This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft File: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft (raw, json) Hash identifier: nbgcIFX//hyG6zuoNFVoZUmnZ7vhA2afLT3U0vFg6XQ= Subject key identifier: B5:DB:0E:29:05:C8:40:E1:F2:A1:42:93:FD:BC:30:67:18:7F:0C:64 Authority key identifier: 28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC Certificate issuer: /CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Certificate serial: 0AEB157E98C3ACC5FEA0C52359A78B262B1201F0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft Manifest number: A5 Signing time: Fri 12 Dec 2025 01:42:09 +0000 Manifest this update: Fri 12 Dec 2025 01:37:09 +0000 Manifest next update: Mon 15 Dec 2025 07:57:09 +0000 Files and hashes: 1: 28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl (hash: ZjUrZehHfEqnGZHpkpOKvtNhZzHNjj3y7V/cUYoNCsU=) 2: 323430363a373534303a3a2f33322d3332203d3e20313431303637.roa (hash: tGZJC6gHp+rBRUU+fviXr/Qmv6Fq3jy2euNYPnmiMt4=) 3: 3130332e3135352e3139312e302f32342d3234203d3e20313431303637.roa (hash: HqTyhMmIQNWyd9Uu39hBDh2ymSKez80mYyj1XdusXb0=) 4: 3130332e3135352e3139302e302f32342d3234203d3e20313431303637.roa (hash: 4k5l0oKGlgrseypJOAcgbZ3voSGQS5pK7FIolyad81E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 15 Dec 2025 07:57:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:eb:15:7e:98:c3:ac:c5:fe:a0:c5:23:59:a7:8b:26:2b:12:01:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28B305C66336C433AB601BA6F0B352E6C57E9BEC Validity Not Before: Dec 12 01:37:09 2025 GMT Not After : Dec 15 07:57:09 2025 GMT Subject: CN=B5DB0E2905C840E1F2A14293FDBC3067187F0C64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:df:64:90:94:96:e0:7f:59:73:73:9a:31:ca: 96:0f:2a:4a:a1:3a:70:2d:8e:0f:e1:96:55:a5:d5: 86:26:fd:e8:3e:04:24:0e:dd:d7:73:f8:31:40:ef: ff:6a:90:4f:d8:a7:b8:fe:9f:93:17:78:78:a1:22: 4b:89:c9:6c:e1:fa:16:5c:49:b6:dd:92:4a:07:bb: 3b:09:b0:ad:02:b8:b3:47:ad:90:73:7c:b7:ca:b0: 30:f3:9e:28:d7:c1:0c:19:d5:cf:9e:a8:06:b7:fd: 8b:15:f9:9c:23:70:44:c6:7a:44:12:fe:ed:8f:9c: 7b:c6:1d:3c:b1:23:ef:19:99:31:94:99:ce:91:86: c4:ef:72:f9:8c:ce:46:bf:89:5f:6d:53:1b:13:fc: 76:6a:2c:f9:aa:de:30:d5:98:bd:24:b0:12:9e:a6: 62:21:ab:af:1b:a4:85:b0:af:56:cc:dd:83:5c:b1: ef:b6:39:58:97:b4:a9:f9:eb:6b:60:f0:2a:29:f6: 82:ed:d3:85:64:64:ee:1d:10:1f:9d:24:e1:6f:38: 54:05:fe:a2:9b:97:8d:91:0d:e9:34:43:09:d6:61: 13:c2:0b:50:62:12:16:41:6a:ed:c4:5c:9b:c7:e1: ab:b2:9b:02:74:8c:34:c4:03:7a:5a:e1:13:7b:06: 7a:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:DB:0E:29:05:C8:40:E1:F2:A1:42:93:FD:BC:30:67:18:7F:0C:64 X509v3 Authority Key Identifier: keyid:28:B3:05:C6:63:36:C4:33:AB:60:1B:A6:F0:B3:52:E6:C5:7E:9B:EC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28B305C66336C433AB601BA6F0B352E6C57E9BEC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4b6e9b51-bd87-4905-9bf4-a848a44e5ba5/0/28B305C66336C433AB601BA6F0B352E6C57E9BEC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:cf:ad:d0:ee:80:d0:ca:aa:27:5a:52:02:9e:bf:c6:03:c8: f1:f7:96:d0:a6:ca:e1:62:e9:f0:9e:37:1c:fd:b2:5f:12:39: cd:3c:5e:ab:40:2c:1d:ff:72:f5:23:a1:47:b2:65:e5:ad:a4: f0:c2:19:0d:62:8b:ae:6b:02:c7:ff:1c:8e:39:3e:d1:7e:b6: dc:66:99:6d:57:10:02:14:0f:1f:96:ff:bf:d1:b4:1a:22:34: 73:cf:43:6b:70:aa:e2:81:dd:6d:04:e9:eb:25:36:05:2a:e7: 1b:2b:0b:6b:15:af:b0:af:a9:b0:31:47:b7:86:f9:dd:b5:67: 56:93:0c:32:ec:af:dc:fb:9c:4e:a8:01:bb:94:bd:1d:6d:b4: 93:03:07:4c:3d:f1:d7:cc:32:3b:58:26:d4:72:ad:7b:44:19: 71:c3:12:fc:26:10:79:e5:fa:49:e7:55:46:26:31:bf:3c:c8: 4e:e8:95:0e:c0:4e:e6:7d:54:1a:a6:dd:9c:4e:5d:4e:c6:40: cd:09:cb:0f:ef:1c:88:55:7b:ba:c7:f2:7b:b9:02:fc:c0:90: db:fe:fb:41:5b:fe:23:82:c5:17:f7:17:5d:42:c2:83:28:64: b2:1b:95:8b:12:7c:01:ee:c2:aa:6c:1a:f4:6d:a8:be:6d:ac: 03:52:0c:29 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCusVfpjDrMX+oMUjWaeLJisSAfAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZD NTdFOUJFQzAeFw0yNTEyMTIwMTM3MDlaFw0yNTEyMTUwNzU3MDlaMDMxMTAvBgNV BAMTKEI1REIwRTI5MDVDODQwRTFGMkExNDI5M0ZEQkMzMDY3MTg3RjBDNjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCn32SQlJbgf1lzc5oxypYPKkqh OnAtjg/hllWl1YYm/eg+BCQO3ddz+DFA7/9qkE/Yp7j+n5MXeHihIkuJyWzh+hZc SbbdkkoHuzsJsK0CuLNHrZBzfLfKsDDznijXwQwZ1c+eqAa3/YsV+ZwjcETGekQS /u2PnHvGHTyxI+8ZmTGUmc6RhsTvcvmMzka/iV9tUxsT/HZqLPmq3jDVmL0ksBKe pmIhq68bpIWwr1bM3YNcse+2OViXtKn562tg8Cop9oLt04VkZO4dEB+dJOFvOFQF /qKbl42RDek0QwnWYRPCC1BiEhZBau3EXJvH4auymwJ0jDTEA3pa4RN7Bnq1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtdsOKQXIQOHyoUKT/bwwZxh/DGQwHwYDVR0j BBgwFoAUKLMFxmM2xDOrYBum8LNS5sV+m+wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YjZlOWI1MS1iZDg3LTQ5MDUtOWJmNC1hODQ4YTQ0ZTViYTUvMC8yOEIzMDVDNjYz MzZDNDMzQUI2MDFCQTZGMEIzNTJFNkM1N0U5QkVDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUyRTZDNTdF OUJFQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGI2ZTliNTEtYmQ4Ny00OTA1LTli ZjQtYTg0OGE0NGU1YmE1LzAvMjhCMzA1QzY2MzM2QzQzM0FCNjAxQkE2RjBCMzUy RTZDNTdFOUJFQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFPPrdDugNDKqidaUgKev8YDyPH3ltCmyuFi 6fCeNxz9sl8SOc08XqtALB3/cvUjoUeyZeWtpPDCGQ1ii65rAsf/HI45PtF+ttxm mW1XEAIUDx+W/7/RtBoiNHPPQ2twquKB3W0E6eslNgUq5xsrC2sVr7CvqbAxR7eG +d21Z1aTDDLsr9z7nE6oAbuUvR1ttJMDB0w98dfMMjtYJtRyrXtEGXHDEvwmEHnl +knnVUYmMb88yE7olQ7ATuZ9VBqm3ZxOXU7GQM0Jyw/vHIhVe7rH8nu5AvzAkNv+ +0Fb/iOCxRf3F11CwoMoZLIblYsSfAHuwqpsGvRtqL5trANSDCk= -----END CERTIFICATE-----Generated at Sun Dec 14 06:26:20 2025 by rpki-client