This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: JOy7QVs+r+8T5Aox8jMDss2at/kaw4NqvY0v2rmFPVo= Subject key identifier: A1:B5:22:50:3B:B7:89:D1:E7:EB:7D:C9:E3:E8:FC:C8:8B:B2:F6:09 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 0F7EE2FE936A1EDBFA5AE3998B0E306A8DA087D6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 0534 Signing time: Fri 19 Dec 2025 04:51:19 +0000 Manifest this update: Fri 19 Dec 2025 04:46:19 +0000 Manifest next update: Mon 22 Dec 2025 09:16:19 +0000 Files and hashes: 1: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 2: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: Vyfv8eA8CY70RnGtDZCbCP43f6/UoqYo9D2P12aRW0s=) 3: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 4: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 5: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 6: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 7: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) 8: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 9: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 10: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 09:16:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:7e:e2:fe:93:6a:1e:db:fa:5a:e3:99:8b:0e:30:6a:8d:a0:87:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Dec 19 04:46:19 2025 GMT Not After : Dec 22 09:16:19 2025 GMT Subject: CN=A1B522503BB789D1E7EB7DC9E3E8FCC88BB2F609 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:95:54:5b:5b:5c:6b:bc:ba:09:a0:4a:6e:53: c3:39:8d:30:ff:11:5a:ec:90:40:2c:dd:26:79:26: 52:74:74:d8:2d:84:ba:2c:0c:64:c4:69:3a:7f:a7: 4d:b0:c4:93:93:d0:13:93:dd:f1:46:b4:9d:ce:93: da:bb:09:b1:e9:bb:89:36:ab:85:51:4a:e4:09:72: cf:0e:64:f9:1d:89:c7:ea:0d:41:64:be:0d:9d:46: d5:9b:a2:f5:f0:29:33:bb:f7:ef:51:67:79:49:0e: a0:f6:6e:19:7a:ac:c8:4e:d7:00:e9:11:d8:1e:0c: dc:78:06:8e:44:46:b0:65:af:f8:bc:06:75:59:87: 0e:f4:1e:ed:60:c6:12:12:b7:70:c8:32:b4:f0:cf: 7c:3e:7f:98:f6:b7:b9:95:95:53:8a:9d:e0:8a:2c: 2c:a1:2c:d5:89:c2:2e:6e:d6:af:bf:3c:9d:81:68: 89:97:69:2e:7a:ba:5f:46:b5:e0:85:49:af:65:a1: 7a:68:dd:03:7d:03:33:63:f3:7a:4a:a4:bd:a1:c8: d6:96:e4:57:1c:1b:71:a4:04:db:b6:dd:9d:20:2f: be:e9:4f:28:50:63:21:b9:3d:a1:19:43:05:4d:2d: e8:f6:c4:4c:e7:cd:75:c0:c3:f9:81:21:84:04:6a: 45:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:B5:22:50:3B:B7:89:D1:E7:EB:7D:C9:E3:E8:FC:C8:8B:B2:F6:09 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:15:8f:19:bd:f0:a4:ad:dc:5c:1a:08:12:3e:36:ce:96:64: 5b:63:53:9c:29:a5:27:97:96:f9:74:ac:78:1f:86:a3:aa:46: 4b:24:b3:ca:07:25:75:0e:b2:d4:57:3d:2c:02:2b:ff:fa:7c: 56:e6:37:6b:b2:16:6e:e8:d0:68:d6:8b:0b:e8:4b:49:07:bc: 33:8e:3d:b5:f4:62:82:ac:2c:29:d1:52:db:e9:68:7f:df:90: 68:1f:19:21:46:9d:9a:bd:0b:ce:2b:a8:16:65:81:1a:50:4a: aa:23:99:45:ac:01:5e:10:e9:c0:dc:ee:0f:b6:f1:b0:b7:e3: e9:a6:b1:d5:44:46:7d:e4:be:a8:b4:84:dc:c0:c0:31:0b:99: de:99:e2:ba:fa:30:8b:cd:19:9a:d8:d5:95:d8:c5:fa:cd:4c: 50:80:5a:c8:40:6a:cb:90:d6:39:d5:da:ad:85:bd:01:6b:da: 57:6c:14:b8:71:24:e0:c1:c3:4f:9e:f8:da:04:3d:e2:55:9e: d6:de:18:81:a3:95:fa:da:49:0d:bd:9c:b6:96:09:64:c7:2a: dd:4d:78:8b:5b:92:62:7a:86:ec:c5:42:02:fd:1f:a2:cb:65: 24:e5:ac:17:a7:c2:a6:c2:98:b7:7e:c9:63:3e:3e:60:a4:ab: ae:99:44:45 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUD37i/pNqHtv6WuOZiw4wao2gh9YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTEyMTkwNDQ2MTlaFw0yNTEyMjIwOTE2MTlaMDMxMTAvBgNV BAMTKEExQjUyMjUwM0JCNzg5RDFFN0VCN0RDOUUzRThGQ0M4OEJCMkY2MDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCulVRbW1xrvLoJoEpuU8M5jTD/ EVrskEAs3SZ5JlJ0dNgthLosDGTEaTp/p02wxJOT0BOT3fFGtJ3Ok9q7CbHpu4k2 q4VRSuQJcs8OZPkdicfqDUFkvg2dRtWbovXwKTO79+9RZ3lJDqD2bhl6rMhO1wDp EdgeDNx4Bo5ERrBlr/i8BnVZhw70Hu1gxhISt3DIMrTwz3w+f5j2t7mVlVOKneCK LCyhLNWJwi5u1q+/PJ2BaImXaS56ul9GteCFSa9loXpo3QN9AzNj83pKpL2hyNaW 5FccG3GkBNu23Z0gL77pTyhQYyG5PaEZQwVNLej2xEznzXXAw/mBIYQEakVnAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUobUiUDu3idHn633J4+j8yIuy9gkwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE4Vjxm98KSt3FwaCBI+Ns6WZFtjU5wppSeX lvl0rHgfhqOqRksks8oHJXUOstRXPSwCK//6fFbmN2uyFm7o0GjWiwvoS0kHvDOO PbX0YoKsLCnRUtvpaH/fkGgfGSFGnZq9C84rqBZlgRpQSqojmUWsAV4Q6cDc7g+2 8bC34+mmsdVERn3kvqi0hNzAwDELmd6Z4rr6MIvNGZrY1ZXYxfrNTFCAWshAasuQ 1jnV2q2FvQFr2ldsFLhxJODBw0+e+NoEPeJVntbeGIGjlfraSQ29nLaWCWTHKt1N eItbkmJ6huzFQgL9H6LLZSTlrBenwqbCmLd+yWM+PmCkq66ZREU= -----END CERTIFICATE-----Generated at Sat Dec 20 08:55:23 2025 by rpki-client