This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: 96SPwLKyqFGxr/xRAee+S1QkLYNaY3J6VQ8NfRtky7g= Subject key identifier: 6B:79:9B:E3:24:E0:D5:C0:AE:88:C2:3D:16:5B:19:2B:C0:32:B3:3D Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 044C9F3512ED93918B51803768944B7B4AE132E0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 01C9 Signing time: Sat 06 Dec 2025 09:22:23 +0000 Manifest this update: Sat 06 Dec 2025 09:17:23 +0000 Manifest next update: Tue 09 Dec 2025 12:34:23 +0000 Files and hashes: 1: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: U3QvM9qWK+TJhBGDojanDKA8oPNCYIB5ZhNuA/z08gw=) 2: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: 96CJnoxRV4HGvhsn3PFsL8qIqJQvuSs5NCO8lzcHZm0=) 3: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: N9MJh/E+QaQ+lagB4PbBI/H6hT1Ei+imCd4i552Vd0E=) 4: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: OMSstG+v7qZjFWCJ4NvuRl4cKaVI80js4sry1SoLSN0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 12:34:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:4c:9f:35:12:ed:93:91:8b:51:80:37:68:94:4b:7b:4a:e1:32:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Dec 6 09:17:23 2025 GMT Not After : Dec 9 12:34:23 2025 GMT Subject: CN=6B799BE324E0D5C0AE88C23D165B192BC032B33D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:01:61:26:ca:c9:bb:bc:2f:07:b0:71:84:16: c4:13:f9:29:22:3b:d7:4b:c1:bc:75:b4:30:71:4c: 3c:5f:57:0a:eb:e9:db:66:5c:e7:7c:6a:4b:3c:1a: 20:ac:03:7d:03:7e:ab:c5:1e:01:19:4a:10:35:3c: 89:4f:8c:e2:07:f3:5e:47:3e:ea:b0:7d:c2:86:49: 6f:c0:48:cb:b9:ea:18:5f:b7:a6:c8:92:b5:e8:6c: c5:ef:b5:34:04:54:a8:bb:8f:87:b8:01:5c:0a:42: a9:9d:3d:01:5d:a2:84:06:62:28:20:fc:d2:19:9c: b0:a2:02:56:49:b3:00:de:e4:c0:ef:6e:f5:48:02: c4:d5:0e:b4:f8:a8:8a:c6:42:13:6f:37:2c:72:f9: f5:ab:a7:be:73:22:23:5d:4c:bd:9a:cd:05:81:db: d0:b4:4b:5b:05:21:18:13:76:73:97:24:8b:d7:00: c6:9f:62:16:d6:0d:70:c9:b5:50:0c:9a:c8:87:05: 08:00:a2:3a:c2:3c:10:75:43:f4:d9:a9:9b:64:ef: ba:6b:46:97:d3:59:f6:18:c2:5d:e0:29:76:bd:af: ca:fa:02:0c:1b:5d:ce:48:53:e1:c5:21:52:d1:39: 7b:d7:d4:be:32:96:4a:5f:e1:35:fb:c4:78:34:d0: 41:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:79:9B:E3:24:E0:D5:C0:AE:88:C2:3D:16:5B:19:2B:C0:32:B3:3D X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:a3:dd:56:5b:21:2b:0e:85:d4:68:0a:20:d5:79:fd:b1:4c: cd:4d:9c:dc:01:23:1d:21:dc:00:eb:64:df:6e:0c:9d:38:c5: 6c:91:e7:02:15:2e:ea:ba:4d:bf:81:82:4b:65:eb:b2:7a:8e: 2c:0c:f5:d1:81:08:9a:54:20:cf:66:70:48:a7:d2:8c:7b:3b: 97:31:38:f7:b5:7a:88:60:e2:ec:99:67:72:78:da:80:bd:01: 94:fe:77:86:84:85:5f:73:ab:c2:70:9c:3f:30:83:6d:20:03: 82:8a:e9:96:5b:fc:06:14:60:79:4e:9d:c8:7d:55:03:6c:26: 07:f5:b6:80:5b:96:5f:e3:46:1d:82:7d:1f:84:e8:55:95:2e: a5:10:b1:62:f5:3b:e8:2e:8c:ab:08:4f:66:14:9d:26:55:2c: 99:60:0b:f6:02:d9:30:4d:05:9c:d8:0e:b3:0b:14:aa:76:bc: 82:46:aa:cd:be:b8:af:14:e9:47:8c:96:06:27:19:59:17:ab: e0:2b:98:22:90:02:b7:78:c5:df:2d:78:4e:42:f8:9e:a4:07: 0a:00:57:2a:83:ff:da:09:ec:41:88:22:c7:ac:97:5b:79:80: 02:61:1b:0f:50:5f:1d:54:b2:df:19:a1:65:44:dc:4a:1d:10: 4a:26:05:8f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBEyfNRLtk5GLUYA3aJRLe0rhMuAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTEyMDYwOTE3MjNaFw0yNTEyMDkxMjM0MjNaMDMxMTAvBgNV BAMTKDZCNzk5QkUzMjRFMEQ1QzBBRTg4QzIzRDE2NUIxOTJCQzAzMkIzM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+AWEmysm7vC8HsHGEFsQT+Ski O9dLwbx1tDBxTDxfVwrr6dtmXOd8aks8GiCsA30DfqvFHgEZShA1PIlPjOIH815H PuqwfcKGSW/ASMu56hhft6bIkrXobMXvtTQEVKi7j4e4AVwKQqmdPQFdooQGYigg /NIZnLCiAlZJswDe5MDvbvVIAsTVDrT4qIrGQhNvNyxy+fWrp75zIiNdTL2azQWB 29C0S1sFIRgTdnOXJIvXAMafYhbWDXDJtVAMmsiHBQgAojrCPBB1Q/TZqZtk77pr RpfTWfYYwl3gKXa9r8r6AgwbXc5IU+HFIVLROXvX1L4ylkpf4TX7xHg00EF3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUa3mb4yTg1cCuiMI9FlsZK8Aysz0wHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEWj3VZbISsOhdRoCiDVef2xTM1NnNwBIx0h 3ADrZN9uDJ04xWyR5wIVLuq6Tb+Bgktl67J6jiwM9dGBCJpUIM9mcEin0ox7O5cx OPe1eohg4uyZZ3J42oC9AZT+d4aEhV9zq8JwnD8wg20gA4KK6ZZb/AYUYHlOnch9 VQNsJgf1toBbll/jRh2CfR+E6FWVLqUQsWL1O+gujKsIT2YUnSZVLJlgC/YC2TBN BZzYDrMLFKp2vIJGqs2+uK8U6UeMlgYnGVkXq+ArmCKQArd4xd8teE5C+J6kBwoA VyqD/9oJ7EGIIsesl1t5gAJhGw9QXx1Ust8ZoWVE3EodEEomBY8= -----END CERTIFICATE-----Generated at Sun Dec 7 03:05:22 2025 by rpki-client