This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft File: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft (raw, json) Hash identifier: YxFk9GVMAOehbrEZYyVN15gKUPhud77UWwS8BbTXWCI= Subject key identifier: 83:10:8D:EB:CE:FE:FC:B7:FE:60:03:A2:36:A2:62:8D:0D:7E:FB:AC Authority key identifier: 2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC Certificate issuer: /CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Certificate serial: 73ACA32E67FC8C92FAF5F85140C28AC65959707F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft Manifest number: FF Signing time: Fri 05 Dec 2025 16:30:42 +0000 Manifest this update: Fri 05 Dec 2025 16:25:42 +0000 Manifest next update: Mon 08 Dec 2025 19:42:42 +0000 Files and hashes: 1: 3135372e32302e3234342e302f32342d3234203d3e20313338303839.roa (hash: teoM6MXntxfZebuRvj4HuDCmBJE7bmAYK9p8NliSwzQ=) 2: 2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl (hash: vicB86Qa7JDuJREvvP1oCAl6pmv4Mn6BuMHfeaWenT4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 19:42:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:ac:a3:2e:67:fc:8c:92:fa:f5:f8:51:40:c2:8a:c6:59:59:70:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2ADDD4035173FAC3BB3949CB36CCEF2553798BFC Validity Not Before: Dec 5 16:25:42 2025 GMT Not After : Dec 8 19:42:42 2025 GMT Subject: CN=83108DEBCEFEFCB7FE6003A236A2628D0D7EFBAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:49:71:f3:5b:a8:fb:7f:bd:b0:78:07:f9:ff: 75:36:a6:e8:79:a1:97:e8:b8:47:99:27:9d:50:bf: e5:85:5c:eb:1d:76:81:05:52:41:cb:ea:42:de:6f: ca:12:85:6d:f5:c2:2a:e7:84:de:8a:f1:8e:94:aa: f3:80:71:6d:d9:0d:d2:5d:f5:fc:7b:f2:f5:f9:eb: 32:68:c3:08:4d:f9:a0:e3:66:e1:4e:69:94:84:61: 42:55:f5:29:7a:45:46:2f:c1:9f:49:ca:1b:24:4d: 16:bc:08:1d:df:5a:e2:72:35:bc:7f:1d:93:b0:ef: 5a:4d:ed:82:9d:b9:65:e1:fd:8e:d4:8e:a6:3b:38: 90:03:41:af:ac:42:cb:c7:4a:17:40:10:b5:e0:ff: d7:9c:fa:a1:05:34:5f:e3:6f:da:91:6e:c3:9f:8a: 10:28:ac:83:32:c9:0a:de:e6:25:cc:4a:ac:48:ef: 2e:b3:9d:df:14:f8:ed:49:9e:6b:12:61:91:ef:f8: 81:ce:aa:87:1a:19:84:ab:55:a6:2d:71:1d:eb:fb: 53:db:dd:80:e6:c2:be:53:4f:00:aa:6f:bc:1c:a0: 3f:26:4e:34:6e:ef:6a:6d:23:b9:30:55:e2:c2:cd: 2e:a0:60:17:d5:86:1c:22:02:f8:9a:f0:99:44:11: 12:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:10:8D:EB:CE:FE:FC:B7:FE:60:03:A2:36:A2:62:8D:0D:7E:FB:AC X509v3 Authority Key Identifier: keyid:2A:DD:D4:03:51:73:FA:C3:BB:39:49:CB:36:CC:EF:25:53:79:8B:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2867a2ee-d411-4ff8-9f5c-35d034123f84/0/2ADDD4035173FAC3BB3949CB36CCEF2553798BFC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 36:b7:5e:77:26:0b:f9:bc:8f:a3:94:35:b9:a3:48:df:a7:ad: c3:35:3a:da:b5:1d:5d:2c:99:d4:90:b9:93:db:45:c1:d3:af: f2:43:1c:12:53:c1:97:d8:f0:d5:04:66:10:64:e1:b5:dc:35: 7a:a9:17:44:37:ba:1f:aa:ea:9d:cb:d3:d2:5b:06:8d:2e:a0: cb:ad:8b:d5:af:c4:8d:6c:99:29:66:b9:55:18:64:65:b3:9d: bc:a1:d9:27:c7:3d:c2:a5:32:14:7c:11:a8:d2:db:56:2f:27: 65:1c:ab:43:8c:26:32:de:0a:25:00:79:57:01:3f:79:aa:6c: 45:25:86:59:0e:bb:fa:73:dc:fb:83:c1:29:70:b2:fb:75:e4: 95:f2:c0:7a:3c:3a:16:e5:c4:2c:8b:04:81:7c:b5:a2:83:f4: 89:5e:6e:f9:97:85:ac:d2:f3:7e:fc:5c:f2:65:26:f2:49:ea: 64:48:29:df:86:24:1e:0e:5a:79:3b:4b:4a:3c:18:ca:6b:7a: 1c:1d:4e:0c:fb:6d:33:80:0c:b4:10:1d:14:4a:ff:8a:8d:36: 6b:b4:12:ad:fc:37:65:a5:6f:14:e3:b0:9f:77:6c:98:67:39: 9a:4e:23:53:26:72:5a:bf:fe:1e:99:83:c9:81:db:a7:ce:9b: 10:61:46:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUc6yjLmf8jJL69fhRQMKKxllZcH8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1 Mzc5OEJGQzAeFw0yNTEyMDUxNjI1NDJaFw0yNTEyMDgxOTQyNDJaMDMxMTAvBgNV BAMTKDgzMTA4REVCQ0VGRUZDQjdGRTYwMDNBMjM2QTI2MjhEMEQ3RUZCQUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwSXHzW6j7f72weAf5/3U2puh5 oZfouEeZJ51Qv+WFXOsddoEFUkHL6kLeb8oShW31wirnhN6K8Y6UqvOAcW3ZDdJd 9fx78vX56zJowwhN+aDjZuFOaZSEYUJV9Sl6RUYvwZ9JyhskTRa8CB3fWuJyNbx/ HZOw71pN7YKduWXh/Y7UjqY7OJADQa+sQsvHShdAELXg/9ec+qEFNF/jb9qRbsOf ihAorIMyyQre5iXMSqxI7y6znd8U+O1JnmsSYZHv+IHOqocaGYSrVaYtcR3r+1Pb 3YDmwr5TTwCqb7wcoD8mTjRu72ptI7kwVeLCzS6gYBfVhhwiAvia8JlEERKtAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgxCN687+/Lf+YAOiNqJijQ1++6wwHwYDVR0j BBgwFoAUKt3UA1Fz+sO7OUnLNszvJVN5i/wwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODY3YTJlZS1kNDExLTRmZjgtOWY1Yy0zNWQwMzQxMjNmODQvMC8yQURERDQwMzUx NzNGQUMzQkIzOTQ5Q0IzNkNDRUYyNTUzNzk4QkZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VGMjU1Mzc5 OEJGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg2N2EyZWUtZDQxMS00ZmY4LTlm NWMtMzVkMDM0MTIzZjg0LzAvMkFEREQ0MDM1MTczRkFDM0JCMzk0OUNCMzZDQ0VG MjU1Mzc5OEJGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADa3XncmC/m8j6OUNbmjSN+nrcM1Otq1HV0s mdSQuZPbRcHTr/JDHBJTwZfY8NUEZhBk4bXcNXqpF0Q3uh+q6p3L09JbBo0uoMut i9WvxI1smSlmuVUYZGWznbyh2SfHPcKlMhR8EajS21YvJ2Ucq0OMJjLeCiUAeVcB P3mqbEUlhlkOu/pz3PuDwSlwsvt15JXywHo8OhblxCyLBIF8taKD9IlebvmXhazS 8378XPJlJvJJ6mRIKd+GJB4OWnk7S0o8GMprehwdTgz7bTOADLQQHRRK/4qNNmu0 Eq38N2WlbxTjsJ93bJhnOZpOI1Mmclq//h6Zg8mB26fOmxBhRhI= -----END CERTIFICATE-----Generated at Sat Dec 6 16:20:44 2025 by rpki-client