This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft File: 535D46F4044E2CC21293CC061A2783074BDF7AE7.mft (raw, json) Hash identifier: U5LDCD67JLuvRVhpapteyDz2NiWvFgPWGLsNB2FHE64= Subject key identifier: 96:6D:F5:B1:98:9C:23:C5:A3:E8:54:2D:C2:5E:EC:18:7E:A4:DC:78 Authority key identifier: 53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 Certificate issuer: /CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Certificate serial: 55D38799E9A8CE415E84CCA7515ACDF655761CCC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft Manifest number: 013E Signing time: Tue 02 Dec 2025 19:01:26 +0000 Manifest this update: Tue 02 Dec 2025 18:56:26 +0000 Manifest next update: Fri 05 Dec 2025 23:46:26 +0000 Files and hashes: 1: 535D46F4044E2CC21293CC061A2783074BDF7AE7.crl (hash: Y2+/zUy4leAjT8vqz9BwnbEnTNntyxo1dHDMys8d8j0=) 2: 3130332e3134332e32322e302f32332d3233203d3e20313339343331.roa (hash: doha74kbIgonFyPsIYU3AWrLESRigytVKDPz7Hk3URQ=) 3: 3130332e3134332e32322e302f32342d3234203d3e20313339343331.roa (hash: mBtquOb/Z5LghTTZd9Pb+kXQ6K/DQevd9P5nIEvxaXs=) 4: 323430353a343663303a3a2f33322d3332203d3e20313339343331.roa (hash: EwOzCmMtgubA3L7L2URI/KodC9B/ms+E2KBilH7ymAs=) 5: 3130332e3134332e32332e302f32342d3234203d3e20313339343331.roa (hash: +6dOkqtOYym+orh3YOVIsqZdYCOBqAsCXYd1nxy46No=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 23:46:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:d3:87:99:e9:a8:ce:41:5e:84:cc:a7:51:5a:cd:f6:55:76:1c:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=535D46F4044E2CC21293CC061A2783074BDF7AE7 Validity Not Before: Dec 2 18:56:26 2025 GMT Not After : Dec 5 23:46:26 2025 GMT Subject: CN=966DF5B1989C23C5A3E8542DC25EEC187EA4DC78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b9:11:f0:be:68:84:7d:55:5c:d7:27:e8:ba: f6:ee:57:05:c2:a3:5c:a1:7a:55:98:db:db:a5:d9: 97:9e:81:3c:41:1a:4b:14:ef:e4:58:75:51:fb:58: 04:09:49:d4:ed:35:02:97:e9:94:ba:ce:31:83:ad: da:1a:0c:0d:56:a9:4c:8c:c4:d3:f4:5f:a6:78:a3: 35:97:4d:f3:e8:68:5e:98:c5:46:9b:63:1e:25:e7: c5:dc:f1:91:25:bd:14:8b:f2:d6:0a:85:7e:29:5c: 1a:61:42:1e:3f:93:c4:a5:79:1e:01:e1:3d:11:55: ab:65:f5:33:0c:c6:e3:81:ec:89:4c:92:39:d5:6e: 48:82:a3:e8:5d:5f:5d:db:36:8f:27:fe:fe:5d:70: 06:a1:d8:df:7b:48:b3:19:51:77:b9:a2:2b:6c:f2: c9:7f:ba:63:46:9d:97:c2:ce:a1:de:49:38:fd:bf: 37:c9:6a:28:34:28:ba:a7:d0:78:fd:ee:31:57:53: 42:7c:f5:e3:ed:12:34:85:2c:b3:eb:6d:88:1f:3f: 99:c2:4c:cd:7a:af:f0:ec:de:af:8e:0c:73:62:7d: d7:19:30:34:08:e2:44:bc:88:af:d5:40:38:2a:df: fa:5e:49:5c:57:2d:9b:53:fd:ad:37:c8:da:9f:ec: 6c:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:6D:F5:B1:98:9C:23:C5:A3:E8:54:2D:C2:5E:EC:18:7E:A4:DC:78 X509v3 Authority Key Identifier: keyid:53:5D:46:F4:04:4E:2C:C2:12:93:CC:06:1A:27:83:07:4B:DF:7A:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/535D46F4044E2CC21293CC061A2783074BDF7AE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/146f33f2-f06e-4eb6-ae61-5529bca1cdcd/0/535D46F4044E2CC21293CC061A2783074BDF7AE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:da:d3:bc:9c:0f:60:d4:3a:4a:2d:90:0e:f0:33:91:51:0e: 0a:72:a9:07:dd:5a:6f:b5:5a:40:a7:f5:d7:4f:c9:e5:77:c9: 2c:8f:65:e7:be:f9:75:ba:b2:ed:2b:ff:ef:6a:ad:a7:71:2e: f1:8c:24:45:c1:c2:88:e0:45:04:2e:b7:61:1a:8a:15:83:6f: 0e:b1:bc:20:bc:17:66:dd:e2:35:e0:64:6f:7d:e3:13:54:5e: a6:6b:61:fa:5c:9b:dd:b0:6c:89:fe:33:28:84:25:14:09:4b: fd:36:b8:b3:52:b0:97:bc:45:0f:31:0a:e4:d0:45:05:61:84: 78:cd:fc:b9:67:8f:84:92:b9:d3:9c:6c:09:ec:8e:c1:2d:84: 22:f9:f6:5f:ad:f1:05:9a:eb:86:42:13:ee:e2:9a:b0:cc:5f: da:68:5b:6f:96:97:e1:33:36:e7:28:ee:f7:e2:72:7f:9e:92: 0e:f5:52:8d:58:6a:ca:c7:b6:f6:5d:dc:87:fe:b7:9a:32:2b: 8a:d0:fc:bd:cb:00:0d:b9:3a:27:f4:5f:72:d0:f6:c3:56:83: 95:6e:4f:46:40:87:af:f9:a0:78:d9:92:2d:e2:ed:5d:e1:41: f7:9b:e3:09:61:68:f5:79:b1:6c:fc:ca:53:f2:93:28:fb:90: 1f:72:75:d1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVdOHmemozkFehMynUVrN9lV2HMwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0 QkRGN0FFNzAeFw0yNTEyMDIxODU2MjZaFw0yNTEyMDUyMzQ2MjZaMDMxMTAvBgNV BAMTKDk2NkRGNUIxOTg5QzIzQzVBM0U4NTQyREMyNUVFQzE4N0VBNERDNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyuRHwvmiEfVVc1yfouvbuVwXC o1yhelWY29ul2ZeegTxBGksU7+RYdVH7WAQJSdTtNQKX6ZS6zjGDrdoaDA1WqUyM xNP0X6Z4ozWXTfPoaF6YxUabYx4l58Xc8ZElvRSL8tYKhX4pXBphQh4/k8SleR4B 4T0RVatl9TMMxuOB7IlMkjnVbkiCo+hdX13bNo8n/v5dcAah2N97SLMZUXe5oits 8sl/umNGnZfCzqHeSTj9vzfJaig0KLqn0Hj97jFXU0J89ePtEjSFLLPrbYgfP5nC TM16r/Ds3q+ODHNifdcZMDQI4kS8iK/VQDgq3/peSVxXLZtT/a03yNqf7Gy9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlm31sZicI8Wj6FQtwl7sGH6k3HgwHwYDVR0j BBgwFoAUU11G9AROLMISk8wGGieDB0vfeucwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDZmMzNmMi1mMDZlLTRlYjYtYWU2MS01NTI5YmNhMWNkY2QvMC81MzVENDZGNDA0 NEUyQ0MyMTI5M0NDMDYxQTI3ODMwNzRCREY3QUU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgzMDc0QkRG N0FFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQ2ZjMzZjItZjA2ZS00ZWI2LWFl NjEtNTUyOWJjYTFjZGNkLzAvNTM1RDQ2RjQwNDRFMkNDMjEyOTNDQzA2MUEyNzgz MDc0QkRGN0FFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEba07ycD2DUOkotkA7wM5FRDgpyqQfdWm+1 WkCn9ddPyeV3ySyPZee++XW6su0r/+9qradxLvGMJEXBwojgRQQut2EaihWDbw6x vCC8F2bd4jXgZG994xNUXqZrYfpcm92wbIn+MyiEJRQJS/02uLNSsJe8RQ8xCuTQ RQVhhHjN/Llnj4SSudOcbAnsjsEthCL59l+t8QWa64ZCE+7imrDMX9poW2+Wl+Ez Nuco7vficn+ekg71Uo1YasrHtvZd3If+t5oyK4rQ/L3LAA25Oif0X3LQ9sNWg5Vu T0ZAh6/5oHjZki3i7V3hQfeb4wlhaPV5sWz8ylPykyj7kB9yddE= -----END CERTIFICATE-----Generated at Wed Dec 3 15:28:54 2025 by rpki-client