This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft File: 821049BBD22C335A50850F16AB159C0C6BCC28E5.mft (raw, json) Hash identifier: /JTR+5c3z24Y7oKMyIbyp5YysZ97A92n2/29izJQejU= Subject key identifier: E0:E6:2E:3C:3D:3F:6E:13:B4:4E:CA:20:0B:B6:A2:AD:3B:BE:08:5C Authority key identifier: 82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 Certificate issuer: /CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Certificate serial: 5350DB08156F16F941D28A82502C21E671021F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft Manifest number: 0263 Signing time: Fri 05 Dec 2025 18:41:48 +0000 Manifest this update: Fri 05 Dec 2025 18:36:48 +0000 Manifest next update: Mon 08 Dec 2025 23:20:48 +0000 Files and hashes: 1: 3130332e32312e39322e302f32342d3234203d3e20313331373338.roa (hash: ndyvXGLmi+s4jvx/l0C4JrK1SIn52emjpfzG2w+2lsw=) 2: 3130332e32312e39332e302f32342d3234203d3e20313331373338.roa (hash: Hx5e9eX/0MDiWg+S8NREaCwOHPQ1Onm3jq45DAvThoc=) 3: 821049BBD22C335A50850F16AB159C0C6BCC28E5.crl (hash: DQm/JkqA4aUsgZz3w+2Ryk3RPkN/UOBRZDldVQtBSXI=) 4: 3130332e32312e39352e302f32342d3234203d3e203435323935.roa (hash: WHp6+633q2Em0ghmTjJeCMByUXIoDLeS8IvSNmEh0gE=) 5: 3130332e32312e39342e302f32342d3234203d3e20313331373338.roa (hash: KCUnGn0DyBychM59+lv18yYznYr1wdm5Tf5W0sYTxbE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 23:20:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:50:db:08:15:6f:16:f9:41:d2:8a:82:50:2c:21:e6:71:02:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821049BBD22C335A50850F16AB159C0C6BCC28E5 Validity Not Before: Dec 5 18:36:48 2025 GMT Not After : Dec 8 23:20:48 2025 GMT Subject: CN=E0E62E3C3D3F6E13B44ECA200BB6A2AD3BBE085C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:3d:51:40:2e:27:10:66:0b:30:66:a4:5e:34: 2e:86:54:03:f6:64:74:b8:bc:42:1e:f3:b2:f8:62: 3e:0c:2d:96:c0:eb:f3:4a:84:8e:92:dc:1a:a8:61: 7a:77:ee:0b:83:ed:bd:fd:cf:d6:b4:92:e9:ec:c9: a3:ae:69:c4:12:37:49:8d:45:3e:66:b7:20:15:f9: 8d:b1:5d:da:8e:82:a1:d2:6a:d9:5b:e6:9f:c3:9c: a5:f5:d6:20:34:7e:76:8c:d2:d0:5c:f2:6b:cb:83: be:77:13:9f:73:9d:4e:19:43:0d:43:d3:25:77:40: bc:67:22:f5:ce:2b:96:af:5e:b1:5c:b8:c9:4d:48: 0c:7a:68:1d:a3:c1:b2:52:91:43:86:2c:86:79:06: fa:a9:ca:aa:21:6e:49:e0:36:9a:eb:c1:3a:d0:ba: e4:20:e7:9b:db:0e:0f:2c:b6:66:91:4b:9a:67:4f: 4c:85:ec:a4:13:49:17:95:43:43:d1:e4:af:c9:e1: 88:d9:75:31:f8:ab:11:c5:74:72:ca:1f:a1:ec:6d: 28:a4:2f:ab:a1:f5:c0:9e:1f:33:55:8b:16:d2:95: b0:f4:a7:52:3f:71:e1:db:0c:24:cd:c4:fc:bb:2b: 00:21:d0:8a:25:a1:2e:b3:f4:74:9a:b7:ef:f7:6c: bf:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E6:2E:3C:3D:3F:6E:13:B4:4E:CA:20:0B:B6:A2:AD:3B:BE:08:5C X509v3 Authority Key Identifier: keyid:82:10:49:BB:D2:2C:33:5A:50:85:0F:16:AB:15:9C:0C:6B:CC:28:E5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821049BBD22C335A50850F16AB159C0C6BCC28E5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8e18d-a047-4590-9e56-464a73e23c6c/0/821049BBD22C335A50850F16AB159C0C6BCC28E5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:b0:1c:7e:65:b4:38:0a:1c:b5:f9:3e:30:8e:db:43:f3:7d: 43:fa:77:9d:71:f3:cf:90:9c:53:c4:21:39:d3:5e:c4:7e:be: e9:6a:fb:bb:6f:94:58:ca:e0:d2:25:01:4e:50:53:a7:0e:08: aa:ee:99:b1:3a:a7:db:71:83:64:db:2a:21:c2:b4:65:9e:3b: 6c:8f:ac:b1:45:0c:b1:2d:c0:cb:58:42:f7:d0:1d:22:8d:30: 84:71:b2:f4:72:bc:aa:7f:05:9f:b2:ab:8c:94:ba:dc:56:47: 71:df:01:64:6c:90:9f:fd:31:c5:cc:01:2d:7a:04:87:14:74: b8:d3:a2:f0:fd:41:55:61:3d:12:23:38:2e:96:36:6f:e2:7a: 4a:c3:a9:51:46:c9:be:1c:ce:0c:96:0c:25:5b:21:18:0c:c3: 7b:cf:a7:ce:66:fa:9d:de:6d:9b:cf:83:d5:70:ae:8e:24:3d: f0:9c:6f:6f:a4:f4:16:5a:d8:09:dd:c5:97:47:ce:07:fe:1c: 74:63:c1:f5:d3:1a:9d:a3:a7:c1:d8:27:58:e1:99:4a:69:90: 0d:1e:f5:10:bd:3a:42:ab:ea:ad:dd:56:05:cb:20:d4:c2:8d: 19:77:33:dc:91:4d:0c:6a:d2:40:25:a2:a3:42:a0:17:73:af: 6d:42:a1:de -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITU1DbCBVvFvlB0oqCUCwh5nECHzANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg4MjEwNDlCQkQyMkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZC Q0MyOEU1MB4XDTI1MTIwNTE4MzY0OFoXDTI1MTIwODIzMjA0OFowMzExMC8GA1UE AxMoRTBFNjJFM0MzRDNGNkUxM0I0NEVDQTIwMEJCNkEyQUQzQkJFMDg1QzCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAN09UUAuJxBmCzBmpF40LoZUA/Zk dLi8Qh7zsvhiPgwtlsDr80qEjpLcGqhhenfuC4Ptvf3P1rSS6ezJo65pxBI3SY1F Pma3IBX5jbFd2o6CodJq2Vvmn8OcpfXWIDR+dozS0Fzya8uDvncTn3OdThlDDUPT JXdAvGci9c4rlq9esVy4yU1IDHpoHaPBslKRQ4YshnkG+qnKqiFuSeA2muvBOtC6 5CDnm9sODyy2ZpFLmmdPTIXspBNJF5VDQ9Hkr8nhiNl1MfirEcV0csofoextKKQv q6H1wJ4fM1WLFtKVsPSnUj9x4dsMJM3E/LsrACHQiiWhLrP0dJq37/dsv9sCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBTg5i48PT9uE7ROyiALtqKtO74IXDAfBgNVHSME GDAWgBSCEEm70iwzWlCFDxarFZwMa8wo5TAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Vk ZThlMThkLWEwNDctNDU5MC05ZTU2LTQ2NGE3M2UyM2M2Yy8wLzgyMTA0OUJCRDIy QzMzNUE1MDg1MEYxNkFCMTU5QzBDNkJDQzI4RTUuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi84MjEwNDlCQkQyMkMzMzVBNTA4NTBGMTZBQjE1OUMwQzZCQ0My OEU1LmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9lZGU4ZTE4ZC1hMDQ3LTQ1OTAtOWU1 Ni00NjRhNzNlMjNjNmMvMC84MjEwNDlCQkQyMkMzMzVBNTA4NTBGMTZBQjE1OUMw QzZCQ0MyOEU1Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEACLAcfmW0OAoctfk+MI7bQ/N9Q/p3nXHzz5Cc U8QhOdNexH6+6Wr7u2+UWMrg0iUBTlBTpw4Iqu6ZsTqn23GDZNsqIcK0ZZ47bI+s sUUMsS3Ay1hC99AdIo0whHGy9HK8qn8Fn7KrjJS63FZHcd8BZGyQn/0xxcwBLXoE hxR0uNOi8P1BVWE9EiM4LpY2b+J6SsOpUUbJvhzODJYMJVshGAzDe8+nzmb6nd5t m8+D1XCujiQ98Jxvb6T0FlrYCd3Fl0fOB/4cdGPB9dManaOnwdgnWOGZSmmQDR71 EL06Qqvqrd1WBcsg1MKNGXcz3JFNDGrSQCWio0KgF3OvbUKh3g== -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:49 2025 by rpki-client