This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft File: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft (raw, json) Hash identifier: fD9EleuVPrKM24uiqdVe3jAahFvsYjrQkp+xZc9sNVA= Subject key identifier: CE:35:3B:EB:A3:9C:B5:B8:2C:D3:9B:FB:EF:CB:FD:48:D1:89:87:5A Authority key identifier: 42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 Certificate issuer: /CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Certificate serial: 4FD01C62F88C861961AFCF432C6B3E806569B0E9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject info access: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft Manifest number: 052D Signing time: Thu 04 Dec 2025 14:32:11 +0000 Manifest this update: Thu 04 Dec 2025 14:27:10 +0000 Manifest next update: Mon 08 Dec 2025 01:30:10 +0000 Files and hashes: 1: 323430333a326530303a3a2f33322d3438203d3e203234353332.roa (hash: 1GnFCQ0Tavqgsu3zMfhYc58ad3h7NpVZT5asqIEYmDA=) 2: 32372e3131312e33342e302f32342d3234203d3e203538343737.roa (hash: JY5X7Ni0FqjOLHL/IBAcPoDotTFSEzReZjChPfIbLws=) 3: 34332e3232392e3230342e302f32322d3234203d3e203234353332.roa (hash: WF4j8x2tGr44aFsHKkav+2ARzcYAA9lGEfxLV4cOOpQ=) 4: 3130332e3234352e3138302e302f32322d3234203d3e203234353332.roa (hash: olwDZQoWpFkRsK81GVJEPLld+99Dlx/8F9oVv6zB3jQ=) 5: 32372e3131312e33322e302f31392d3234203d3e203234353332.roa (hash: JSx+5xTx71eWK8GnVgu4sokLS7+0LsCbDYaq7VNDJRQ=) 6: 3131392e3233352e31362e302f32302d3234203d3e203234353332.roa (hash: B78QMc7X1AynG/67CvGHE09qoTlYPrnz5pImIeutRLM=) 7: 428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl (hash: L9jvoaf2rZoCdoGL5DTBwrwhhjSM8nvo+3dt3aqf0fU=) 8: 3230322e3132392e3138342e302f32322d3234203d3e203234353332.roa (hash: CeNMr8Y0wuM60Zt6nplzMluIcrI9La3EhazffayBItA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 01:30:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:d0:1c:62:f8:8c:86:19:61:af:cf:43:2c:6b:3e:80:65:69:b0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428AA4240E741F27E3A21EFC29D45F0AECC7FE96 Validity Not Before: Dec 4 14:27:10 2025 GMT Not After : Dec 8 01:30:10 2025 GMT Subject: CN=CE353BEBA39CB5B82CD39BFBEFCBFD48D189875A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:3b:a0:02:11:26:f7:e9:e3:50:eb:f1:b9:64: b6:32:6c:b6:59:ae:cc:eb:e4:3f:2c:79:4f:45:c9: 5c:af:b3:7f:4c:64:d6:dd:d1:ea:11:52:cf:50:79: c9:5c:dd:79:b4:b3:19:9b:d9:38:5f:66:8c:ca:0d: 3d:f9:71:9b:79:ab:ac:5f:25:56:2b:d9:69:bb:3f: a4:8f:42:43:85:24:5f:76:20:e0:77:3d:4e:9c:e0: 06:19:2d:88:03:fe:2d:fa:bd:00:fc:17:e3:60:90: e0:f1:45:c6:94:28:df:4a:94:4a:2d:f6:a7:1a:92: 08:c8:b2:53:29:30:30:67:ea:f6:3c:ad:5a:7e:36: b4:22:03:f4:6a:bb:d8:67:dd:7c:08:2d:4f:77:1a: 2d:ee:72:b8:ba:b9:b1:ab:f2:c4:ab:fd:7a:df:08: 07:2d:df:d3:8f:8b:b6:bf:8d:16:bb:32:e9:c4:68: 89:4c:a0:e5:ec:6b:32:81:0e:e4:23:34:11:72:30: 66:bb:8a:62:9c:ab:1d:42:10:f3:95:c3:6b:59:e9: 27:13:84:30:9a:96:10:86:7d:a1:06:2b:0b:91:9b: db:c3:ea:e2:12:7c:db:33:60:8c:16:38:28:6e:d4: eb:78:b7:69:e9:f2:31:2d:f6:b5:11:98:c9:0b:ca: 61:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:35:3B:EB:A3:9C:B5:B8:2C:D3:9B:FB:EF:CB:FD:48:D1:89:87:5A X509v3 Authority Key Identifier: keyid:42:8A:A4:24:0E:74:1F:27:E3:A2:1E:FC:29:D4:5F:0A:EC:C7:FE:96 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/943e2e67-a171-4d9e-a935-406902b1e13b/0/428AA4240E741F27E3A21EFC29D45F0AECC7FE96.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a4:f1:aa:99:cd:ed:d9:07:d7:28:5a:89:19:f1:79:6e:87:77: 4e:86:39:14:64:cd:b3:22:6a:ca:11:75:d3:b1:3f:d5:30:4c: 80:4f:dd:fd:b5:3f:f1:3e:6e:28:1b:ac:87:20:a1:56:18:ca: 96:b4:a2:04:ec:42:32:6c:08:03:11:7e:53:fb:d9:86:4e:a5: e0:10:38:d4:a8:61:05:99:f7:47:3a:c7:30:34:18:56:49:c9: 0c:8b:d4:08:fb:42:9e:ae:ae:43:a2:68:41:bb:07:33:63:b1: 32:1a:f6:f6:d0:de:24:81:44:5a:50:de:47:1a:dc:9e:00:05: 06:e4:56:08:8b:66:f3:bb:ff:41:f7:60:49:5b:2e:aa:5e:a0: c8:a3:c2:e8:f0:e3:ac:41:84:b9:e8:f8:47:59:3b:5f:44:1e: c9:98:67:5a:d7:28:4e:d9:34:eb:9a:fd:99:a5:59:30:f8:64: 7f:e6:fc:c2:fc:df:d0:60:71:02:5d:75:6f:b0:51:e9:a1:f4: f3:af:f0:2b:4d:c7:77:a0:7d:91:4f:f1:53:cf:16:01:33:00: 99:4f:19:df:74:de:fd:63:99:17:09:67:be:55:a1:46:d8:91: f3:c8:2b:70:df:b6:49:b0:67:9a:19:b2:f9:71:6e:ef:f1:40: 22:ba:bf:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUT9AcYviMhhlhr89DLGs+gGVpsOkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFF Q0M3RkU5NjAeFw0yNTEyMDQxNDI3MTBaFw0yNTEyMDgwMTMwMTBaMDMxMTAvBgNV BAMTKENFMzUzQkVCQTM5Q0I1QjgyQ0QzOUJGQkVGQ0JGRDQ4RDE4OTg3NUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2O6ACESb36eNQ6/G5ZLYybLZZ rszr5D8seU9FyVyvs39MZNbd0eoRUs9Qeclc3Xm0sxmb2ThfZozKDT35cZt5q6xf JVYr2Wm7P6SPQkOFJF92IOB3PU6c4AYZLYgD/i36vQD8F+NgkODxRcaUKN9KlEot 9qcakgjIslMpMDBn6vY8rVp+NrQiA/Rqu9hn3XwILU93Gi3ucri6ubGr8sSr/Xrf CAct39OPi7a/jRa7MunEaIlMoOXsazKBDuQjNBFyMGa7imKcqx1CEPOVw2tZ6ScT hDCalhCGfaEGKwuRm9vD6uISfNszYIwWOChu1Ot4t2np8jEt9rURmMkLymEXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzjU766Octbgs05v778v9SNGJh1owHwYDVR0j BBgwFoAUQoqkJA50Hyfjoh78KdRfCuzH/pYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDNlMmU2Ny1hMTcxLTRkOWUtYTkzNS00MDY5MDJiMWUxM2IvMC80MjhBQTQyNDBF NzQxRjI3RTNBMjFFRkMyOUQ0NUYwQUVDQzdGRTk2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVGMEFFQ0M3 RkU5Ni5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQzZTJlNjctYTE3MS00ZDllLWE5 MzUtNDA2OTAyYjFlMTNiLzAvNDI4QUE0MjQwRTc0MUYyN0UzQTIxRUZDMjlENDVG MEFFQ0M3RkU5Ni5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKTxqpnN7dkH1yhaiRnxeW6Hd06GORRkzbMi asoRddOxP9UwTIBP3f21P/E+bigbrIcgoVYYypa0ogTsQjJsCAMRflP72YZOpeAQ ONSoYQWZ90c6xzA0GFZJyQyL1Aj7Qp6urkOiaEG7BzNjsTIa9vbQ3iSBRFpQ3kca 3J4ABQbkVgiLZvO7/0H3YElbLqpeoMijwujw46xBhLno+EdZO19EHsmYZ1rXKE7Z NOua/ZmlWTD4ZH/m/ML839BgcQJddW+wUemh9POv8CtNx3egfZFP8VPPFgEzAJlP Gd903v1jmRcJZ75VoUbYkfPIK3DftkmwZ5oZsvlxbu/xQCK6v+w= -----END CERTIFICATE-----Generated at Sat Dec 6 22:52:44 2025 by rpki-client