This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft File: 285A5330FE006D3660B306BEE40EC7FEABA96574.mft (raw, json) Hash identifier: bXN/rXnik3zqvLbCOqrh3UZeY8hWISCLLIVKT6/fHrE= Subject key identifier: FF:56:64:43:2D:DD:21:B2:24:75:B4:A4:C6:6D:79:23:E8:8E:E7:AE Authority key identifier: 28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 Certificate issuer: /CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Certificate serial: 11CB1EDF4E6AECB4DD6246E1DA7B7D63C72B82C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft Manifest number: 0227 Signing time: Fri 05 Dec 2025 05:30:55 +0000 Manifest this update: Fri 05 Dec 2025 05:25:55 +0000 Manifest next update: Mon 08 Dec 2025 10:16:55 +0000 Files and hashes: 1: 285A5330FE006D3660B306BEE40EC7FEABA96574.crl (hash: QEgCsDUDr4PACtJDQxpZRipGuowrSGob+CRi6Idj6vw=) 2: 3130332e3139312e3132392e302f32342d3234203d3e20313439393230.roa (hash: NcRBqt1Wn/tuGvM1xfS0JFewwd6sRo22gfKxjNahc88=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 10:16:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:cb:1e:df:4e:6a:ec:b4:dd:62:46:e1:da:7b:7d:63:c7:2b:82:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=285A5330FE006D3660B306BEE40EC7FEABA96574 Validity Not Before: Dec 5 05:25:55 2025 GMT Not After : Dec 8 10:16:55 2025 GMT Subject: CN=FF5664432DDD21B22475B4A4C66D7923E88EE7AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:46:db:eb:7a:53:29:77:e0:c9:14:58:61:00: 54:a8:fd:4e:81:71:0a:af:96:16:96:d4:e9:26:5e: 21:37:12:d5:af:15:29:f7:3f:f8:80:10:6c:e3:0d: ae:d9:00:18:64:35:c5:18:f3:97:88:ba:4a:53:d5: cf:b4:94:4e:73:b6:76:a4:e2:7e:cf:fc:db:67:ca: 2f:66:42:ef:cc:99:b3:0a:b4:60:00:98:ea:d1:04: e5:c9:f6:e1:7d:68:cb:1b:9f:98:c3:f2:99:1a:eb: 86:02:0d:84:00:5f:25:e8:7d:7b:4b:9d:e7:96:1d: 95:c6:f0:07:75:b4:a3:bf:4e:0d:6e:17:5e:24:ba: 63:d6:65:c0:01:8c:6d:80:7c:2e:6a:d5:45:4a:7a: 42:1e:18:a7:e3:c7:a4:00:92:7a:70:6e:8f:95:ef: dd:9c:95:59:e2:ea:5f:29:50:0f:68:b0:8b:e5:69: f1:63:7e:5e:eb:e3:93:66:0d:71:92:a2:10:40:85: 7e:ce:d0:cd:2a:0a:d5:08:e6:dc:9b:15:a8:55:6a: 4b:2c:7b:b0:e0:5d:b7:1d:aa:d5:31:77:6a:db:fe: f0:35:16:27:b3:52:f6:99:de:94:0e:83:8a:84:7b: 44:88:4e:df:7f:4c:3c:dd:9c:90:f0:9f:7f:0e:38: 06:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:56:64:43:2D:DD:21:B2:24:75:B4:A4:C6:6D:79:23:E8:8E:E7:AE X509v3 Authority Key Identifier: keyid:28:5A:53:30:FE:00:6D:36:60:B3:06:BE:E4:0E:C7:FE:AB:A9:65:74 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/285A5330FE006D3660B306BEE40EC7FEABA96574.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8ad33770-f151-43f3-9569-6a27d7504240/0/285A5330FE006D3660B306BEE40EC7FEABA96574.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 68:e0:89:d9:1e:16:81:41:cb:68:3a:6a:06:8a:41:39:70:d2: 6b:38:e0:8d:46:0d:22:ec:0c:01:35:33:56:2d:0f:a3:f7:8d: fb:f3:b7:3c:e5:ac:a0:49:6a:f1:c9:5e:1b:58:b9:7d:f8:24: 71:fe:3d:db:92:d6:62:c4:93:c9:86:9c:ca:3f:33:1f:ae:cb: 01:f5:74:22:db:60:13:4f:98:15:fc:b1:6d:01:bf:ff:ff:98: 40:40:4f:a7:cb:c1:f8:2a:15:b5:99:88:61:10:08:0a:87:b4: f4:f3:88:55:bf:a0:32:57:ec:47:b7:bf:f3:2c:4b:de:b6:af: 2f:62:1c:da:2a:64:e3:4e:df:6a:15:79:bb:be:65:e8:65:58: f9:25:a1:22:d2:69:00:7d:fe:7c:05:09:00:03:95:a2:1c:bc: 3e:5f:65:b4:a8:32:02:3e:0b:73:67:7e:12:7e:c8:d6:f5:d9: d7:1c:69:7e:b3:07:69:79:b1:3e:17:35:91:1a:7b:ad:5e:51: 66:16:4f:2c:e4:f3:b1:a8:95:64:c8:b6:a9:be:30:cc:04:b6: 83:4e:8b:05:00:1e:0a:e3:c5:48:c7:ce:68:12:37:05:b9:a1: a5:d7:ad:70:a9:1c:a1:e5:a5:a2:d4:35:5c:98:b2:e6:89:66: 3d:d8:5b:72 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEcse305q7LTdYkbh2nt9Y8crgsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVB QkE5NjU3NDAeFw0yNTEyMDUwNTI1NTVaFw0yNTEyMDgxMDE2NTVaMDMxMTAvBgNV BAMTKEZGNTY2NDQzMkRERDIxQjIyNDc1QjRBNEM2NkQ3OTIzRTg4RUU3QUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlRtvrelMpd+DJFFhhAFSo/U6B cQqvlhaW1OkmXiE3EtWvFSn3P/iAEGzjDa7ZABhkNcUY85eIukpT1c+0lE5ztnak 4n7P/Ntnyi9mQu/MmbMKtGAAmOrRBOXJ9uF9aMsbn5jD8pka64YCDYQAXyXofXtL neeWHZXG8Ad1tKO/Tg1uF14kumPWZcABjG2AfC5q1UVKekIeGKfjx6QAknpwbo+V 792clVni6l8pUA9osIvlafFjfl7r45NmDXGSohBAhX7O0M0qCtUI5tybFahVakss e7DgXbcdqtUxd2rb/vA1FiezUvaZ3pQOg4qEe0SITt9/TDzdnJDwn38OOAbpAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/1ZkQy3dIbIkdbSkxm15I+iO564wHwYDVR0j BBgwFoAUKFpTMP4AbTZgswa+5A7H/qupZXQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YWQzMzc3MC1mMTUxLTQzZjMtOTU2OS02YTI3ZDc1MDQyNDAvMC8yODVBNTMzMEZF MDA2RDM2NjBCMzA2QkVFNDBFQzdGRUFCQTk2NTc0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3RkVBQkE5 NjU3NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGFkMzM3NzAtZjE1MS00M2YzLTk1 NjktNmEyN2Q3NTA0MjQwLzAvMjg1QTUzMzBGRTAwNkQzNjYwQjMwNkJFRTQwRUM3 RkVBQkE5NjU3NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGjgidkeFoFBy2g6agaKQTlw0ms44I1GDSLs DAE1M1YtD6P3jfvztzzlrKBJavHJXhtYuX34JHH+PduS1mLEk8mGnMo/Mx+uywH1 dCLbYBNPmBX8sW0Bv///mEBAT6fLwfgqFbWZiGEQCAqHtPTziFW/oDJX7Ee3v/Ms S962ry9iHNoqZONO32oVebu+ZehlWPkloSLSaQB9/nwFCQADlaIcvD5fZbSoMgI+ C3NnfhJ+yNb12dccaX6zB2l5sT4XNZEae61eUWYWTyzk87GolWTItqm+MMwEtoNO iwUAHgrjxUjHzmgSNwW5oaXXrXCpHKHlpaLUNVyYsuaJZj3YW3I= -----END CERTIFICATE-----Generated at Sat Dec 6 22:57:08 2025 by rpki-client