This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft File: 33D26363FA5B5B53C17981915CBADB375AE27253.mft (raw, json) Hash identifier: Y7Z6V+wLdr97d/8r066nxY8U0e3QRVSlelAskBc7giM= Subject key identifier: 98:E9:77:94:12:78:A2:45:4D:43:07:CC:40:9C:11:43:E3:E1:43:6D Authority key identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 Certificate issuer: /CN=33D26363FA5B5B53C17981915CBADB375AE27253 Certificate serial: 29D4C8F71D13AD7C8F7AB3B66D9AB769A9213427 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft Manifest number: A1 Signing time: Mon 01 Dec 2025 22:21:29 +0000 Manifest this update: Mon 01 Dec 2025 22:16:29 +0000 Manifest next update: Fri 05 Dec 2025 03:28:29 +0000 Files and hashes: 1: 33D26363FA5B5B53C17981915CBADB375AE27253.crl (hash: wUO71v9YjolXZRQNtgJMG7iZ9lM67cDC3o6QyHTXjSQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.crl rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 03:28:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:d4:c8:f7:1d:13:ad:7c:8f:7a:b3:b6:6d:9a:b7:69:a9:21:34:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33D26363FA5B5B53C17981915CBADB375AE27253 Validity Not Before: Dec 1 22:16:29 2025 GMT Not After : Dec 5 03:28:29 2025 GMT Subject: CN=98E977941278A2454D4307CC409C1143E3E1436D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:44:9f:8e:6a:b2:9f:2e:85:89:e1:19:fb:54: 46:eb:f6:bd:ab:e4:4e:69:b1:c3:7a:fa:aa:2c:9e: 27:2f:62:0f:d5:1d:f1:8b:f2:8d:fe:9c:43:f2:65: e0:53:16:cb:1a:fd:1f:c3:91:e6:07:fa:4f:62:2b: db:5a:5c:8c:3c:f1:3e:82:6d:1c:cb:05:22:71:b4: c9:76:c6:ec:cb:41:f6:0a:20:4c:8b:e9:e7:db:a8: b7:b1:4e:0c:a8:b2:66:a2:92:20:1f:11:47:1f:a2: eb:9a:4e:01:a2:54:6e:e5:c4:fc:65:b3:ef:3e:25: 2b:5a:d5:5f:45:03:1f:ac:4b:85:66:d1:73:72:6c: 66:9d:f1:56:bd:e7:44:b4:fb:a9:9b:30:1b:d2:e7: a3:97:dc:e6:aa:b2:2e:f3:7b:3c:0d:8b:8f:ee:f6: ec:5d:98:b6:0d:d8:6f:1a:9e:45:d3:e7:05:8a:cc: b1:f9:e8:fe:71:0c:6e:f0:f1:c7:84:6b:aa:5f:0c: af:f4:0b:f9:eb:de:ea:e4:34:ea:90:82:5d:0b:cb: c0:90:0d:ec:d6:7a:68:90:5b:f2:ee:86:d7:5e:c5: 9b:c7:67:47:3d:cd:71:0e:85:0f:ae:db:fa:5b:c9: 5c:93:c5:be:be:f5:74:7b:95:9b:42:24:2d:0a:60: c1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:E9:77:94:12:78:A2:45:4D:43:07:CC:40:9C:11:43:E3:E1:43:6D X509v3 Authority Key Identifier: keyid:33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 06:07:31:ad:81:fe:13:cf:a1:ee:7f:93:5b:91:7e:74:78:4d: ff:4d:31:cb:58:0d:b5:9a:f2:54:2a:10:83:c4:14:9c:6f:b3: eb:8a:03:c4:68:b9:99:cc:ef:40:a6:d1:30:5a:54:9b:73:6f: 5a:00:99:f6:25:a4:e8:19:3b:71:e7:c2:12:e9:0c:8b:df:2d: 9b:7a:f5:4c:4e:08:96:cd:f1:97:5f:1a:12:e7:51:d7:ec:cf: 08:05:15:59:bb:47:d0:41:68:eb:68:bc:84:1d:88:75:14:a0: 21:10:8a:61:cb:31:d7:51:25:29:9e:81:77:6d:36:44:18:b9: 8d:08:3f:09:45:58:53:19:24:68:aa:97:bb:50:9c:17:e8:79: a3:26:0e:be:1f:13:2a:63:cb:5f:b3:40:88:18:b8:d7:7d:04: da:fc:fa:cc:f7:71:62:84:76:ef:df:ad:ba:62:fb:1b:37:c1: 54:21:43:de:07:d3:51:b9:f8:85:7a:b1:3c:67:30:69:8d:87: b4:a3:1f:35:38:2f:17:d4:cf:43:ac:30:75:aa:4a:30:05:17: 9b:72:8b:d0:43:a9:37:b9:aa:c7:82:67:c4:c9:e8:5d:98:06: 33:a5:7c:a3:a7:c8:f3:ad:36:99:20:8a:ef:eb:9e:05:1d:8f: 7c:8b:e2:de -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKdTI9x0TrXyPerO2bZq3aakhNCcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURCMzc1 QUUyNzI1MzAeFw0yNTEyMDEyMjE2MjlaFw0yNTEyMDUwMzI4MjlaMDMxMTAvBgNV BAMTKDk4RTk3Nzk0MTI3OEEyNDU0RDQzMDdDQzQwOUMxMTQzRTNFMTQzNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIRJ+OarKfLoWJ4Rn7VEbr9r2r 5E5pscN6+qosnicvYg/VHfGL8o3+nEPyZeBTFssa/R/DkeYH+k9iK9taXIw88T6C bRzLBSJxtMl2xuzLQfYKIEyL6efbqLexTgyosmaikiAfEUcfouuaTgGiVG7lxPxl s+8+JSta1V9FAx+sS4Vm0XNybGad8Va950S0+6mbMBvS56OX3Oaqsi7zezwNi4/u 9uxdmLYN2G8ankXT5wWKzLH56P5xDG7w8ceEa6pfDK/0C/nr3urkNOqQgl0Ly8CQ DezWemiQW/LuhtdexZvHZ0c9zXEOhQ+u2/pbyVyTxb6+9XR7lZtCJC0KYMGxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmOl3lBJ4okVNQwfMQJwRQ+PhQ20wHwYDVR0j BBgwFoAUM9JjY/pbW1PBeYGRXLrbN1riclMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YzU4ZmI3Yy02N2I4LTRiY2UtOTZkOS1iZTkxMmUzZjczZGQvMS8zM0QyNjM2M0ZB NUI1QjUzQzE3OTgxOTE1Q0JBREIzNzVBRTI3MjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURCMzc1QUUy NzI1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGM1OGZiN2MtNjdiOC00YmNlLTk2 ZDktYmU5MTJlM2Y3M2RkLzEvMzNEMjYzNjNGQTVCNUI1M0MxNzk4MTkxNUNCQURC Mzc1QUUyNzI1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAYHMa2B/hPPoe5/k1uRfnR4Tf9NMctYDbWa 8lQqEIPEFJxvs+uKA8RouZnM70Cm0TBaVJtzb1oAmfYlpOgZO3HnwhLpDIvfLZt6 9UxOCJbN8ZdfGhLnUdfszwgFFVm7R9BBaOtovIQdiHUUoCEQimHLMddRJSmegXdt NkQYuY0IPwlFWFMZJGiql7tQnBfoeaMmDr4fEypjy1+zQIgYuNd9BNr8+sz3cWKE du/frbpi+xs3wVQhQ94H01G5+IV6sTxnMGmNh7SjHzU4LxfUz0OsMHWqSjAFF5ty i9BDqTe5qseCZ8TJ6F2YBjOlfKOnyPOtNpkgiu/rngUdj3yL4t4= -----END CERTIFICATE-----Generated at Wed Dec 3 14:13:28 2025 by rpki-client