This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft File: 70FE5658A7C2993DC505F75545A128384472227E.mft (raw, json) Hash identifier: lRuN5JuDxPwm53QhGn2ohMdezY+c9+7idr3prXMGuhQ= Subject key identifier: 44:54:36:87:1B:EE:7E:47:64:98:19:D4:BB:0E:F4:F3:4E:DA:89:46 Authority key identifier: 70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E Certificate issuer: /CN=70FE5658A7C2993DC505F75545A128384472227E Certificate serial: 5066AE3844C30217AAA3771BA54A89D7272FA2C7 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft Manifest number: 0289 Signing time: Fri 05 Dec 2025 04:41:18 +0000 Manifest this update: Fri 05 Dec 2025 04:36:18 +0000 Manifest next update: Mon 08 Dec 2025 16:02:18 +0000 Files and hashes: 1: 3130332e3137392e3234382e302f32342d3234203d3e2039333431.roa (hash: gLStYnptht5TyqoGXBL5Rk0CVBS4ZoGmnO4HsnZPkL0=) 2: 3130332e3137392e3234382e302f32332d3233203d3e2039333431.roa (hash: Q5pvwdFKL1lgBG6fYcr2yl0tesQth6vA5guIwHg8TXM=) 3: 70FE5658A7C2993DC505F75545A128384472227E.crl (hash: wrU3jh11+j+EaTNq8NhA1/M+4XlhwNja6XJ5h/PcOpM=) 4: 3130332e3137392e3234392e302f32342d3234203d3e2039333431.roa (hash: VpIKxGpnGG5kY+TxgaFm5MAMJ5OPwOweNd+seLyS58Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 16:02:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:66:ae:38:44:c3:02:17:aa:a3:77:1b:a5:4a:89:d7:27:2f:a2:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70FE5658A7C2993DC505F75545A128384472227E Validity Not Before: Dec 5 04:36:18 2025 GMT Not After : Dec 8 16:02:18 2025 GMT Subject: CN=445436871BEE7E47649819D4BB0EF4F34EDA8946 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:6a:2b:10:e8:b9:86:b5:13:e3:68:86:a6:36: 23:9e:db:49:bc:53:67:16:af:04:90:c3:a8:ad:f3: 40:ef:55:03:e4:a5:f5:f5:a1:b1:d9:92:bd:61:aa: 8a:da:56:82:04:f3:e7:f2:d1:8e:9a:f3:bb:da:7a: 6f:a6:46:4e:44:c5:48:4b:cd:51:a3:d8:48:3d:8e: 16:cf:fe:cf:81:99:3c:05:00:7d:29:8d:1f:ed:17: 12:8c:1d:66:7a:b5:9b:fa:7a:b5:4b:9f:f3:fb:e2: 5e:48:29:6f:75:dd:4c:55:82:d3:5b:8a:f9:0b:ae: d0:a7:c8:f8:6d:4f:95:79:24:50:a9:eb:6f:4d:12: f0:e5:e7:04:8a:61:81:9d:46:ec:45:db:bb:cc:53: 57:fa:a3:6f:62:c5:a9:6d:f4:42:00:6d:07:00:4f: b5:92:59:4a:43:85:32:ef:55:e4:b3:27:3a:b7:88: b0:fe:7e:ce:88:22:34:ce:eb:88:54:6a:fc:a1:69: c7:58:9b:4e:f5:ce:33:af:54:02:34:ff:49:8e:6d: d1:05:36:a2:79:e5:35:60:66:54:74:fc:99:3b:3f: 60:e5:11:2c:49:4a:d2:73:4c:eb:9a:fe:c7:6e:41: 38:3a:c4:c5:38:be:eb:2f:63:f8:65:75:42:68:11: fe:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:54:36:87:1B:EE:7E:47:64:98:19:D4:BB:0E:F4:F3:4E:DA:89:46 X509v3 Authority Key Identifier: keyid:70:FE:56:58:A7:C2:99:3D:C5:05:F7:55:45:A1:28:38:44:72:22:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/70FE5658A7C2993DC505F75545A128384472227E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a95901cc-1b8e-4f3f-a3d0-3269f0e16c41/0/70FE5658A7C2993DC505F75545A128384472227E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 44:63:37:2a:35:be:3c:8d:78:46:21:59:97:95:60:bc:0e:4d: 5e:b6:ed:b5:75:e4:94:5f:c9:45:52:8d:ab:5a:41:25:24:c1: 5c:2f:2d:36:7c:e0:30:1c:6c:5e:83:a2:43:a6:02:10:8e:e8: f5:09:19:05:ea:7c:0e:14:79:19:7c:0e:76:4d:8d:52:c9:59: 19:9e:20:0c:22:73:eb:c8:ce:87:bc:e9:ac:0d:94:0c:3b:8f: dc:4a:54:02:6b:8d:2a:fd:39:0a:ee:c1:be:3f:20:9d:31:2a: 70:06:46:f8:55:e6:ba:f4:94:56:42:15:be:3f:7c:ce:8b:40: b3:08:2c:62:7d:e1:2e:22:7d:98:96:88:41:03:bc:fa:6e:12: 1d:27:e4:8f:ef:39:93:7e:44:7a:03:cf:b4:27:db:61:86:bb: 38:7e:75:39:f8:5d:a9:fe:c6:59:08:3e:ca:a6:e0:f0:a0:9c: 60:39:61:97:d9:e0:da:e1:03:c8:45:79:68:68:0b:f5:2b:1c: 21:d2:7f:e8:9f:1e:78:40:c9:ba:7b:5a:19:e8:8d:c2:bb:d5: eb:0a:3b:89:4e:bb:59:68:10:11:27:3c:0f:0e:41:f5:54:1f: 87:6c:05:56:97:0a:60:9b:c0:ec:9b:06:cf:f6:cd:a5:5b:15: 31:55:c3:74 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUGauOETDAheqo3cbpUqJ1ycvoscwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0 NDcyMjI3RTAeFw0yNTEyMDUwNDM2MThaFw0yNTEyMDgxNjAyMThaMDMxMTAvBgNV BAMTKDQ0NTQzNjg3MUJFRTdFNDc2NDk4MTlENEJCMEVGNEYzNEVEQTg5NDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDfaisQ6LmGtRPjaIamNiOe20m8 U2cWrwSQw6it80DvVQPkpfX1obHZkr1hqoraVoIE8+fy0Y6a87vaem+mRk5ExUhL zVGj2Eg9jhbP/s+BmTwFAH0pjR/tFxKMHWZ6tZv6erVLn/P74l5IKW913UxVgtNb ivkLrtCnyPhtT5V5JFCp629NEvDl5wSKYYGdRuxF27vMU1f6o29ixalt9EIAbQcA T7WSWUpDhTLvVeSzJzq3iLD+fs6IIjTO64hUavyhacdYm071zjOvVAI0/0mObdEF NqJ55TVgZlR0/Jk7P2DlESxJStJzTOua/sduQTg6xMU4vusvY/hldUJoEf4lAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURFQ2hxvufkdkmBnUuw70807aiUYwHwYDVR0j BBgwFoAUcP5WWKfCmT3FBfdVRaEoOERyIn4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h OTU5MDFjYy0xYjhlLTRmM2YtYTNkMC0zMjY5ZjBlMTZjNDEvMC83MEZFNTY1OEE3 QzI5OTNEQzUwNUY3NTU0NUExMjgzODQ0NzIyMjdFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4Mzg0NDcy MjI3RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTk1OTAxY2MtMWI4ZS00ZjNmLWEz ZDAtMzI2OWYwZTE2YzQxLzAvNzBGRTU2NThBN0MyOTkzREM1MDVGNzU1NDVBMTI4 Mzg0NDcyMjI3RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAERjNyo1vjyNeEYhWZeVYLwOTV627bV15JRf yUVSjataQSUkwVwvLTZ84DAcbF6DokOmAhCO6PUJGQXqfA4UeRl8DnZNjVLJWRme IAwic+vIzoe86awNlAw7j9xKVAJrjSr9OQruwb4/IJ0xKnAGRvhV5rr0lFZCFb4/ fM6LQLMILGJ94S4ifZiWiEEDvPpuEh0n5I/vOZN+RHoDz7Qn22GGuzh+dTn4Xan+ xlkIPsqm4PCgnGA5YZfZ4NrhA8hFeWhoC/UrHCHSf+ifHnhAybp7WhnojcK71esK O4lOu1loEBEnPA8OQfVUH4dsBVaXCmCbwOybBs/2zaVbFTFVw3Q= -----END CERTIFICATE-----Generated at Sat Dec 6 23:15:05 2025 by rpki-client