This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft File: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft (raw, json) Hash identifier: vEjBo/C9cBugillB5jMWcvY/18IgCrqp7O1GkIjzjjA= Subject key identifier: 6F:F8:13:23:34:F4:0B:53:01:40:B3:C8:8F:DA:0A:FE:4E:9B:33:E0 Authority key identifier: 03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 Certificate issuer: /CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Certificate serial: 16AD17DD55BA9E48FB33577B9D3E2BCCCBE05959 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft Manifest number: 029C Signing time: Sat 06 Dec 2025 22:20:58 +0000 Manifest this update: Sat 06 Dec 2025 22:15:58 +0000 Manifest next update: Wed 10 Dec 2025 00:54:58 +0000 Files and hashes: 1: 032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl (hash: rj+TGsszMtKgfuGzlNSvlajM7KwVvijF2x2WV10nIKg=) 2: 3130332e3137382e31322e302f32332d3233203d3e20313437313635.roa (hash: KqJWQLgXmTHd9H6sRHxBzzsWATc/WnNxAAXTEqHhFsc=) 3: 3130332e3137382e31322e302f32342d3234203d3e20313437313635.roa (hash: OUaHqzH5MUuESyQrAEVUqywPb3+c3nlvFdPyh75nUE0=) 4: 3130332e3137382e31332e302f32342d3234203d3e20313437313635.roa (hash: /POUiN3ADeic24fpnR1S95Kh3i2zF8ppbXpuq/ovLcI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:ad:17:dd:55:ba:9e:48:fb:33:57:7b:9d:3e:2b:cc:cb:e0:59:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8 Validity Not Before: Dec 6 22:15:58 2025 GMT Not After : Dec 10 00:54:58 2025 GMT Subject: CN=6FF8132334F40B530140B3C88FDA0AFE4E9B33E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a1:90:80:34:ea:2f:9d:1e:d8:11:6a:70:d9: 7b:f6:78:72:ba:cb:08:dd:b0:29:98:ab:2b:1a:16: 82:a5:29:64:14:ce:15:59:20:1f:89:b5:ee:f7:9f: 96:be:5c:c1:01:e6:ac:d6:7c:6a:b8:01:1b:1a:7f: e3:25:98:78:48:02:50:c3:8a:41:09:b1:12:cd:bc: f0:9e:5f:c8:27:f7:19:17:58:46:a2:da:10:45:30: 43:16:12:e0:f5:cd:59:d7:75:6e:44:3f:71:34:43: e1:ab:5f:35:6f:f3:ce:09:0d:2d:04:77:63:92:3a: 16:c8:b3:8e:93:ee:16:61:32:98:28:63:fd:d0:1a: b1:79:a8:92:c6:a1:e0:ed:e8:d4:50:9e:7c:c4:f2: 59:5c:29:e5:22:b0:6f:7d:34:b2:aa:e4:b9:17:78: 8b:e5:6d:42:10:9e:b8:69:42:6a:8b:44:2d:e7:3e: e3:2d:a3:91:7e:b2:55:e2:39:09:df:21:32:d8:cf: 9e:0f:58:d6:44:4e:51:96:b8:f1:3a:93:2a:e5:74: 03:ed:0e:4d:d3:39:e1:95:23:66:0d:4f:1f:76:1f: 95:a6:03:dd:fa:7b:8f:83:34:8d:c2:73:80:2b:b9: 20:99:07:8e:72:3f:56:e1:9c:11:a5:fe:69:88:77: b8:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:F8:13:23:34:F4:0B:53:01:40:B3:C8:8F:DA:0A:FE:4E:9B:33:E0 X509v3 Authority Key Identifier: keyid:03:2F:A8:F0:C6:C7:0F:4D:27:6E:F4:A2:E9:C8:5F:6A:AE:92:5A:E8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/03a79d95-64a9-4809-94b2-62de24192245/0/032FA8F0C6C70F4D276EF4A2E9C85F6AAE925AE8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 20:b4:0c:1e:a6:91:5b:fa:a9:b9:cb:79:7e:11:ea:87:92:16: f3:c4:6d:14:cb:96:6a:45:85:0f:75:06:67:8b:16:b7:53:48: 36:29:47:da:90:7c:01:2e:ef:39:9b:83:ea:f8:40:72:c3:58: 79:9d:ef:38:4f:3a:94:40:6e:da:2c:5b:22:bd:96:e9:a2:7a: 32:b7:4b:68:50:cf:80:ed:14:3f:f2:79:cf:b8:1a:0d:21:fc: bb:0f:3e:0c:b3:60:ea:68:f2:9c:4d:1c:88:a4:55:37:d3:5c: 9d:c3:09:1e:f2:96:84:32:30:b8:9d:08:ac:6f:f1:d2:9f:41: 9f:99:f1:41:8e:69:c5:a4:ac:42:93:95:c0:7b:d5:ae:17:6a: 39:81:81:29:0b:c0:a3:4f:bc:48:b4:7f:61:44:f7:a9:dc:48: 89:04:6b:d8:a5:30:76:42:e7:c5:c0:e7:71:98:e2:29:bd:44: a6:6b:81:55:a8:c4:2c:34:f1:c2:8f:c6:a3:5d:8b:ce:ff:27: a3:a5:73:bb:7b:5b:27:8b:bc:c6:bd:15:55:d4:a3:d3:60:3d: 75:ea:50:51:f9:4b:48:4c:10:e7:e7:28:c7:57:87:c7:03:67: 1e:b4:2f:c9:9e:b3:cd:26:27:4b:8d:6f:c4:39:86:fa:bd:07: 6c:dc:84:b7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFq0X3VW6nkj7M1d7nT4rzMvgWVkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFB RTkyNUFFODAeFw0yNTEyMDYyMjE1NThaFw0yNTEyMTAwMDU0NThaMDMxMTAvBgNV BAMTKDZGRjgxMzIzMzRGNDBCNTMwMTQwQjNDODhGREEwQUZFNEU5QjMzRTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMoZCANOovnR7YEWpw2Xv2eHK6 ywjdsCmYqysaFoKlKWQUzhVZIB+Jte73n5a+XMEB5qzWfGq4ARsaf+MlmHhIAlDD ikEJsRLNvPCeX8gn9xkXWEai2hBFMEMWEuD1zVnXdW5EP3E0Q+GrXzVv884JDS0E d2OSOhbIs46T7hZhMpgoY/3QGrF5qJLGoeDt6NRQnnzE8llcKeUisG99NLKq5LkX eIvlbUIQnrhpQmqLRC3nPuMto5F+slXiOQnfITLYz54PWNZETlGWuPE6kyrldAPt Dk3TOeGVI2YNTx92H5WmA936e4+DNI3Cc4AruSCZB45yP1bhnBGl/mmId7jtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUb/gTIzT0C1MBQLPIj9oK/k6bM+AwHwYDVR0j BBgwFoAUAy+o8MbHD00nbvSi6chfaq6SWugwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w M2E3OWQ5NS02NGE5LTQ4MDktOTRiMi02MmRlMjQxOTIyNDUvMC8wMzJGQThGMEM2 QzcwRjREMjc2RUY0QTJFOUM4NUY2QUFFOTI1QUU4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVGNkFBRTky NUFFOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDNhNzlkOTUtNjRhOS00ODA5LTk0 YjItNjJkZTI0MTkyMjQ1LzAvMDMyRkE4RjBDNkM3MEY0RDI3NkVGNEEyRTlDODVG NkFBRTkyNUFFOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACC0DB6mkVv6qbnLeX4R6oeSFvPEbRTLlmpF hQ91BmeLFrdTSDYpR9qQfAEu7zmbg+r4QHLDWHmd7zhPOpRAbtosWyK9lumiejK3 S2hQz4DtFD/yec+4Gg0h/LsPPgyzYOpo8pxNHIikVTfTXJ3DCR7yloQyMLidCKxv 8dKfQZ+Z8UGOacWkrEKTlcB71a4XajmBgSkLwKNPvEi0f2FE96ncSIkEa9ilMHZC 58XA53GY4im9RKZrgVWoxCw08cKPxqNdi87/J6Olc7t7WyeLvMa9FVXUo9NgPXXq UFH5S0hMEOfnKMdXh8cDZx60L8mes80mJ0uNb8Q5hvq9B2zchLc= -----END CERTIFICATE-----Generated at Sun Dec 7 01:10:16 2025 by rpki-client