This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft File: 4AA76DED689FD4420809D0962087A03BCF018FEA.mft (raw, json) Hash identifier: EmUqRh4gnggrwg5RfQIDAlHYuwfcPPeLgNXee61zolA= Subject key identifier: D9:F8:E8:12:EB:60:87:1D:60:1F:F0:BB:53:37:0C:84:00:1A:14:16 Authority key identifier: 4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA Certificate issuer: /CN=4AA76DED689FD4420809D0962087A03BCF018FEA Certificate serial: 56707F5D3DBF906E89E58F51290ECA9BC417921D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft Manifest number: EB Signing time: Fri 05 Dec 2025 00:41:46 +0000 Manifest this update: Fri 05 Dec 2025 00:36:46 +0000 Manifest next update: Mon 08 Dec 2025 01:20:46 +0000 Files and hashes: 1: 3130332e39392e3133372e302f32342d3234203d3e20313531353735.roa (hash: qGUv354O5bgjhTMZ45JMcvyFGWQg1EdVxERPegJoKCQ=) 2: 323030313a6466343a3763303a3a2f34382d3438203d3e20313531353735.roa (hash: khEVLFQtH+a45cc9yGf67pi2XkwhJ0LBpc+mc2azWiQ=) 3: 4AA76DED689FD4420809D0962087A03BCF018FEA.crl (hash: lnKgLPhUw0jNpD0jS0pkIxp6Ed/ygij/u7W/5xr/xNY=) 4: 3130332e39392e3133362e302f32342d3234203d3e20313531353735.roa (hash: 2CpAucK+rvU21eAZmyDV5IqqR6dCAIafzExn8g2LOMw=) 5: 3130332e39392e3133362e302f32332d3233203d3e20313531353735.roa (hash: bYo0zSG/Y+l/kRQWqzhvCy7R5Romzqih1iDCz89t3mk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 01:20:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:70:7f:5d:3d:bf:90:6e:89:e5:8f:51:29:0e:ca:9b:c4:17:92:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4AA76DED689FD4420809D0962087A03BCF018FEA Validity Not Before: Dec 5 00:36:46 2025 GMT Not After : Dec 8 01:20:46 2025 GMT Subject: CN=D9F8E812EB60871D601FF0BB53370C84001A1416 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:70:00:38:15:b0:29:78:32:27:6f:83:fd:f2: 6e:94:cc:34:f9:46:1b:e9:d7:a5:a9:1d:5a:d4:f9: 66:5f:01:24:56:cd:87:33:b0:ac:dc:64:b7:f3:5c: c0:27:26:13:5c:74:7c:62:71:3b:9c:56:01:0c:cf: 1f:63:99:4b:41:66:d0:41:52:24:39:9f:6c:ca:4d: 2f:e3:42:3a:5f:8d:73:85:c1:fa:d3:4e:c6:95:30: d8:7e:17:93:7f:c1:6b:69:91:9f:35:63:b2:3b:67: 46:9f:48:c4:32:54:d0:83:8d:5d:c5:d3:16:e4:5c: ec:fc:63:5b:4c:9d:85:4d:c0:80:da:f9:90:d4:df: 7a:8b:28:30:a2:8e:c7:35:e7:42:02:d9:96:86:64: 5e:ba:7c:24:38:76:18:f4:44:be:ef:96:c6:fe:39: 07:06:f4:28:ff:ac:8d:d1:86:bf:dd:e5:f0:d0:f0: 8f:fc:11:57:3b:9e:81:77:e1:e6:f8:67:b0:24:15: 96:4d:40:41:4c:13:ca:15:a5:2b:d1:d4:a2:61:bd: be:5d:87:da:4d:23:ff:46:88:e9:e2:3e:1d:b2:22: de:df:88:b2:26:bd:2e:da:12:be:8f:a2:36:c9:8c: 93:51:94:7f:da:22:75:e4:bb:b2:1a:fb:85:a7:be: ed:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F8:E8:12:EB:60:87:1D:60:1F:F0:BB:53:37:0C:84:00:1A:14:16 X509v3 Authority Key Identifier: keyid:4A:A7:6D:ED:68:9F:D4:42:08:09:D0:96:20:87:A0:3B:CF:01:8F:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA76DED689FD4420809D0962087A03BCF018FEA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c280af3-aa1d-4271-8c06-a3fa28898426/0/4AA76DED689FD4420809D0962087A03BCF018FEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:e8:80:6e:8d:97:58:5f:a8:b8:de:ad:9c:da:d4:23:c8:85: 41:84:74:62:12:79:6f:88:41:a5:ec:cf:f6:83:36:cd:45:b1: 8c:68:7d:59:a6:bb:25:4d:9d:4f:7d:e7:76:67:37:f8:26:32: ff:c1:93:ab:ec:cc:76:53:b7:e6:69:90:01:50:38:0f:0c:53: 7e:6f:79:a7:68:bb:c2:6a:fb:58:0d:03:6b:4d:32:b3:f9:94: 6b:33:f2:82:ab:55:51:84:68:51:59:12:cd:80:37:d3:6c:7e: d0:7c:cf:d7:61:e3:cc:6c:fc:26:de:3c:9c:f3:8f:36:7b:3c: 2f:94:b9:64:02:b6:e0:99:ad:80:34:cf:e8:17:9f:30:17:3c: fe:a9:b0:e3:d9:b1:74:6b:e6:8c:64:3f:9c:4a:4c:03:f2:f1: 7b:91:a8:0c:5d:80:26:8c:54:ea:e1:8c:06:2e:33:85:f8:f4: 3c:2d:d4:06:e3:8a:bf:5c:47:db:84:e4:5a:49:79:71:66:d2: f9:15:76:88:bf:75:9c:ca:6b:38:ff:4a:06:cd:a7:7d:9c:66: 96:7e:5b:04:7a:0e:46:33:12:f6:ac:1d:47:ab:b2:61:ee:ff: 31:a7:d1:b7:5c:51:6f:b7:84:98:0b:72:09:f2:c0:65:f4:5a: a2:23:da:32 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVnB/XT2/kG6J5Y9RKQ7Km8QXkh0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JD RjAxOEZFQTAeFw0yNTEyMDUwMDM2NDZaFw0yNTEyMDgwMTIwNDZaMDMxMTAvBgNV BAMTKEQ5RjhFODEyRUI2MDg3MUQ2MDFGRjBCQjUzMzcwQzg0MDAxQTE0MTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDcAA4FbApeDInb4P98m6UzDT5 Rhvp16WpHVrU+WZfASRWzYczsKzcZLfzXMAnJhNcdHxicTucVgEMzx9jmUtBZtBB UiQ5n2zKTS/jQjpfjXOFwfrTTsaVMNh+F5N/wWtpkZ81Y7I7Z0afSMQyVNCDjV3F 0xbkXOz8Y1tMnYVNwIDa+ZDU33qLKDCijsc150IC2ZaGZF66fCQ4dhj0RL7vlsb+ OQcG9Cj/rI3Rhr/d5fDQ8I/8EVc7noF34eb4Z7AkFZZNQEFME8oVpSvR1KJhvb5d h9pNI/9GiOniPh2yIt7fiLImvS7aEr6PojbJjJNRlH/aInXku7Ia+4Wnvu1jAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2fjoEutghx1gH/C7UzcMhAAaFBYwHwYDVR0j BBgwFoAUSqdt7Wif1EIICdCWIIegO88Bj+owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzI4MGFmMy1hYTFkLTQyNzEtOGMwNi1hM2ZhMjg4OTg0MjYvMC80QUE3NkRFRDY4 OUZENDQyMDgwOUQwOTYyMDg3QTAzQkNGMDE4RkVBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0EwM0JDRjAx OEZFQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMyODBhZjMtYWExZC00MjcxLThj MDYtYTNmYTI4ODk4NDI2LzAvNEFBNzZERUQ2ODlGRDQ0MjA4MDlEMDk2MjA4N0Ew M0JDRjAxOEZFQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABDogG6Nl1hfqLjerZza1CPIhUGEdGISeW+I QaXsz/aDNs1FsYxofVmmuyVNnU9953ZnN/gmMv/Bk6vszHZTt+ZpkAFQOA8MU35v eadou8Jq+1gNA2tNMrP5lGsz8oKrVVGEaFFZEs2AN9NsftB8z9dh48xs/CbePJzz jzZ7PC+UuWQCtuCZrYA0z+gXnzAXPP6psOPZsXRr5oxkP5xKTAPy8XuRqAxdgCaM VOrhjAYuM4X49Dwt1Abjir9cR9uE5FpJeXFm0vkVdoi/dZzKazj/SgbNp32cZpZ+ WwR6DkYzEvasHUersmHu/zGn0bdcUW+3hJgLcgnywGX0WqIj2jI= -----END CERTIFICATE-----Generated at Sat Dec 6 22:51:16 2025 by rpki-client