This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft File: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft (raw, json) Hash identifier: fvAQrY3wGkpFdBoYyvOuO6LFDQWPA4lnGOBIsOzz7LE= Subject key identifier: B4:62:55:3C:60:94:16:7B:BF:0A:B9:5F:45:2C:FD:14:6E:3B:98:18 Authority key identifier: B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 Certificate issuer: /CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Certificate serial: 336A130A84E395FF94D02B443C7DD895CCD65F15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft Manifest number: 0221 Signing time: Fri 05 Dec 2025 09:42:09 +0000 Manifest this update: Fri 05 Dec 2025 09:37:09 +0000 Manifest next update: Mon 08 Dec 2025 12:18:09 +0000 Files and hashes: 1: 3130332e3138382e3235322e302f32332d3233203d3e20313439373337.roa (hash: SLcrpmMGhS+iLPHlXSc6GQF6hzriCb0znzXu+cnHQhI=) 2: B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl (hash: HrGUoBx3sYbXhPwooOWK1oX66tE/jGTcjhNzrXnETE0=) 3: 3130332e3138382e3235322e302f32342d3234203d3e20313439373337.roa (hash: kjCPg8CNqMlAMRebUqHb4gpHFMec5lXxDxlOd53bN+M=) 4: 3130332e3138382e3235332e302f32342d3234203d3e20313439373337.roa (hash: fMitGvSIMZKR/xojJDzG2iWApTg4bDt/1kqJnOfFiTo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 12:18:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:6a:13:0a:84:e3:95:ff:94:d0:2b:44:3c:7d:d8:95:cc:d6:5f:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2 Validity Not Before: Dec 5 09:37:09 2025 GMT Not After : Dec 8 12:18:09 2025 GMT Subject: CN=B462553C6094167BBF0AB95F452CFD146E3B9818 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:7b:5a:87:1b:e3:37:ba:73:fe:ba:57:48:c4: d1:68:19:8f:2f:e1:30:7f:56:74:d7:52:3c:fa:6c: ec:15:cc:2c:0e:8d:98:a9:49:40:9e:8f:5e:51:d9: b2:aa:89:3c:25:ad:53:b1:1f:d3:67:1d:63:7e:86: a5:75:fa:d8:5f:8f:04:29:31:34:40:16:af:75:c8: 34:05:14:7c:2b:55:ed:15:94:b9:2d:46:72:5b:d5: e3:58:c1:91:7b:60:ba:31:86:cc:2a:c9:79:04:c8: 55:1c:6f:26:01:84:c4:40:60:fa:c1:c6:1c:af:5d: 5a:ec:bf:5d:4e:fc:5a:62:86:78:0a:76:21:f6:a5: 09:cb:7b:39:62:56:44:9c:fb:cd:da:cc:c6:b5:9c: 4f:42:8d:ec:44:7a:0e:80:92:e0:62:47:45:33:f7: c8:ff:31:6c:2d:a4:bd:97:0d:a9:f6:4e:d1:bd:70: 77:cb:ac:d7:d6:d8:ef:9a:2f:cd:21:90:17:41:07: f5:d1:c1:32:c2:b2:2a:24:20:ce:2d:dc:a4:c4:a8: 7f:aa:cf:19:ad:36:58:72:c4:39:42:50:61:29:77: c5:79:46:a1:21:bd:50:bc:b9:b1:db:54:c7:d7:36: 6d:39:5f:1d:07:45:ea:2d:07:fd:8f:4c:b5:e2:2d: 03:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:62:55:3C:60:94:16:7B:BF:0A:B9:5F:45:2C:FD:14:6E:3B:98:18 X509v3 Authority Key Identifier: keyid:B5:E9:7B:71:FA:FA:24:FF:8F:A2:B1:A3:35:58:D8:0A:98:25:4D:B2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9aed098b-49b1-4f53-b75a-273e11c25149/0/B5E97B71FAFA24FF8FA2B1A33558D80A98254DB2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:e4:b9:58:0a:c4:b8:c2:4c:9b:cf:18:a7:3f:ba:5d:ff:d7: 9a:b3:d5:f0:1d:57:7f:e5:2a:83:6d:f0:97:93:17:2e:dd:e2: 14:29:7c:b5:41:7b:c4:ac:a7:1a:e0:7e:e6:cf:7c:82:bc:d4: ad:6a:c9:34:cf:09:6f:dd:c8:52:4d:6d:57:f0:bf:0f:35:07: c7:87:9b:cb:df:6c:de:e3:01:ed:61:f4:7b:aa:03:b8:56:29: 12:69:24:4f:94:51:04:8b:65:ab:49:a4:f7:ae:35:e2:1d:55: 9d:bd:03:9c:41:69:47:f9:6e:36:2f:7a:3a:df:7a:ea:bb:cd: 56:14:e7:45:a2:ea:e1:85:b1:71:d5:3c:e7:fd:00:f9:18:79: da:a2:8a:aa:b4:b0:1d:e1:23:15:4b:f3:cd:9d:fa:2b:d4:ab: 30:7a:ca:41:96:e4:fb:3b:de:24:d4:2b:e3:38:7a:02:15:23: 08:0f:33:27:e5:96:e1:1b:15:2f:3a:92:69:6d:d2:a4:62:fe: 6f:05:c1:8c:f6:d2:d7:f4:4d:05:37:8b:2c:2a:4d:86:74:d8: 22:bf:40:25:bd:a5:e7:24:bb:b8:2f:7b:f5:4b:f1:a9:78:aa: 05:85:1d:e5:f7:97:5c:9b:53:eb:b9:d5:dd:ff:54:0f:58:5d: 69:23:f5:31 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUM2oTCoTjlf+U0CtEPH3YlczWXxUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5 ODI1NERCMjAeFw0yNTEyMDUwOTM3MDlaFw0yNTEyMDgxMjE4MDlaMDMxMTAvBgNV BAMTKEI0NjI1NTNDNjA5NDE2N0JCRjBBQjk1RjQ1MkNGRDE0NkUzQjk4MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIe1qHG+M3unP+uldIxNFoGY8v 4TB/VnTXUjz6bOwVzCwOjZipSUCej15R2bKqiTwlrVOxH9NnHWN+hqV1+thfjwQp MTRAFq91yDQFFHwrVe0VlLktRnJb1eNYwZF7YLoxhswqyXkEyFUcbyYBhMRAYPrB xhyvXVrsv11O/FpihngKdiH2pQnLezliVkSc+83azMa1nE9CjexEeg6AkuBiR0Uz 98j/MWwtpL2XDan2TtG9cHfLrNfW2O+aL80hkBdBB/XRwTLCsiokIM4t3KTEqH+q zxmtNlhyxDlCUGEpd8V5RqEhvVC8ubHbVMfXNm05Xx0HReotB/2PTLXiLQPhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtGJVPGCUFnu/CrlfRSz9FG47mBgwHwYDVR0j BBgwFoAUtel7cfr6JP+PorGjNVjYCpglTbIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 YWVkMDk4Yi00OWIxLTRmNTMtYjc1YS0yNzNlMTFjMjUxNDkvMC9CNUU5N0I3MUZB RkEyNEZGOEZBMkIxQTMzNTU4RDgwQTk4MjU0REIyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4MEE5ODI1 NERCMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWFlZDA5OGItNDliMS00ZjUzLWI3 NWEtMjczZTExYzI1MTQ5LzAvQjVFOTdCNzFGQUZBMjRGRjhGQTJCMUEzMzU1OEQ4 MEE5ODI1NERCMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFDkuVgKxLjCTJvPGKc/ul3/15qz1fAdV3/l KoNt8JeTFy7d4hQpfLVBe8SspxrgfubPfIK81K1qyTTPCW/dyFJNbVfwvw81B8eH m8vfbN7jAe1h9HuqA7hWKRJpJE+UUQSLZatJpPeuNeIdVZ29A5xBaUf5bjYvejrf euq7zVYU50Wi6uGFsXHVPOf9APkYedqiiqq0sB3hIxVL882d+ivUqzB6ykGW5Ps7 3iTUK+M4egIVIwgPMyflluEbFS86kmlt0qRi/m8FwYz20tf0TQU3iywqTYZ02CK/ QCW9pecku7gve/VL8al4qgWFHeX3l1ybU+u51d3/VA9YXWkj9TE= -----END CERTIFICATE-----Generated at Sat Dec 6 23:58:28 2025 by rpki-client