This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: ca/i5qIw9JAvxd26GWzf62sqoRQQb5UomeY/pCP1j4w= Subject key identifier: FA:6F:60:2C:FF:9A:CD:C8:32:6E:DF:C8:D8:2D:88:63:C5:A7:89:44 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 398100DC0EDE4D0105B9F3ACD746AE6B066317A3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 01E6 Signing time: Fri 05 Dec 2025 09:04:01 +0000 Manifest this update: Fri 05 Dec 2025 08:59:01 +0000 Manifest next update: Mon 08 Dec 2025 15:30:01 +0000 Files and hashes: 1: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: 1yTR12zVNlgV/3lhF5YF8WQX2wlBuTs2UGOXRfg1gpk=) 2: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: uNA/yO7Jurn3EZm3l95rlsLVpHCEIuUhUwihJjKDdLE=) 3: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: tQHNmGc2Lbpd/ePQV8gi7xhocHO6Ks7yzxTHdD4KSI0=) 4: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: Hj/Oe+Radw8pbluCv/VN2XxQ+sX4+0STYPYTyYPvjyc=) 5: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: bKAiHhmlEj4IgvE00Lo3377sGcryUEP8JoeR2a9n6WM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 15:30:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:81:00:dc:0e:de:4d:01:05:b9:f3:ac:d7:46:ae:6b:06:63:17:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Dec 5 08:59:01 2025 GMT Not After : Dec 8 15:30:01 2025 GMT Subject: CN=FA6F602CFF9ACDC8326EDFC8D82D8863C5A78944 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:42:c3:c6:06:1d:b0:a4:97:9b:b2:7b:e1:17: 70:c0:9c:bc:1b:55:8f:d5:13:78:c1:0b:52:20:88: c4:0c:c1:ab:d1:ab:6d:57:65:76:33:74:ed:a3:d9: e1:0a:a0:70:a8:9a:8c:92:0f:dd:00:01:10:14:46: 7b:33:9f:0a:6b:7f:16:4a:a6:61:0d:f7:bb:3c:1e: ce:9c:b9:e3:08:e1:1b:a4:31:5d:16:16:5b:07:c5: 31:c3:6a:b6:41:39:98:43:7f:5f:09:9b:28:29:c3: 46:cc:7d:5e:c5:66:8d:27:5c:55:38:33:bd:e7:18: f4:d5:1b:91:fc:78:8f:89:09:cf:c1:5f:be:9e:e7: c5:0d:ac:2c:1c:a0:1f:97:e8:94:7a:a0:8c:7d:6f: 99:d2:7e:91:06:d7:c0:32:a5:69:86:a7:26:9a:e6: 50:a9:65:8c:18:31:45:f2:4e:37:55:3f:23:3d:71: e3:4e:5d:aa:9b:64:2c:a1:8c:e5:ea:2d:29:5a:77: cb:66:ae:6f:12:ed:a6:90:7f:5a:98:5b:b7:8e:15: 45:fa:7b:1c:35:fc:68:13:ea:82:3a:5b:00:c1:75: 0b:69:8e:9b:e2:71:48:25:00:c3:83:c2:c5:85:21: 36:c0:62:5a:c4:85:9e:e9:89:56:a0:04:95:1d:f5: 9c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:6F:60:2C:FF:9A:CD:C8:32:6E:DF:C8:D8:2D:88:63:C5:A7:89:44 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:b1:e8:3c:4b:93:70:ac:a1:b8:d9:1a:66:8a:bb:ef:7c:ad: ec:0d:62:56:f1:80:03:59:3a:0e:ef:a0:51:25:1e:2c:00:9d: 3e:23:61:9a:33:60:fa:78:30:b5:ba:14:ef:7d:ef:85:db:5f: 94:ff:aa:98:83:5c:21:a7:cd:d2:6f:2b:9b:e8:1f:a8:8e:be: 33:31:77:5b:f8:fb:47:74:b1:f5:7c:67:99:b5:cd:4b:1b:5d: 32:27:a9:7c:29:7a:fc:ff:d2:08:bb:33:dd:e3:26:14:98:1f: 00:82:72:3e:bb:81:48:a1:e3:c0:2f:3f:6b:27:ac:cc:c1:d7: 54:91:3a:e7:2b:49:ce:9a:91:48:16:7a:d9:5c:cc:50:85:c0: 04:ab:3f:42:2d:e3:d6:45:c7:e8:ff:dd:72:57:99:6c:37:8a: d8:fc:0b:16:84:71:6b:78:e2:b4:38:11:01:e4:58:34:fb:85: a2:11:c1:fe:33:50:d0:e5:34:40:0e:2d:11:ab:94:8c:ca:d6: e7:d7:3e:bb:98:d5:27:a1:e6:ff:bc:63:e3:e8:af:71:60:a9: 14:0a:86:d9:b8:f2:57:d4:86:cd:cd:39:e5:37:9d:51:12:6f: 24:0a:d5:46:ae:05:62:82:44:19:fa:b0:76:5b:3e:db:cf:21: f0:86:eb:61 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOYEA3A7eTQEFufOs10auawZjF6MwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNTEyMDUwODU5MDFaFw0yNTEyMDgxNTMwMDFaMDMxMTAvBgNV BAMTKEZBNkY2MDJDRkY5QUNEQzgzMjZFREZDOEQ4MkQ4ODYzQzVBNzg5NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpQsPGBh2wpJebsnvhF3DAnLwb VY/VE3jBC1IgiMQMwavRq21XZXYzdO2j2eEKoHComoySD90AARAURnsznwprfxZK pmEN97s8Hs6cueMI4RukMV0WFlsHxTHDarZBOZhDf18Jmygpw0bMfV7FZo0nXFU4 M73nGPTVG5H8eI+JCc/BX76e58UNrCwcoB+X6JR6oIx9b5nSfpEG18AypWmGpyaa 5lCpZYwYMUXyTjdVPyM9ceNOXaqbZCyhjOXqLSlad8tmrm8S7aaQf1qYW7eOFUX6 exw1/GgT6oI6WwDBdQtpjpvicUglAMODwsWFITbAYlrEhZ7piVagBJUd9Zy7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+m9gLP+azcgybt/I2C2IY8WniUQwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAF+x6DxLk3CsobjZGmaKu+98rewNYlbxgANZ Og7voFElHiwAnT4jYZozYPp4MLW6FO9974XbX5T/qpiDXCGnzdJvK5voH6iOvjMx d1v4+0d0sfV8Z5m1zUsbXTInqXwpevz/0gi7M93jJhSYHwCCcj67gUih48AvP2sn rMzB11SROucrSc6akUgWetlczFCFwASrP0It49ZFx+j/3XJXmWw3itj8CxaEcWt4 4rQ4EQHkWDT7haIRwf4zUNDlNEAOLRGrlIzK1ufXPruY1Seh5v+8Y+Por3FgqRQK htm48lfUhs3NOeU3nVESbyQK1UauBWKCRBn6sHZbPtvPIfCG62E= -----END CERTIFICATE-----Generated at Sat Dec 6 22:59:55 2025 by rpki-client