This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft File: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft (raw, json) Hash identifier: RShlh1W6Xy88EhKohT2gk1+NRAdMnbTVPJePp0/zi4E= Subject key identifier: 28:54:4B:DF:C9:FD:1F:16:6C:6C:27:85:13:A6:69:63:AC:F2:1B:6B Authority key identifier: 2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 Certificate issuer: /CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Certificate serial: 4654266C203114B1991193D9CBF8E9289D0DE1DE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft Manifest number: B2 Signing time: Tue 02 Dec 2025 01:31:57 +0000 Manifest this update: Tue 02 Dec 2025 01:26:57 +0000 Manifest next update: Fri 05 Dec 2025 03:07:57 +0000 Files and hashes: 1: 2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl (hash: BbQtsgv5pWCAFR10mOlXltmlx8AIciduNXGO9SyoE0Y=) 2: 3130332e3232352e31372e302f32342d3234203d3e20313532303632.roa (hash: 0PyZ1Izmcdz8RbI4pvamYzCkDML//PlzpXnY61vINZs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 05 Dec 2025 03:07:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:54:26:6c:20:31:14:b1:99:11:93:d9:cb:f8:e9:28:9d:0d:e1:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0 Validity Not Before: Dec 2 01:26:57 2025 GMT Not After : Dec 5 03:07:57 2025 GMT Subject: CN=28544BDFC9FD1F166C6C278513A66963ACF21B6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:6b:b2:98:67:df:14:18:50:af:5e:36:ef:de: 4a:1d:89:2b:88:bb:7f:fb:d4:7d:8f:ae:f0:c8:68: 4e:ca:67:00:76:02:ab:1a:08:ae:41:83:02:9d:49: 0d:e5:18:56:2c:15:a1:b3:b9:26:38:36:2e:b9:89: 3e:c2:1c:f2:c1:61:e8:a2:f2:65:08:e6:ce:77:04: 5b:c0:4a:25:da:10:d5:7e:af:b5:85:90:06:dc:0f: fc:07:ba:d6:24:c2:ca:2a:f1:8d:04:93:a7:a8:6e: 32:97:5e:2c:f6:45:67:74:c2:90:31:32:b7:cd:65: 87:41:65:e1:ef:29:40:d9:ea:0e:a1:5a:6a:3d:91: c5:bc:e0:7a:5e:d5:f6:f7:7e:d8:c4:d3:f3:9f:f0: 03:5b:cb:85:b4:c2:e3:f9:e4:45:a5:a6:03:9b:9c: 21:01:a5:a1:57:52:2f:c6:c5:10:a1:7b:5f:eb:37: 6e:76:48:72:d6:d2:ea:34:31:4f:44:7c:92:9a:c2: 5a:cf:1e:16:0d:5d:5f:0a:6d:93:93:fa:10:d9:3d: f8:0e:74:f5:8c:0d:de:60:68:7a:7b:ab:36:76:d2: 5c:11:5c:19:bb:1e:d0:17:e4:2e:56:ab:f7:31:3b: 30:ff:20:74:d7:99:b5:22:f0:81:f7:17:03:ef:d7: ea:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:54:4B:DF:C9:FD:1F:16:6C:6C:27:85:13:A6:69:63:AC:F2:1B:6B X509v3 Authority Key Identifier: keyid:2B:0D:3D:70:A0:27:B5:3C:7A:D2:17:FE:22:CA:0E:D1:11:FD:F3:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5c72d3f5-dd53-4b74-947c-6bb510f4f503/0/2B0D3D70A027B53C7AD217FE22CA0ED111FDF3B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:aa:51:0a:50:60:c9:95:06:29:71:a3:c8:b2:a5:0b:f9:43: f4:25:6e:f2:a4:0c:e1:86:66:a5:1e:56:86:fb:79:55:31:8e: f4:fa:b8:df:71:6c:03:2d:8d:62:1d:de:5f:ba:e5:ec:1d:51: e5:66:d6:e2:0b:ea:88:71:be:21:f7:c9:51:ba:69:fc:32:1c: d6:7d:33:82:79:9e:69:59:c8:11:22:e3:65:d0:65:d4:f9:16: d7:91:92:f4:5b:f1:02:d9:95:33:e6:0a:d9:7f:3d:ab:c6:9a: af:78:1c:13:30:79:a4:be:d1:cd:67:23:ee:0e:90:0d:ba:fe: f3:4d:55:2a:22:22:60:bc:d1:0d:1c:40:0e:f6:ff:04:69:5c: 62:02:8c:4a:74:29:52:e3:17:fd:65:58:1c:ce:28:13:7d:ec: dc:ff:91:ad:59:8b:51:07:0f:a4:67:fe:a4:34:4c:b6:05:9d: 57:78:b0:d2:7d:e5:59:ed:7e:c4:0c:1e:ea:3b:0a:c0:ac:0f: 22:76:3b:f3:fb:c9:06:a8:81:74:ad:73:0f:17:0d:a2:ac:3c: 3c:5b:f2:af:77:6d:e1:8b:a2:2b:49:d7:2d:0d:e1:a4:f6:9d: 91:2d:71:a7:e2:43:e9:19:51:a2:15:d1:6a:a3:cf:32:56:eb: 63:d0:3b:69 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURlQmbCAxFLGZEZPZy/jpKJ0N4d4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDEx MUZERjNCMDAeFw0yNTEyMDIwMTI2NTdaFw0yNTEyMDUwMzA3NTdaMDMxMTAvBgNV BAMTKDI4NTQ0QkRGQzlGRDFGMTY2QzZDMjc4NTEzQTY2OTYzQUNGMjFCNkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFa7KYZ98UGFCvXjbv3kodiSuI u3/71H2PrvDIaE7KZwB2AqsaCK5BgwKdSQ3lGFYsFaGzuSY4Ni65iT7CHPLBYeii 8mUI5s53BFvASiXaENV+r7WFkAbcD/wHutYkwsoq8Y0Ek6eobjKXXiz2RWd0wpAx MrfNZYdBZeHvKUDZ6g6hWmo9kcW84Hpe1fb3ftjE0/Of8ANby4W0wuP55EWlpgOb nCEBpaFXUi/GxRChe1/rN252SHLW0uo0MU9EfJKawlrPHhYNXV8KbZOT+hDZPfgO dPWMDd5gaHp7qzZ20lwRXBm7HtAX5C5Wq/cxOzD/IHTXmbUi8IH3FwPv1+qfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUKFRL38n9HxZsbCeFE6ZpY6zyG2swHwYDVR0j BBgwFoAUKw09cKAntTx60hf+IsoO0RH987AwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YzcyZDNmNS1kZDUzLTRiNzQtOTQ3Yy02YmI1MTBmNGY1MDMvMC8yQjBEM0Q3MEEw MjdCNTNDN0FEMjE3RkUyMkNBMEVEMTExRkRGM0IwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBFRDExMUZE RjNCMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWM3MmQzZjUtZGQ1My00Yjc0LTk0 N2MtNmJiNTEwZjRmNTAzLzAvMkIwRDNENzBBMDI3QjUzQzdBRDIxN0ZFMjJDQTBF RDExMUZERjNCMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHeqUQpQYMmVBilxo8iypQv5Q/QlbvKkDOGG ZqUeVob7eVUxjvT6uN9xbAMtjWId3l+65ewdUeVm1uIL6ohxviH3yVG6afwyHNZ9 M4J5nmlZyBEi42XQZdT5FteRkvRb8QLZlTPmCtl/PavGmq94HBMweaS+0c1nI+4O kA26/vNNVSoiImC80Q0cQA72/wRpXGICjEp0KVLjF/1lWBzOKBN97Nz/ka1Zi1EH D6Rn/qQ0TLYFnVd4sNJ95VntfsQMHuo7CsCsDyJ2O/P7yQaogXStcw8XDaKsPDxb 8q93beGLoitJ1y0N4aT2nZEtcafiQ+kZUaIV0WqjzzJW62PQO2k= -----END CERTIFICATE-----Generated at Wed Dec 3 14:42:45 2025 by rpki-client