This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft File: 656A72A6F38230D6A0DB097480D736B5C2FBA683.mft (raw, json) Hash identifier: oUYjgyYW8GghNyZGPGzL7EEHTLsAAzmNPuyM+PtwgIE= Subject key identifier: FA:67:72:39:B1:E4:B4:01:8D:5A:BB:33:03:CF:7E:F2:D9:3D:15:B1 Authority key identifier: 65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 Certificate issuer: /CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Certificate serial: 437DBAFA4FE34627B94EFA8E1F4FC1112BE8150D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject info access: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft Manifest number: 0262 Signing time: Sat 06 Dec 2025 07:22:27 +0000 Manifest this update: Sat 06 Dec 2025 07:17:27 +0000 Manifest next update: Tue 09 Dec 2025 17:28:27 +0000 Files and hashes: 1: 656A72A6F38230D6A0DB097480D736B5C2FBA683.crl (hash: /9E/FfT5s7Q2GHlorFTlJcbTYPvSIUlf/ncj43JKs24=) 2: 3130332e3138322e37322e302f32342d3234203d3e20313439343038.roa (hash: vPnPfMFVMwFeTvRaeceb22yqey+t7BHBklK6ecujm+A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:7d:ba:fa:4f:e3:46:27:b9:4e:fa:8e:1f:4f:c1:11:2b:e8:15:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=656A72A6F38230D6A0DB097480D736B5C2FBA683 Validity Not Before: Dec 6 07:17:27 2025 GMT Not After : Dec 9 17:28:27 2025 GMT Subject: CN=FA677239B1E4B4018D5ABB3303CF7EF2D93D15B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:43:1d:64:64:db:28:98:f7:78:e3:dc:b7:ca: d5:4d:5b:17:db:65:ff:79:e3:47:ab:0a:ca:a8:e1: 2b:c9:28:33:f9:a4:06:66:d3:8a:4c:40:6c:06:c2: 33:36:b9:50:31:54:06:c8:d7:15:aa:94:63:63:39: 7b:19:01:7c:3d:3f:89:fe:e6:7b:e2:4a:5d:6e:87: 8f:b9:80:36:fb:1c:b7:9a:8c:8e:cb:82:68:bc:d1: 2e:a7:88:87:6f:1b:ec:79:a6:7a:76:8f:38:a1:48: 41:09:de:50:97:d0:a9:a8:bd:3c:70:84:b6:ff:f1: 9a:3d:d2:a7:13:26:2b:79:31:51:bf:11:a3:ac:d2: 00:36:06:80:72:82:ab:52:dc:6c:7b:7b:8a:42:df: ca:af:99:9d:c3:32:56:cd:c9:e2:b2:98:1a:06:e9: 44:6a:d0:96:8f:87:5f:68:27:b4:f6:b1:55:d0:6f: 19:f8:22:c6:49:90:19:b0:e4:b5:c2:a3:d7:59:74: 4d:44:fd:ec:1a:0e:56:54:d8:08:e0:89:30:b8:57: 63:7b:2e:8a:88:ad:29:c4:74:f3:8e:9f:65:f2:8c: a3:bd:f8:d3:3c:93:58:df:af:f2:5f:c8:cd:4a:40: a1:71:16:99:b9:1e:f2:b4:4f:44:63:2c:00:26:f2: 24:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:67:72:39:B1:E4:B4:01:8D:5A:BB:33:03:CF:7E:F2:D9:3D:15:B1 X509v3 Authority Key Identifier: keyid:65:6A:72:A6:F3:82:30:D6:A0:DB:09:74:80:D7:36:B5:C2:FB:A6:83 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/656A72A6F38230D6A0DB097480D736B5C2FBA683.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/167375f9-e8b5-4d94-80a8-35e02dd0f6f2/0/656A72A6F38230D6A0DB097480D736B5C2FBA683.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a2:cb:d6:af:36:e5:36:37:10:b7:b9:f0:82:6d:0e:0e:02:5b: 73:f1:e9:d0:04:7b:38:b5:71:dc:da:05:c3:77:01:b1:ca:9b: b8:b6:8b:5f:56:6e:7b:a7:98:fb:4f:39:1b:e0:20:7e:58:42: 6b:25:1d:e2:04:69:ef:f8:2e:58:85:e8:e8:52:f9:a1:4b:f2: f1:bd:ca:d8:9d:e6:93:3e:fe:22:d1:2c:e8:af:83:43:75:1b: 83:e9:65:f6:25:22:1e:45:31:94:b7:e5:94:51:e8:01:a7:26: e9:bd:d9:c2:a3:f2:01:8b:53:8a:05:fe:df:14:34:dd:4a:4a: d8:8d:ed:d8:a6:7b:0c:7a:83:95:cc:98:5f:10:29:52:1b:d4: 39:53:ce:8a:e1:7b:b6:d7:c8:f2:69:f3:0e:d6:58:7f:13:68: 31:cf:3f:63:68:ca:80:60:69:85:0f:89:f8:dc:59:ef:58:ec: 8d:8d:d3:37:7d:04:94:bb:b9:53:56:9d:d0:f9:7a:e7:02:4d: 7c:2b:71:55:97:bf:d2:b1:10:f9:de:4d:3f:cf:4b:2f:16:1b: 6c:3c:a2:50:a5:ea:9a:b4:95:0d:c7:34:ea:6c:df:ef:5e:13: ee:f5:d2:24:b2:59:38:f3:e6:82:80:85:66:32:4f:6d:b9:4d: 27:17:d4:22 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQ326+k/jRie5TvqOH0/BESvoFQ0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVD MkZCQTY4MzAeFw0yNTEyMDYwNzE3MjdaFw0yNTEyMDkxNzI4MjdaMDMxMTAvBgNV BAMTKEZBNjc3MjM5QjFFNEI0MDE4RDVBQkIzMzAzQ0Y3RUYyRDkzRDE1QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMQx1kZNsomPd449y3ytVNWxfb Zf9540erCsqo4SvJKDP5pAZm04pMQGwGwjM2uVAxVAbI1xWqlGNjOXsZAXw9P4n+ 5nviSl1uh4+5gDb7HLeajI7Lgmi80S6niIdvG+x5pnp2jzihSEEJ3lCX0KmovTxw hLb/8Zo90qcTJit5MVG/EaOs0gA2BoBygqtS3Gx7e4pC38qvmZ3DMlbNyeKymBoG 6URq0JaPh19oJ7T2sVXQbxn4IsZJkBmw5LXCo9dZdE1E/ewaDlZU2AjgiTC4V2N7 LoqIrSnEdPOOn2XyjKO9+NM8k1jfr/JfyM1KQKFxFpm5HvK0T0RjLAAm8iR/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+mdyObHktAGNWrszA89+8tk9FbEwHwYDVR0j BBgwFoAUZWpypvOCMNag2wl0gNc2tcL7poMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NjczNzVmOS1lOGI1LTRkOTQtODBhOC0zNWUwMmRkMGY2ZjIvMC82NTZBNzJBNkYz ODIzMEQ2QTBEQjA5NzQ4MEQ3MzZCNUMyRkJBNjgzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2QjVDMkZC QTY4My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTY3Mzc1ZjktZThiNS00ZDk0LTgw YTgtMzVlMDJkZDBmNmYyLzAvNjU2QTcyQTZGMzgyMzBENkEwREIwOTc0ODBENzM2 QjVDMkZCQTY4My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKLL1q825TY3ELe58IJtDg4CW3Px6dAEezi1 cdzaBcN3AbHKm7i2i19WbnunmPtPORvgIH5YQmslHeIEae/4LliF6OhS+aFL8vG9 ytid5pM+/iLRLOivg0N1G4PpZfYlIh5FMZS35ZRR6AGnJum92cKj8gGLU4oF/t8U NN1KStiN7dimewx6g5XMmF8QKVIb1DlTzorhe7bXyPJp8w7WWH8TaDHPP2NoyoBg aYUPifjcWe9Y7I2N0zd9BJS7uVNWndD5eucCTXwrcVWXv9KxEPneTT/PSy8WG2w8 olCl6pq0lQ3HNOps3+9eE+710iSyWTjz5oKAhWYyT225TScX1CI= -----END CERTIFICATE-----Generated at Sun Dec 7 01:36:17 2025 by rpki-client