This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft File: 5B558AD01277C8212C974318B6352FB28BF683AD.mft (raw, json) Hash identifier: ydOqUz5XDEhf/swP6trExGY67o5dcVaX1CGA0atZL9E= Subject key identifier: 5F:5B:D1:9D:33:23:2F:96:FA:43:85:80:C3:2C:8F:D1:BE:D7:D9:01 Authority key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Certificate issuer: /CN=5B558AD01277C8212C974318B6352FB28BF683AD Certificate serial: 6BBA754C9B1F7BAFE3AE2886284C6E445B277C39 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft Manifest number: 01E2 Signing time: Sat 06 Dec 2025 08:00:54 +0000 Manifest this update: Sat 06 Dec 2025 07:55:54 +0000 Manifest next update: Tue 09 Dec 2025 15:25:54 +0000 Files and hashes: 1: 3130332e3139362e34302e302f32342d3234203d3e20313530323030.roa (hash: IAfCc36b+ZuLfkNXk9UGXWqhcIrd0+kkw00XJdFWpic=) 2: 3130332e3139362e34312e302f32342d3234203d3e20313530323030.roa (hash: ZDqeHH9c3Ge8DQKLptNu9Fe3zE45Y025wBi0fQHXBeg=) 3: 5B558AD01277C8212C974318B6352FB28BF683AD.crl (hash: KnuaJh/jmMV4Sxz/oRNjpdQPVkOB4iHjbywAMg8HRq4=) 4: 3130332e3139362e34302e302f32332d3233203d3e20313530323030.roa (hash: cCo2j3DaRw7ST6xKRFKIc+Fk9WAeawaQpPCFHRoRW38=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:25:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ba:75:4c:9b:1f:7b:af:e3:ae:28:86:28:4c:6e:44:5b:27:7c:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B558AD01277C8212C974318B6352FB28BF683AD Validity Not Before: Dec 6 07:55:54 2025 GMT Not After : Dec 9 15:25:54 2025 GMT Subject: CN=5F5BD19D33232F96FA438580C32C8FD1BED7D901 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:66:5b:8e:d7:a6:e3:2e:8e:b2:df:1f:ba:ea: 28:c2:2f:24:37:da:d2:dd:7f:44:67:b9:8d:0e:a4: 73:36:1a:79:d3:a6:aa:d4:e1:36:85:f8:30:8f:89: 08:99:31:03:9b:42:97:43:df:fb:10:91:aa:54:39: 51:a1:c5:f5:ce:98:82:87:21:bf:da:33:8f:04:21: df:c4:65:12:da:bb:5d:33:33:aa:89:34:a3:23:72: ba:de:df:d7:93:a0:f5:46:20:c8:0e:41:2e:8c:d4: 56:6a:41:37:75:a2:c1:e1:a0:c8:ae:cf:d9:8e:b2: a4:a6:cf:01:2f:eb:44:fe:14:8a:7d:77:0c:f6:0f: 36:e3:17:b1:52:d1:2a:29:f9:ea:9b:c6:0f:27:e4: fb:85:d8:d6:39:2e:de:1e:16:38:a7:0b:49:09:c6: 53:79:94:bb:2d:cd:6a:67:d6:9d:55:d0:02:3f:05: f3:96:4f:14:6a:41:a9:a6:18:d0:e2:6c:e4:71:36: d9:c9:60:82:bf:21:4d:44:cd:af:c8:6e:5c:8e:17: 07:0e:60:43:d3:12:93:d1:74:d6:e0:62:5f:0e:fe: 95:0a:a4:fe:2a:bc:33:fe:4c:62:24:c5:cf:29:20: 88:68:ff:d6:af:84:8f:02:d5:64:e7:77:7e:1d:a8: f0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:5B:D1:9D:33:23:2F:96:FA:43:85:80:C3:2C:8F:D1:BE:D7:D9:01 X509v3 Authority Key Identifier: keyid:5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7f:d3:82:ee:64:4d:fc:d4:b2:94:84:ca:63:18:45:5a:91:d4: 79:b7:c6:39:f6:0d:7e:04:0e:b7:69:f2:4b:b0:40:92:1a:02: 04:a0:33:39:c0:cc:60:1a:07:db:94:96:a0:0e:9e:a6:63:21: 4a:52:57:8b:64:d7:44:41:1e:54:1e:49:92:31:ce:24:8a:04: 05:77:80:d1:e5:88:b4:e7:25:0c:38:bb:55:fc:9b:b5:05:db: 21:f9:42:2b:8a:a7:76:e3:73:a1:0e:0e:9f:3c:ad:a4:83:81: 4f:de:55:3e:5d:5b:fd:c3:7a:75:10:fa:5f:dc:c6:e8:d3:99: 92:75:51:96:32:40:67:17:6c:04:9b:1d:a4:c7:01:6b:7a:69: 93:99:0d:01:e1:91:c4:19:b8:c0:ed:2a:8e:5c:db:f1:ae:0c: 22:b9:f6:06:ab:95:2e:eb:7d:f1:07:e8:83:60:37:c0:73:46: ce:a1:1b:a7:63:66:eb:28:1f:eb:63:0b:2c:69:46:4f:28:df: f5:33:0d:05:62:41:a9:4c:fd:8e:57:84:b8:80:e1:47:07:7d: 9b:5d:2b:2b:d4:de:2b:90:dd:22:c9:4a:97:c0:3a:aa:c2:00: 77:55:4c:bb:28:00:7f:73:69:cd:16:13:df:f8:22:54:df:d4: c2:ba:a7:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUa7p1TJsfe6/jriiGKExuRFsnfDkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4 QkY2ODNBRDAeFw0yNTEyMDYwNzU1NTRaFw0yNTEyMDkxNTI1NTRaMDMxMTAvBgNV BAMTKDVGNUJEMTlEMzMyMzJGOTZGQTQzODU4MEMzMkM4RkQxQkVEN0Q5MDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSZluO16bjLo6y3x+66ijCLyQ3 2tLdf0RnuY0OpHM2GnnTpqrU4TaF+DCPiQiZMQObQpdD3/sQkapUOVGhxfXOmIKH Ib/aM48EId/EZRLau10zM6qJNKMjcrre39eToPVGIMgOQS6M1FZqQTd1osHhoMiu z9mOsqSmzwEv60T+FIp9dwz2DzbjF7FS0Sop+eqbxg8n5PuF2NY5Lt4eFjinC0kJ xlN5lLstzWpn1p1V0AI/BfOWTxRqQammGNDibORxNtnJYIK/IU1Eza/IblyOFwcO YEPTEpPRdNbgYl8O/pUKpP4qvDP+TGIkxc8pIIho/9avhI8C1WTnd34dqPDhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUX1vRnTMjL5b6Q4WAwyyP0b7X2QEwHwYDVR0j BBgwFoAUW1WK0BJ3yCEsl0MYtjUvsov2g60wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMC81QjU1OEFEMDEy NzdDODIxMkM5NzQzMThCNjM1MkZCMjhCRjY4M0FELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJGQjI4QkY2 ODNBRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmE1YjRmYTQtMzI4Yy00Y2YyLWFk ZTMtYzg2ODEzMWQ0ZTBkLzAvNUI1NThBRDAxMjc3QzgyMTJDOTc0MzE4QjYzNTJG QjI4QkY2ODNBRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH/Tgu5kTfzUspSEymMYRVqR1Hm3xjn2DX4E Drdp8kuwQJIaAgSgMznAzGAaB9uUlqAOnqZjIUpSV4tk10RBHlQeSZIxziSKBAV3 gNHliLTnJQw4u1X8m7UF2yH5QiuKp3bjc6EODp88raSDgU/eVT5dW/3DenUQ+l/c xujTmZJ1UZYyQGcXbASbHaTHAWt6aZOZDQHhkcQZuMDtKo5c2/GuDCK59garlS7r ffEH6INgN8BzRs6hG6djZusoH+tjCyxpRk8o3/UzDQViQalM/Y5XhLiA4UcHfZtd KyvU3iuQ3SLJSpfAOqrCAHdVTLsoAH9zac0WE9/4IlTf1MK6p3k= -----END CERTIFICATE-----Generated at Sun Dec 7 01:44:47 2025 by rpki-client