sat 06 Dec 2025 05:27:11 +0000 Manifest next update: Tue 09 Dec 2025 07:50:11 +0000 Files and hashes: 1: 3130332e3235302e3132392e302f32342d3234203d3e20313531353536.roa (hash: WtVfPZfCZ+ZExAyfqDCdWvXE48LKmIllvsd8uUvXohQ=) 2: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl (hash: dc2q8LIxi8EQjoecia3JLykSk/t4xz+/mq+y2u7ZF00=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 07:50:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:a6:8f:d1:24:26:13:54:b7:1b:fd:c8:2d:74:82:52:f8:53:f9:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Validity Not Before: Dec 6 05:27:11 2025 GMT Not After : Dec 9 07:50:11 2025 GMT Subject: CN=65BCF5F85CC2533177DE62446E6682648AE52D87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:d8:a2:c1:51:6b:74:2e:9b:d7:82:4d:3d:85: 8d:0c:25:76:dd:86:0c:c7:1b:a7:53:76:d3:5f:17: a9:81:6d:49:a3:34:27:71:a5:8a:00:7a:55:03:14: 8d:93:92:93:eb:8d:ef:cd:f3:a3:f8:a6:fe:b1:07: d2:8e:0f:93:32:49:0f:50:3c:6d:29:a6:8c:0c:a5: 2b:05:ab:78:a4:17:27:23:26:07:7c:2a:df:43:d0: 7d:56:8a:07:3d:11:11:5e:a5:10:98:87:ce:3b:5b: 62:45:ea:84:13:b1:76:24:39:c2:55:dc:c9:a7:2e: aa:8a:26:ae:19:fe:e2:13:31:00:aa:40:5a:0b:0d: 3e:a2:6d:c1:ee:b8:7e:2a:21:25:e4:37:68:50:66: f2:57:0c:73:13:66:39:31:2f:15:b4:fb:d2:bd:64: c7:8b:2b:56:68:75:93:ac:5e:1f:44:1b:6e:c8:97: 2e:56:19:08:a6:2d:9a:eb:4e:b7:94:02:c9:f0:49: fb:00:62:b8:3c:83:eb:cd:46:e4:5a:d2:60:f6:90: f1:dc:99:9f:37:aa:e2:c6:cf:cb:d0:cc:4b:4c:28: 9d:52:9f:8f:ac:61:ac:70:fd:e2:ed:1d:9f:77:fb: 55:8b:97:f2:05:61:2d:f1:a0:88:b0:aa:5f:8c:6c: fe:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:BC:F5:F8:5C:C2:53:31:77:DE:62:44:6E:66:82:64:8A:E5:2D:87 X509v3 Authority Key Identifier: keyid:57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:e7:0e:81:a1:89:1b:e4:14:a1:15:b4:81:12:41:9b:9b:19: 9f:5c:66:3d:d6:88:c2:80:23:1a:83:c4:aa:e1:cd:00:97:78: bb:ae:47:05:32:3c:cb:92:4c:ac:91:15:98:4d:94:9d:af:21: 2d:88:67:3b:d1:dd:27:86:00:13:d4:d3:f5:e6:6f:6c:ed:6a: 0c:5e:f0:15:5b:1b:3b:0d:ee:9d:2b:b1:8a:87:9c:3c:61:c4: ec:60:c4:52:b9:98:04:d9:46:f4:ed:75:d0:a0:df:32:2f:1f: 51:ef:b1:d8:40:49:44:5c:29:55:e7:6e:cc:9b:ac:1c:8c:95: 3f:a9:f3:1e:e8:28:a0:2d:8f:3c:b1:8a:f1:fb:b2:02:30:a6: 6e:b4:58:0e:fc:8c:7c:d2:59:3a:71:80:e1:06:cb:50:c7:a2: 47:ac:22:33:fb:ec:93:4c:2e:0a:12:81:0f:39:cf:20:2b:24: 01:2f:9f:aa:8f:0e:53:4a:df:2e:6a:b4:d9:6f:3a:84:93:3f: 40:e5:0c:6c:35:02:03:c5:e1:e5:9d:6f:fc:16:10:5c:13:58: 8e:b9:12:6f:ca:e2:8a:e7:73:38:16:0f:cf:80:e8:40:07:11: 3c:c9:78:eb:ec:ca:ab:a7:50:6f:a6:a5:09:ec:df:5d:2c:d4: 53:7b:24:7e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURKaP0SQmE1S3G/3ILXSCUvhT+bMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZE NDBGQjhDMjAeFw0yNTEyMDYwNTI3MTFaFw0yNTEyMDkwNzUwMTFaMDMxMTAvBgNV BAMTKDY1QkNGNUY4NUNDMjUzMzE3N0RFNjI0NDZFNjY4MjY0OEFFNTJEODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCb2KLBUWt0LpvXgk09hY0MJXbd hgzHG6dTdtNfF6mBbUmjNCdxpYoAelUDFI2TkpPrje/N86P4pv6xB9KOD5MySQ9Q PG0ppowMpSsFq3ikFycjJgd8Kt9D0H1Wigc9ERFepRCYh847W2JF6oQTsXYkOcJV 3MmnLqqKJq4Z/uITMQCqQFoLDT6ibcHuuH4qISXkN2hQZvJXDHMTZjkxLxW0+9K9 ZMeLK1ZodZOsXh9EG27Ily5WGQimLZrrTreUAsnwSfsAYrg8g+vNRuRa0mD2kPHc mZ83quLGz8vQzEtMKJ1Sn4+sYaxw/eLtHZ93+1WLl/IFYS3xoIiwql+MbP4fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZbz1+FzCUzF33mJEbmaCZIrlLYcwHwYDVR0j BBgwFoAUV1w5hl064j3MwyKtCNFCT9QPuMIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMC81NzVDMzk4NjVE M0FFMjNEQ0NDMzIyQUQwOEQxNDI0RkQ0MEZCOEMyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQyNEZENDBG QjhDMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODExZDlhYmMtNDk4Ny00ZGJjLTk3 NmQtM2YzMmIyOTE3MTVkLzAvNTc1QzM5ODY1RDNBRTIzRENDQzMyMkFEMDhEMTQy NEZENDBGQjhDMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFHnDoGhiRvkFKEVtIESQZubGZ9cZj3WiMKA IxqDxKrhzQCXeLuuRwUyPMuSTKyRFZhNlJ2vIS2IZzvR3SeGABPU0/Xmb2ztagxe 8BVbGzsN7p0rsYqHnDxhxOxgxFK5mATZRvTtddCg3zIvH1HvsdhASURcKVXnbsyb rByMlT+p8x7oKKAtjzyxivH7sgIwpm60WA78jHzSWTpxgOEGy1DHokesIjP77JNM LgoSgQ85zyArJAEvn6qPDlNK3y5qtNlvOoSTP0DlDGw1AgPF4eWdb/wWEFwTWI65 Em/K4ornczgWD8+A6EAHETzJeOvsyqunUG+mpQns310s1FN7JH4= -----END CERTIFICATE-----Generated at Sun Dec 7 03:06:31 2025 by rpki-client