This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft File: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft (raw, json) Hash identifier: PNlJW2xo1adavYdEwiMjK0ntlFomkUV9SstR2EexUog= Subject key identifier: F2:BE:EF:14:ED:F8:62:5A:0C:8D:F9:F0:42:3B:46:0D:B7:D5:9A:9F Authority key identifier: A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC Certificate issuer: /CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Certificate serial: 68800C75E0B036E2F7C6186747EDE47684704C8A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft Manifest number: A2 Signing time: Fri 05 Dec 2025 03:41:26 +0000 Manifest this update: Fri 05 Dec 2025 03:36:26 +0000 Manifest next update: Mon 08 Dec 2025 07:59:26 +0000 Files and hashes: 1: 3136302e3139312e36352e302f32342d3234203d3e20313533313438.roa (hash: mzDpPRia6xZTDPtGY2S0cq+7bpQlmycpMpiDj9ys06Y=) 2: A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl (hash: CHIrwqHee3nJy/c4wLWll+jmKCVtC3SwmJfkO/preJY=) 3: 3136302e3139312e36342e302f32342d3234203d3e20313533313438.roa (hash: mWzhkuRRp6o1Au1AW0FJ/m2nQ9Sa4O9bV344gG0E6vo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 07:59:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:80:0c:75:e0:b0:36:e2:f7:c6:18:67:47:ed:e4:76:84:70:4c:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9D663C6EBCD250AA8927EA094627C9415DEE7FC Validity Not Before: Dec 5 03:36:26 2025 GMT Not After : Dec 8 07:59:26 2025 GMT Subject: CN=F2BEEF14EDF8625A0C8DF9F0423B460DB7D59A9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:c4:38:3e:2e:52:45:3f:5d:b6:f6:8f:8a:6c: 95:90:de:1d:03:4f:32:15:b0:4d:1a:2e:1d:97:93: e2:98:1d:b2:27:2e:db:e5:d8:7f:89:b8:22:e4:1a: 26:28:fa:20:b4:a7:c5:35:7d:85:88:ff:08:11:6b: 21:c0:f2:28:01:7a:3d:a1:a2:8d:22:1e:6b:8a:9e: 18:51:2e:ff:62:42:c0:88:0c:3a:f1:db:4f:48:ba: d2:7a:ff:61:9a:24:8d:7d:f4:ce:b9:bd:55:29:7a: f1:3d:f6:3b:9d:cf:65:08:b5:e2:ca:d5:91:e3:8d: 1d:a6:29:c3:6f:11:31:09:cc:70:54:a1:da:6c:23: cc:61:f0:aa:df:ed:23:d9:a6:11:36:64:4e:52:d2: 3f:a8:91:02:3e:ba:b1:85:b8:55:de:55:6d:ae:0d: 5a:07:8b:18:c1:d1:53:b9:97:48:06:68:85:d6:3a: e8:64:d0:46:32:e1:66:4c:03:68:c7:92:7a:38:76: 16:5f:d3:5a:e2:29:a5:98:00:c1:0a:7d:7e:87:99: 45:c2:f7:92:d2:ce:3d:17:22:f9:19:a0:f5:f9:50: 69:71:80:27:2a:c4:e5:1d:94:73:91:87:37:67:96: 11:e2:d6:29:dc:37:ba:64:0a:1c:c9:a3:cf:67:8e: 20:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BE:EF:14:ED:F8:62:5A:0C:8D:F9:F0:42:3B:46:0D:B7:D5:9A:9F X509v3 Authority Key Identifier: keyid:A9:D6:63:C6:EB:CD:25:0A:A8:92:7E:A0:94:62:7C:94:15:DE:E7:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/282a9bd9-166f-453e-b3c0-e6b3ef92a540/0/A9D663C6EBCD250AA8927EA094627C9415DEE7FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:a7:6a:7a:9d:c5:1f:4c:a4:8f:7c:9d:d2:7c:b7:3c:88:46: bd:50:77:9d:67:75:a7:84:93:88:59:8f:8b:42:1d:be:6d:67: 44:46:8b:87:fd:8d:f1:0f:c4:d1:b5:6f:11:96:46:4b:67:c4: b4:7d:2c:df:62:a2:a8:25:12:5c:47:33:13:6a:96:90:b4:97: 52:aa:b0:8d:d6:90:c9:85:95:16:ba:b4:37:0f:33:92:75:e2: 6a:2d:cf:d9:90:89:20:08:69:f5:ad:08:3e:f1:e9:1c:6a:45: 40:cc:19:52:e3:52:0b:5a:f5:6f:e0:58:9c:35:68:6a:0c:8c: ee:07:0e:f6:b2:ae:ae:89:a6:24:8c:0e:68:12:aa:bd:76:75: 9a:de:b7:b3:d3:06:ba:9f:75:54:de:bd:dd:7d:86:0d:34:53: ca:e9:a7:5c:a0:f3:3b:ab:b2:52:10:aa:f7:02:9d:22:2d:fd: fc:46:8a:e1:07:c1:4d:ad:26:d6:d6:a8:14:92:be:f5:7a:1c: 19:23:94:ff:88:71:f4:4c:07:d8:4c:ff:63:ef:42:d9:cc:96: 70:84:2d:9b:83:bb:98:e8:d0:77:9f:03:1e:dd:f4:fe:bc:c4: 39:71:ad:ca:37:3d:23:52:a0:c9:b6:35:cc:9e:3f:7c:d1:7a: 1a:cb:de:b9 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaIAMdeCwNuL3xhhnR+3kdoRwTIowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQx NURFRTdGQzAeFw0yNTEyMDUwMzM2MjZaFw0yNTEyMDgwNzU5MjZaMDMxMTAvBgNV BAMTKEYyQkVFRjE0RURGODYyNUEwQzhERjlGMDQyM0I0NjBEQjdENTlBOUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDxxDg+LlJFP1229o+KbJWQ3h0D TzIVsE0aLh2Xk+KYHbInLtvl2H+JuCLkGiYo+iC0p8U1fYWI/wgRayHA8igBej2h oo0iHmuKnhhRLv9iQsCIDDrx209IutJ6/2GaJI199M65vVUpevE99judz2UIteLK 1ZHjjR2mKcNvETEJzHBUodpsI8xh8Krf7SPZphE2ZE5S0j+okQI+urGFuFXeVW2u DVoHixjB0VO5l0gGaIXWOuhk0EYy4WZMA2jHkno4dhZf01riKaWYAMEKfX6HmUXC 95LSzj0XIvkZoPX5UGlxgCcqxOUdlHORhzdnlhHi1incN7pkChzJo89njiBdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8r7vFO34YloMjfnwQjtGDbfVmp8wHwYDVR0j BBgwFoAUqdZjxuvNJQqokn6glGJ8lBXe5/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODJhOWJkOS0xNjZmLTQ1M2UtYjNjMC1lNmIzZWY5MmE1NDAvMC9BOUQ2NjNDNkVC Q0QyNTBBQTg5MjdFQTA5NDYyN0M5NDE1REVFN0ZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdDOTQxNURF RTdGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjgyYTliZDktMTY2Zi00NTNlLWIz YzAtZTZiM2VmOTJhNTQwLzAvQTlENjYzQzZFQkNEMjUwQUE4OTI3RUEwOTQ2MjdD OTQxNURFRTdGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAISnanqdxR9MpI98ndJ8tzyIRr1Qd51ndaeE k4hZj4tCHb5tZ0RGi4f9jfEPxNG1bxGWRktnxLR9LN9ioqglElxHMxNqlpC0l1Kq sI3WkMmFlRa6tDcPM5J14motz9mQiSAIafWtCD7x6RxqRUDMGVLjUgta9W/gWJw1 aGoMjO4HDvayrq6JpiSMDmgSqr12dZret7PTBrqfdVTevd19hg00U8rpp1yg8zur slIQqvcCnSIt/fxGiuEHwU2tJtbWqBSSvvV6HBkjlP+IcfRMB9hM/2PvQtnMlnCE LZuDu5jo0HefAx7d9P68xDlxrco3PSNSoMm2NcyeP3zRehrL3rk= -----END CERTIFICATE-----Generated at Sun Dec 7 03:13:57 2025 by rpki-client