This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft File: 4B35C20AD3085CF1B9FAEA049AD742539E090205.mft (raw, json) Hash identifier: ADriMLU9CsZ7iuYnDWQWCnt7VVMpye4JqMbNci1CE1Y= Subject key identifier: 82:E0:AE:2C:6D:78:0E:EC:CF:02:E7:9B:95:0F:34:53:E0:F4:24:1E Authority key identifier: 4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 Certificate issuer: /CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Certificate serial: 25DB6C0B8F208DA33D3DACA94FC0B6FFC9C7BF9F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft Manifest number: 028C Signing time: Mon 01 Dec 2025 14:51:14 +0000 Manifest this update: Mon 01 Dec 2025 14:46:14 +0000 Manifest next update: Thu 04 Dec 2025 21:39:14 +0000 Files and hashes: 1: 3130332e3137392e36342e302f32342d3234203d3e20313439333335.roa (hash: MmuXAKKjfDSx5uMJ92RoI47O3gaQ+ApBdube+8uCMpY=) 2: 4B35C20AD3085CF1B9FAEA049AD742539E090205.crl (hash: JssSEGwXdQze2iD0oWSauLR5xq+dVHYH/RMS3vzj30k=) 3: 3130332e3137392e36342e302f32332d3233203d3e20313439333335.roa (hash: T9YXzECK/+yPsc0MjXlDkJh+Di90dnJO766syYdRfEY=) 4: 3130332e3137392e36352e302f32342d3234203d3e20313439333335.roa (hash: ym37SSdo2iVsDC1Dln3Pafguv+BU6JfKF0m5JjGwHHs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 04 Dec 2025 21:39:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:db:6c:0b:8f:20:8d:a3:3d:3d:ac:a9:4f:c0:b6:ff:c9:c7:bf:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B35C20AD3085CF1B9FAEA049AD742539E090205 Validity Not Before: Dec 1 14:46:14 2025 GMT Not After : Dec 4 21:39:14 2025 GMT Subject: CN=82E0AE2C6D780EECCF02E79B950F3453E0F4241E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7b:bf:b3:e1:66:2b:39:8c:69:77:c9:31:8e: ed:3d:5d:a0:42:87:fc:ea:73:02:bd:ac:0f:05:3a: f2:f3:96:64:a3:c7:05:2c:14:1d:2d:f7:d9:d1:02: 8f:a7:24:b6:11:91:14:0f:6e:09:e1:05:6d:76:e8: cf:40:a3:71:cb:9d:51:bf:8e:33:67:63:2e:3b:ef: ce:30:33:81:e0:af:0b:b0:c9:af:9b:d2:7a:95:96: 69:a8:b4:12:b9:0a:24:64:01:ea:20:57:5e:99:b0: 27:cd:bb:c9:dd:d7:9f:ba:8f:58:80:a0:80:70:16: e9:47:87:89:ae:9b:e1:1e:d4:fb:06:aa:58:f0:db: 69:0a:1a:76:4f:da:f1:13:a1:4c:c0:dc:07:53:e8: ed:00:df:5c:13:bf:4f:91:d4:dc:cd:c5:31:f9:aa: 10:36:a0:7c:f4:e2:cc:14:fc:6b:c0:d5:24:af:c3: a1:05:41:0d:70:cb:0e:f4:09:9a:1d:27:eb:56:1e: e9:9a:3a:83:13:f2:62:db:bd:96:91:6e:c4:ff:6c: 10:0c:80:06:86:03:be:ab:40:d3:e3:35:bc:ac:2e: d2:43:f0:df:e1:85:67:9e:3f:e7:65:fc:be:1c:c4: 4a:95:f8:cc:5b:9b:59:1f:47:63:e5:ae:b4:01:34: 1f:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E0:AE:2C:6D:78:0E:EC:CF:02:E7:9B:95:0F:34:53:E0:F4:24:1E X509v3 Authority Key Identifier: keyid:4B:35:C2:0A:D3:08:5C:F1:B9:FA:EA:04:9A:D7:42:53:9E:09:02:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4B35C20AD3085CF1B9FAEA049AD742539E090205.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c77de013-9b56-49ff-8b79-3667a345cb8d/0/4B35C20AD3085CF1B9FAEA049AD742539E090205.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 72:5d:ed:5e:c2:5b:d5:1a:60:05:6d:00:94:be:24:01:b6:e0: e8:7b:55:b3:9f:27:cf:c3:f4:5e:e5:24:ad:6f:26:4f:c3:00: 9b:33:49:09:cd:d1:95:9d:b8:b2:9a:b9:68:57:54:20:dd:f8: de:43:d6:0e:07:9f:d7:e8:54:47:39:59:43:aa:ad:c9:54:dd: 0a:fb:7d:f9:1c:00:34:96:82:1c:85:c7:15:60:cf:53:dc:db: 0f:70:06:5b:b3:30:8a:99:b3:75:ab:cf:5b:95:78:7c:b1:08: 3a:c7:c4:e9:fe:8f:15:c5:c2:2e:83:3c:2c:42:ca:e0:b3:26: 3b:9b:24:df:59:ce:86:30:b2:4e:0d:48:de:96:46:a7:3e:12: 72:5c:3e:23:e4:f3:8a:25:f1:64:46:01:b5:5e:57:ff:70:dd: 5e:6c:42:7e:be:1a:c3:ae:f3:b1:09:4e:72:b7:89:b2:3c:50: 61:a5:27:48:ec:be:d4:fa:66:ea:c6:73:ac:a2:8c:77:21:9a: ea:23:d7:c0:4e:05:7c:94:8c:d6:6f:ee:ae:71:cc:2d:ef:e2: 66:c1:4c:c4:81:69:27:be:8f:32:56:3a:07:9d:82:5a:71:1f: be:c5:6a:a5:35:f5:f3:ee:73:32:f6:5e:43:d2:10:60:cd:da: 79:a9:fd:74 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJdtsC48gjaM9PaypT8C2/8nHv58wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5 RTA5MDIwNTAeFw0yNTEyMDExNDQ2MTRaFw0yNTEyMDQyMTM5MTRaMDMxMTAvBgNV BAMTKDgyRTBBRTJDNkQ3ODBFRUNDRjAyRTc5Qjk1MEYzNDUzRTBGNDI0MUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOe7+z4WYrOYxpd8kxju09XaBC h/zqcwK9rA8FOvLzlmSjxwUsFB0t99nRAo+nJLYRkRQPbgnhBW126M9Ao3HLnVG/ jjNnYy47784wM4Hgrwuwya+b0nqVlmmotBK5CiRkAeogV16ZsCfNu8nd15+6j1iA oIBwFulHh4mum+Ee1PsGqljw22kKGnZP2vEToUzA3AdT6O0A31wTv0+R1NzNxTH5 qhA2oHz04swU/GvA1SSvw6EFQQ1wyw70CZodJ+tWHumaOoMT8mLbvZaRbsT/bBAM gAaGA76rQNPjNbysLtJD8N/hhWeeP+dl/L4cxEqV+Mxbm1kfR2PlrrQBNB+RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUguCuLG14DuzPAueblQ80U+D0JB4wHwYDVR0j BBgwFoAUSzXCCtMIXPG5+uoEmtdCU54JAgUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j NzdkZTAxMy05YjU2LTQ5ZmYtOGI3OS0zNjY3YTM0NWNiOGQvMC80QjM1QzIwQUQz MDg1Q0YxQjlGQUVBMDQ5QUQ3NDI1MzlFMDkwMjA1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQyNTM5RTA5 MDIwNS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzc3ZGUwMTMtOWI1Ni00OWZmLThi NzktMzY2N2EzNDVjYjhkLzAvNEIzNUMyMEFEMzA4NUNGMUI5RkFFQTA0OUFENzQy NTM5RTA5MDIwNS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHJd7V7CW9UaYAVtAJS+JAG24Oh7VbOfJ8/D 9F7lJK1vJk/DAJszSQnN0ZWduLKauWhXVCDd+N5D1g4Hn9foVEc5WUOqrclU3Qr7 ffkcADSWghyFxxVgz1Pc2w9wBluzMIqZs3Wrz1uVeHyxCDrHxOn+jxXFwi6DPCxC yuCzJjubJN9ZzoYwsk4NSN6WRqc+EnJcPiPk84ol8WRGAbVeV/9w3V5sQn6+GsOu 87EJTnK3ibI8UGGlJ0jsvtT6ZurGc6yijHchmuoj18BOBXyUjNZv7q5xzC3v4mbB TMSBaSe+jzJWOgedglpxH77FaqU19fPuczL2XkPSEGDN2nmp/XQ= -----END CERTIFICATE-----Generated at Wed Dec 3 15:30:13 2025 by rpki-client