This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft File: 3308A0FBD29F359AD61CAA389208E1D74CC28164.mft (raw, json) Hash identifier: EnCKTnFie5k9GpVLnG87dOULZmp4UrkO5zhaZ1yy2Fo= Subject key identifier: 58:8D:19:C8:5A:7D:D9:B7:B3:EF:BF:49:03:D5:41:B2:97:2C:91:E8 Authority key identifier: 33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 Certificate issuer: /CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Certificate serial: 521F2F35CA2D556163843DD2C9E1DB436A570044 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft Manifest number: 010D Signing time: Fri 05 Dec 2025 07:32:24 +0000 Manifest this update: Fri 05 Dec 2025 07:27:24 +0000 Manifest next update: Mon 08 Dec 2025 16:37:24 +0000 Files and hashes: 1: 3308A0FBD29F359AD61CAA389208E1D74CC28164.crl (hash: 5n9fO5YTlFiTc3DoMdeV10tT6z/83eBpvegXg0vbQFM=) 2: 3132312e3130312e3138372e302f32342d3234203d3e203338373835.roa (hash: Hv2jdXQUlOnlnToQUuoVlZDHe+biYftXfxb3LM1GOc0=) 3: 3132312e3130312e3138392e302f32342d3234203d3e203338373835.roa (hash: Csz/yUZ7Lzvn/nuu4THB9U+el9Pek+D7VdsMj61HX6w=) 4: 3132312e3130312e3138362e302f32342d3234203d3e203338373835.roa (hash: ldyK2huQ95pUCINHnT0U5z7ALHHC4dFAFsmJktUnRJw=) 5: 3132312e3130312e3139302e302f32342d3234203d3e203338373835.roa (hash: db2ZBDbPQBZ+1fLhUcrVMNSFZdZMKLIQU1qfyXpKY5M=) 6: 3132312e3130312e3139312e302f32342d3234203d3e203338373835.roa (hash: EV9DFisiiygvSyZKF0tZ0Lxf1X12CCisGawptespLsI=) 7: 3132312e3130312e3138342e302f32342d3234203d3e203338373835.roa (hash: cpQ+yGOPRMcycDguY5pOMH22P4g6dN/h+7VVRFd0gvs=) 8: 3132312e3130312e3138382e302f32342d3234203d3e203338373835.roa (hash: jVBeyFMPWkiATlRCTVFrCw8EykcpuEgYVgn4T3UPT6M=) 9: 3132312e3130312e3138352e302f32342d3234203d3e203338373835.roa (hash: azmIwktH3vpajsF8gQt8znOMbH0C7Vn9MDVUjZva6CY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 16:37:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:1f:2f:35:ca:2d:55:61:63:84:3d:d2:c9:e1:db:43:6a:57:00:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3308A0FBD29F359AD61CAA389208E1D74CC28164 Validity Not Before: Dec 5 07:27:24 2025 GMT Not After : Dec 8 16:37:24 2025 GMT Subject: CN=588D19C85A7DD9B7B3EFBF4903D541B2972C91E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:b5:70:d2:3c:96:0a:c2:b8:23:8c:cd:c8: 2b:98:08:93:82:d5:4d:d7:ea:14:7c:ba:59:c8:aa: 6c:78:3a:5c:ea:15:fb:9d:07:32:c2:d9:4f:91:96: f3:70:e4:da:e1:ce:44:bf:64:b3:a2:30:d2:fc:d2: 41:80:70:68:e5:c5:c1:7b:34:63:38:b5:c9:e4:16: 55:b2:25:e1:3a:32:70:bf:59:9b:16:1a:e2:84:72: 35:74:64:0d:cc:3f:f2:74:53:02:3b:41:ff:52:c7: bd:b8:19:50:b3:1c:34:c7:67:ee:61:3c:d9:32:75: 10:ef:d2:20:ab:ac:62:89:6d:d2:0b:26:15:14:06: ce:f8:d5:f3:97:52:43:9f:3e:05:40:9a:60:7c:50: 25:95:b5:4c:15:77:35:b2:2e:15:81:47:b2:e4:0c: 2d:7c:13:98:2a:0a:79:04:58:ba:61:ec:a9:36:6a: 2d:37:a3:5d:87:82:d2:bb:5c:bf:f7:81:80:06:3b: 99:04:69:c2:14:97:92:b1:ac:93:2e:b4:fe:74:9e: e4:09:80:e8:0e:ca:16:62:40:e8:4f:c2:a0:8e:bf: b1:cd:8b:4b:fb:01:52:33:27:01:02:7f:36:7e:23: db:b2:b4:0f:9b:9f:54:99:24:29:1e:aa:ef:01:e7: ef:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:8D:19:C8:5A:7D:D9:B7:B3:EF:BF:49:03:D5:41:B2:97:2C:91:E8 X509v3 Authority Key Identifier: keyid:33:08:A0:FB:D2:9F:35:9A:D6:1C:AA:38:92:08:E1:D7:4C:C2:81:64 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3308A0FBD29F359AD61CAA389208E1D74CC28164.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a572dfbe-4ca0-4a46-8037-4968ed97cadc/0/3308A0FBD29F359AD61CAA389208E1D74CC28164.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3b:ee:02:2b:eb:85:b7:98:05:17:b9:ca:10:4f:2a:9c:76:e0: f5:4b:15:f1:00:3d:45:ec:c2:66:23:2e:4a:ae:4b:92:ed:7b: 79:56:76:97:05:c7:d9:96:3c:c1:ac:67:7b:87:11:0c:d0:b4: 45:9f:1e:03:3d:80:f8:d0:61:9a:96:5a:9e:d8:d8:17:7d:4e: f9:5c:d5:4d:14:6f:6b:04:e4:df:e8:7b:18:2a:ca:4e:c3:a0: d2:a4:5b:fa:46:75:03:b1:b6:1d:f4:7d:73:5e:f9:0f:5b:6f: 61:98:a3:11:23:4f:c0:f1:a7:1b:ed:30:46:c2:64:13:d8:64: 01:41:9a:34:3c:a2:19:f6:11:7f:c3:0e:02:d3:af:92:5d:ef: 7e:2d:37:c7:b8:78:47:44:a5:2b:0e:a8:00:32:8e:07:4d:69: e5:85:bd:b6:42:a2:1b:d4:46:ac:65:c4:1e:46:50:b1:90:4a: 99:02:7d:c8:51:90:23:68:1f:90:c6:47:84:97:d8:b1:d1:fe: c8:a7:1a:5d:0d:6f:fb:94:b4:59:fc:80:d8:98:52:10:7b:89: f0:57:de:bf:41:dc:c6:19:38:c1:16:44:3e:a7:ce:c7:93:95: 8d:c2:c9:35:a6:96:47:bf:12:fe:eb:db:db:cc:18:9a:b5:14: 80:6b:9d:3f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUh8vNcotVWFjhD3SyeHbQ2pXAEQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0 Q0MyODE2NDAeFw0yNTEyMDUwNzI3MjRaFw0yNTEyMDgxNjM3MjRaMDMxMTAvBgNV BAMTKDU4OEQxOUM4NUE3REQ5QjdCM0VGQkY0OTAzRDU0MUIyOTcyQzkxRTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoh7Vw0jyWCsK4I4zNyCuYCJOC 1U3X6hR8ulnIqmx4OlzqFfudBzLC2U+RlvNw5NrhzkS/ZLOiMNL80kGAcGjlxcF7 NGM4tcnkFlWyJeE6MnC/WZsWGuKEcjV0ZA3MP/J0UwI7Qf9Sx724GVCzHDTHZ+5h PNkydRDv0iCrrGKJbdILJhUUBs741fOXUkOfPgVAmmB8UCWVtUwVdzWyLhWBR7Lk DC18E5gqCnkEWLph7Kk2ai03o12HgtK7XL/3gYAGO5kEacIUl5KxrJMutP50nuQJ gOgOyhZiQOhPwqCOv7HNi0v7AVIzJwECfzZ+I9uytA+bn1SZJCkequ8B5++DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUWI0ZyFp92bez779JA9VBspcskegwHwYDVR0j BBgwFoAUMwig+9KfNZrWHKo4kgjh10zCgWQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NTcyZGZiZS00Y2EwLTRhNDYtODAzNy00OTY4ZWQ5N2NhZGMvMC8zMzA4QTBGQkQy OUYzNTlBRDYxQ0FBMzg5MjA4RTFENzRDQzI4MTY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUxRDc0Q0My ODE2NC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTU3MmRmYmUtNGNhMC00YTQ2LTgw MzctNDk2OGVkOTdjYWRjLzAvMzMwOEEwRkJEMjlGMzU5QUQ2MUNBQTM4OTIwOEUx RDc0Q0MyODE2NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADvuAivrhbeYBRe5yhBPKpx24PVLFfEAPUXs wmYjLkquS5Lte3lWdpcFx9mWPMGsZ3uHEQzQtEWfHgM9gPjQYZqWWp7Y2Bd9Tvlc 1U0Ub2sE5N/oexgqyk7DoNKkW/pGdQOxth30fXNe+Q9bb2GYoxEjT8DxpxvtMEbC ZBPYZAFBmjQ8ohn2EX/DDgLTr5Jd734tN8e4eEdEpSsOqAAyjgdNaeWFvbZCohvU RqxlxB5GULGQSpkCfchRkCNoH5DGR4SX2LHR/sinGl0Nb/uUtFn8gNiYUhB7ifBX 3r9B3MYZOMEWRD6nzseTlY3CyTWmlke/Ev7r29vMGJq1FIBrnT8= -----END CERTIFICATE-----Generated at Sun Dec 7 03:56:19 2025 by rpki-client