This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft File: 4AA76DED689FD4420809D0962087A03BCF018FEA.mft (raw, json) Hash identifier: am4KnZFSgc4jJnGOXWI81Qvai9Zc4DTBGwN66g0sPkE= Subject key identifier: 15:F1:C9:04:9D:A5:85:37:81:1E:2E:C2:02:59:18:DC:AA:97:FF:BE Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 76D61AB56301CDC89CE69EC2BF79639770A42E72 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft Manifest number: F0 Signing time: Mon 15 Dec 2025 15:51:46 +0000 Manifest this update: Mon 15 Dec 2025 15:46:46 +0000 Manifest next update: Fri 19 Dec 2025 03:40:46 +0000 Files and hashes: 1: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (hash: 2CpAucK+rvU21eAZmyDV5IqqR6dCAIafzExn8g2LOMw=) 2: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (hash: khEVLFQtH+a45cc9yGf67pi2XkwhJ0LBpc+mc2azWiQ=) 3: 4AA76DED689FD4420809D0962087A03BCF018FEA.crl (hash: Hu3q0dPxEBkR0jV0Z8Ht3iogLSLbS0TmLBn5A/8gR1A=) 4: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (hash: bYo0zSG/Y+l/kRQWqzhvCy7R5Romzqih1iDCz89t3mk=) 5: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (hash: qGUv354O5bgjhTMZ45JMcvyFGWQg1EdVxERPegJoKCQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 03:40:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:d6:1a:b5:63:01:cd:c8:9c:e6:9e:c2:bf:79:63:97:70:a4:2e:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Dec 15 15:46:46 2025 GMT Not After : Dec 19 03:40:46 2025 GMT Subject: CN=15F1C9049DA58537811E2EC2025918DCAA97FFBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:e3:1c:87:2b:56:b8:10:47:77:6d:c3:86:57: 19:b8:2b:74:c2:a9:4a:45:46:08:d1:93:80:f4:72: da:67:1d:be:45:26:7f:4f:f1:40:c8:8a:c8:76:64: 6e:09:40:b8:6f:71:a1:38:fd:57:1b:17:6d:f3:9f: 84:00:e2:2d:f9:61:0b:50:fe:7e:49:ee:9f:19:5b: aa:64:f7:87:7f:b9:b3:13:ad:6b:6f:7a:04:3f:d8: 41:0c:f7:b1:34:01:e4:58:db:f7:82:09:6f:93:f8: 9a:37:df:98:59:d7:38:43:c2:05:b9:f2:99:cf:40: 8b:5d:89:81:73:51:3d:96:73:ea:9f:b6:9b:cf:8e: 06:e4:24:9c:37:50:31:cf:74:05:9e:74:95:56:55: e8:43:8d:ec:7f:ef:a8:55:20:b0:8d:05:a7:b3:5d: c0:6e:99:5c:c6:b7:b9:e0:b6:eb:10:db:e3:7e:b5: da:1b:0b:ae:7b:00:5c:22:bb:70:2e:e8:40:89:82: f0:47:46:9a:e3:18:76:13:4b:6c:80:1d:c5:a7:09: 7d:6a:1e:8a:ee:b3:a5:52:f9:1e:01:4c:cf:ff:0f: 6b:99:6f:0a:b0:5b:33:f2:a2:bf:eb:5c:b2:aa:13: 01:48:56:a9:a3:99:a9:8e:30:e6:f3:b9:c2:53:5a: f7:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:F1:C9:04:9D:A5:85:37:81:1E:2E:C2:02:59:18:DC:AA:97:FF:BE X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:64:57:d2:a5:39:18:18:c9:12:c7:2b:13:02:e5:d8:6c:24: a7:a7:44:b4:53:0e:8d:8a:03:cb:8b:64:77:00:7a:3e:8b:96: ce:2d:10:04:f2:79:61:8a:5a:1e:b5:bd:f0:aa:90:5d:1a:bf: ff:15:10:c0:7b:47:5c:2c:5b:cd:21:5d:a8:67:b5:a6:e8:9c: 6b:78:bd:32:a2:7c:70:8f:5c:84:a1:f0:be:64:ed:cf:ee:23: 6d:cc:e7:83:17:08:16:ce:7c:37:6c:d2:d5:06:17:be:13:a0: 02:cf:4a:b7:2d:49:89:25:1f:4e:b6:3a:b6:2f:7b:af:18:d8: 09:55:19:9e:2c:00:22:cb:3d:aa:22:8c:fb:19:89:5d:07:27: 56:21:b3:33:48:f6:04:e6:d3:d0:bd:12:c5:8a:9a:8b:83:73: 55:80:0d:0c:8e:94:dd:d3:80:b5:da:cc:b4:06:b0:48:d7:b4: 52:f2:c3:d7:c6:e1:33:10:17:27:f1:23:2d:30:55:d1:91:b1: 36:45:70:e9:70:79:d6:93:80:6b:81:f4:20:3c:6f:98:73:a6: 4f:8d:8b:d3:a6:72:30:d1:97:9c:f0:00:ae:a8:2a:b7:77:44: ab:5a:46:60:66:34:d2:4b:e1:d5:d9:c8:b1:56:e0:f7:92:19: 10:4a:7b:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdtYatWMBzcic5p7Cv3ljl3CkLnIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTEyMTUxNTQ2NDZaFw0yNTEyMTkwMzQwNDZaMDMxMTAvBgNV BAMTKDE1RjFDOTA0OURBNTg1Mzc4MTFFMkVDMjAyNTkxOERDQUE5N0ZGQkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQD+4xyHK1a4EEd3bcOGVxm4K3TC qUpFRgjRk4D0ctpnHb5FJn9P8UDIish2ZG4JQLhvcaE4/VcbF23zn4QA4i35YQtQ /n5J7p8ZW6pk94d/ubMTrWtvegQ/2EEM97E0AeRY2/eCCW+T+Jo335hZ1zhDwgW5 8pnPQItdiYFzUT2Wc+qftpvPjgbkJJw3UDHPdAWedJVWVehDjex/76hVILCNBaez XcBumVzGt7ngtusQ2+N+tdobC657AFwiu3Au6ECJgvBHRprjGHYTS2yAHcWnCX1q Horus6VS+R4BTM//D2uZbwqwWzPyor/rXLKqEwFIVqmjmamOMObzucJTWveXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFfHJBJ2lhTeBHi7CAlkY3KqX/74wHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0Ew M0JDRjAxOEZFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJlkV9KlORgYyRLHKxMC5dhsJKenRLRTDo2K A8uLZHcAej6Lls4tEATyeWGKWh61vfCqkF0av/8VEMB7R1wsW80hXahntabonGt4 vTKifHCPXISh8L5k7c/uI23M54MXCBbOfDds0tUGF74ToALPSrctSYklH062OrYv e68Y2AlVGZ4sACLLPaoijPsZiV0HJ1YhszNI9gTm09C9EsWKmouDc1WADQyOlN3T gLXazLQGsEjXtFLyw9fG4TMQFyfxIy0wVdGRsTZFcOlwedaTgGuB9CA8b5hzpk+N i9OmcjDRl5zwAK6oKrd3RKtaRmBmNNJL4dXZyLFW4PeSGRBKezI= -----END CERTIFICATE-----Generated at Tue Dec 16 07:01:00 2025 by rpki-client