This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft File: 58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft (raw, json) Hash identifier: 5riwAB4F9eLKSNmjj0Wa7pceJqHbnBMYtpWoV64IaYE= Subject key identifier: 90:B7:0A:A9:2E:33:4E:54:88:E0:A2:CB:7D:6F:CC:60:F2:A7:87:A7 Authority key identifier: 58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA Certificate issuer: /CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA Certificate serial: 14AD1244C8CD6C54F9C1D4D84649591B1FAA65CD Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft Manifest number: 0535 Signing time: Fri 05 Dec 2025 09:51:12 +0000 Manifest this update: Fri 05 Dec 2025 09:46:12 +0000 Manifest next update: Mon 08 Dec 2025 19:06:12 +0000 Files and hashes: 1: 58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl (hash: xDUitDk//NAVJe/Owyatl3GEW79M9elxeDvXW/w32uY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 19:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:ad:12:44:c8:cd:6c:54:f9:c1:d4:d8:46:49:59:1b:1f:aa:65:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=58D7DC530F3BA4ACD0488062170E1581B67D61EA Validity Not Before: Dec 5 09:46:12 2025 GMT Not After : Dec 8 19:06:12 2025 GMT Subject: CN=90B70AA92E334E5488E0A2CB7D6FCC60F2A787A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:a5:d9:4d:01:be:25:74:9e:96:ba:ff:75:82: 4d:0e:09:fc:1a:7c:22:56:39:41:df:28:4b:1b:30: a7:8d:c0:7d:41:44:ae:e6:27:8f:d7:a6:2a:5d:72: 23:45:41:5e:a6:73:b4:70:91:fd:0e:5b:26:64:df: af:8c:62:bf:67:c0:9d:94:2e:c1:2b:a0:9d:4a:1d: 21:41:8f:33:f4:a7:85:e3:ba:db:53:90:f9:6a:fe: 99:4e:d0:bc:f0:03:35:ac:08:36:bc:e3:85:f5:6f: d8:de:f3:ff:89:8e:47:ae:4c:52:79:27:65:aa:de: 07:22:ac:ef:2a:bc:d1:a6:64:63:2b:c6:59:41:03: a9:31:03:fc:20:35:7c:0d:1f:aa:67:01:0e:d1:cb: 93:45:45:f6:3e:f1:5f:77:13:f1:bb:e6:00:af:ca: ea:f9:64:47:fd:1b:12:fd:5f:b5:ca:87:fb:a1:14: b7:60:27:4a:41:d1:21:13:4f:a6:02:ff:b1:dc:82: 30:3b:15:a6:b8:d2:27:68:37:af:6e:38:f3:1f:3a: 8f:99:03:8f:d9:2a:7b:22:b1:81:76:23:ef:c0:94: 19:95:7b:76:1d:ae:01:b6:27:20:27:1e:2a:12:d2: a7:e6:40:0f:2a:51:1f:ba:10:17:5e:27:0b:82:d6: 0e:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:B7:0A:A9:2E:33:4E:54:88:E0:A2:CB:7D:6F:CC:60:F2:A7:87:A7 X509v3 Authority Key Identifier: keyid:58:D7:DC:53:0F:3B:A4:AC:D0:48:80:62:17:0E:15:81:B6:7D:61:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/58D7DC530F3BA4ACD0488062170E1581B67D61EA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/82fa3a39-e0ec-4fc1-9b54-353e07f005dd/0/58D7DC530F3BA4ACD0488062170E1581B67D61EA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:9f:28:66:4f:5c:a2:9a:2e:39:46:35:4e:18:90:e0:c4:e7: 2b:e2:a5:2b:90:fd:a6:0e:2f:de:c6:c7:7c:ae:f8:91:b9:43: fe:ac:2f:c5:09:5f:1b:b8:f3:80:9e:82:f6:b6:be:1d:a2:a1: cc:ec:4e:13:fd:cd:9f:ac:b6:33:6b:db:7b:0e:c1:e9:9c:e0: 16:00:02:c3:4a:dc:da:39:78:34:b2:61:64:17:66:b5:2b:27: ba:0d:7e:9b:30:e6:20:b8:28:61:48:77:cf:b8:60:c8:e1:67: f7:ea:35:5b:25:1d:ec:e8:49:97:fb:16:f7:51:0b:3f:fb:dd: 5c:86:96:2c:af:4d:9f:8f:12:11:64:9e:62:b0:69:02:6a:f6: f2:8b:51:4d:92:f5:9d:94:13:75:d9:6e:32:af:12:c1:46:f8: 6c:a0:92:8e:74:58:59:f9:94:67:e1:9e:a5:4b:10:38:50:6e: 45:de:3c:3f:4b:f7:ce:5e:da:c1:a4:d1:74:a0:19:95:dc:bf: 3c:2e:2b:0c:4b:10:4c:85:e1:53:7b:90:0e:6d:48:50:62:7e: cc:c6:47:6b:a8:97:a7:6c:a4:bc:ef:5c:b3:64:8a:ee:d4:01: 9e:13:49:a2:96:39:dc:e1:9a:8d:7e:dc:36:42:74:55:c9:fe: 5d:08:99:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFK0SRMjNbFT5wdTYRklZGx+qZc0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1ODFC NjdENjFFQTAeFw0yNTEyMDUwOTQ2MTJaFw0yNTEyMDgxOTA2MTJaMDMxMTAvBgNV BAMTKDkwQjcwQUE5MkUzMzRFNTQ4OEUwQTJDQjdENkZDQzYwRjJBNzg3QTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQClpdlNAb4ldJ6Wuv91gk0OCfwa fCJWOUHfKEsbMKeNwH1BRK7mJ4/XpipdciNFQV6mc7Rwkf0OWyZk36+MYr9nwJ2U LsEroJ1KHSFBjzP0p4XjuttTkPlq/plO0LzwAzWsCDa844X1b9je8/+JjkeuTFJ5 J2Wq3gcirO8qvNGmZGMrxllBA6kxA/wgNXwNH6pnAQ7Ry5NFRfY+8V93E/G75gCv yur5ZEf9GxL9X7XKh/uhFLdgJ0pB0SETT6YC/7HcgjA7Faa40idoN69uOPMfOo+Z A4/ZKnsisYF2I+/AlBmVe3YdrgG2JyAnHioS0qfmQA8qUR+6EBdeJwuC1g7RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkLcKqS4zTlSI4KLLfW/MYPKnh6cwHwYDVR0j BBgwFoAUWNfcUw87pKzQSIBiFw4VgbZ9YeowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MmZhM2EzOS1lMGVjLTRmYzEtOWI1NC0zNTNlMDdmMDA1ZGQvMC81OEQ3REM1MzBG M0JBNEFDRDA0ODgwNjIxNzBFMTU4MUI2N0Q2MUVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1ODFCNjdE NjFFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODJmYTNhMzktZTBlYy00ZmMxLTli NTQtMzUzZTA3ZjAwNWRkLzAvNThEN0RDNTMwRjNCQTRBQ0QwNDg4MDYyMTcwRTE1 ODFCNjdENjFFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJOfKGZPXKKaLjlGNU4YkODE5yvipSuQ/aYO L97Gx3yu+JG5Q/6sL8UJXxu484Cegva2vh2ioczsThP9zZ+stjNr23sOwemc4BYA AsNK3No5eDSyYWQXZrUrJ7oNfpsw5iC4KGFId8+4YMjhZ/fqNVslHezoSZf7FvdR Cz/73VyGliyvTZ+PEhFknmKwaQJq9vKLUU2S9Z2UE3XZbjKvEsFG+Gygko50WFn5 lGfhnqVLEDhQbkXePD9L985e2sGk0XSgGZXcvzwuKwxLEEyF4VN7kA5tSFBifszG R2uol6dspLzvXLNkiu7UAZ4TSaKWOdzhmo1+3DZCdFXJ/l0ImYg= -----END CERTIFICATE-----Generated at Sun Dec 7 02:59:55 2025 by rpki-client