This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft File: 645C9D445B2796662EE98A03E50C124F3E962CAB.mft (raw, json) Hash identifier: pHiMQv+b63FwaQbD1Wrom+xXNGLQzKo5arEwJzi3BC4= Subject key identifier: C3:FE:09:95:3C:2F:55:00:E1:71:17:BC:5B:C5:8B:AD:24:CB:AE:FF Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 74A454848A042F8A7E92AE1F7DF1C925C0B4C51A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft Manifest number: 03CF Signing time: Fri 05 Dec 2025 20:31:12 +0000 Manifest this update: Fri 05 Dec 2025 20:26:12 +0000 Manifest next update: Mon 08 Dec 2025 23:20:12 +0000 Files and hashes: 1: 645C9D445B2796662EE98A03E50C124F3E962CAB.crl (hash: Rn88ZrYS1RgIbhVQ2kUBij+FTvS4/6vOyftQ6+DU4oM=) 2: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: Yo/r10NdHpCyWdp4iTpRbnPv2TKKyCyVTnBiO8AmbDc=) 3: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: ehP408+CXUe13X4F5TvwPj6ddCoH7T+4InUUhWjVyGw=) 4: 323430313a626534303a3a2f33322d3332203d3e20313336383431.roa (hash: UnpWLg0+2SsmnDXBrwzCKp1VDUDBelXMewYvLJ0BJ+c=) 5: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: pfMM3/ygiEY34vdGoVOYeg8tWN4ZaCnJmX0NJOGEX00=) 6: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: qbkH1qedbuL2nkb9oW2AlysgwJB8XaNgGrzurioAZP0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 23:20:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:a4:54:84:8a:04:2f:8a:7e:92:ae:1f:7d:f1:c9:25:c0:b4:c5:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Dec 5 20:26:12 2025 GMT Not After : Dec 8 23:20:12 2025 GMT Subject: CN=C3FE09953C2F5500E17117BC5BC58BAD24CBAEFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:f1:93:85:c0:fa:79:2b:45:9d:2f:ca:73:8d: 15:a3:59:bc:51:b7:23:0d:9f:f9:73:ac:a5:66:e2: 43:73:16:f3:20:23:25:73:80:1d:78:ac:30:5a:25: 74:5f:3a:09:1b:49:cf:33:6b:8b:65:23:c3:d4:27: 40:e4:81:a7:d5:a4:9b:eb:67:10:f0:ea:36:07:5e: 59:6b:66:1f:2b:45:c6:05:74:b3:3a:b0:36:45:cd: fc:69:2b:f0:da:73:6b:54:cd:c5:0e:d9:a5:b7:cf: ea:44:e3:f1:a3:f7:21:10:5e:3f:0a:db:04:ef:1e: cd:fd:9f:ed:43:e1:86:75:f4:92:ff:eb:d1:17:cf: da:ac:fb:7d:2c:6a:52:e4:48:e4:47:2b:df:4f:0c: af:f2:37:22:96:36:08:a3:92:4a:f6:2c:4e:0d:8e: bf:7a:2b:12:1f:c3:94:4c:07:8f:92:ee:0d:46:34: ed:2c:60:03:39:18:a8:63:4a:83:a3:ec:e7:57:c8: 35:60:c1:1a:77:aa:91:b2:ac:4f:f2:fe:02:0d:43: 8d:9b:31:41:7b:87:67:f8:6e:95:fb:1f:03:f2:fc: 52:6a:35:1d:47:f1:aa:bf:2b:64:40:09:ac:91:d6: e2:25:cd:c3:22:d5:a5:79:ca:34:41:75:58:01:cd: ba:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:FE:09:95:3C:2F:55:00:E1:71:17:BC:5B:C5:8B:AD:24:CB:AE:FF X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:c8:14:81:e3:c6:25:f5:31:ec:e0:ad:94:6f:ea:cb:75:e6: ef:da:e7:35:74:64:88:43:2e:01:d8:63:5b:aa:9c:dd:f2:f7: 8c:8e:4a:78:4b:0c:a1:2d:89:22:27:82:b3:c3:05:62:d4:b3: f4:75:47:24:58:b1:72:3d:b4:a3:6a:1c:7b:9c:64:00:ea:52: d1:94:2b:0d:ef:e3:86:4c:08:50:b4:d1:f6:f1:bf:52:9e:c7: 58:60:4f:dc:3d:ff:e8:f6:b1:35:db:8b:01:9c:ce:2e:d8:df: 06:4c:7e:02:17:ae:f8:ef:29:e9:95:05:4b:8e:9e:9a:49:f9: 7c:f7:31:0b:a6:c7:4a:1b:05:92:a2:7a:d4:7b:13:4d:96:8b: 64:9d:12:c8:2b:78:81:ec:6f:7d:c6:ed:c2:9c:39:5e:bb:eb: 48:bb:ef:56:ee:5d:f4:3a:06:8a:88:d6:68:50:63:33:2c:a3: ba:e3:dd:18:86:7c:39:f7:a3:d5:84:df:b9:d3:62:79:07:48: b4:05:fc:4e:48:59:87:4a:96:a8:bc:bc:17:38:0e:ce:ad:95: 6b:16:84:93:dd:39:a1:b2:62:67:bc:f2:e7:2e:a8:31:6b:f9: f1:d9:0a:98:e1:d7:89:3b:87:a9:b4:ff:e3:39:f5:5a:c0:e9: ce:49:15:6a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdKRUhIoEL4p+kq4fffHJJcC0xRowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNTEyMDUyMDI2MTJaFw0yNTEyMDgyMzIwMTJaMDMxMTAvBgNV BAMTKEMzRkUwOTk1M0MyRjU1MDBFMTcxMTdCQzVCQzU4QkFEMjRDQkFFRkYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDm8ZOFwPp5K0WdL8pzjRWjWbxR tyMNn/lzrKVm4kNzFvMgIyVzgB14rDBaJXRfOgkbSc8za4tlI8PUJ0DkgafVpJvr ZxDw6jYHXllrZh8rRcYFdLM6sDZFzfxpK/Dac2tUzcUO2aW3z+pE4/Gj9yEQXj8K 2wTvHs39n+1D4YZ19JL/69EXz9qs+30salLkSORHK99PDK/yNyKWNgijkkr2LE4N jr96KxIfw5RMB4+S7g1GNO0sYAM5GKhjSoOj7OdXyDVgwRp3qpGyrE/y/gINQ42b MUF7h2f4bpX7HwPy/FJqNR1H8aq/K2RACayR1uIlzcMi1aV5yjRBdVgBzboRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUw/4JlTwvVQDhcRe8W8WLrSTLrv8wHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEy NEYzRTk2MkNBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEnIFIHjxiX1MezgrZRv6st15u/a5zV0ZIhD LgHYY1uqnN3y94yOSnhLDKEtiSIngrPDBWLUs/R1RyRYsXI9tKNqHHucZADqUtGU Kw3v44ZMCFC00fbxv1Kex1hgT9w9/+j2sTXbiwGczi7Y3wZMfgIXrvjvKemVBUuO nppJ+Xz3MQumx0obBZKietR7E02Wi2SdEsgreIHsb33G7cKcOV6760i771buXfQ6 BoqI1mhQYzMso7rj3RiGfDn3o9WE37nTYnkHSLQF/E5IWYdKlqi8vBc4Ds6tlWsW hJPdOaGyYme88ucuqDFr+fHZCpjh14k7h6m0/+M59VrA6c5JFWo= -----END CERTIFICATE-----Generated at Sun Dec 7 00:18:11 2025 by rpki-client