This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: eFae513NCN2eyAGFXQGTApi/fBluUEUceLgpxIFQnDs= Subject key identifier: 48:4D:07:2E:62:AE:7B:6A:3F:9C:45:3D:86:9F:6B:B3:D8:80:1E:80 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 221919EF5321123336B71521DB5CABB2A415F10A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: A8 Signing time: Fri 05 Dec 2025 01:00:41 +0000 Manifest this update: Fri 05 Dec 2025 00:55:41 +0000 Manifest next update: Mon 08 Dec 2025 09:08:41 +0000 Files and hashes: 1: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: FsEtG/qOvfPWBSS2WwJMbu7N+fiKpa2rJ2E/Ow3aGrE=) 2: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: /bOtG6Hq4cCxQBrZ1Nbmvs+Hrm8cpxmM7Q2j13q5aYY=) 3: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: E7LmVcTtrOc0QLca3OKgAjrGPUq24WcKvpibpJhqwMo=) 4: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: E4Gvpo5D/NeUbbz+zUDpV78niTppp2APH+i1gYLD2PM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 09:08:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:19:19:ef:53:21:12:33:36:b7:15:21:db:5c:ab:b2:a4:15:f1:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Dec 5 00:55:41 2025 GMT Not After : Dec 8 09:08:41 2025 GMT Subject: CN=484D072E62AE7B6A3F9C453D869F6BB3D8801E80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:2a:61:cb:f2:5a:8f:11:62:b7:fb:e5:06:81: bc:56:8a:75:84:58:e8:21:3a:ac:57:25:17:f8:0f: 61:7c:79:f4:98:c8:6a:e3:1d:14:13:f2:3f:1f:e5: 69:85:d2:9d:be:94:15:27:16:12:82:d9:99:bc:5b: 4c:f4:0d:0d:32:bb:ea:0c:9b:5c:d9:06:98:43:d6: d1:ff:35:18:a2:b4:0e:e1:31:8f:78:85:68:04:76: 7b:8b:73:64:6f:38:4f:af:3e:8d:f2:ce:ae:66:a7: 80:a6:4f:9b:57:36:75:e1:9a:61:c1:22:dd:2e:4e: 15:ab:41:a7:e3:94:d7:bb:56:de:62:b5:03:a5:79: 41:14:32:7b:78:79:6e:41:56:56:08:0e:5e:d4:d1: 7b:1b:d0:ef:65:ad:2d:1a:1e:20:ad:26:f5:2f:85: d2:3d:74:b6:5c:ab:01:ff:a0:d6:e2:1d:5f:85:a6: 77:7f:78:e1:52:ce:b0:3d:38:15:38:63:ce:e7:61: c7:71:b8:a0:c1:e2:81:72:ea:10:1b:d8:f1:dc:6d: 1c:9e:bc:ad:96:16:f2:38:ef:da:ed:dd:e5:31:a4: f7:4c:7e:e2:13:5f:b2:58:bd:c1:00:40:d2:99:c6: 4f:fc:b7:84:dc:f5:7b:00:a9:da:01:cb:df:3c:68: 9b:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:4D:07:2E:62:AE:7B:6A:3F:9C:45:3D:86:9F:6B:B3:D8:80:1E:80 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:7c:62:34:a1:e7:55:cd:31:25:bc:92:02:35:3d:38:9d:59: 59:8b:41:7e:09:65:04:cd:84:81:b0:d3:68:23:4f:71:15:36: 6e:6c:4e:d2:8f:99:ef:9f:97:b9:f7:4d:67:af:61:16:65:cf: 0a:d6:39:ea:39:df:1a:63:71:bf:f2:d7:79:73:6c:b5:5b:3c: 58:22:7e:de:f6:50:22:9c:62:0b:52:57:c8:cd:2f:d2:4d:84: 3a:4c:15:85:1b:a7:85:b9:a3:79:07:d7:19:4a:b2:61:40:c5: b5:32:f0:07:5a:87:60:20:07:04:b5:01:d0:3a:42:72:c7:5f: 4e:79:c1:fa:01:e9:c5:80:99:39:4e:c9:99:85:d1:83:9b:5b: 9a:6a:77:02:82:b2:3e:5e:fb:11:53:99:62:69:76:ed:a3:2f: 0e:ad:84:87:47:e9:09:24:40:ca:a4:6c:94:9f:99:8e:2d:d9: 80:db:26:be:34:47:21:ac:a0:d6:a3:87:aa:8d:44:33:69:74: e7:5f:db:ed:53:08:38:75:4c:00:da:03:5c:18:15:d6:84:2f: 66:8d:e8:d5:a3:61:54:7d:c8:a9:48:1b:6c:7f:f6:fa:2e:2e: 29:4c:e1:43:51:4e:53:51:1f:41:df:2e:be:c7:23:36:96:da: 62:6e:bc:0f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUIhkZ71MhEjM2txUh21yrsqQV8QowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTEyMDUwMDU1NDFaFw0yNTEyMDgwOTA4NDFaMDMxMTAvBgNV BAMTKDQ4NEQwNzJFNjJBRTdCNkEzRjlDNDUzRDg2OUY2QkIzRDg4MDFFODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgKmHL8lqPEWK3++UGgbxWinWE WOghOqxXJRf4D2F8efSYyGrjHRQT8j8f5WmF0p2+lBUnFhKC2Zm8W0z0DQ0yu+oM m1zZBphD1tH/NRiitA7hMY94hWgEdnuLc2RvOE+vPo3yzq5mp4CmT5tXNnXhmmHB It0uThWrQafjlNe7Vt5itQOleUEUMnt4eW5BVlYIDl7U0Xsb0O9lrS0aHiCtJvUv hdI9dLZcqwH/oNbiHV+Fpnd/eOFSzrA9OBU4Y87nYcdxuKDB4oFy6hAb2PHcbRye vK2WFvI479rt3eUxpPdMfuITX7JYvcEAQNKZxk/8t4Tc9XsAqdoBy988aJsnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSE0HLmKue2o/nEU9hp9rs9iAHoAwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGJ8YjSh51XNMSW8kgI1PTidWVmLQX4JZQTN hIGw02gjT3EVNm5sTtKPme+fl7n3TWevYRZlzwrWOeo53xpjcb/y13lzbLVbPFgi ft72UCKcYgtSV8jNL9JNhDpMFYUbp4W5o3kH1xlKsmFAxbUy8Adah2AgBwS1AdA6 QnLHX055wfoB6cWAmTlOyZmF0YObW5pqdwKCsj5e+xFTmWJpdu2jLw6thIdH6Qkk QMqkbJSfmY4t2YDbJr40RyGsoNajh6qNRDNpdOdf2+1TCDh1TADaA1wYFdaEL2aN 6NWjYVR9yKlIG2x/9vouLilM4UNRTlNRH0HfLr7HIzaW2mJuvA8= -----END CERTIFICATE-----Generated at Sun Dec 7 04:56:01 2025 by rpki-client