This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: 8W6e+OXVf9GeB2khTqY9EmzdcfJnHAaY3RVbKY1Qw/k= Subject key identifier: F4:B6:A7:07:2D:64:8A:1F:3D:DE:E1:79:4C:30:0A:FD:6F:9E:1C:6E Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 5C3E65E2E1865EBC35D9B2A248574E7961AD73BE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 052F Signing time: Fri 05 Dec 2025 08:50:47 +0000 Manifest this update: Fri 05 Dec 2025 08:45:47 +0000 Manifest next update: Mon 08 Dec 2025 10:51:47 +0000 Files and hashes: 1: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: 2ZsZ7o0juQUiUCX3DCsq0bH7zsR6ktYkH+QgrIZiRrs=) 2: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 3: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 4: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) 5: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=) 6: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=) 7: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) 8: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=) 9: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 10:51:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:3e:65:e2:e1:86:5e:bc:35:d9:b2:a2:48:57:4e:79:61:ad:73:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Dec 5 08:45:47 2025 GMT Not After : Dec 8 10:51:47 2025 GMT Subject: CN=F4B6A7072D648A1F3DDEE1794C300AFD6F9E1C6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:cc:1e:e2:50:de:71:5c:45:1d:43:c9:a3:e5: 49:98:4c:d7:7d:4f:e7:32:0f:13:ea:c0:1c:4d:ae: 51:b0:55:e9:1e:a0:19:0e:36:eb:bf:00:af:6d:e5: 3d:58:5b:0e:aa:05:9f:74:5c:d8:e5:93:e3:44:c0: 7f:24:bf:2d:76:52:27:df:df:82:7e:53:48:3d:56: f4:9d:e6:41:e1:a1:89:fb:8b:b5:31:73:02:d8:85: 23:8d:05:27:be:86:f4:4e:0e:81:76:b6:ff:21:39: a0:3b:52:ff:15:48:fb:91:ec:8a:44:fb:b9:3a:68: 55:91:ce:7e:02:8b:a3:ea:17:90:f8:45:ab:b8:64: 3e:c7:83:49:3d:c6:93:bd:80:cf:be:ec:d4:e5:c5: f4:73:e2:c3:5f:cc:72:c5:5f:b9:32:f5:70:f2:ec: 54:9c:09:0b:19:6c:2b:a6:68:7f:e5:53:70:e8:2c: a8:f8:c2:48:a8:50:90:ee:37:07:d7:d9:74:f2:f9: f6:7c:d5:e1:0e:d8:68:19:76:4b:0f:89:1e:e0:ad: 75:27:55:e8:e9:a5:4b:dd:90:fb:1e:94:13:e0:04: 96:45:41:6f:31:bc:d1:e1:da:59:d4:b6:01:7c:ed: 3e:c7:78:dd:93:44:47:08:f1:6a:19:00:d2:75:b0: 13:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:B6:A7:07:2D:64:8A:1F:3D:DE:E1:79:4C:30:0A:FD:6F:9E:1C:6E X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:84:db:32:d9:5c:81:c3:f7:3e:c7:a6:fc:75:3a:05:39:99: eb:fb:48:41:d7:c2:9d:0a:fe:84:6f:e6:39:d6:e5:bc:19:51: 50:bf:20:f7:e7:5a:44:8c:ac:7e:10:69:70:5b:f7:ff:40:2d: 52:ae:6c:55:eb:40:1e:3e:f8:b0:a2:4a:1e:59:f6:67:66:63: 49:18:9e:3c:e0:8d:b2:1d:05:73:1e:7b:0e:f4:ac:b2:46:4c: b6:74:63:4d:cd:a2:63:92:2c:b9:26:2d:fe:da:d1:c5:c9:96: 40:cd:f0:dd:b6:5e:ae:e0:80:9f:94:1e:1c:25:1c:92:bc:6b: a3:2c:af:23:e8:bf:62:7b:d8:2e:8c:a2:af:2d:d3:5d:1d:6d: 46:b0:6f:ba:d6:64:e2:4c:a8:99:f7:3b:14:24:49:22:c3:b6: 6f:7e:58:8b:05:87:7a:7b:ab:48:94:71:12:db:92:39:93:a6: cf:54:7f:0c:77:34:82:08:a4:60:c5:b2:bc:f3:be:07:8c:fe: b3:85:b0:88:30:73:14:1d:c5:5b:6b:69:a4:52:26:c1:8d:8e: 76:16:73:7c:02:cd:5d:20:4f:2d:a0:cf:79:4b:3f:76:7d:fc: c6:db:e9:27:db:5a:9f:ef:8c:57:96:95:4d:8c:fb:3b:da:54: a6:39:4b:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXD5l4uGGXrw12bKiSFdOeWGtc74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTEyMDUwODQ1NDdaFw0yNTEyMDgxMDUxNDdaMDMxMTAvBgNV BAMTKEY0QjZBNzA3MkQ2NDhBMUYzRERFRTE3OTRDMzAwQUZENkY5RTFDNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYzB7iUN5xXEUdQ8mj5UmYTNd9 T+cyDxPqwBxNrlGwVekeoBkONuu/AK9t5T1YWw6qBZ90XNjlk+NEwH8kvy12Uiff 34J+U0g9VvSd5kHhoYn7i7UxcwLYhSONBSe+hvRODoF2tv8hOaA7Uv8VSPuR7IpE +7k6aFWRzn4Ci6PqF5D4Rau4ZD7Hg0k9xpO9gM++7NTlxfRz4sNfzHLFX7ky9XDy 7FScCQsZbCumaH/lU3DoLKj4wkioUJDuNwfX2XTy+fZ81eEO2GgZdksPiR7grXUn VejppUvdkPselBPgBJZFQW8xvNHh2lnUtgF87T7HeN2TREcI8WoZANJ1sBNFAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9LanBy1kih893uF5TDAK/W+eHG4wHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHiE2zLZXIHD9z7Hpvx1OgU5mev7SEHXwp0K /oRv5jnW5bwZUVC/IPfnWkSMrH4QaXBb9/9ALVKubFXrQB4++LCiSh5Z9mdmY0kY njzgjbIdBXMeew70rLJGTLZ0Y03NomOSLLkmLf7a0cXJlkDN8N22Xq7ggJ+UHhwl HJK8a6MsryPov2J72C6Moq8t010dbUawb7rWZOJMqJn3OxQkSSLDtm9+WIsFh3p7 q0iUcRLbkjmTps9Ufwx3NIIIpGDFsrzzvgeM/rOFsIgwcxQdxVtraaRSJsGNjnYW c3wCzV0gTy2gz3lLP3Z9/Mbb6SfbWp/vjFeWlU2M+zvaVKY5SxE= -----END CERTIFICATE-----Generated at Sat Dec 6 22:52:33 2025 by rpki-client