This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft File: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft (raw, json) Hash identifier: 8K6BWZ9NMbXmTln05tdnz4Vvl+1q503lRKx3kzGAuV0= Subject key identifier: 1C:93:CD:93:F3:B8:40:6D:54:D5:2A:B1:5B:B3:91:8B:37:56:8F:AA Authority key identifier: 52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB Certificate issuer: /CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Certificate serial: 599F8CFA38B9E8EE7705CA31D9318CF064C1F2FF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft Manifest number: 04F6 Signing time: Sat 06 Dec 2025 08:10:54 +0000 Manifest this update: Sat 06 Dec 2025 08:05:54 +0000 Manifest next update: Tue 09 Dec 2025 19:25:54 +0000 Files and hashes: 1: 528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl (hash: 6OK/fdw1BbOQ8ols/H2e2svaMEqj+s+MD9/LQiAdBJc=) 2: 3130332e3139352e38392e302f32342d3234203d3e203538343034.roa (hash: 8vEqnPeXr9755NhRmkDVV3kvpgE2wfzA2jlzpFzSE/0=) 3: 3130332e3139352e39302e302f32332d3234203d3e203538343034.roa (hash: /RTTrDt1roX5iqnN5YmyZ+CyR+tqtyybCHqOwLYwxXI=) 4: 323030313a6466363a616330303a3a2f34382d3438203d3e203538343034.roa (hash: hmq0uoHwUsEo+oTXEtyTpYYQCEB74jpeYd9ceOhWLKI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:9f:8c:fa:38:b9:e8:ee:77:05:ca:31:d9:31:8c:f0:64:c1:f2:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB Validity Not Before: Dec 6 08:05:54 2025 GMT Not After : Dec 9 19:25:54 2025 GMT Subject: CN=1C93CD93F3B8406D54D52AB15BB3918B37568FAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:86:1a:88:c8:61:46:f2:eb:20:ec:bc:7c:ad: 1c:db:29:dd:fc:c4:73:22:80:c6:78:7d:cd:80:61: 3b:75:c7:3c:1c:18:19:23:0d:e6:4e:80:6e:99:87: ff:e7:7e:00:0f:12:bc:81:e5:38:30:f6:5f:dc:24: 16:e4:e4:4b:81:75:f6:a3:d3:fa:59:c9:b1:e6:b6: 6f:84:d6:8b:e7:f2:f8:d4:63:ad:f0:a6:18:0d:90: 4c:42:cc:b8:e3:24:3b:9a:75:d4:2c:d6:c6:1d:9b: 11:63:75:8a:ca:10:1b:e0:9f:66:bf:bb:6c:87:85: 4f:fa:29:79:63:53:2c:d9:be:25:1c:a8:6b:ea:2d: bc:56:18:a8:f4:46:bd:b7:70:64:7d:21:39:5b:b8: 23:43:a8:d9:2d:77:4d:c0:91:40:6e:8a:d0:91:8e: fd:08:80:91:03:0d:33:ec:1f:f8:0f:9f:51:93:a6: 9c:b8:97:90:41:58:39:9f:93:3f:af:95:62:33:b3: 79:75:69:42:a7:06:e7:e5:df:10:ad:aa:fc:c7:d2: cb:ee:ed:dd:77:a5:e3:2d:18:26:08:4f:42:84:ad: bd:91:a9:97:e1:e2:f8:3f:14:81:01:15:44:fe:bb: 9c:e0:1e:05:05:b3:d0:50:a5:95:4c:f5:65:45:f4: 27:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:93:CD:93:F3:B8:40:6D:54:D5:2A:B1:5B:B3:91:8B:37:56:8F:AA X509v3 Authority Key Identifier: keyid:52:8A:79:9E:94:BD:50:52:F6:F5:8A:CF:DD:9F:4D:ED:3A:0E:D5:BB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f98f19c3-e4e1-41a1-aaf0-d613aca4930c/0/528A799E94BD5052F6F58ACFDD9F4DED3A0ED5BB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0f:6a:e6:ad:de:17:13:61:2b:91:ff:61:5a:cf:92:5a:e7:56: 7e:7c:7c:3b:d6:cd:b7:21:45:95:71:55:52:e4:10:c9:89:a3: 2f:8e:9d:2f:e5:bf:1c:a4:c0:35:40:00:a7:41:c6:37:4a:cc: 9f:73:91:19:3a:c6:de:5e:b2:2a:61:d6:d0:17:0c:b1:6a:21: 5e:b7:de:81:c2:11:ba:19:72:0c:93:20:4e:ca:5e:b9:80:dd: d0:31:ae:bc:b3:27:20:38:b6:74:53:9c:e8:c8:d6:ee:bc:bb: 3d:fd:03:e1:a7:9a:eb:c3:d2:c7:15:9b:f4:50:ca:d8:0e:ae: 17:f4:8b:08:65:85:62:59:63:96:0c:44:e1:db:cd:29:21:41: 48:8d:6b:ac:36:72:b2:41:00:a5:40:ff:1a:4b:e9:1d:b0:b8: 82:af:cc:fb:d0:30:d8:2d:4f:0a:9d:68:0f:b8:11:8e:ea:23: 2c:fc:9b:51:85:f3:92:aa:10:f4:8a:aa:d2:3c:7d:1d:c8:65: 1a:d1:eb:38:9e:e6:b5:aa:81:6d:e3:b9:7f:79:a4:11:a6:a4: 97:c3:c7:25:a2:2e:bf:e9:a2:17:aa:07:06:6b:c5:c6:7d:e7: 37:63:c9:a9:fb:c6:4b:ae:7a:c0:28:6a:e6:ea:ee:4f:36:18: 88:25:cf:ed -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWZ+M+ji56O53Bcox2TGM8GTB8v8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQz QTBFRDVCQjAeFw0yNTEyMDYwODA1NTRaFw0yNTEyMDkxOTI1NTRaMDMxMTAvBgNV BAMTKDFDOTNDRDkzRjNCODQwNkQ1NEQ1MkFCMTVCQjM5MThCMzc1NjhGQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDdhhqIyGFG8usg7Lx8rRzbKd38 xHMigMZ4fc2AYTt1xzwcGBkjDeZOgG6Zh//nfgAPEryB5Tgw9l/cJBbk5EuBdfaj 0/pZybHmtm+E1ovn8vjUY63wphgNkExCzLjjJDuaddQs1sYdmxFjdYrKEBvgn2a/ u2yHhU/6KXljUyzZviUcqGvqLbxWGKj0Rr23cGR9ITlbuCNDqNktd03AkUBuitCR jv0IgJEDDTPsH/gPn1GTppy4l5BBWDmfkz+vlWIzs3l1aUKnBufl3xCtqvzH0svu 7d13peMtGCYIT0KErb2RqZfh4vg/FIEBFUT+u5zgHgUFs9BQpZVM9WVF9CfRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUHJPNk/O4QG1U1SqxW7ORizdWj6owHwYDVR0j BBgwFoAUUop5npS9UFL29YrP3Z9N7ToO1bswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m OThmMTljMy1lNGUxLTQxYTEtYWFmMC1kNjEzYWNhNDkzMGMvMC81MjhBNzk5RTk0 QkQ1MDUyRjZGNThBQ0ZERDlGNERFRDNBMEVENUJCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRERUQzQTBF RDVCQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjk4ZjE5YzMtZTRlMS00MWExLWFh ZjAtZDYxM2FjYTQ5MzBjLzAvNTI4QTc5OUU5NEJENTA1MkY2RjU4QUNGREQ5RjRE RUQzQTBFRDVCQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA9q5q3eFxNhK5H/YVrPklrnVn58fDvWzbch RZVxVVLkEMmJoy+OnS/lvxykwDVAAKdBxjdKzJ9zkRk6xt5esiph1tAXDLFqIV63 3oHCEboZcgyTIE7KXrmA3dAxrryzJyA4tnRTnOjI1u68uz39A+GnmuvD0scVm/RQ ytgOrhf0iwhlhWJZY5YMROHbzSkhQUiNa6w2crJBAKVA/xpL6R2wuIKvzPvQMNgt TwqdaA+4EY7qIyz8m1GF85KqEPSKqtI8fR3IZRrR6zie5rWqgW3juX95pBGmpJfD xyWiLr/poheqBwZrxcZ95zdjyan7xkuuesAoaubq7k82GIglz+0= -----END CERTIFICATE-----Generated at Sun Dec 7 02:49:38 2025 by rpki-client