This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft File: 3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft (raw, json) Hash identifier: /NxnbdMf/V6aZHUyM1DByGzaJI4ZfHfGQLT7bDxHo5E= Subject key identifier: C5:16:00:D8:C9:BC:42:7A:73:3B:07:52:D2:13:E6:06:7F:45:0F:E6 Authority key identifier: 31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D Certificate issuer: /CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Certificate serial: 471F6F2E64111CF2A7752CF396742DD2DD2ACDB1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject info access: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft Manifest number: C9 Signing time: Thu 18 Dec 2025 17:52:06 +0000 Manifest this update: Thu 18 Dec 2025 17:47:06 +0000 Manifest next update: Mon 22 Dec 2025 04:27:06 +0000 Files and hashes: 1: 3136302e32322e3132392e302f32342d3234203d3e20313532383138.roa (hash: kfe7bioqh5Iq3Zs3yK/jDrU8ENFR3XhQIQMqoWIpf3I=) 2: 3136302e32322e3132382e302f32332d3233203d3e20313532383138.roa (hash: W0LbcDgwtmyP20SeYwIB78u7UnepT3G+vjiQKG938P8=) 3: 3136302e32322e3132382e302f32342d3234203d3e20313532383138.roa (hash: vWKkBT4xeS3gWR4PhONDDyBeT46kLBCLfRTaWAbu5Wk=) 4: 3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl (hash: jscQvKP9hRvg7iuBzvwfA1fkbJWvcly4d6bik2ZNpso=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 04:27:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:1f:6f:2e:64:11:1c:f2:a7:75:2c:f3:96:74:2d:d2:dd:2a:cd:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3157B9BE6F369A1CA38738FFD64D6113C75C0E2D Validity Not Before: Dec 18 17:47:06 2025 GMT Not After : Dec 22 04:27:06 2025 GMT Subject: CN=C51600D8C9BC427A733B0752D213E6067F450FE6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:d7:3f:9a:00:89:8f:86:39:03:70:19:ee:29: 60:3e:60:90:4e:1c:ff:b5:2d:a9:81:eb:10:81:f5: fe:97:a6:e9:41:1a:7e:77:d5:24:29:b4:32:9e:e8: e3:2d:ba:53:8a:4b:6d:5c:a6:b7:dd:57:9a:37:3c: 82:ea:d2:9a:90:f5:48:e9:76:48:79:9b:08:a5:cf: 3b:82:df:bc:cd:8d:fe:7d:28:c9:93:a8:a2:1a:b0: 0a:73:b8:3d:0a:c8:2d:88:f2:3f:8b:0c:43:97:f4: 51:22:df:09:5b:6e:4e:d8:3a:d3:b0:31:da:c8:35: e4:42:51:14:89:e5:f1:94:d0:a2:39:01:db:67:6f: a4:ef:95:70:e0:ac:85:a5:32:6b:5e:ec:10:6c:de: c2:c9:a6:02:1f:a5:79:83:5c:56:69:b6:36:15:04: eb:47:6f:01:c4:09:75:3c:8e:8f:74:50:78:80:a5: a0:83:79:fe:a7:0c:06:8d:70:6f:05:ca:35:29:d2: f8:c9:72:82:84:bd:1d:46:1f:35:77:d3:38:ef:58: 9c:23:fb:0e:95:b8:b5:3d:4e:8a:13:db:0d:90:7b: a6:e5:17:8a:4f:ea:87:c5:db:cb:6b:05:b4:20:2e: 95:a9:ef:35:2f:fc:79:9b:d5:f6:5c:f6:1d:8e:d9: 04:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:16:00:D8:C9:BC:42:7A:73:3B:07:52:D2:13:E6:06:7F:45:0F:E6 X509v3 Authority Key Identifier: keyid:31:57:B9:BE:6F:36:9A:1C:A3:87:38:FF:D6:4D:61:13:C7:5C:0E:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/30fb78a9-cd68-44fd-85aa-6c6b08cb2346/0/3157B9BE6F369A1CA38738FFD64D6113C75C0E2D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:91:b8:f7:6b:9c:f4:ff:7e:0e:63:ba:9f:1f:8c:7f:35:43: 20:67:8a:5c:af:89:44:7c:09:0b:03:8a:a2:20:14:78:21:c6: bc:21:4a:0f:7f:03:35:da:86:99:b4:29:84:be:f5:33:9b:01: ff:51:a3:6e:a7:4b:99:df:bb:df:4a:3b:0a:f2:db:df:15:6a: 74:0e:fd:fa:d3:a3:1f:83:28:e9:9b:a0:a4:f9:71:dd:a6:46: b8:d6:99:56:eb:a5:d0:72:3f:d3:d6:95:70:1f:3b:05:71:b9: fe:86:90:ed:11:c8:d7:7a:4d:a8:ee:3e:1a:7b:bc:74:cb:f8: d3:70:82:15:e8:a9:c9:97:7b:02:98:f8:19:71:e4:34:e3:66: 10:af:2b:82:43:d3:90:56:54:ef:cb:28:99:19:04:a5:d1:22: e3:6a:8e:da:1c:18:5e:45:12:c0:12:b4:f3:ba:f4:6c:a3:fd: 21:45:8f:12:ec:6b:11:a4:64:27:b4:9f:69:e7:36:25:53:14: 28:53:87:d6:e5:65:27:a1:41:ce:62:db:df:25:3f:05:45:7f: a5:81:0e:5c:18:0c:c8:76:f9:7a:fb:47:a7:d8:71:03:d1:3a: 62:37:3d:4c:9a:a5:57:5a:09:7a:c2:1b:76:4c:53:e8:55:37: 16:1f:ab:cd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURx9vLmQRHPKndSzzlnQt0t0qzbEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTND NzVDMEUyRDAeFw0yNTEyMTgxNzQ3MDZaFw0yNTEyMjIwNDI3MDZaMDMxMTAvBgNV BAMTKEM1MTYwMEQ4QzlCQzQyN0E3MzNCMDc1MkQyMTNFNjA2N0Y0NTBGRTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCm1z+aAImPhjkDcBnuKWA+YJBO HP+1LamB6xCB9f6XpulBGn531SQptDKe6OMtulOKS21cprfdV5o3PILq0pqQ9Ujp dkh5mwilzzuC37zNjf59KMmTqKIasApzuD0KyC2I8j+LDEOX9FEi3wlbbk7YOtOw MdrINeRCURSJ5fGU0KI5Adtnb6TvlXDgrIWlMmte7BBs3sLJpgIfpXmDXFZptjYV BOtHbwHECXU8jo90UHiApaCDef6nDAaNcG8FyjUp0vjJcoKEvR1GHzV30zjvWJwj +w6VuLU9TooT2w2Qe6blF4pP6ofF28trBbQgLpWp7zUv/Hmb1fZc9h2O2QSrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUxRYA2Mm8QnpzOwdS0hPmBn9FD+YwHwYDVR0j BBgwFoAUMVe5vm82mhyjhzj/1k1hE8dcDi0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MGZiNzhhOS1jZDY4LTQ0ZmQtODVhYS02YzZiMDhjYjIzNDYvMC8zMTU3QjlCRTZG MzY5QTFDQTM4NzM4RkZENjRENjExM0M3NUMwRTJELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYxMTNDNzVD MEUyRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzBmYjc4YTktY2Q2OC00NGZkLTg1 YWEtNmM2YjA4Y2IyMzQ2LzAvMzE1N0I5QkU2RjM2OUExQ0EzODczOEZGRDY0RDYx MTNDNzVDMEUyRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEmRuPdrnPT/fg5jup8fjH81QyBnilyviUR8 CQsDiqIgFHghxrwhSg9/AzXahpm0KYS+9TObAf9Ro26nS5nfu99KOwry298VanQO /frTox+DKOmboKT5cd2mRrjWmVbrpdByP9PWlXAfOwVxuf6GkO0RyNd6TajuPhp7 vHTL+NNwghXoqcmXewKY+Blx5DTjZhCvK4JD05BWVO/LKJkZBKXRIuNqjtocGF5F EsAStPO69Gyj/SFFjxLsaxGkZCe0n2nnNiVTFChTh9blZSehQc5i298lPwVFf6WB DlwYDMh2+Xr7R6fYcQPROmI3PUyapVdaCXrCG3ZMU+hVNxYfq80= -----END CERTIFICATE-----Generated at Fri Dec 19 13:26:22 2025 by rpki-client