This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft File: 28351380A86044778274FC7CEC0F116CF3B3CA39.mft (raw, json) Hash identifier: LBsRqVE851m2ntEjD1KmUSfuyelCrFfsllxFS+ficmA= Subject key identifier: 24:EA:B4:1B:24:B6:F1:F5:28:0A:8A:5E:55:FD:13:65:D5:13:A4:98 Authority key identifier: 28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 Certificate issuer: /CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Certificate serial: 187A6CB85C182946FB3795783E88C915D75D6519 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject info access: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft Manifest number: 052D Signing time: Wed 03 Dec 2025 10:10:47 +0000 Manifest this update: Wed 03 Dec 2025 10:05:47 +0000 Manifest next update: Sat 06 Dec 2025 14:18:47 +0000 Files and hashes: 1: 28351380A86044778274FC7CEC0F116CF3B3CA39.crl (hash: ulLzyvc6AVIgdwilgfnvaR5kUtUBAIkZwxW9fGMNAiM=) 2: 323430353a386530303a3a2f33322d3332203d3e203234323034.roa (hash: qKSq3uz3mAbrZSzfHP44tJYlF6gqnOloWG4wyUGOKH8=) 3: 3230332e38302e31302e302f32342d3234203d3e203234323034.roa (hash: GDVJSN1CaQCPhQqR3FRWg5swzCjmjmNit8vMHebzfag=) 4: 3230332e38302e31332e302f32342d3234203d3e203234323034.roa (hash: OqfsOYg/HuhRheOY7XtpBvVh7Zqp58h+Rj/M/YaFZNI=) 5: 3230332e38302e31322e302f32342d3234203d3e203234323034.roa (hash: iP5DwSyfUL5exxyNjMDQ+1fcb6ngK3/LzByJJLI9xyw=) 6: 3230332e38302e31312e302f32342d3234203d3e203234323034.roa (hash: wP5JcTumZVhD5RKTIHW84jMQLqPiyj2qPNYzd9k1ZOs=) 7: 3230332e38302e382e302f32342d3234203d3e203234323034.roa (hash: WygMqvrzr917+KMa/vGo8fQyT0ctkaWPjHAmxb/T5Js=) 8: 3230332e38302e31342e302f32342d3234203d3e203234323034.roa (hash: meqQFV3Ai00Xi6pHJ24Fpc5SOLYd2Ucdi8hBuOG/mOI=) 9: 3230332e38302e392e302f32342d3234203d3e203234323034.roa (hash: D4SmgWinw2uDnNDHY1kT9jgep4MItUVn6E6KY3uTDIU=) 10: 3230332e38302e31352e302f32342d3234203d3e203234323034.roa (hash: +tRBG8B/+C8vTbXJTWqe0liAiPTh4alenhwEBf60dxs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:7a:6c:b8:5c:18:29:46:fb:37:95:78:3e:88:c9:15:d7:5d:65:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28351380A86044778274FC7CEC0F116CF3B3CA39 Validity Not Before: Dec 3 10:05:47 2025 GMT Not After : Dec 6 14:18:47 2025 GMT Subject: CN=24EAB41B24B6F1F5280A8A5E55FD1365D513A498 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:97:c3:48:b8:fb:59:cc:a2:06:d0:b1:2c:5a: 67:1c:76:79:38:06:8b:2a:ed:a1:76:70:6d:24:54: 94:25:f4:b9:2d:ff:9d:d0:02:6c:d9:28:38:3a:e1: d6:79:aa:8b:70:97:16:81:b6:05:38:c8:2e:84:83: 8b:79:5e:fe:f9:ce:ad:73:87:de:d1:ab:6a:89:48: 52:41:1a:0c:89:92:f4:30:32:f3:a2:b5:47:f8:ca: fb:6b:ac:a1:e5:16:93:1b:c5:b7:db:25:cc:3d:29: 4e:b8:98:33:97:70:1c:af:82:2a:33:af:2a:d5:39: 85:3d:8e:b4:2b:ef:b0:f3:6d:b6:a1:68:d0:1a:20: e4:60:a1:5b:53:d2:70:7a:75:12:d5:aa:a5:c0:3f: aa:db:ab:4c:25:1a:3c:d2:98:b3:62:3a:70:0e:ec: 70:9d:61:06:c6:25:37:f5:e7:09:28:07:d8:36:5a: e8:f8:5a:a8:60:cb:a1:ea:b1:33:48:4e:d5:ad:95: e9:fa:86:fe:e6:5f:f8:bd:d9:83:01:93:08:ba:b1: c8:2d:1b:68:58:71:dc:b1:06:b9:99:24:a4:cb:5a: fc:55:88:99:2d:69:b5:2f:f1:3d:ca:30:ef:27:7c: f2:f3:9c:bf:65:9c:e5:29:7c:05:0b:62:3c:04:8d: 69:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:EA:B4:1B:24:B6:F1:F5:28:0A:8A:5E:55:FD:13:65:D5:13:A4:98 X509v3 Authority Key Identifier: keyid:28:35:13:80:A8:60:44:77:82:74:FC:7C:EC:0F:11:6C:F3:B3:CA:39 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/28351380A86044778274FC7CEC0F116CF3B3CA39.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/524a9105-8d2a-4b38-a6ae-05ead69719a3/0/28351380A86044778274FC7CEC0F116CF3B3CA39.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 46:c4:b8:a4:2e:a3:9d:82:b0:43:11:69:6b:4a:a5:bd:c5:02: ff:a0:b6:4b:c2:61:aa:5b:ff:1d:9d:a9:0b:d4:ca:e5:77:71: ab:7b:55:ca:e9:c4:16:ab:e5:73:48:42:4c:72:d8:e1:ef:1d: 2f:3d:36:fb:ba:a8:72:dd:83:c1:a9:1e:06:55:e8:7e:3b:51: d6:93:8c:fb:a3:9d:8a:a4:62:67:fd:4c:dc:56:27:f1:08:a3: de:f3:6e:53:51:38:6b:f0:dc:2a:b0:8a:6d:b0:8a:3b:93:47: 65:49:77:fc:99:01:59:27:21:5f:09:d8:76:24:79:c5:f7:a0: 88:83:e7:78:3a:24:5a:ad:61:27:42:2b:5b:c0:70:d5:7b:66: 07:96:b0:05:28:a9:0e:93:4c:da:03:45:1b:57:fa:bc:42:ae: 7c:7e:2b:27:a6:d8:c2:95:1f:28:b2:66:e5:b5:ca:27:e6:fd: 3e:57:c5:9c:d6:e5:45:79:91:d4:b0:26:51:e7:5b:23:18:69: d0:9f:22:92:73:14:b3:66:6c:3a:d5:6c:23:01:34:7e:13:70: 6a:61:a0:40:09:3e:7d:f6:0a:3d:f9:f0:c5:4b:6a:f5:85:e8: 47:3b:5a:2c:57:f3:23:e8:b9:58:95:65:11:18:c5:46:f1:f4: 61:2f:ca:ee -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGHpsuFwYKUb7N5V4PojJFdddZRkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNG M0IzQ0EzOTAeFw0yNTEyMDMxMDA1NDdaFw0yNTEyMDYxNDE4NDdaMDMxMTAvBgNV BAMTKDI0RUFCNDFCMjRCNkYxRjUyODBBOEE1RTU1RkQxMzY1RDUxM0E0OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPl8NIuPtZzKIG0LEsWmccdnk4 Bosq7aF2cG0kVJQl9Lkt/53QAmzZKDg64dZ5qotwlxaBtgU4yC6Eg4t5Xv75zq1z h97Rq2qJSFJBGgyJkvQwMvOitUf4yvtrrKHlFpMbxbfbJcw9KU64mDOXcByvgioz ryrVOYU9jrQr77DzbbahaNAaIORgoVtT0nB6dRLVqqXAP6rbq0wlGjzSmLNiOnAO 7HCdYQbGJTf15wkoB9g2Wuj4Wqhgy6HqsTNITtWtlen6hv7mX/i92YMBkwi6scgt G2hYcdyxBrmZJKTLWvxViJktabUv8T3KMO8nfPLznL9lnOUpfAULYjwEjWkBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJOq0GyS28fUoCopeVf0TZdUTpJgwHwYDVR0j BBgwFoAUKDUTgKhgRHeCdPx87A8RbPOzyjkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MjRhOTEwNS04ZDJhLTRiMzgtYTZhZS0wNWVhZDY5NzE5YTMvMC8yODM1MTM4MEE4 NjA0NDc3ODI3NEZDN0NFQzBGMTE2Q0YzQjNDQTM5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjExNkNGM0Iz Q0EzOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTI0YTkxMDUtOGQyYS00YjM4LWE2 YWUtMDVlYWQ2OTcxOWEzLzAvMjgzNTEzODBBODYwNDQ3NzgyNzRGQzdDRUMwRjEx NkNGM0IzQ0EzOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEbEuKQuo52CsEMRaWtKpb3FAv+gtkvCYapb /x2dqQvUyuV3cat7VcrpxBar5XNIQkxy2OHvHS89Nvu6qHLdg8GpHgZV6H47UdaT jPujnYqkYmf9TNxWJ/EIo97zblNROGvw3Cqwim2wijuTR2VJd/yZAVknIV8J2HYk ecX3oIiD53g6JFqtYSdCK1vAcNV7ZgeWsAUoqQ6TTNoDRRtX+rxCrnx+Kyem2MKV HyiyZuW1yifm/T5XxZzW5UV5kdSwJlHnWyMYadCfIpJzFLNmbDrVbCMBNH4TcGph oEAJPn32Cj358MVLavWF6Ec7WixX8yPouViVZREYxUbx9GEvyu4= -----END CERTIFICATE-----Generated at Wed Dec 3 13:59:53 2025 by rpki-client