This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft (raw, json) Hash identifier: wrK613pWCHyBBbdxUstgs/ME4r5cMMslfaD2SB0sE7w= Subject key identifier: 38:74:58:81:69:52:A5:7B:E0:AC:CF:13:6D:9B:1E:95:75:29:10:CE Authority key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Certificate issuer: /CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Certificate serial: 61641945B5B7749B3956BB8D1D32DD329844BDBA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft Manifest number: 02B1 Signing time: Tue 02 Dec 2025 15:30:53 +0000 Manifest this update: Tue 02 Dec 2025 15:25:53 +0000 Manifest next update: Fri 05 Dec 2025 16:30:53 +0000 Files and hashes: 1: 3130332e3137392e36362e302f32332d3234203d3e20313531303030.roa (hash: 3ytI4WNdkarTA98AKzILbdHeDtsgun+xePSvAI/3j/w=) 2: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl (hash: tjEzRDlJRDE9PUjXvALCXPsm5I7eXDK9nYPfrhjsZBQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 16:30:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:64:19:45:b5:b7:74:9b:39:56:bb:8d:1d:32:dd:32:98:44:bd:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Validity Not Before: Dec 2 15:25:53 2025 GMT Not After : Dec 5 16:30:53 2025 GMT Subject: CN=387458816952A57BE0ACCF136D9B1E95752910CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:fd:ea:1b:46:f7:9d:1d:64:a6:32:43:66:db: a8:68:09:35:82:69:c2:a7:c5:2c:74:79:f0:33:0c: 5c:b1:01:87:f1:d2:a8:3b:c9:4c:72:09:69:8f:a8: 81:76:09:b6:09:81:4b:8d:c1:54:8b:3c:e0:db:d8: 51:ad:0a:51:a5:67:31:f1:2e:78:7c:3a:70:b0:f4: 69:85:1d:dc:a5:a1:1a:8b:a8:e9:73:38:ef:ff:18: 19:71:d4:97:e5:e7:58:ea:29:02:25:70:5d:88:6a: 44:95:10:5b:ba:66:45:88:43:dd:e5:08:0c:b1:42: c3:46:24:5b:f1:69:11:75:53:a7:88:d6:c9:69:3c: 24:45:cb:59:d4:a7:13:5e:80:c7:61:9b:af:22:fa: 63:f8:b7:9a:36:36:b1:95:d6:49:2b:fe:05:31:d4: 58:84:82:61:e6:27:fa:27:18:5b:13:de:f0:85:9a: 43:2b:e3:fb:c8:c7:66:5e:05:4d:db:f8:b9:8d:d1: 39:e5:8a:da:b1:8f:36:29:e3:b8:6b:24:86:41:b1: 62:c9:bb:79:d9:e1:a3:68:76:8a:ec:9b:d2:1d:33: a2:f5:b7:0a:48:d8:53:9a:12:17:86:62:56:73:1e: 09:16:85:4b:ac:e1:83:36:05:fe:1c:9e:44:d3:50: f8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:74:58:81:69:52:A5:7B:E0:AC:CF:13:6D:9B:1E:95:75:29:10:CE X509v3 Authority Key Identifier: keyid:5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 15:4a:d2:a7:d5:f1:77:be:d3:6b:4e:c9:c0:a6:20:c3:9f:8b: 05:6d:82:f8:43:a5:fd:c4:08:0c:14:09:ec:14:c6:f3:14:5a: d3:1d:5b:c5:eb:61:e0:6e:a2:b9:72:1f:4d:86:19:82:54:a7: bb:84:e0:aa:c6:80:3d:5b:37:f3:d1:d4:43:f7:8c:fc:0e:a0: 8f:74:3f:aa:98:cc:23:37:d4:31:b9:09:80:87:1d:6e:1f:77: a1:bf:aa:e5:56:99:2f:c4:a4:4a:26:27:5f:d3:ae:60:e3:e8: dd:66:3e:c2:87:a0:2a:fd:28:4e:32:2b:63:ba:0a:57:67:ef: db:da:d8:57:15:95:75:3c:d6:bd:fe:f3:ef:f2:54:6f:40:22: 99:17:aa:65:d6:3e:6b:9d:3d:3e:6e:f2:45:96:fd:af:24:73: ec:54:4f:56:62:8c:7d:07:24:85:6a:07:31:56:a8:c1:54:1a: 54:47:50:cc:07:b6:90:d5:68:ef:27:9e:98:ab:4e:ea:b0:e0: 36:32:07:af:d7:52:13:5c:dd:ad:72:e7:51:88:42:b9:8c:b8: 5b:af:f7:2d:8c:fa:ef:5e:d7:44:56:ba:86:12:5d:8f:a7:d9: 4b:6f:c3:74:2f:e9:4f:77:1a:c7:37:98:2a:b0:f4:64:cb:fe: 33:c0:a9:7f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYWQZRbW3dJs5VruNHTLdMphEvbowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRF RUFDQTI3MDAeFw0yNTEyMDIxNTI1NTNaFw0yNTEyMDUxNjMwNTNaMDMxMTAvBgNV BAMTKDM4NzQ1ODgxNjk1MkE1N0JFMEFDQ0YxMzZEOUIxRTk1NzUyOTEwQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC2/eobRvedHWSmMkNm26hoCTWC acKnxSx0efAzDFyxAYfx0qg7yUxyCWmPqIF2CbYJgUuNwVSLPODb2FGtClGlZzHx Lnh8OnCw9GmFHdyloRqLqOlzOO//GBlx1Jfl51jqKQIlcF2IakSVEFu6ZkWIQ93l CAyxQsNGJFvxaRF1U6eI1slpPCRFy1nUpxNegMdhm68i+mP4t5o2NrGV1kkr/gUx 1FiEgmHmJ/onGFsT3vCFmkMr4/vIx2ZeBU3b+LmN0TnlitqxjzYp47hrJIZBsWLJ u3nZ4aNodorsm9IdM6L1twpI2FOaEheGYlZzHgkWhUus4YM2Bf4cnkTTUPhVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOHRYgWlSpXvgrM8TbZselXUpEM4wHwYDVR0j BBgwFoAUW9NBptRq9Sz/I6XR4liUlO6sonAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMC81QkQzNDFBNkQ0 NkFGNTJDRkYyM0E1RDFFMjU4OTQ5NEVFQUNBMjcwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0OTRFRUFD QTI3MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2UxMjc0M2QtZDU2ZC00YTc3LTkw ZTItYzUyZTZkZmUwNmMyLzAvNUJEMzQxQTZENDZBRjUyQ0ZGMjNBNUQxRTI1ODk0 OTRFRUFDQTI3MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABVK0qfV8Xe+02tOycCmIMOfiwVtgvhDpf3E CAwUCewUxvMUWtMdW8XrYeBuorlyH02GGYJUp7uE4KrGgD1bN/PR1EP3jPwOoI90 P6qYzCM31DG5CYCHHW4fd6G/quVWmS/EpEomJ1/TrmDj6N1mPsKHoCr9KE4yK2O6 Cldn79va2FcVlXU81r3+8+/yVG9AIpkXqmXWPmudPT5u8kWW/a8kc+xUT1ZijH0H JIVqBzFWqMFUGlRHUMwHtpDVaO8nnpirTuqw4DYyB6/XUhNc3a1y51GIQrmMuFuv 9y2M+u9e10RWuoYSXY+n2Utvw3Qv6U93Gsc3mCqw9GTL/jPAqX8= -----END CERTIFICATE-----Generated at Wed Dec 3 15:51:08 2025 by rpki-client