This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft File: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft (raw, json) Hash identifier: /66E2ZqpVJJKsL7f2PPR8MGF5g2GjluQa2f6u8bL6qA= Subject key identifier: B9:DA:A2:D6:14:11:56:9A:1F:91:0C:AC:71:73:48:C6:BB:F7:D0:35 Authority key identifier: 58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF Certificate issuer: /CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Certificate serial: 50CDD51524B9AFA792606A3FE2B3C28D3A7B594E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft Manifest number: 04F5 Signing time: Sat 06 Dec 2025 11:11:28 +0000 Manifest this update: Sat 06 Dec 2025 11:06:28 +0000 Manifest next update: Tue 09 Dec 2025 16:53:28 +0000 Files and hashes: 1: 3130332e3133382e3132372e302f32342d3234203d3e20313338383531.roa (hash: 8uluz9oQUOC33A/yP5J6qEWwFa5BN6LUXooNJ8KA6Pw=) 2: 586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl (hash: nqSIV70gaqOcjZ0EYQCbjNWuYg6tufq10smvQX+nQR4=) 3: 323030313a6466303a336538303a3a2f34382d3438203d3e20313338383531.roa (hash: z4oYCZWDew+XBZrkivYPBIEa8esU/2et9t2LDZPakkY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:cd:d5:15:24:b9:af:a7:92:60:6a:3f:e2:b3:c2:8d:3a:7b:59:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=586FE8D27FF4D6BD4FA839FC58844A4B03D535DF Validity Not Before: Dec 6 11:06:28 2025 GMT Not After : Dec 9 16:53:28 2025 GMT Subject: CN=B9DAA2D61411569A1F910CAC717348C6BBF7D035 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:74:49:a0:23:f2:59:4b:9a:36:55:e5:cd:db: 78:61:be:92:e5:79:32:0a:55:a4:9f:ab:26:af:dc: 96:5b:25:25:13:97:ee:96:56:33:52:ec:c6:a4:70: af:4e:c7:cd:73:32:e7:e4:50:13:56:6c:59:81:fb: 17:0c:13:de:35:a0:21:c1:d6:0f:d1:25:49:3a:14: 5e:8f:36:70:be:ef:fe:3a:f0:30:8b:6b:39:41:55: fd:6c:cf:f9:01:19:5b:34:7f:b1:b6:bc:3f:93:75: 5b:36:f1:a4:1f:3f:97:0e:73:c3:2f:57:c4:56:4f: b1:93:d4:53:d7:21:85:73:3d:d1:3d:ef:d3:4d:ec: 0d:29:41:a2:21:3d:c9:10:67:6e:87:03:69:0c:a2: cd:c7:35:f9:03:a4:7b:e7:c4:59:9c:56:8e:4d:02: 20:a4:2f:ed:57:ca:6f:83:62:cc:5e:66:6a:25:12: ab:c7:d4:2f:80:f9:e2:99:b6:8b:a6:d9:8b:c2:2d: 84:0b:87:66:1b:01:ef:74:ef:3e:be:ec:1d:ec:f6: e8:08:74:d7:53:a4:1b:7d:c0:d3:53:a2:b2:bb:cf: b1:25:b3:4e:e1:65:2c:82:81:a5:d4:ae:af:e6:a9: 73:ce:73:8d:4b:80:b5:1d:49:d0:56:4a:18:e4:75: 1c:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:DA:A2:D6:14:11:56:9A:1F:91:0C:AC:71:73:48:C6:BB:F7:D0:35 X509v3 Authority Key Identifier: keyid:58:6F:E8:D2:7F:F4:D6:BD:4F:A8:39:FC:58:84:4A:4B:03:D5:35:DF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bc072db7-0127-4564-8d20-bced525a14b8/0/586FE8D27FF4D6BD4FA839FC58844A4B03D535DF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8e:47:a2:99:fb:8c:a9:d3:6d:64:49:c9:d8:8f:d1:62:1f:34: ec:b0:5c:8c:c0:23:33:7a:51:0e:8e:19:94:47:76:56:fb:90: 82:45:3e:1e:c5:e6:05:25:85:99:29:95:dc:8c:1c:12:85:2a: 84:11:d7:9c:57:c6:13:8f:f6:56:de:57:88:88:26:2a:4a:b4: b3:85:ac:3d:91:d5:fb:bf:c7:13:29:f0:8d:62:b7:7f:47:2c: ab:76:dc:38:16:59:3f:82:fc:ee:1f:fe:38:05:a0:82:79:b3: 59:b0:a4:61:77:be:45:22:39:92:5a:3c:7b:ac:bc:23:ab:97: e9:1c:0b:d8:ab:c4:03:d7:8a:8f:d5:ba:ab:a4:b3:5d:1c:9c: 02:93:8a:48:72:8e:a1:68:63:9b:f6:8a:1f:0f:ef:54:8d:e2: fc:a8:00:95:bf:06:18:52:3c:6c:76:8c:08:ce:7b:76:c6:5a: 4c:0e:6e:e6:56:7e:f9:62:cb:46:43:45:65:28:17:64:53:5e: f7:cd:88:97:e6:62:e8:45:87:ce:2b:aa:d3:b2:d4:4c:24:6e: 94:3e:4b:2a:69:85:40:93:b8:da:a1:14:6e:a9:03:50:a6:10: 17:72:64:74:90:c3:28:3a:83:15:51:91:93:c1:6c:41:98:46: 4e:44:ae:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUM3VFSS5r6eSYGo/4rPCjTp7WU4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIw M0Q1MzVERjAeFw0yNTEyMDYxMTA2MjhaFw0yNTEyMDkxNjUzMjhaMDMxMTAvBgNV BAMTKEI5REFBMkQ2MTQxMTU2OUExRjkxMENBQzcxNzM0OEM2QkJGN0QwMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDGdEmgI/JZS5o2VeXN23hhvpLl eTIKVaSfqyav3JZbJSUTl+6WVjNS7MakcK9Ox81zMufkUBNWbFmB+xcME941oCHB 1g/RJUk6FF6PNnC+7/468DCLazlBVf1sz/kBGVs0f7G2vD+TdVs28aQfP5cOc8Mv V8RWT7GT1FPXIYVzPdE979NN7A0pQaIhPckQZ26HA2kMos3HNfkDpHvnxFmcVo5N AiCkL+1Xym+DYsxeZmolEqvH1C+A+eKZtoum2YvCLYQLh2YbAe907z6+7B3s9ugI dNdTpBt9wNNTorK7z7Els07hZSyCgaXUrq/mqXPOc41LgLUdSdBWShjkdRy3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUudqi1hQRVpofkQyscXNIxrv30DUwHwYDVR0j BBgwFoAUWG/o0n/01r1PqDn8WIRKSwPVNd8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i YzA3MmRiNy0wMTI3LTQ1NjQtOGQyMC1iY2VkNTI1YTE0YjgvMC81ODZGRThEMjdG RjRENkJENEZBODM5RkM1ODg0NEE0QjAzRDUzNURGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRBNEIwM0Q1 MzVERi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmMwNzJkYjctMDEyNy00NTY0LThk MjAtYmNlZDUyNWExNGI4LzAvNTg2RkU4RDI3RkY0RDZCRDRGQTgzOUZDNTg4NDRB NEIwM0Q1MzVERi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI5Hopn7jKnTbWRJydiP0WIfNOywXIzAIzN6 UQ6OGZRHdlb7kIJFPh7F5gUlhZkpldyMHBKFKoQR15xXxhOP9lbeV4iIJipKtLOF rD2R1fu/xxMp8I1it39HLKt23DgWWT+C/O4f/jgFoIJ5s1mwpGF3vkUiOZJaPHus vCOrl+kcC9irxAPXio/Vuquks10cnAKTikhyjqFoY5v2ih8P71SN4vyoAJW/BhhS PGx2jAjOe3bGWkwObuZWfvliy0ZDRWUoF2RTXvfNiJfmYuhFh84rqtOy1EwkbpQ+ SypphUCTuNqhFG6pA1CmEBdyZHSQwyg6gxVRkZPBbEGYRk5Erts= -----END CERTIFICATE-----Generated at Sun Dec 7 01:50:19 2025 by rpki-client