This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: dB43jxj+ffra5rO5V4oQuyjmS0WOd+yJpdO8EiD2OGE= Subject key identifier: 87:85:B0:16:E4:71:A3:53:3B:C7:29:F7:86:56:39:5C:F8:68:EF:97 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 19E3216E81E6F1DE0B0B973327FD607BB3AA3833 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 0194 Signing time: Sat 06 Dec 2025 05:12:23 +0000 Manifest this update: Sat 06 Dec 2025 05:07:23 +0000 Manifest next update: Tue 09 Dec 2025 16:46:23 +0000 Files and hashes: 1: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) 2: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: vkksdGzI4GkUQk9a1aNLJ+W1iDVFG65Qjtlcr+3S6CU=) 3: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) 4: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 5: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:e3:21:6e:81:e6:f1:de:0b:0b:97:33:27:fd:60:7b:b3:aa:38:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Dec 6 05:07:23 2025 GMT Not After : Dec 9 16:46:23 2025 GMT Subject: CN=8785B016E471A3533BC729F78656395CF868EF97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:36:aa:41:9e:b8:0b:42:af:43:0c:7d:8b:16: 4f:05:64:f8:2b:c7:6a:7b:c9:d7:1e:00:54:fc:ae: 1a:b9:8a:47:21:7c:51:54:0b:d6:21:b6:48:94:15: 0a:2a:31:92:33:98:01:de:5c:9e:e1:51:04:0c:7d: 94:73:fa:b7:51:5c:7b:a2:e6:ed:81:5f:a4:40:94: b4:c5:b7:e6:32:55:6d:1e:76:d3:b3:38:02:fb:2e: 75:28:8b:58:2d:2a:32:89:14:47:be:a1:0e:66:a8: b4:77:0a:74:00:c8:13:8c:a9:57:35:98:84:fe:40: d3:77:a9:2b:53:c7:79:58:03:6f:88:9a:be:08:e1: ae:c1:3d:19:7a:65:81:09:90:43:5e:b8:10:e8:97: 39:3b:ea:9e:25:3a:51:7f:dd:c3:b2:4c:ab:93:94: 8d:17:4c:b8:a3:14:80:d9:41:af:24:37:e6:12:51: ea:8a:07:7d:78:22:c0:9a:9f:1f:7f:55:0b:6b:dc: 69:fb:e3:52:cc:fd:c2:bc:5b:d7:81:42:40:96:4d: 2c:96:d0:e7:0f:90:bd:65:ca:50:b4:28:e6:b1:71: bc:ab:b1:6d:87:91:fa:7a:40:01:f1:1c:f7:fa:11: 82:7b:f4:15:86:ab:25:2d:04:aa:3b:3b:4b:20:a5: 98:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:85:B0:16:E4:71:A3:53:3B:C7:29:F7:86:56:39:5C:F8:68:EF:97 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:c1:2d:40:d9:9d:81:53:43:c8:d7:76:ab:3a:78:db:8e:5f: 73:48:a8:60:dd:ee:40:59:ce:b4:2c:e1:22:d9:7b:b4:76:32: 1d:50:f9:f6:f0:ba:fb:46:07:e6:7d:72:33:ae:41:b2:86:fe: f5:8b:f9:75:98:d0:1c:72:56:0d:1d:69:cc:b3:d0:5a:af:53: 00:56:d2:12:bf:f2:08:ea:00:25:4a:f8:ed:6e:be:21:0d:2d: a7:63:4f:81:03:7a:fa:bd:60:b4:1f:0a:df:19:d5:28:a9:3b: 1d:a1:24:d0:34:9a:d5:66:9d:48:9d:cb:a4:dd:21:a7:8e:26: 91:bd:32:f6:b9:20:5f:ed:f9:28:c1:84:5e:01:a5:30:13:b4: 20:4e:69:60:da:1a:e0:09:58:2d:d5:74:ba:7a:34:79:5b:e2: 63:b5:8c:e4:7e:b8:8f:5a:5b:58:25:6d:a0:b4:82:22:3b:75: 69:23:24:70:db:11:59:ac:b9:bb:97:5f:bd:bc:c3:f2:dd:58: 37:8c:6d:e5:28:6a:ed:d4:84:bd:bc:d8:2b:88:ed:59:0d:c8: a2:36:5c:2f:6e:5b:71:9c:47:2c:6c:66:c0:d6:2e:47:79:06: 38:a7:14:c5:eb:3d:f6:ea:f6:08:9a:a8:44:9f:28:82:00:9e: cb:af:69:88 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGeMhboHm8d4LC5czJ/1ge7OqODMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTEyMDYwNTA3MjNaFw0yNTEyMDkxNjQ2MjNaMDMxMTAvBgNV BAMTKDg3ODVCMDE2RTQ3MUEzNTMzQkM3MjlGNzg2NTYzOTVDRjg2OEVGOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLNqpBnrgLQq9DDH2LFk8FZPgr x2p7ydceAFT8rhq5ikchfFFUC9YhtkiUFQoqMZIzmAHeXJ7hUQQMfZRz+rdRXHui 5u2BX6RAlLTFt+YyVW0edtOzOAL7LnUoi1gtKjKJFEe+oQ5mqLR3CnQAyBOMqVc1 mIT+QNN3qStTx3lYA2+Imr4I4a7BPRl6ZYEJkENeuBDolzk76p4lOlF/3cOyTKuT lI0XTLijFIDZQa8kN+YSUeqKB314IsCanx9/VQtr3Gn741LM/cK8W9eBQkCWTSyW 0OcPkL1lylC0KOaxcbyrsW2Hkfp6QAHxHPf6EYJ79BWGqyUtBKo7O0sgpZhRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUh4WwFuRxo1M7xyn3hlY5XPho75cwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB3BLUDZnYFTQ8jXdqs6eNuOX3NIqGDd7kBZ zrQs4SLZe7R2Mh1Q+fbwuvtGB+Z9cjOuQbKG/vWL+XWY0BxyVg0dacyz0FqvUwBW 0hK/8gjqACVK+O1uviENLadjT4EDevq9YLQfCt8Z1SipOx2hJNA0mtVmnUidy6Td IaeOJpG9Mva5IF/t+SjBhF4BpTATtCBOaWDaGuAJWC3VdLp6NHlb4mO1jOR+uI9a W1glbaC0giI7dWkjJHDbEVmsubuXX728w/LdWDeMbeUoau3UhL282CuI7VkNyKI2 XC9uW3GcRyxsZsDWLkd5BjinFMXrPfbq9giaqESfKIIAnsuvaYg= -----END CERTIFICATE-----Generated at Sun Dec 7 04:35:32 2025 by rpki-client