This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft File: B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft (raw, json) Hash identifier: t6YgkjmDkcjc0Dn+7orojjCW1b5i43cwPUsUCaRGlvo= Subject key identifier: 10:65:AB:18:A0:DD:E8:A9:21:D4:E1:68:25:CE:99:FA:C0:45:25:CB Authority key identifier: B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 Certificate issuer: /CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Certificate serial: 4DD61875C6079717E52E028C664D9BFA60B12793 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject info access: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft Manifest number: 0523 Signing time: Tue 18 Nov 2025 17:51:47 +0000 Manifest this update: Tue 18 Nov 2025 17:46:47 +0000 Manifest next update: Sat 22 Nov 2025 04:02:47 +0000 Files and hashes: 1: B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl (hash: M2prviY6T4iRa9YTQOYT9qKIUt2Rfifv5KnzVjfn4js=) 2: 3130332e3134362e36322e302f32332d3234203d3e20313339343537.roa (hash: J9nhXOhW6jatN3t2cMwD6dQ3cCJrOL1soCUmU7Ehehg=) 3: 323030313a6466323a346238303a3a2f34382d3438203d3e20313339343537.roa (hash: O/T9Xztwa1eZpftLg0Xl5KOsLOQM47dFO4VcGsJ1wDg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 22 Nov 2025 04:02:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:d6:18:75:c6:07:97:17:e5:2e:02:8c:66:4d:9b:fa:60:b1:27:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B89398BA603C43BDF711A2B31FADC8CDFFC9CC16 Validity Not Before: Nov 18 17:46:47 2025 GMT Not After : Nov 22 04:02:47 2025 GMT Subject: CN=1065AB18A0DDE8A921D4E16825CE99FAC04525CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:d0:56:1a:f3:32:a0:57:a2:42:f8:60:31:5e: 95:02:d6:12:94:a2:78:0c:16:df:ae:48:87:87:0c: 6b:83:01:07:6d:e1:df:68:c1:4b:cc:37:07:5b:d0: 5a:05:2d:10:08:9e:60:99:38:45:5f:20:96:f0:ea: 6d:b6:c3:0b:ec:13:09:d6:da:7d:11:62:a0:5b:e0: dc:53:4d:83:fc:e9:e2:28:00:28:f6:59:90:15:ce: 77:13:1f:13:ee:72:0a:1c:f0:74:a2:48:5a:99:f3: d0:30:d3:77:19:ae:38:9b:1c:7c:6e:89:08:43:38: e4:20:12:8f:a1:7c:07:48:1f:39:43:6e:d4:98:e9: 86:28:f6:c4:3e:61:d3:94:8a:93:35:65:08:53:41: 39:69:c7:0a:85:7a:5c:f7:9f:46:ea:2e:f0:f5:f5: 74:a2:cc:49:38:15:b3:ce:09:f0:f4:fc:b8:ea:5f: 70:1d:c8:61:5b:04:d9:f0:f5:03:87:47:a5:e8:c5: 8c:13:59:32:b9:77:39:4e:c6:d2:91:94:ab:b6:5f: 59:40:d3:18:73:0e:68:11:ac:4f:02:82:e3:f9:96: 36:5c:cd:b5:3e:09:67:a3:3a:ae:99:f4:1d:71:74: 2d:4a:78:3b:f9:13:1a:6c:36:26:cc:ec:6f:ff:05: 4c:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:65:AB:18:A0:DD:E8:A9:21:D4:E1:68:25:CE:99:FA:C0:45:25:CB X509v3 Authority Key Identifier: keyid:B8:93:98:BA:60:3C:43:BD:F7:11:A2:B3:1F:AD:C8:CD:FF:C9:CC:16 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/dea79340-4db2-458d-95dd-af20b4fcdb3d/0/B89398BA603C43BDF711A2B31FADC8CDFFC9CC16.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1a:d1:5d:80:b8:de:ce:e0:3f:39:e4:7c:ae:0e:eb:67:5d:cb: cf:a6:10:4b:0d:08:05:b8:88:1a:82:69:3f:ba:d8:8d:b8:6e: e5:5c:13:64:af:b8:a8:0d:9f:0d:5f:4c:70:c2:3c:3d:49:d6: ac:da:71:8d:6b:ba:eb:0a:81:87:26:0a:75:ae:2d:cf:ff:54: 1b:26:89:4d:65:c0:41:1d:49:70:11:79:29:c2:1d:cb:b4:5e: 01:1b:20:db:a2:b0:a4:91:5c:18:f9:3e:be:b4:cb:cb:c2:b7: 21:90:90:65:18:a6:72:39:55:9f:61:16:87:1c:51:76:51:13: a1:a3:52:a1:1b:88:e3:5f:15:6d:26:da:96:55:0b:d0:98:06: 6e:58:8c:fb:85:4d:09:ac:80:9e:cd:e0:0c:0c:7c:e4:85:97: eb:41:dd:da:c0:68:5c:3f:dc:e0:e5:c7:6b:0d:c4:13:f7:14: a0:54:48:19:b5:e7:4a:c9:58:6c:e6:75:68:ca:e0:aa:fa:cc: 52:0f:f7:b5:3b:63:f0:fa:14:3c:04:be:12:07:d2:4b:0f:61: 3e:f1:f6:62:ba:03:3b:1d:80:e9:45:79:3b:a5:ea:6b:5a:98: 2f:48:dc:95:6f:fb:5e:1e:b5:9a:2b:7f:1b:76:20:e2:66:47: df:07:df:5f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTdYYdcYHlxflLgKMZk2b+mCxJ5MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RG RkM5Q0MxNjAeFw0yNTExMTgxNzQ2NDdaFw0yNTExMjIwNDAyNDdaMDMxMTAvBgNV BAMTKDEwNjVBQjE4QTBEREU4QTkyMUQ0RTE2ODI1Q0U5OUZBQzA0NTI1Q0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP0FYa8zKgV6JC+GAxXpUC1hKU ongMFt+uSIeHDGuDAQdt4d9owUvMNwdb0FoFLRAInmCZOEVfIJbw6m22wwvsEwnW 2n0RYqBb4NxTTYP86eIoACj2WZAVzncTHxPucgoc8HSiSFqZ89Aw03cZrjibHHxu iQhDOOQgEo+hfAdIHzlDbtSY6YYo9sQ+YdOUipM1ZQhTQTlpxwqFelz3n0bqLvD1 9XSizEk4FbPOCfD0/LjqX3AdyGFbBNnw9QOHR6XoxYwTWTK5dzlOxtKRlKu2X1lA 0xhzDmgRrE8CguP5ljZczbU+CWejOq6Z9B1xdC1KeDv5ExpsNibM7G//BUxZAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEGWrGKDd6Kkh1OFoJc6Z+sBFJcswHwYDVR0j BBgwFoAUuJOYumA8Q733EaKzH63Izf/JzBYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZWE3OTM0MC00ZGIyLTQ1OGQtOTVkZC1hZjIwYjRmY2RiM2QvMC9CODkzOThCQTYw M0M0M0JERjcxMUEyQjMxRkFEQzhDREZGQzlDQzE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4Q0RGRkM5 Q0MxNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGVhNzkzNDAtNGRiMi00NThkLTk1 ZGQtYWYyMGI0ZmNkYjNkLzAvQjg5Mzk4QkE2MDNDNDNCREY3MTFBMkIzMUZBREM4 Q0RGRkM5Q0MxNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABrRXYC43s7gPznkfK4O62ddy8+mEEsNCAW4 iBqCaT+62I24buVcE2SvuKgNnw1fTHDCPD1J1qzacY1ruusKgYcmCnWuLc//VBsm iU1lwEEdSXAReSnCHcu0XgEbINuisKSRXBj5Pr60y8vCtyGQkGUYpnI5VZ9hFocc UXZRE6GjUqEbiONfFW0m2pZVC9CYBm5YjPuFTQmsgJ7N4AwMfOSFl+tB3drAaFw/ 3ODlx2sNxBP3FKBUSBm150rJWGzmdWjK4Kr6zFIP97U7Y/D6FDwEvhIH0ksPYT7x 9mK6AzsdgOlFeTul6mtamC9I3JVv+14etZorfxt2IOJmR98H318= -----END CERTIFICATE-----Generated at Thu Nov 20 18:54:22 2025 by rpki-client