This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft File: CA5B0322788B7A041373A944677E83F0D48FF4E7.mft (raw, json) Hash identifier: MJ6Ok/VAU2B9ai7S1YpOgRjgunYrG5s7Hhjjzu85Qlc= Subject key identifier: 4A:B8:F4:C5:88:10:5F:98:1B:96:D7:9D:8A:97:5D:CB:C4:1E:85:15 Authority key identifier: CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 Certificate issuer: /CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Certificate serial: 751BE9DFC0B4396B2AFC3B7E1AE37BBCDAD0F811 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft Manifest number: EA Signing time: Fri 05 Dec 2025 21:51:11 +0000 Manifest this update: Fri 05 Dec 2025 21:46:11 +0000 Manifest next update: Tue 09 Dec 2025 03:51:11 +0000 Files and hashes: 1: CA5B0322788B7A041373A944677E83F0D48FF4E7.crl (hash: KMiXPq4Tt+OKiwn9g6humf7xa1m/shwvT+ZDOUDXL7k=) 2: 3130332e37312e3136302e302f32322d3234203d3e20313339393831.roa (hash: lDykVwxJoW4GFsi2L2TOWuZVobAaZLaNG/GuK7uwVOw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 03:51:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:1b:e9:df:c0:b4:39:6b:2a:fc:3b:7e:1a:e3:7b:bc:da:d0:f8:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA5B0322788B7A041373A944677E83F0D48FF4E7 Validity Not Before: Dec 5 21:46:11 2025 GMT Not After : Dec 9 03:51:11 2025 GMT Subject: CN=4AB8F4C588105F981B96D79D8A975DCBC41E8515 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:87:c1:1c:d4:17:8e:cb:fa:5f:d0:4a:fd:f7: 26:57:b3:6c:a4:f6:d2:ae:ab:f8:a9:7e:61:96:37: 6c:ea:54:f1:19:00:bb:38:29:ee:16:12:45:db:7b: db:6b:43:83:18:43:63:1f:b8:dd:62:44:45:3f:82: 81:ea:a5:2c:ac:ef:78:2b:b7:a7:02:85:45:9c:e1: cd:67:23:98:84:49:ea:be:44:65:f6:30:94:c4:7c: 7e:d3:42:86:5a:49:9c:a5:22:e4:c9:41:c8:9e:0e: 09:24:1f:c2:9c:6f:56:c9:93:98:e1:c9:d7:90:3d: af:c6:02:d7:d7:53:86:bf:fb:59:2c:e6:4d:f9:0e: f0:09:99:4e:74:d5:f5:31:65:81:bf:0a:e4:7b:6c: 84:7f:e0:7b:2b:b9:15:d1:6d:27:54:20:fc:25:a2: a9:4c:e2:d5:9f:89:45:d5:79:55:25:2b:37:09:07: 8a:8a:64:92:fc:41:eb:5c:ce:e9:d9:cc:30:27:a8: c6:40:90:fd:84:ce:93:f5:db:4d:a3:34:27:96:25: 61:e9:0c:a3:fd:b5:e3:ad:e0:3e:e5:83:61:f7:1b: 3b:86:a1:0f:c8:8c:be:66:cb:29:b3:66:58:15:d9: 8f:3b:c4:e0:06:99:da:6a:27:ad:09:f2:d0:7e:30: 5d:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:B8:F4:C5:88:10:5F:98:1B:96:D7:9D:8A:97:5D:CB:C4:1E:85:15 X509v3 Authority Key Identifier: keyid:CA:5B:03:22:78:8B:7A:04:13:73:A9:44:67:7E:83:F0:D4:8F:F4:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA5B0322788B7A041373A944677E83F0D48FF4E7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8eba867a-8f84-4663-b320-f435282b9ffe/0/CA5B0322788B7A041373A944677E83F0D48FF4E7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:b8:50:49:90:b3:ee:88:bf:32:08:e0:32:c9:6b:07:cf:72: be:00:d7:ca:61:58:17:fe:e8:e4:58:78:3f:93:36:0a:48:cd: e7:d5:bc:84:b9:ba:bc:b0:88:f6:5d:76:74:a2:3f:57:82:59: 84:0d:93:56:c2:08:3b:ad:9c:36:d4:bb:2e:dd:c8:68:82:e0: 4b:b5:1a:e5:91:20:6a:f2:84:17:ce:11:64:fe:01:0a:eb:5c: 30:9e:35:3e:94:5b:77:f8:a4:35:2f:91:63:6d:54:40:b5:19: 45:3a:22:44:f6:7c:2e:ec:f5:29:3a:9c:72:b9:3e:f2:45:39: c3:f7:32:e7:02:be:0e:f5:72:9b:d8:db:61:d4:58:0a:9c:67: 96:b3:e8:98:c0:32:54:b8:83:2b:8b:79:5c:04:6b:ba:33:42: 21:ef:76:1d:65:5a:96:55:4e:5c:08:b8:79:b8:22:9b:bb:53: e1:9f:38:b7:e5:24:3b:2b:e8:ae:e7:dd:46:d4:41:ac:7a:cd: d5:13:5d:97:47:b3:96:db:09:cd:60:bb:f0:e7:8c:45:25:83: a0:59:a3:90:2f:f6:8c:6b:66:27:a2:37:a8:32:be:a2:83:b7: 08:fa:2b:a4:57:23:1e:a9:75:ee:ca:36:16:45:59:b2:33:83: e4:b9:a5:61 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdRvp38C0OWsq/Dt+GuN7vNrQ+BEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBE NDhGRjRFNzAeFw0yNTEyMDUyMTQ2MTFaFw0yNTEyMDkwMzUxMTFaMDMxMTAvBgNV BAMTKDRBQjhGNEM1ODgxMDVGOTgxQjk2RDc5RDhBOTc1RENCQzQxRTg1MTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqh8Ec1BeOy/pf0Er99yZXs2yk 9tKuq/ipfmGWN2zqVPEZALs4Ke4WEkXbe9trQ4MYQ2MfuN1iREU/goHqpSys73gr t6cChUWc4c1nI5iESeq+RGX2MJTEfH7TQoZaSZylIuTJQcieDgkkH8Kcb1bJk5jh ydeQPa/GAtfXU4a/+1ks5k35DvAJmU501fUxZYG/CuR7bIR/4HsruRXRbSdUIPwl oqlM4tWfiUXVeVUlKzcJB4qKZJL8QetczunZzDAnqMZAkP2EzpP1202jNCeWJWHp DKP9teOt4D7lg2H3GzuGoQ/IjL5myymzZlgV2Y87xOAGmdpqJ60J8tB+MF0DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSrj0xYgQX5gbltedipddy8QehRUwHwYDVR0j BBgwFoAUylsDIniLegQTc6lEZ36D8NSP9OcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZWJhODY3YS04Zjg0LTQ2NjMtYjMyMC1mNDM1MjgyYjlmZmUvMC9DQTVCMDMyMjc4 OEI3QTA0MTM3M0E5NDQ2NzdFODNGMEQ0OEZGNEU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgzRjBENDhG RjRFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGViYTg2N2EtOGY4NC00NjYzLWIz MjAtZjQzNTI4MmI5ZmZlLzAvQ0E1QjAzMjI3ODhCN0EwNDEzNzNBOTQ0Njc3RTgz RjBENDhGRjRFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKS4UEmQs+6IvzII4DLJawfPcr4A18phWBf+ 6ORYeD+TNgpIzefVvIS5urywiPZddnSiP1eCWYQNk1bCCDutnDbUuy7dyGiC4Eu1 GuWRIGryhBfOEWT+AQrrXDCeNT6UW3f4pDUvkWNtVEC1GUU6IkT2fC7s9Sk6nHK5 PvJFOcP3MucCvg71cpvY22HUWAqcZ5az6JjAMlS4gyuLeVwEa7ozQiHvdh1lWpZV TlwIuHm4Ipu7U+GfOLflJDsr6K7n3UbUQax6zdUTXZdHs5bbCc1gu/DnjEUlg6BZ o5Av9oxrZieiN6gyvqKDtwj6K6RXIx6pde7KNhZFWbIzg+S5pWE= -----END CERTIFICATE-----Generated at Sun Dec 7 01:10:38 2025 by rpki-client