This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: lC2BSDeNFHfP5dCzyJ8yoS4BOPor8DYMzgiyXM92wpA= Subject key identifier: 14:38:62:8A:FF:FB:4F:6D:14:C9:AB:4F:0D:A3:2C:C5:AA:07:9E:E9 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 354B9E756C56868CFEE4962D7F949000D0FCF586 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0251 Signing time: Fri 05 Dec 2025 04:50:04 +0000 Manifest this update: Fri 05 Dec 2025 04:45:04 +0000 Manifest next update: Mon 08 Dec 2025 12:22:04 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: NIlrRykcr74CPDCSESS5k9AFnm4bX1B6R5Azh1q1xRQ=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 12:22:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:4b:9e:75:6c:56:86:8c:fe:e4:96:2d:7f:94:90:00:d0:fc:f5:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Dec 5 04:45:04 2025 GMT Not After : Dec 8 12:22:04 2025 GMT Subject: CN=1438628AFFFB4F6D14C9AB4F0DA32CC5AA079EE9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:86:c0:00:5a:70:77:93:6c:6e:7f:e5:9f:38: 0d:57:df:41:60:95:3b:dd:20:44:6d:27:26:4f:e3: 6f:24:aa:70:ed:eb:a3:a3:e5:69:c3:8a:c6:2a:61: 21:47:1f:a9:dd:d4:3d:2a:02:26:81:b2:79:2e:fe: 48:25:81:fa:ad:2c:7c:bb:37:86:d7:24:65:22:b2: b7:96:a7:5b:35:a4:2d:26:8c:da:ed:d6:e3:c3:c1: ce:ff:0e:d9:0b:67:ef:6b:c1:f3:3a:e9:51:88:59: 42:2f:8c:01:df:cc:4d:81:c5:be:a6:60:50:96:f2: 6c:dc:23:01:bf:4a:2c:16:a9:33:31:3e:be:08:b3: ba:2c:26:76:43:dd:5e:b8:f1:17:bb:73:f8:50:9b: 8d:21:98:c7:81:41:87:88:de:76:01:d9:b3:3a:ff: 2c:f1:eb:20:fb:a5:d7:e0:45:07:46:22:f1:4a:f9: ec:e1:ae:71:29:ac:a3:ab:db:3c:fb:63:fb:3c:63: cb:d4:a6:09:8d:d9:bf:5b:df:0b:50:c4:1c:2d:a0: 1f:05:b2:9e:c1:36:dc:a0:92:ca:49:d9:63:64:59: f4:bb:46:c4:d3:8b:15:15:4a:63:7e:9e:97:6d:8b: 14:ef:6f:ba:e7:4c:4d:42:d5:e0:2d:17:68:05:00: 45:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:38:62:8A:FF:FB:4F:6D:14:C9:AB:4F:0D:A3:2C:C5:AA:07:9E:E9 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:af:cf:85:cb:ca:83:92:9a:37:cc:d4:57:4c:29:77:59:23: 6f:2b:88:4d:44:95:67:3d:f1:50:80:82:28:f8:65:e7:85:c1: 86:af:f7:07:32:a0:36:b2:6b:47:67:9b:32:38:69:ea:c2:c4: 36:00:42:21:95:ea:89:f9:33:ef:8e:2a:aa:a8:a2:17:38:b3: 56:15:77:1d:69:ce:11:50:09:88:21:ed:58:c2:1d:1a:dc:b4: ec:5b:52:84:d2:06:6a:6c:23:c4:59:fb:21:02:56:20:25:4a: c8:21:70:d2:3a:6d:a0:6f:c3:47:ea:be:53:cc:59:ae:92:3e: a6:05:b1:c3:06:b5:91:e9:74:0f:77:f4:b4:c2:9a:1a:cc:0e: 5e:7e:f2:32:0e:a5:38:8f:6e:97:35:85:67:18:d3:8a:57:da: b1:fb:d1:14:08:81:84:aa:80:be:b5:34:4d:bd:dd:6a:d8:7c: 6b:53:92:d5:e3:40:06:d8:fd:07:81:cc:6b:cb:fd:6c:22:be: 42:f1:c7:49:de:00:a3:95:2f:80:42:dc:61:45:59:8c:94:cc: 4f:01:94:32:cf:46:75:b2:8b:8b:66:5d:e5:05:b2:8b:cd:88: 6c:26:7b:00:2e:36:fe:23:8b:9d:61:e9:0c:c4:1f:df:76:23: 9d:be:01:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNUuedWxWhoz+5JYtf5SQAND89YYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTEyMDUwNDQ1MDRaFw0yNTEyMDgxMjIyMDRaMDMxMTAvBgNV BAMTKDE0Mzg2MjhBRkZGQjRGNkQxNEM5QUI0RjBEQTMyQ0M1QUEwNzlFRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDchsAAWnB3k2xuf+WfOA1X30Fg lTvdIERtJyZP428kqnDt66Oj5WnDisYqYSFHH6nd1D0qAiaBsnku/kglgfqtLHy7 N4bXJGUisreWp1s1pC0mjNrt1uPDwc7/DtkLZ+9rwfM66VGIWUIvjAHfzE2Bxb6m YFCW8mzcIwG/SiwWqTMxPr4Is7osJnZD3V648Re7c/hQm40hmMeBQYeI3nYB2bM6 /yzx6yD7pdfgRQdGIvFK+ezhrnEprKOr2zz7Y/s8Y8vUpgmN2b9b3wtQxBwtoB8F sp7BNtygkspJ2WNkWfS7RsTTixUVSmN+npdtixTvb7rnTE1C1eAtF2gFAEVlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFDhiiv/7T20UyatPDaMsxaoHnukwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEyvz4XLyoOSmjfM1FdMKXdZI28riE1ElWc9 8VCAgij4ZeeFwYav9wcyoDaya0dnmzI4aerCxDYAQiGV6on5M++OKqqoohc4s1YV dx1pzhFQCYgh7VjCHRrctOxbUoTSBmpsI8RZ+yECViAlSsghcNI6baBvw0fqvlPM Wa6SPqYFscMGtZHpdA939LTCmhrMDl5+8jIOpTiPbpc1hWcY04pX2rH70RQIgYSq gL61NE293WrYfGtTktXjQAbY/QeBzGvL/WwivkLxx0neAKOVL4BC3GFFWYyUzE8B lDLPRnWyi4tmXeUFsovNiGwmewAuNv4ji51h6QzEH992I52+AVs= -----END CERTIFICATE-----Generated at Sun Dec 7 06:00:58 2025 by rpki-client