This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.mft (raw, json) Hash identifier: cZ+S8UQvxj/oyPjI+S/KBmOD0w6VG7MZ82dyEsXeRqQ= Subject key identifier: A0:58:25:9F:38:BF:AC:59:7A:6E:04:9D:47:09:C3:24:FE:CA:44:58 Authority key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Certificate issuer: /CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Certificate serial: 60063F91B8EC0B5C2EB0B3D8A575294670B08B7E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft Manifest number: 0242 Signing time: Fri 05 Dec 2025 07:21:53 +0000 Manifest this update: Fri 05 Dec 2025 07:16:53 +0000 Manifest next update: Mon 08 Dec 2025 08:38:53 +0000 Files and hashes: 1: 5DF7F909917C4DA09D7486E2B70323E7972B7675.crl (hash: Pyt9ynsnMOfKZiWUw7q3EoYEyfbib9lczjsIC0Ob89A=) 2: 3130332e3138362e3136372e302f32342d3234203d3e20313439373033.roa (hash: uTV9a8fdyT6ZmJ8NRNVsn4KQvmLK6xkJNJmzdYWe1pQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 08:38:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:06:3f:91:b8:ec:0b:5c:2e:b0:b3:d8:a5:75:29:46:70:b0:8b:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Validity Not Before: Dec 5 07:16:53 2025 GMT Not After : Dec 8 08:38:53 2025 GMT Subject: CN=A058259F38BFAC597A6E049D4709C324FECA4458 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c4:c1:cb:de:c0:19:30:af:c1:e8:00:e2:ba: 50:50:a3:18:9a:2b:48:3d:7d:eb:7b:47:0c:56:f9: 9f:50:98:96:16:66:7d:51:ef:7b:a2:be:53:d4:82: c3:09:13:0c:bb:fc:fa:0a:76:95:54:12:b9:f6:34: a8:22:33:25:27:5b:f8:f4:af:cc:7f:03:81:ce:4a: 33:47:77:84:a2:0e:6c:79:2f:74:a3:e6:35:5d:b0: e4:82:91:ee:e9:d4:98:46:7d:e2:89:70:5e:70:16: da:59:18:98:74:c4:54:3b:18:d2:a2:e1:05:36:8d: 70:6d:6b:9b:9b:44:b0:10:88:8c:ef:61:d3:99:bc: 43:94:fc:c7:57:e1:7b:ae:b4:86:f1:a2:54:85:b6: 4f:94:84:e1:35:50:0f:7f:34:59:b2:1f:94:6d:67: 50:8b:5d:0f:53:7a:a3:16:0e:78:62:12:db:72:c6: 5d:e1:9f:38:ab:a5:52:cc:28:50:25:f8:45:13:37: d9:58:af:4c:a1:6d:8c:bc:13:43:d7:c3:2d:2f:7a: 7d:59:98:2f:de:16:f6:bb:91:5e:dd:ab:56:74:0d: 5f:e6:8b:12:83:51:33:70:e0:4b:19:9b:78:81:76: 68:f6:6e:09:b3:ba:08:63:01:42:2b:b5:95:cf:cb: 39:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:58:25:9F:38:BF:AC:59:7A:6E:04:9D:47:09:C3:24:FE:CA:44:58 X509v3 Authority Key Identifier: keyid:5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d7:04:f8:34:94:69:d6:20:4c:fb:9a:50:a5:57:1b:01:b4:12: 99:6c:7d:38:8c:fd:41:8d:64:16:9c:bb:82:0c:0c:a2:08:23: 55:ad:48:c0:b3:f5:62:2f:85:b1:d1:b6:61:c0:a6:a4:ac:f3: 0e:25:b3:44:8c:5a:fc:54:34:14:71:ff:bd:ed:44:f0:b8:da: 07:8d:2b:28:74:eb:54:c6:30:c2:ce:a9:09:01:db:52:22:5a: 85:91:91:54:2e:41:ca:b9:39:ff:cd:f7:34:45:dd:30:2d:ca: 7d:7a:2b:84:32:b1:47:06:59:ab:be:8f:da:4f:3a:1f:bd:30: 3a:d0:d4:d3:5e:98:60:57:82:54:94:d1:b5:81:09:c8:db:38: 17:d7:2f:b5:7f:cf:bf:6e:09:a7:7f:d4:31:0a:3e:f8:82:48: c0:0d:91:f4:14:53:5b:e9:e4:29:97:89:dc:6c:61:5f:2c:23: 33:25:bc:7e:43:d5:27:dd:db:28:31:58:ad:02:1e:c6:7b:60: 73:51:9a:09:5b:74:c3:5a:12:48:0a:48:78:bd:24:8c:6d:b4: 25:e0:42:57:3d:59:36:56:67:73:d1:94:6a:6e:9c:45:9a:49: 0b:06:d8:7c:83:75:aa:38:af:29:42:f9:44:32:74:02:e9:28: 65:58:6a:f7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYAY/kbjsC1wusLPYpXUpRnCwi34wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5 NzJCNzY3NTAeFw0yNTEyMDUwNzE2NTNaFw0yNTEyMDgwODM4NTNaMDMxMTAvBgNV BAMTKEEwNTgyNTlGMzhCRkFDNTk3QTZFMDQ5RDQ3MDlDMzI0RkVDQTQ0NTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPxMHL3sAZMK/B6ADiulBQoxia K0g9fet7RwxW+Z9QmJYWZn1R73uivlPUgsMJEwy7/PoKdpVUErn2NKgiMyUnW/j0 r8x/A4HOSjNHd4SiDmx5L3Sj5jVdsOSCke7p1JhGfeKJcF5wFtpZGJh0xFQ7GNKi 4QU2jXBta5ubRLAQiIzvYdOZvEOU/MdX4XuutIbxolSFtk+UhOE1UA9/NFmyH5Rt Z1CLXQ9TeqMWDnhiEttyxl3hnzirpVLMKFAl+EUTN9lYr0yhbYy8E0PXwy0ven1Z mC/eFva7kV7dq1Z0DV/mixKDUTNw4EsZm3iBdmj2bgmzughjAUIrtZXPyzlZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoFglnzi/rFl6bgSdRwnDJP7KRFgwHwYDVR0j BBgwFoAUXff5CZF8TaCddIbitwMj55crdnUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k N2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMC81REY3RjkwOTkx N0M0REEwOUQ3NDg2RTJCNzAzMjNFNzk3MkI3Njc1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIzRTc5NzJC NzY3NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDdiNjRjM2UtYjEzZC00MjdhLWI5 ODItNDM5NDA3M2U1Y2Y1LzAvNURGN0Y5MDk5MTdDNERBMDlENzQ4NkUyQjcwMzIz RTc5NzJCNzY3NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANcE+DSUadYgTPuaUKVXGwG0EplsfTiM/UGN ZBacu4IMDKIII1WtSMCz9WIvhbHRtmHApqSs8w4ls0SMWvxUNBRx/73tRPC42geN Kyh061TGMMLOqQkB21IiWoWRkVQuQcq5Of/N9zRF3TAtyn16K4QysUcGWau+j9pP Oh+9MDrQ1NNemGBXglSU0bWBCcjbOBfXL7V/z79uCad/1DEKPviCSMANkfQUU1vp 5CmXidxsYV8sIzMlvH5D1Sfd2ygxWK0CHsZ7YHNRmglbdMNaEkgKSHi9JIxttCXg Qlc9WTZWZ3PRlGpunEWaSQsG2HyDdao4rylC+UQydALpKGVYavc= -----END CERTIFICATE-----Generated at Sun Dec 7 01:00:17 2025 by rpki-client