This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft File: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft (raw, json) Hash identifier: ksywmzjO+/9NEf2MS3JwG8cvX3bI2SouAhWgWKGJ+2I= Subject key identifier: E1:B9:43:EA:CD:2F:50:C9:66:5F:7C:6C:20:CD:71:56:BD:5C:0A:9C Authority key identifier: 38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C Certificate issuer: /CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Certificate serial: 606692AA7075564BB9F119C090011251C0C490B9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft Manifest number: 052F Signing time: Thu 04 Dec 2025 21:12:13 +0000 Manifest this update: Thu 04 Dec 2025 21:07:13 +0000 Manifest next update: Mon 08 Dec 2025 06:04:13 +0000 Files and hashes: 1: 3130332e36302e3138302e302f32322d3234203d3e203535363835.roa (hash: ShEOWvu/KCYTTrKo5vrKeCwlexfHyDbC4uTV8yZtzEM=) 2: 3130332e38302e39312e302f32342d3234203d3e20313337333033.roa (hash: nLub1P+aFMPWReFe8FfiX+yqIND5D1X2l5ebLcrAixg=) 3: 3130332e38302e39302e302f32342d3234203d3e20313337333033.roa (hash: TuOuwC+HTY3+zsq30NoK3C4u4uR9Kt6tuzw+MAyTb4o=) 4: 3130332e38302e38382e302f32322d3234203d3e203535363835.roa (hash: wlegEJoNWqrWT2tySFrwLRqLsXDXFl0OFT0Nuvvp7LI=) 5: 3130332e36302e3138332e302f32342d3234203d3e20313431363330.roa (hash: LfUE4rPNFz/aR5lxsCZpCHmmGGAgXk5P43w+IeyGgRE=) 6: 3138322e35342e3134302e302f32322d3234203d3e203535363835.roa (hash: lX37Ym1HtH8/+BNNZ7vVVvmLTRPAVgTV6qXoJU01xNo=) 7: 389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl (hash: 0XFTJBbV9xbTepfyjjumiz8wH/eKvfAj9mTPwnVgv3Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 06:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:66:92:aa:70:75:56:4b:b9:f1:19:c0:90:01:12:51:c0:c4:90:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=389E7C13CF6344AEB93001CD4C5AC79401252A5C Validity Not Before: Dec 4 21:07:13 2025 GMT Not After : Dec 8 06:04:13 2025 GMT Subject: CN=E1B943EACD2F50C9665F7C6C20CD7156BD5C0A9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:19:08:58:a9:94:07:d8:9c:8b:6b:60:20:cb: 95:14:55:2e:5c:65:23:49:bd:6c:e5:08:32:75:28: f4:0d:63:0b:eb:1e:20:e5:33:95:d3:a6:1c:01:10: e3:3f:da:b6:c4:2f:f8:65:73:70:4e:07:4b:1f:b8: 1b:cd:d9:14:ab:ae:22:96:37:ae:37:4d:d7:ee:ab: ac:b8:ef:cb:d4:33:46:fa:8a:0b:f2:1a:0d:ce:3f: 6a:2a:90:1f:89:5c:e6:7c:94:96:f1:e3:65:9f:71: 89:48:68:3f:06:2a:15:2f:a3:70:b2:f8:fe:d4:a7: 0d:0a:94:51:89:62:c1:52:ea:89:08:7b:89:48:d3: d7:31:43:24:1f:8b:ad:0b:60:69:2c:30:3c:3d:47: 8c:cf:6e:66:e4:77:7d:92:65:d7:8a:ae:15:39:ca: 04:4c:34:f5:50:cd:6d:d3:a7:90:b3:7d:0a:ce:7d: 27:74:15:ea:08:86:fd:9c:17:fd:2e:f7:e1:62:6f: df:90:6b:f9:8a:74:3a:02:f9:c4:68:bb:fb:98:30: 88:b6:21:be:ab:47:97:68:fb:e2:05:57:fa:6b:ae: 8d:0e:00:1c:27:57:e2:0a:f8:c0:f7:e2:6b:25:12: 10:71:da:64:1a:f7:9d:05:b8:26:cb:fd:0a:79:82: 5b:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:B9:43:EA:CD:2F:50:C9:66:5F:7C:6C:20:CD:71:56:BD:5C:0A:9C X509v3 Authority Key Identifier: keyid:38:9E:7C:13:CF:63:44:AE:B9:30:01:CD:4C:5A:C7:94:01:25:2A:5C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/389E7C13CF6344AEB93001CD4C5AC79401252A5C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82032bc9-605a-4253-a4cd-62f124126eac/0/389E7C13CF6344AEB93001CD4C5AC79401252A5C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:2b:67:90:01:de:72:69:75:0c:58:04:e1:29:69:ca:f0:57: 95:9e:06:bf:ff:90:13:60:bc:93:88:05:44:32:cd:09:f6:b3: 26:47:f7:e5:ea:2a:25:ea:93:f2:cf:2c:a1:20:bf:b3:8f:0e: b0:48:bd:1c:c8:22:3e:7c:8b:60:0c:5a:10:37:47:bc:43:0a: 26:49:78:78:e7:09:83:b2:c9:db:38:0d:21:65:c2:f1:b2:f4: 50:86:cc:95:bc:70:90:c9:6a:c7:58:ac:4d:b9:f0:f2:cf:5d: ae:6e:24:bf:bb:3e:02:c9:04:c0:71:d4:8a:8c:77:a6:ed:36: 3a:7e:40:28:2b:2c:78:e9:14:62:a3:2a:58:ae:41:72:6b:d3: 67:ec:2d:da:c3:b2:ec:61:fe:c7:9d:27:45:6b:b7:00:bf:a5: a0:7c:99:42:a8:74:73:aa:79:85:8e:c7:d9:12:b0:51:ba:0e: 32:8f:d8:bc:3d:34:b4:24:fc:34:e3:bf:a6:62:68:c4:1b:1d: bd:1c:1c:7d:42:60:1c:5e:78:91:89:3e:bf:9a:23:c3:63:6f: a7:41:d0:0d:b6:30:d8:37:61:f7:18:8e:ff:01:42:86:f0:4c: c7:94:ee:c9:32:9e:d2:29:f0:62:1b:0f:26:78:f2:4c:02:69: da:fa:68:04 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYGaSqnB1Vku58RnAkAESUcDEkLkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQw MTI1MkE1QzAeFw0yNTEyMDQyMTA3MTNaFw0yNTEyMDgwNjA0MTNaMDMxMTAvBgNV BAMTKEUxQjk0M0VBQ0QyRjUwQzk2NjVGN0M2QzIwQ0Q3MTU2QkQ1QzBBOUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcGQhYqZQH2JyLa2Agy5UUVS5c ZSNJvWzlCDJ1KPQNYwvrHiDlM5XTphwBEOM/2rbEL/hlc3BOB0sfuBvN2RSrriKW N643Tdfuq6y478vUM0b6igvyGg3OP2oqkB+JXOZ8lJbx42WfcYlIaD8GKhUvo3Cy +P7Upw0KlFGJYsFS6okIe4lI09cxQyQfi60LYGksMDw9R4zPbmbkd32SZdeKrhU5 ygRMNPVQzW3Tp5CzfQrOfSd0FeoIhv2cF/0u9+Fib9+Qa/mKdDoC+cRou/uYMIi2 Ib6rR5do++IFV/prro0OABwnV+IK+MD34mslEhBx2mQa950FuCbL/Qp5gltRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4blD6s0vUMlmX3xsIM1xVr1cCpwwHwYDVR0j BBgwFoAUOJ58E89jRK65MAHNTFrHlAElKlwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjAzMmJjOS02MDVhLTQyNTMtYTRjZC02MmYxMjQxMjZlYWMvMC8zODlFN0MxM0NG NjM0NEFFQjkzMDAxQ0Q0QzVBQzc5NDAxMjUyQTVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3OTQwMTI1 MkE1Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIwMzJiYzktNjA1YS00MjUzLWE0 Y2QtNjJmMTI0MTI2ZWFjLzAvMzg5RTdDMTNDRjYzNDRBRUI5MzAwMUNENEM1QUM3 OTQwMTI1MkE1Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHgrZ5AB3nJpdQxYBOEpacrwV5WeBr//kBNg vJOIBUQyzQn2syZH9+XqKiXqk/LPLKEgv7OPDrBIvRzIIj58i2AMWhA3R7xDCiZJ eHjnCYOyyds4DSFlwvGy9FCGzJW8cJDJasdYrE258PLPXa5uJL+7PgLJBMBx1IqM d6btNjp+QCgrLHjpFGKjKliuQXJr02fsLdrDsuxh/sedJ0VrtwC/paB8mUKodHOq eYWOx9kSsFG6DjKP2Lw9NLQk/DTjv6ZiaMQbHb0cHH1CYBxeeJGJPr+aI8Njb6dB 0A22MNg3YfcYjv8BQobwTMeU7skyntIp8GIbDyZ48kwCadr6aAQ= -----END CERTIFICATE-----Generated at Sun Dec 7 04:46:25 2025 by rpki-client