This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft File: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft (raw, json) Hash identifier: a0EnJCPDJM3MqDs/buLLWV7p/umMKGInwnw1GZZYGyI= Subject key identifier: 2C:C5:F9:18:1E:EC:9F:03:17:9E:77:CC:2C:C2:DF:7C:80:13:0A:46 Authority key identifier: 65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F Certificate issuer: /CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Certificate serial: 60627FAC2B80E44D57313C7CEE085FD7F338D61F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft Manifest number: 020F Signing time: Fri 05 Dec 2025 11:11:50 +0000 Manifest this update: Fri 05 Dec 2025 11:06:50 +0000 Manifest next update: Mon 08 Dec 2025 22:01:50 +0000 Files and hashes: 1: 658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl (hash: tCs5g700+cLVQx4ODZyMpFCIERZTNKIeyx8iR9ki3XQ=) 2: 3130332e3133392e32362e302f32332d3234203d3e20313338383630.roa (hash: en7yrsRqDUaal9vRU4LRRex8mQ3pcI0rlYghVnCEE78=) 3: 323430343a643863303a3a2f33322d3438203d3e20313338383630.roa (hash: iufPrZZScnO80QkyCPvSlgZqxsE8YzjDEGRWUUoEP4M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 22:01:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:62:7f:ac:2b:80:e4:4d:57:31:3c:7c:ee:08:5f:d7:f3:38:d6:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=658C0D8617C2D05CE720427E1DF72FDE12C9CB9F Validity Not Before: Dec 5 11:06:50 2025 GMT Not After : Dec 8 22:01:50 2025 GMT Subject: CN=2CC5F9181EEC9F03179E77CC2CC2DF7C80130A46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:38:50:27:22:05:aa:c3:2f:80:27:85:f1:e6: 8b:d7:0b:19:94:24:23:db:35:6b:18:ae:6d:a8:5a: 88:ad:c8:49:1c:8b:65:3f:7c:46:b9:d7:9b:8c:18: f3:07:55:05:4a:3e:70:05:d6:25:c3:cf:2c:58:66: 40:78:1d:11:da:e7:e8:d9:86:e5:65:9b:19:0b:6d: 2a:fa:1e:40:66:72:d8:bf:ea:71:68:18:57:ca:a1: a9:0d:81:5c:a5:1e:51:2b:a5:fc:2f:62:c1:a3:98: 2b:be:68:88:d8:35:68:6b:2f:0c:ac:a5:35:78:e6: 85:27:f6:3a:43:5d:b6:0f:41:e2:b7:87:df:61:ed: 94:8b:ce:05:69:4b:8b:ba:55:43:23:44:0c:4c:aa: d8:6b:d5:4e:dd:84:f9:e9:16:f4:6f:b8:e8:98:9f: 77:59:9e:1a:ef:82:ac:42:54:ab:9b:a0:2a:7e:05: 7c:05:9d:9f:5c:d0:e7:03:c5:4e:4b:37:1f:5b:5a: a6:7d:ff:48:47:77:6e:ee:8f:58:e3:75:69:d4:8b: 23:f0:c2:20:94:8c:e4:b8:fd:e8:f3:45:bf:a7:8b: 92:5f:2c:f4:8e:16:1e:5c:0f:32:ca:5c:40:d9:43: d4:da:92:18:a0:5b:e1:30:1b:a5:fe:02:59:dc:81: c7:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:C5:F9:18:1E:EC:9F:03:17:9E:77:CC:2C:C2:DF:7C:80:13:0A:46 X509v3 Authority Key Identifier: keyid:65:8C:0D:86:17:C2:D0:5C:E7:20:42:7E:1D:F7:2F:DE:12:C9:CB:9F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/165d88f1-b9c0-485e-916e-59b7e3698da1/0/658C0D8617C2D05CE720427E1DF72FDE12C9CB9F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:33:7d:fd:c8:3c:f2:dd:9f:2b:f3:bf:a1:df:5c:a1:90:27: ed:ad:fa:65:9b:ad:a3:d3:be:51:38:b9:ae:b0:ba:ed:a1:4a: 62:19:b9:af:ad:3d:10:ec:1c:12:43:57:cf:9f:62:6c:4f:a3: ef:e5:24:9b:75:1f:06:23:11:26:09:01:90:5b:69:74:45:0a: c6:53:e2:5c:bf:09:c9:fb:90:b6:2a:00:6c:20:24:91:05:7f: 4e:e4:1a:b8:7b:f8:bb:33:d4:07:22:22:47:18:bc:b3:58:39: 0c:24:d5:af:d7:11:f0:6e:ea:9f:9d:b8:38:67:49:6f:c9:c2: c8:7c:c3:55:40:dd:95:85:bb:24:f6:62:bb:94:fa:b8:d4:df: ba:c0:f5:88:db:2e:f9:12:d1:b0:21:58:f4:b6:4e:0a:9d:b6: e2:21:62:8c:ef:1c:4a:18:78:84:d8:59:4e:db:37:d9:24:7e: dd:d3:f3:60:f0:0c:b0:9b:70:51:5c:8a:37:8e:19:59:cb:a5: 84:d4:2a:9a:ac:c0:df:ce:97:e5:24:ca:29:71:3f:37:c1:ea: 6b:26:66:ec:13:e2:17:a6:1b:54:d0:bf:82:8a:55:ef:e0:78: c8:99:17:82:37:46:d2:f0:9d:ac:9a:b3:80:3c:20:f5:dc:d6: 67:cc:40:fe -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYGJ/rCuA5E1XMTx87ghf1/M41h8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUx MkM5Q0I5RjAeFw0yNTEyMDUxMTA2NTBaFw0yNTEyMDgyMjAxNTBaMDMxMTAvBgNV BAMTKDJDQzVGOTE4MUVFQzlGMDMxNzlFNzdDQzJDQzJERjdDODAxMzBBNDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD0OFAnIgWqwy+AJ4Xx5ovXCxmU JCPbNWsYrm2oWoityEkci2U/fEa515uMGPMHVQVKPnAF1iXDzyxYZkB4HRHa5+jZ huVlmxkLbSr6HkBmcti/6nFoGFfKoakNgVylHlErpfwvYsGjmCu+aIjYNWhrLwys pTV45oUn9jpDXbYPQeK3h99h7ZSLzgVpS4u6VUMjRAxMqthr1U7dhPnpFvRvuOiY n3dZnhrvgqxCVKuboCp+BXwFnZ9c0OcDxU5LNx9bWqZ9/0hHd27uj1jjdWnUiyPw wiCUjOS4/ejzRb+ni5JfLPSOFh5cDzLKXEDZQ9TakhigW+EwG6X+AlncgccxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULMX5GB7snwMXnnfMLMLffIATCkYwHwYDVR0j BBgwFoAUZYwNhhfC0FznIEJ+Hfcv3hLJy58wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjVkODhmMS1iOWMwLTQ4NWUtOTE2ZS01OWI3ZTM2OThkYTEvMC82NThDMEQ4NjE3 QzJEMDVDRTcyMDQyN0UxREY3MkZERTEyQzlDQjlGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJGREUxMkM5 Q0I5Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY1ZDg4ZjEtYjljMC00ODVlLTkx NmUtNTliN2UzNjk4ZGExLzAvNjU4QzBEODYxN0MyRDA1Q0U3MjA0MjdFMURGNzJG REUxMkM5Q0I5Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG0zff3IPPLdnyvzv6HfXKGQJ+2t+mWbraPT vlE4ua6wuu2hSmIZua+tPRDsHBJDV8+fYmxPo+/lJJt1HwYjESYJAZBbaXRFCsZT 4ly/Ccn7kLYqAGwgJJEFf07kGrh7+Lsz1AciIkcYvLNYOQwk1a/XEfBu6p+duDhn SW/Jwsh8w1VA3ZWFuyT2YruU+rjU37rA9YjbLvkS0bAhWPS2TgqdtuIhYozvHEoY eITYWU7bN9kkft3T82DwDLCbcFFcijeOGVnLpYTUKpqswN/Ol+UkyilxPzfB6msm ZuwT4hemG1TQv4KKVe/geMiZF4I3RtLwnayas4A8IPXc1mfMQP4= -----END CERTIFICATE-----Generated at Sat Dec 6 22:52:41 2025 by rpki-client