This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft File: 338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft (raw, json) Hash identifier: G9A6ODyGeh7nsezPlFuX1/u8CzDFjFsKoGpoOCKw+7Q= Subject key identifier: 14:91:E3:CE:39:BB:80:53:CA:B8:61:08:12:5C:1A:71:5D:04:C8:50 Authority key identifier: 33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B Certificate issuer: /CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B Certificate serial: 78F80F32812437B7659C7248913E20837B416A7C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft Manifest number: 04FA Signing time: Sat 06 Dec 2025 15:12:08 +0000 Manifest this update: Sat 06 Dec 2025 15:07:08 +0000 Manifest next update: Tue 09 Dec 2025 18:13:08 +0000 Files and hashes: 1: 338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl (hash: gppGO42H2LDI/82ppHzZhMNmcYQtSOnbQvpx7pfQeEo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:f8:0f:32:81:24:37:b7:65:9c:72:48:91:3e:20:83:7b:41:6a:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B Validity Not Before: Dec 6 15:07:08 2025 GMT Not After : Dec 9 18:13:08 2025 GMT Subject: CN=1491E3CE39BB8053CAB86108125C1A715D04C850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:55:9a:01:c2:f9:9c:32:0c:d3:5c:54:0f:0a: 28:2b:97:3d:d5:6c:69:b9:16:df:b0:94:07:1c:d2: 7d:0b:c1:3b:09:73:f9:40:06:91:36:11:24:58:78: 87:2d:8d:f9:26:30:f2:87:af:bb:d8:f4:f1:32:ab: 21:f9:02:dd:f9:9c:ed:f8:ed:41:57:9f:f4:f3:16: 28:53:f8:fd:9a:e2:16:0d:b5:57:07:ca:f9:53:1f: e2:94:79:b4:34:cf:9d:37:be:49:9d:57:91:ad:be: dc:94:e3:42:36:e6:3e:5d:cc:10:36:a0:03:3d:c0: 9c:8c:7e:f7:98:9c:32:10:51:1b:88:4b:82:0f:0c: 42:8d:66:b8:1c:a7:d9:5b:b3:4d:58:8a:41:4e:e4: bf:a1:cf:b0:c8:15:ac:1c:5d:a3:d6:41:55:39:8c: 37:94:c0:89:60:7a:75:0a:4f:c5:ce:0f:81:65:12: cf:19:50:16:15:d2:d1:3d:fd:ff:5a:cd:9c:55:99: 57:83:3d:a7:31:ed:94:67:65:a3:69:b8:09:25:42: 47:1c:77:75:aa:c3:a8:66:c1:43:76:a1:0b:00:7f: 28:24:d3:65:ab:83:8b:d7:f0:51:cc:7f:0e:c9:21: 8a:fb:4a:2e:6e:0d:9f:88:54:5d:35:eb:3f:50:15: 54:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:91:E3:CE:39:BB:80:53:CA:B8:61:08:12:5C:1A:71:5D:04:C8:50 X509v3 Authority Key Identifier: keyid:33:8D:EB:8D:70:51:C6:3F:C6:CC:D7:B1:A5:DD:8C:9E:3C:93:B9:6B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/324a65f4-4f4b-44b6-a2eb-59957bc6a4d3/0/338DEB8D7051C63FC6CCD7B1A5DD8C9E3C93B96B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 99:ca:cc:51:60:38:be:21:26:8a:75:60:79:26:78:a1:86:ee: 72:ab:5f:d2:74:95:ee:3f:28:ce:ec:c0:02:66:06:cc:04:7a: 25:fe:4f:ad:f5:a1:cd:b6:fa:36:cd:7c:b0:a0:2b:b8:38:b5: e9:79:ba:58:49:69:20:81:77:f7:33:a4:fe:b4:ae:e0:4d:50: 98:3a:e5:e8:74:db:b5:43:d5:f1:8f:3f:1c:72:ff:67:f8:5e: b8:4c:70:01:6b:16:cf:8c:3b:c1:14:28:fe:12:c6:aa:58:06: 9a:90:90:42:09:34:fe:7b:e9:52:54:1a:d0:6e:b5:b8:db:25: 71:a7:f0:d6:ef:12:25:50:d2:8d:8b:f9:63:bb:bc:46:52:fc: 36:8a:42:f7:a9:9f:b7:39:4d:b3:b5:9e:92:97:1d:5a:71:21: ea:aa:a7:9d:2f:df:87:2b:ac:c0:c4:28:62:0c:52:a6:53:7c: 45:72:85:42:26:11:83:3a:2c:7b:d6:8f:42:10:4a:73:44:a6: 5c:34:df:49:28:90:47:dd:f7:36:19:c1:b2:49:00:b5:39:04: e6:71:36:4a:44:eb:78:57:7a:71:8e:69:b8:6d:8b:1f:b1:5e: 79:87:61:10:44:83:09:5e:73:41:69:21:6a:b4:6d:51:08:a2: 15:1b:ce:d7 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUePgPMoEkN7dlnHJIkT4gg3tBanwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhDOUUz QzkzQjk2QjAeFw0yNTEyMDYxNTA3MDhaFw0yNTEyMDkxODEzMDhaMDMxMTAvBgNV BAMTKDE0OTFFM0NFMzlCQjgwNTNDQUI4NjEwODEyNUMxQTcxNUQwNEM4NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhVZoBwvmcMgzTXFQPCigrlz3V bGm5Ft+wlAcc0n0LwTsJc/lABpE2ESRYeIctjfkmMPKHr7vY9PEyqyH5At35nO34 7UFXn/TzFihT+P2a4hYNtVcHyvlTH+KUebQ0z503vkmdV5GtvtyU40I25j5dzBA2 oAM9wJyMfveYnDIQURuIS4IPDEKNZrgcp9lbs01YikFO5L+hz7DIFawcXaPWQVU5 jDeUwIlgenUKT8XOD4FlEs8ZUBYV0tE9/f9azZxVmVeDPacx7ZRnZaNpuAklQkcc d3Wqw6hmwUN2oQsAfygk02Wrg4vX8FHMfw7JIYr7Si5uDZ+IVF016z9QFVT7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUFJHjzjm7gFPKuGEIElwacV0EyFAwHwYDVR0j BBgwFoAUM43rjXBRxj/GzNexpd2MnjyTuWswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MjRhNjVmNC00ZjRiLTQ0YjYtYTJlYi01OTk1N2JjNmE0ZDMvMC8zMzhERUI4RDcw NTFDNjNGQzZDQ0Q3QjFBNUREOEM5RTNDOTNCOTZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhDOUUzQzkz Qjk2Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzI0YTY1ZjQtNGY0Yi00NGI2LWEy ZWItNTk5NTdiYzZhNGQzLzAvMzM4REVCOEQ3MDUxQzYzRkM2Q0NEN0IxQTVERDhD OUUzQzkzQjk2Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJnKzFFgOL4hJop1YHkmeKGG7nKrX9J0le4/ KM7swAJmBswEeiX+T631oc22+jbNfLCgK7g4tel5ulhJaSCBd/czpP60ruBNUJg6 5eh027VD1fGPPxxy/2f4XrhMcAFrFs+MO8EUKP4SxqpYBpqQkEIJNP576VJUGtBu tbjbJXGn8NbvEiVQ0o2L+WO7vEZS/DaKQvepn7c5TbO1npKXHVpxIeqqp50v34cr rMDEKGIMUqZTfEVyhUImEYM6LHvWj0IQSnNEplw030kokEfd9zYZwbJJALU5BOZx NkpE63hXenGOabhtix+xXnmHYRBEgwlec0FpIWq0bVEIohUbztc= -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:17 2025 by rpki-client