This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft File: 2B90BB17E78B62C15179029C6583E42BD7E18277.mft (raw, json) Hash identifier: s98OOZ4CfexVxhemI83qVWbLQAUhylF3/d305/OGnOo= Subject key identifier: 8A:EF:72:55:B0:6F:0D:8C:B8:46:82:49:70:DC:95:D4:55:64:F4:C0 Authority key identifier: 2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 Certificate issuer: /CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Certificate serial: 3ED3CF4F70B515ED6786245FDF30F9683DC1F6EE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject info access: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft Manifest number: A7 Signing time: Tue 02 Dec 2025 19:20:40 +0000 Manifest this update: Tue 02 Dec 2025 19:15:40 +0000 Manifest next update: Sat 06 Dec 2025 00:50:40 +0000 Files and hashes: 1: 3130332e38302e3231342e302f32342d3234203d3e20313533303932.roa (hash: E7LmVcTtrOc0QLca3OKgAjrGPUq24WcKvpibpJhqwMo=) 2: 3130332e38302e3231352e302f32342d3234203d3e20313533303932.roa (hash: E4Gvpo5D/NeUbbz+zUDpV78niTppp2APH+i1gYLD2PM=) 3: 3130332e38302e3231342e302f32332d3233203d3e20313533303932.roa (hash: /bOtG6Hq4cCxQBrZ1Nbmvs+Hrm8cpxmM7Q2j13q5aYY=) 4: 2B90BB17E78B62C15179029C6583E42BD7E18277.crl (hash: /BpB1cMdvgHu8hQ5/VAQm3/wXt7+h15rFNxJnI2EiZc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 00:50:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:d3:cf:4f:70:b5:15:ed:67:86:24:5f:df:30:f9:68:3d:c1:f6:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B90BB17E78B62C15179029C6583E42BD7E18277 Validity Not Before: Dec 2 19:15:40 2025 GMT Not After : Dec 6 00:50:40 2025 GMT Subject: CN=8AEF7255B06F0D8CB846824970DC95D45564F4C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b0:52:17:e2:a2:bc:8f:4f:e3:8a:12:77:28: 34:40:c0:8e:05:d4:4a:c5:e1:b8:f5:e9:a7:c3:14: 0f:25:f5:a1:ea:7a:97:f6:f0:78:c4:f2:13:b3:67: 80:cb:00:b6:06:58:c0:60:75:30:e3:3d:f8:d9:36: 6b:90:18:d2:eb:be:94:ef:02:6d:44:2a:32:7e:72: cc:dd:81:b4:ed:64:98:b0:12:20:2a:7e:84:01:c3: 03:9a:a9:bb:c4:3f:e0:6b:a5:9c:58:4c:79:a0:6c: 5a:8a:3e:34:91:06:19:71:44:2f:fd:09:ed:e4:4c: 55:65:60:2b:82:b1:0b:b9:5f:e3:50:d8:ee:1b:a0: 40:7c:00:01:c2:26:c2:66:ae:99:1b:91:4a:df:31: 46:6d:5a:f9:d9:13:a1:92:60:9c:f9:53:9e:aa:85: 64:64:b5:60:92:dc:b3:17:74:43:5f:55:dd:b0:be: 21:8c:7d:b6:b1:0d:af:a3:1d:a4:3c:47:97:5c:a1: 61:0d:b2:4d:19:a1:df:8b:79:7f:d0:7d:bf:ba:05: 02:48:83:98:6d:9d:01:40:78:64:7f:e3:80:9c:47: 16:aa:6e:a2:40:e0:86:2b:28:e5:a6:e5:b7:61:99: 54:c4:9c:5b:09:cf:15:ab:c6:34:49:c9:56:2f:5a: a2:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:EF:72:55:B0:6F:0D:8C:B8:46:82:49:70:DC:95:D4:55:64:F4:C0 X509v3 Authority Key Identifier: keyid:2B:90:BB:17:E7:8B:62:C1:51:79:02:9C:65:83:E4:2B:D7:E1:82:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2B90BB17E78B62C15179029C6583E42BD7E18277.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/de5a5e6d-91ee-4497-b417-8d32f653e4b0/0/2B90BB17E78B62C15179029C6583E42BD7E18277.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:85:b4:c4:25:45:78:b4:60:06:61:04:66:89:c8:0d:92:01: f4:5b:79:ec:4c:9a:7b:8a:6b:ed:24:65:74:5e:e2:22:42:fb: d6:5c:b3:0f:2b:e9:b9:61:61:cd:b9:48:27:02:35:0b:f6:13: de:59:47:d3:a3:af:9a:5b:8b:84:07:78:01:23:fd:30:19:37: cf:91:9a:36:be:68:44:0b:7c:cb:96:6f:be:44:1e:59:30:ce: e8:d4:1a:f9:3d:91:4e:8b:11:e2:1c:0a:a8:c7:7e:bf:58:47: c9:d4:fb:92:01:e9:2b:2c:2d:57:f6:8a:e6:65:7d:6e:70:2b: 64:73:bd:1d:17:a0:50:9f:ba:f1:81:db:de:13:50:5e:c1:b8: 27:35:a1:2c:39:45:29:0f:d5:3f:8b:71:97:ae:91:ba:e1:80: 26:dc:2e:4f:be:aa:35:7c:b0:23:3b:27:ca:ad:1e:ba:44:6f: a2:4f:08:e3:c8:4a:b8:ca:c6:a5:34:c6:10:63:58:98:66:53: 67:b4:37:6e:45:f9:b4:d8:db:d4:35:b1:fd:59:ae:f5:4f:d7: 82:f1:f8:b1:b5:ba:f9:bf:6c:f1:86:1c:21:5c:28:d7:c4:3e: e2:ef:b1:a3:22:0d:0c:22:21:8f:d7:34:04:a3:21:32:7f:c2: 1f:ce:35:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPtPPT3C1Fe1nhiRf3zD5aD3B9u4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJE N0UxODI3NzAeFw0yNTEyMDIxOTE1NDBaFw0yNTEyMDYwMDUwNDBaMDMxMTAvBgNV BAMTKDhBRUY3MjU1QjA2RjBEOENCODQ2ODI0OTcwREM5NUQ0NTU2NEY0QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1sFIX4qK8j0/jihJ3KDRAwI4F 1ErF4bj16afDFA8l9aHqepf28HjE8hOzZ4DLALYGWMBgdTDjPfjZNmuQGNLrvpTv Am1EKjJ+cszdgbTtZJiwEiAqfoQBwwOaqbvEP+BrpZxYTHmgbFqKPjSRBhlxRC/9 Ce3kTFVlYCuCsQu5X+NQ2O4boEB8AAHCJsJmrpkbkUrfMUZtWvnZE6GSYJz5U56q hWRktWCS3LMXdENfVd2wviGMfbaxDa+jHaQ8R5dcoWENsk0Zod+LeX/Qfb+6BQJI g5htnQFAeGR/44CcRxaqbqJA4IYrKOWm5bdhmVTEnFsJzxWrxjRJyVYvWqIhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiu9yVbBvDYy4RoJJcNyV1FVk9MAwHwYDVR0j BBgwFoAUK5C7F+eLYsFReQKcZYPkK9fhgncwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZTVhNWU2ZC05MWVlLTQ0OTctYjQxNy04ZDMyZjY1M2U0YjAvMC8yQjkwQkIxN0U3 OEI2MkMxNTE3OTAyOUM2NTgzRTQyQkQ3RTE4Mjc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0MkJEN0Ux ODI3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGU1YTVlNmQtOTFlZS00NDk3LWI0 MTctOGQzMmY2NTNlNGIwLzAvMkI5MEJCMTdFNzhCNjJDMTUxNzkwMjlDNjU4M0U0 MkJEN0UxODI3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAByFtMQlRXi0YAZhBGaJyA2SAfRbeexMmnuK a+0kZXRe4iJC+9Zcsw8r6blhYc25SCcCNQv2E95ZR9Ojr5pbi4QHeAEj/TAZN8+R mja+aEQLfMuWb75EHlkwzujUGvk9kU6LEeIcCqjHfr9YR8nU+5IB6SssLVf2iuZl fW5wK2RzvR0XoFCfuvGB294TUF7BuCc1oSw5RSkP1T+LcZeukbrhgCbcLk++qjV8 sCM7J8qtHrpEb6JPCOPISrjKxqU0xhBjWJhmU2e0N25F+bTY29Q1sf1ZrvVP14Lx +LG1uvm/bPGGHCFcKNfEPuLvsaMiDQwiIY/XNASjITJ/wh/ONVU= -----END CERTIFICATE-----Generated at Wed Dec 3 14:14:23 2025 by rpki-client