This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft File: 4E52504397B6835784BD4E67D8048C0D1CE3B242.mft (raw, json) Hash identifier: G4ExhenSZG8SAoItNYTj7AvPAe4IemSuXQfQvLFzGD8= Subject key identifier: 47:F6:A4:6E:A2:06:8E:AA:0C:A4:DD:57:92:8B:79:25:EF:13:90:FD Authority key identifier: 4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 Certificate issuer: /CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Certificate serial: 3AA90E96FDD0B606794D619D72F4B437DF74CF15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject info access: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft Manifest number: 0530 Signing time: Sat 06 Dec 2025 19:52:21 +0000 Manifest this update: Sat 06 Dec 2025 19:47:20 +0000 Manifest next update: Tue 09 Dec 2025 21:23:20 +0000 Files and hashes: 1: 4E52504397B6835784BD4E67D8048C0D1CE3B242.crl (hash: 1oh+57B3ch3MJRu9ou7Ju0lDgQw2FYLDpva3y1fkQ7o=) 2: 323430333a653630303a6630303a3a2f34302d3430203d3e203538333736.roa (hash: AgqSIkRIGOrQPc+1mZW5lGFc3zRhyUQtTv3vz8FdAPU=) 3: 3130332e32392e3134382e302f32322d3234203d3e203538333736.roa (hash: kZ6+BhGljQylz/AhW+5O41yNHq5oDRG+mIs3e+fq18E=) 4: 34332e3234352e3138382e302f32322d3234203d3e203538333736.roa (hash: AI/USbQ/a0LFBdjZWtV22hxC6HEFmmDia8w1dNa/lbM=) 5: 323430333a653630303a3a2f33322d3332203d3e203538333736.roa (hash: bVu2SaAa9IWvlQ6o6+veKHD0ZA7xlveBNCWEZ2Ja1Z4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a9:0e:96:fd:d0:b6:06:79:4d:61:9d:72:f4:b4:37:df:74:cf:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4E52504397B6835784BD4E67D8048C0D1CE3B242 Validity Not Before: Dec 6 19:47:20 2025 GMT Not After : Dec 9 21:23:20 2025 GMT Subject: CN=47F6A46EA2068EAA0CA4DD57928B7925EF1390FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:61:cf:e9:99:57:24:ba:ee:c9:d4:04:47:c3: ee:b5:a9:71:e0:27:5e:20:b6:33:90:a2:52:e5:9c: d2:eb:79:11:e7:0c:bd:7d:ed:76:75:d9:2a:eb:76: b2:ea:f0:06:25:a4:51:78:c7:58:3a:c0:70:0c:1b: a5:6f:a2:66:35:d0:11:63:c6:ec:1a:39:e5:5e:5f: 50:c3:78:5c:52:3e:59:de:6d:04:8c:1d:c3:f6:43: c9:b9:ae:ec:17:d8:09:23:64:4d:11:e7:37:14:4e: b8:27:16:99:02:37:94:48:2e:21:19:3e:14:b2:9d: 29:99:b9:ed:e5:2a:76:e9:9f:66:b7:e9:8b:f1:34: f9:87:2d:05:fe:b7:00:b7:ce:08:a7:e7:75:9a:1e: d0:64:7e:23:35:8a:58:94:94:89:da:8e:df:00:39: ec:c6:94:e1:fa:6c:2b:b3:d6:80:d1:e6:07:33:e3: 24:07:ce:35:32:8f:8f:27:1e:66:a2:f6:9b:85:6b: dc:c9:6b:da:f2:c0:9d:ea:21:c3:03:7e:02:bc:bb: 2d:86:52:ff:90:1b:49:b9:dd:68:86:51:44:98:a7: 1b:f3:03:df:a7:48:ae:80:5a:7e:90:9d:7c:01:56: d7:bd:ea:a5:7b:42:ea:a9:05:b1:ef:df:cd:07:b3: 3f:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F6:A4:6E:A2:06:8E:AA:0C:A4:DD:57:92:8B:79:25:EF:13:90:FD X509v3 Authority Key Identifier: keyid:4E:52:50:43:97:B6:83:57:84:BD:4E:67:D8:04:8C:0D:1C:E3:B2:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4E52504397B6835784BD4E67D8048C0D1CE3B242.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/891d3c30-95dc-4b72-ae1b-ad1e98b0e179/0/4E52504397B6835784BD4E67D8048C0D1CE3B242.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 56:ed:32:5f:ff:c1:2f:2e:9a:45:d7:0a:c0:03:f7:c5:a9:bd: eb:b6:fb:9f:ea:58:eb:f6:e9:1a:7f:44:3d:7b:a9:05:c6:74: 82:97:a8:c1:df:54:b3:22:b9:f0:d9:87:0d:15:b9:b9:10:66: 74:62:f6:ba:51:6d:c7:36:01:6b:11:55:55:c0:4d:60:70:93: fc:9f:82:0b:6f:c5:93:5b:0f:31:2c:d1:f9:6d:3a:89:ff:e5: 68:4d:4b:aa:65:8f:7b:8a:cd:bf:cb:91:ef:15:e4:05:89:c0: 34:dc:a6:5c:63:6c:36:68:b7:d4:31:f7:c1:81:02:75:a2:75: 3e:a4:b7:c2:db:cf:25:d0:d6:38:c7:59:24:46:9e:8c:49:cd: b9:b6:24:7a:1c:b2:5f:fb:88:76:7f:43:2c:b7:0f:11:bd:7a: 89:c6:78:b0:80:1b:76:a7:bc:52:14:e5:b3:56:58:dd:f6:0c: 5f:d5:87:c6:4b:ba:bc:33:ff:d8:09:d9:aa:01:bf:5b:79:3c: 7e:46:2a:4e:ff:58:3e:79:02:2a:d8:e6:a0:62:f7:84:ca:bb: 2c:22:5c:b2:de:11:79:ec:5b:35:ff:e1:d1:05:94:c2:bd:33: cd:7b:a6:94:13:44:92:cb:18:c2:d9:27:95:c6:bd:e7:4b:22: ce:d0:45:23 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOqkOlv3QtgZ5TWGdcvS0N990zxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQx Q0UzQjI0MjAeFw0yNTEyMDYxOTQ3MjBaFw0yNTEyMDkyMTIzMjBaMDMxMTAvBgNV BAMTKDQ3RjZBNDZFQTIwNjhFQUEwQ0E0REQ1NzkyOEI3OTI1RUYxMzkwRkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOYc/pmVckuu7J1ARHw+61qXHg J14gtjOQolLlnNLreRHnDL197XZ12SrrdrLq8AYlpFF4x1g6wHAMG6VvomY10BFj xuwaOeVeX1DDeFxSPlnebQSMHcP2Q8m5ruwX2AkjZE0R5zcUTrgnFpkCN5RILiEZ PhSynSmZue3lKnbpn2a36YvxNPmHLQX+twC3zgin53WaHtBkfiM1iliUlInajt8A OezGlOH6bCuz1oDR5gcz4yQHzjUyj48nHmai9puFa9zJa9rywJ3qIcMDfgK8uy2G Uv+QG0m53WiGUUSYpxvzA9+nSK6AWn6QnXwBVte96qV7QuqpBbHv380Hsz+/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUR/akbqIGjqoMpN1Xkot5Je8TkP0wHwYDVR0j BBgwFoAUTlJQQ5e2g1eEvU5n2ASMDRzjskIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 OTFkM2MzMC05NWRjLTRiNzItYWUxYi1hZDFlOThiMGUxNzkvMC80RTUyNTA0Mzk3 QjY4MzU3ODRCRDRFNjdEODA0OEMwRDFDRTNCMjQyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhDMEQxQ0Uz QjI0Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODkxZDNjMzAtOTVkYy00YjcyLWFl MWItYWQxZTk4YjBlMTc5LzAvNEU1MjUwNDM5N0I2ODM1Nzg0QkQ0RTY3RDgwNDhD MEQxQ0UzQjI0Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFbtMl//wS8umkXXCsAD98Wpveu2+5/qWOv2 6Rp/RD17qQXGdIKXqMHfVLMiufDZhw0VubkQZnRi9rpRbcc2AWsRVVXATWBwk/yf ggtvxZNbDzEs0fltOon/5WhNS6plj3uKzb/Lke8V5AWJwDTcplxjbDZot9Qx98GB AnWidT6kt8LbzyXQ1jjHWSRGnoxJzbm2JHocsl/7iHZ/Qyy3DxG9eonGeLCAG3an vFIU5bNWWN32DF/Vh8ZLurwz/9gJ2aoBv1t5PH5GKk7/WD55AirY5qBi94TKuywi XLLeEXnsWzX/4dEFlMK9M817ppQTRJLLGMLZJ5XGvedLIs7QRSM= -----END CERTIFICATE-----Generated at Sun Dec 7 03:56:35 2025 by rpki-client