This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft File: 0EAF2A0CD22523DB087375417038E4165075CA3E.mft (raw, json) Hash identifier: a7IJyJEmeTZaP4BoMlaxPn92LRdkrX8nJmNr69fNJ7c= Subject key identifier: F3:01:6B:0A:DC:02:29:5E:6E:9E:7A:4C:DE:2E:0D:0B:45:A3:4C:67 Authority key identifier: 0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E Certificate issuer: /CN=0EAF2A0CD22523DB087375417038E4165075CA3E Certificate serial: 54B845F6A706A55B2891A2CEF8EA1E943A4FC68F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft Manifest number: 0105 Signing time: Thu 04 Dec 2025 14:11:07 +0000 Manifest this update: Thu 04 Dec 2025 14:06:07 +0000 Manifest next update: Sun 07 Dec 2025 21:07:07 +0000 Files and hashes: 1: 0EAF2A0CD22523DB087375417038E4165075CA3E.crl (hash: G1UyeeOYohPsYYHSQq5iD6vXXTUI3QUrHtzpb8pMfI0=) 2: 3135372e32302e34342e302f32342d3234203d3e20313532333932.roa (hash: LQj0jMPge82CwHOWS5fHIk0tBtvaFA1Hv5mniV+5odo=) 3: 3135372e32302e34352e302f32342d3234203d3e20323035343232.roa (hash: 0BKZVYiTiHtgjZEUGoDI40NlGQFEUeOEKE+t8AaJ1+k=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 21:07:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b8:45:f6:a7:06:a5:5b:28:91:a2:ce:f8:ea:1e:94:3a:4f:c6:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0EAF2A0CD22523DB087375417038E4165075CA3E Validity Not Before: Dec 4 14:06:07 2025 GMT Not After : Dec 7 21:07:07 2025 GMT Subject: CN=F3016B0ADC02295E6E9E7A4CDE2E0D0B45A34C67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:86:67:73:ff:ef:b5:f1:36:b6:f9:d3:bc:be: 5e:e4:e5:5d:97:5b:76:d1:2f:f0:16:a6:86:e3:e2: f8:9d:16:b8:da:ae:09:ed:3d:49:8d:d9:f9:6e:97: ad:3e:85:94:d4:01:a8:ed:e1:c3:a8:3e:b8:b1:30: ae:0d:df:ba:66:bc:ac:3b:70:c3:c4:18:bf:fd:3f: ba:a1:4e:6b:61:0d:59:a1:b7:03:d9:17:73:b6:d0: 6c:9a:a8:8e:fb:7b:8d:a1:11:e2:65:89:9f:3c:44: 72:d9:d2:87:60:a0:66:9a:fa:45:2b:12:a6:94:e4: 24:cf:2a:d1:7d:f8:78:1f:ad:d8:00:cb:fc:a7:bb: 95:4c:4e:ea:d3:bc:01:ef:4c:09:3f:98:45:a5:e0: f4:95:52:f8:5c:82:14:db:9c:56:bd:01:04:cf:53: d6:ad:25:9d:0f:13:e0:80:91:e0:4b:1e:b4:8c:ab: 26:3f:2c:45:71:3b:92:7a:b5:77:33:0e:44:6f:18: 52:e6:2b:c3:37:e3:db:1f:19:53:be:b8:61:50:97: b1:f4:03:c6:ef:eb:9d:27:db:b3:e9:6a:c0:a5:9e: 35:7f:0d:48:a6:84:f9:a7:03:d4:76:39:35:0f:d2: 32:b9:75:d7:53:9e:f5:a2:3d:ec:f3:19:08:47:a0: 90:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:01:6B:0A:DC:02:29:5E:6E:9E:7A:4C:DE:2E:0D:0B:45:A3:4C:67 X509v3 Authority Key Identifier: keyid:0E:AF:2A:0C:D2:25:23:DB:08:73:75:41:70:38:E4:16:50:75:CA:3E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/0EAF2A0CD22523DB087375417038E4165075CA3E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0588dff7-6a92-4293-8800-b53e2a918aca/0/0EAF2A0CD22523DB087375417038E4165075CA3E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6e:a7:67:4b:e3:7c:4e:41:1b:51:54:cf:37:63:e2:a6:e8:27: dd:a1:24:53:1a:8b:21:8e:b8:cb:9e:36:cf:49:e3:ce:0c:28: 17:21:c2:aa:45:03:65:cb:9b:51:ac:96:b7:3a:c4:cc:74:a6: f7:0e:ea:3c:a8:e1:cb:2a:2d:2f:17:31:c6:2c:03:93:93:01: 10:98:48:e2:3b:b2:f1:64:7d:7a:6f:4b:ca:75:da:3b:96:45: d0:b0:b3:ae:4c:70:ec:7b:08:57:43:a8:7b:cd:5c:31:d1:7f: 66:45:a3:d8:72:2e:80:3c:6c:98:86:88:c5:28:fb:a1:c0:43: 0c:0c:58:5a:91:fb:2e:6a:a7:eb:6b:36:8f:e5:92:bf:3d:eb: d6:a4:01:77:c3:d6:0c:f5:62:88:81:67:e9:2e:41:9d:2e:5a: e2:92:c6:97:a3:1a:2c:28:03:24:b6:67:e5:79:b4:48:c1:1d: c9:ca:37:5f:98:69:19:17:be:24:f7:76:a6:76:42:c1:3c:49: 0d:75:5e:e7:2d:91:59:10:22:b8:f3:59:b5:ba:e6:b7:69:2b: db:c6:7e:6d:9b:57:4f:18:30:c7:cf:ed:3f:4f:99:4c:fe:36: 1f:e5:7c:1a:ef:13:66:43:5b:4d:11:2c:e6:89:bd:26:dd:25: 0f:e5:fc:9f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVLhF9qcGpVsokaLO+OoelDpPxo8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1 MDc1Q0EzRTAeFw0yNTEyMDQxNDA2MDdaFw0yNTEyMDcyMTA3MDdaMDMxMTAvBgNV BAMTKEYzMDE2QjBBREMwMjI5NUU2RTlFN0E0Q0RFMkUwRDBCNDVBMzRDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyhmdz/++18Ta2+dO8vl7k5V2X W3bRL/AWpobj4vidFrjargntPUmN2flul60+hZTUAajt4cOoPrixMK4N37pmvKw7 cMPEGL/9P7qhTmthDVmhtwPZF3O20GyaqI77e42hEeJliZ88RHLZ0odgoGaa+kUr EqaU5CTPKtF9+HgfrdgAy/ynu5VMTurTvAHvTAk/mEWl4PSVUvhcghTbnFa9AQTP U9atJZ0PE+CAkeBLHrSMqyY/LEVxO5J6tXczDkRvGFLmK8M349sfGVO+uGFQl7H0 A8bv650n27PpasClnjV/DUimhPmnA9R2OTUP0jK5dddTnvWiPezzGQhHoJBfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8wFrCtwCKV5unnpM3i4NC0WjTGcwHwYDVR0j BBgwFoAUDq8qDNIlI9sIc3VBcDjkFlB1yj4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NTg4ZGZmNy02YTkyLTQyOTMtODgwMC1iNTNlMmE5MThhY2EvMC8wRUFGMkEwQ0Qy MjUyM0RCMDg3Mzc1NDE3MDM4RTQxNjUwNzVDQTNFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0MTY1MDc1 Q0EzRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDU4OGRmZjctNmE5Mi00MjkzLTg4 MDAtYjUzZTJhOTE4YWNhLzAvMEVBRjJBMENEMjI1MjNEQjA4NzM3NTQxNzAzOEU0 MTY1MDc1Q0EzRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG6nZ0vjfE5BG1FUzzdj4qboJ92hJFMaiyGO uMueNs9J484MKBchwqpFA2XLm1Gslrc6xMx0pvcO6jyo4csqLS8XMcYsA5OTARCY SOI7svFkfXpvS8p12juWRdCws65McOx7CFdDqHvNXDHRf2ZFo9hyLoA8bJiGiMUo +6HAQwwMWFqR+y5qp+trNo/lkr8969akAXfD1gz1YoiBZ+kuQZ0uWuKSxpejGiwo AyS2Z+V5tEjBHcnKN1+YaRkXviT3dqZ2QsE8SQ11XuctkVkQIrjzWbW65rdpK9vG fm2bV08YMMfP7T9PmUz+Nh/lfBrvE2ZDW00RLOaJvSbdJQ/l/J8= -----END CERTIFICATE-----Generated at Sat Dec 6 19:10:49 2025 by rpki-client