This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft File: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft (raw, json) Hash identifier: TjZwXnMO3kcRxLqAWLkXP9t8IBCzb7XGA2RQ/5PdiJg= Subject key identifier: 43:FF:66:44:69:04:38:1A:9A:3E:E8:19:47:47:F4:72:A4:55:7E:23 Authority key identifier: 16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 Certificate issuer: /CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Certificate serial: 7DD45C86DC9557ECA3713AAB9D1C3E1DF00C79D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft Manifest number: 0264 Signing time: Fri 05 Dec 2025 00:41:52 +0000 Manifest this update: Fri 05 Dec 2025 00:36:52 +0000 Manifest next update: Mon 08 Dec 2025 12:12:52 +0000 Files and hashes: 1: 1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl (hash: P0oZFSuw2cb6rEXVHAZeET9QlX3KOR1rgbl3MkKFajo=) 2: 3130332e3138302e3235312e302f32342d3234203d3e20313439333733.roa (hash: hUygR1F36BFXE6jZfKUn6z9xWtDxXwKMMrnfrGbDbrA=) 3: 3130332e3138302e3235302e302f32332d3234203d3e20313439333733.roa (hash: 6+aOTOrAxzWsWipZ2VbdRwlhEyJYsC/PS67oMR2JaEk=) 4: 3130332e3138302e3235302e302f32342d3234203d3e20313439333733.roa (hash: FU4m4uM0eOvuHrbeEWpDEWdnGc1mYzPxVGKE41GscXY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 12:12:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d4:5c:86:dc:95:57:ec:a3:71:3a:ab:9d:1c:3e:1d:f0:0c:79:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1697127AE288F4C03503ED0ED8F09BD7A10A1E20 Validity Not Before: Dec 5 00:36:52 2025 GMT Not After : Dec 8 12:12:52 2025 GMT Subject: CN=43FF66446904381A9A3EE8194747F472A4557E23 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:06:36:bc:cc:db:bb:6f:09:a5:7c:47:40:f3: 26:9a:e6:97:af:e3:be:61:db:c6:71:46:fa:c7:3c: ca:89:ae:23:14:6f:1e:20:7e:3e:34:2b:1b:17:c0: 1e:a3:ee:15:39:9f:95:c6:b4:ae:0f:83:b6:08:58: a8:af:46:4c:a2:0d:a2:f1:4f:99:42:ee:23:90:13: ac:26:2a:d6:ef:1b:ee:a1:86:4f:f8:64:77:5d:23: 2b:e4:63:8c:ba:3c:0b:19:4a:35:a2:12:3a:60:00: b0:c4:5b:56:b4:b4:dd:62:63:fd:93:15:3f:23:65: 68:e3:96:21:f1:cb:87:ea:1a:8b:51:74:01:8f:b5: db:bb:c7:c2:c2:16:7c:cb:1d:0f:e1:22:9d:97:a8: bf:28:2e:71:ff:76:20:de:5b:6e:c3:cd:09:a7:45: 35:4a:b6:de:02:92:68:ac:a3:f1:9a:11:bd:26:d7: a4:45:ca:61:bd:5a:4c:6e:73:d4:dc:fe:f7:d8:89: b3:e8:0e:2e:4a:71:7e:81:31:bf:a6:39:d2:8c:e3: 08:cd:5a:6b:bb:d6:83:96:2f:89:62:58:17:27:d2: 7b:e8:16:ff:5a:e6:83:6b:54:48:a3:d4:31:13:15: d1:ad:51:a5:a5:f0:a7:7f:c5:e0:6a:08:42:ec:1e: bb:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:FF:66:44:69:04:38:1A:9A:3E:E8:19:47:47:F4:72:A4:55:7E:23 X509v3 Authority Key Identifier: keyid:16:97:12:7A:E2:88:F4:C0:35:03:ED:0E:D8:F0:9B:D7:A1:0A:1E:20 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1249d387-70cf-40e9-8759-9b86e0c65128/0/1697127AE288F4C03503ED0ED8F09BD7A10A1E20.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 22:5c:2e:25:98:1e:9c:e2:a7:92:29:4d:14:1b:89:71:d9:3f: 7c:a6:57:26:14:8e:aa:cf:dc:4e:11:b0:b7:8f:e1:7f:a1:0c: da:e0:36:22:d7:1a:d0:62:d9:66:d4:ac:73:93:27:35:aa:38: 23:53:f4:72:d1:d5:55:35:9a:54:58:41:a9:95:4e:b2:5c:e5: fa:67:dc:22:64:ff:5a:88:68:73:37:97:42:34:41:b9:51:43: a6:23:da:db:4e:a9:e4:7d:0b:87:df:5a:c1:7a:01:bb:f1:29: e9:22:44:aa:7b:a3:7f:3b:e8:9e:66:60:96:ae:41:e2:d5:7f: ec:c9:25:62:37:1f:32:e0:9c:85:22:9c:0d:f3:40:2c:6e:9f: 8a:b8:da:d5:1f:6a:aa:87:9f:af:7d:e0:e4:68:68:5d:1b:c7: ac:60:f5:1a:0d:c2:20:d3:12:34:a4:a8:d1:8d:86:09:33:0a: 25:61:76:a4:44:e4:78:4a:88:43:24:4b:dd:08:88:f4:84:60: 7e:1f:7b:43:cf:9e:ab:15:2d:a1:2a:59:4a:92:d5:62:d4:62: b6:40:46:06:3c:a8:8c:f1:2b:48:c3:19:b2:34:f6:30:90:1c: 0a:c8:9e:97:ef:c3:96:66:ff:d5:a2:6e:b6:10:73:a6:f2:14: 9e:fe:1c:02 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfdRchtyVV+yjcTqrnRw+HfAMedEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdB MTBBMUUyMDAeFw0yNTEyMDUwMDM2NTJaFw0yNTEyMDgxMjEyNTJaMDMxMTAvBgNV BAMTKDQzRkY2NjQ0NjkwNDM4MUE5QTNFRTgxOTQ3NDdGNDcyQTQ1NTdFMjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUBja8zNu7bwmlfEdA8yaa5pev 475h28ZxRvrHPMqJriMUbx4gfj40KxsXwB6j7hU5n5XGtK4Pg7YIWKivRkyiDaLx T5lC7iOQE6wmKtbvG+6hhk/4ZHddIyvkY4y6PAsZSjWiEjpgALDEW1a0tN1iY/2T FT8jZWjjliHxy4fqGotRdAGPtdu7x8LCFnzLHQ/hIp2XqL8oLnH/diDeW27DzQmn RTVKtt4Ckmiso/GaEb0m16RFymG9Wkxuc9Tc/vfYibPoDi5KcX6BMb+mOdKM4wjN Wmu71oOWL4liWBcn0nvoFv9a5oNrVEij1DETFdGtUaWl8Kd/xeBqCELsHrszAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQ/9mRGkEOBqaPugZR0f0cqRVfiMwHwYDVR0j BBgwFoAUFpcSeuKI9MA1A+0O2PCb16EKHiAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x MjQ5ZDM4Ny03MGNmLTQwZTktODc1OS05Yjg2ZTBjNjUxMjgvMC8xNjk3MTI3QUUy ODhGNEMwMzUwM0VEMEVEOEYwOUJEN0ExMEExRTIwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlCRDdBMTBB MUUyMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTI0OWQzODctNzBjZi00MGU5LTg3 NTktOWI4NmUwYzY1MTI4LzAvMTY5NzEyN0FFMjg4RjRDMDM1MDNFRDBFRDhGMDlC RDdBMTBBMUUyMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACJcLiWYHpzip5IpTRQbiXHZP3ymVyYUjqrP 3E4RsLeP4X+hDNrgNiLXGtBi2WbUrHOTJzWqOCNT9HLR1VU1mlRYQamVTrJc5fpn 3CJk/1qIaHM3l0I0QblRQ6Yj2ttOqeR9C4ffWsF6AbvxKekiRKp7o3876J5mYJau QeLVf+zJJWI3HzLgnIUinA3zQCxun4q42tUfaqqHn6994ORoaF0bx6xg9RoNwiDT EjSkqNGNhgkzCiVhdqRE5HhKiEMkS90IiPSEYH4fe0PPnqsVLaEqWUqS1WLUYrZA RgY8qIzxK0jDGbI09jCQHArInpfvw5Zm/9WibrYQc6byFJ7+HAI= -----END CERTIFICATE-----Generated at Sun Dec 7 04:45:04 2025 by rpki-client