This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft File: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft (raw, json) Hash identifier: ju4zw/7TL+SZ8xpupw19SBXukbjQYHRxL4qNoEexEUs= Subject key identifier: 12:97:51:CF:5A:73:01:7D:1A:46:F2:68:E5:47:64:A4:F8:7A:3C:15 Authority key identifier: 95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 Certificate issuer: /CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Certificate serial: 5CA33FC056FBD852176311AC3E071617D14C29D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft Manifest number: 0537 Signing time: Sat 06 Dec 2025 09:11:41 +0000 Manifest this update: Sat 06 Dec 2025 09:06:41 +0000 Manifest next update: Tue 09 Dec 2025 19:58:41 +0000 Files and hashes: 1: 34332e3234382e3231342e302f32342d3234203d3e203538343734.roa (hash: KABMcwwuj0PcVg0DF+2S7mT8pkOrI1Q8USpOkuuxMXI=) 2: 34332e3234382e3231352e302f32342d3234203d3e203538343734.roa (hash: 2rfcy4tUpo7HgU2cGwZC6pQYZQAR7WSsi/1k28TkJlU=) 3: 3130332e32382e35382e302f32342d3234203d3e203538343734.roa (hash: SVVnOcpEzNW3GyvGQSrBzvX2ix4zPecYqTfJmTpW5Ek=) 4: 323430343a666230303a3a2f33322d3332203d3e203538343734.roa (hash: T0GxcffUorQqKvKWvoQBmwT56g/pt1WC0GNCeIbnIXI=) 5: 3130332e32382e35392e302f32342d3234203d3e203538343734.roa (hash: GggD4UAIQuJ2Ici9kI1FCxhBRH2erQ0+Zgb75d0bwAQ=) 6: 34332e3234382e3231332e302f32342d3234203d3e203538343734.roa (hash: I3OA1TXXrn7Ho4Bbdaoik2HHmIJMRdT3vdvqOadCgWc=) 7: 34332e3234382e3231322e302f32342d3234203d3e203538343734.roa (hash: lJiN/1jPk6sVzBu+b+dWtXwNwMFWgXWbUliAdUar1AU=) 8: 3130332e32382e35372e302f32342d3234203d3e203538343734.roa (hash: RKuA2CS77/iBc1MhX2FD3Oj8MLTo/sw4r4vfbH4WpPI=) 9: 95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl (hash: S2xKfbA1TZgLyKg1msIAwc36Alt1jGIstNO32ca4ALE=) 10: 3130332e32382e35362e302f32342d3234203d3e203538343734.roa (hash: lS8odvouHADOZvGcEIZX6cESZX3v05ZwGGbLJRnmmPg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:a3:3f:c0:56:fb:d8:52:17:63:11:ac:3e:07:16:17:d1:4c:29:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=95FC6072A4A690A61A0B5F14B36882B43DA2F098 Validity Not Before: Dec 6 09:06:41 2025 GMT Not After : Dec 9 19:58:41 2025 GMT Subject: CN=129751CF5A73017D1A46F268E54764A4F87A3C15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:47:ce:9f:a8:f6:73:7a:9c:8b:f7:e2:7e:f4: 7a:af:78:9f:aa:17:0b:ff:4a:e4:af:7a:da:b9:02: 08:b5:5e:44:8f:b9:8b:da:3c:cc:20:f0:9e:b2:80: 2a:b9:96:7e:4b:84:0c:36:53:43:46:be:4f:a5:03: a0:d7:59:d2:6e:e7:19:91:6f:74:0e:7c:45:20:95: 7d:ff:35:e1:87:25:24:c8:a8:4e:64:41:fd:ce:d2: 68:65:07:e9:a9:73:cb:de:86:ab:f2:6d:09:f4:da: f4:b7:f5:55:99:61:53:cf:81:00:45:4f:6b:f8:ba: bf:de:e3:f9:f4:a9:83:34:b6:1c:e5:ee:11:d7:7d: a5:af:44:b9:9e:3b:53:69:d1:bd:69:02:4b:8a:8f: 3d:87:8e:33:64:6f:7f:10:bb:98:69:cf:8d:2c:ea: 87:c9:eb:dc:1a:3f:10:a0:79:7c:04:29:d7:47:05: 61:5b:1b:17:23:e9:9d:00:fa:0e:cf:f9:4c:55:a5: a2:cc:5c:2f:e5:8a:b8:ae:a4:02:a0:cc:51:b5:f7: f8:eb:39:f8:a5:af:ba:cd:58:7b:32:5f:89:e2:c2: 57:e5:4d:12:3e:4e:8a:b4:2e:62:ff:0a:ef:c7:84: eb:48:e9:9f:15:ee:74:a1:34:46:1a:40:82:56:ff: dc:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:97:51:CF:5A:73:01:7D:1A:46:F2:68:E5:47:64:A4:F8:7A:3C:15 X509v3 Authority Key Identifier: keyid:95:FC:60:72:A4:A6:90:A6:1A:0B:5F:14:B3:68:82:B4:3D:A2:F0:98 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/95FC6072A4A690A61A0B5F14B36882B43DA2F098.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3305177a-a500-4996-b3ff-70c144edfece/0/95FC6072A4A690A61A0B5F14B36882B43DA2F098.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2d:6f:93:6e:4d:c3:24:a8:ce:be:2d:0f:f0:96:26:97:d2:6c: ea:8a:61:91:35:7a:4d:50:ca:9c:96:bc:a1:3e:7d:7c:54:09: 04:42:ec:86:09:f7:5b:f0:39:c8:8d:50:c9:32:53:d6:5e:a1: 9f:17:26:e5:e8:5f:ed:0b:eb:c0:99:32:f2:84:e5:85:b5:17: ca:05:ef:f5:6c:69:6f:99:05:c3:eb:82:d6:a9:b5:4b:bb:5a: de:2a:6a:ff:a1:2b:3e:83:95:e4:8c:c6:21:4d:8b:ca:e5:3c: 63:57:6b:f4:d4:a7:e4:f2:f9:65:5d:63:21:40:ea:d6:bb:05: 26:ae:f5:f3:61:df:be:2d:45:bc:c1:95:75:36:e7:7b:f0:57: 9f:36:61:00:7e:49:85:1b:82:b3:fa:e3:62:c1:1f:54:3d:50: 8b:6d:03:9c:03:c4:da:67:a8:3e:b3:3f:4b:c7:93:c9:89:59: 13:6a:84:0e:5e:75:46:a0:1b:e2:f3:ac:f5:ea:f7:a8:76:46: c4:6d:d1:7a:05:bb:8a:f2:d2:d5:54:ba:96:0d:f3:fa:ba:38: f0:5e:4a:4a:c9:ed:99:92:04:a6:27:ae:24:c5:e7:42:a0:6b: 1b:7b:df:79:cd:0b:05:65:7f:c4:5e:f7:78:5e:20:22:b0:d5: be:56:17:20 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXKM/wFb72FIXYxGsPgcWF9FMKdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQz REEyRjA5ODAeFw0yNTEyMDYwOTA2NDFaFw0yNTEyMDkxOTU4NDFaMDMxMTAvBgNV BAMTKDEyOTc1MUNGNUE3MzAxN0QxQTQ2RjI2OEU1NDc2NEE0Rjg3QTNDMTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRR86fqPZzepyL9+J+9HqveJ+q Fwv/SuSvetq5Agi1XkSPuYvaPMwg8J6ygCq5ln5LhAw2U0NGvk+lA6DXWdJu5xmR b3QOfEUglX3/NeGHJSTIqE5kQf3O0mhlB+mpc8vehqvybQn02vS39VWZYVPPgQBF T2v4ur/e4/n0qYM0thzl7hHXfaWvRLmeO1Np0b1pAkuKjz2HjjNkb38Qu5hpz40s 6ofJ69waPxCgeXwEKddHBWFbGxcj6Z0A+g7P+UxVpaLMXC/liriupAKgzFG19/jr Ofilr7rNWHsyX4niwlflTRI+Toq0LmL/Cu/HhOtI6Z8V7nShNEYaQIJW/9wLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUEpdRz1pzAX0aRvJo5UdkpPh6PBUwHwYDVR0j BBgwFoAUlfxgcqSmkKYaC18Us2iCtD2i8JgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z MzA1MTc3YS1hNTAwLTQ5OTYtYjNmZi03MGMxNDRlZGZlY2UvMC85NUZDNjA3MkE0 QTY5MEE2MUEwQjVGMTRCMzY4ODJCNDNEQTJGMDk4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgyQjQzREEy RjA5OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzMwNTE3N2EtYTUwMC00OTk2LWIz ZmYtNzBjMTQ0ZWRmZWNlLzAvOTVGQzYwNzJBNEE2OTBBNjFBMEI1RjE0QjM2ODgy QjQzREEyRjA5OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAC1vk25NwySozr4tD/CWJpfSbOqKYZE1ek1Q ypyWvKE+fXxUCQRC7IYJ91vwOciNUMkyU9ZeoZ8XJuXoX+0L68CZMvKE5YW1F8oF 7/VsaW+ZBcPrgtaptUu7Wt4qav+hKz6DleSMxiFNi8rlPGNXa/TUp+Ty+WVdYyFA 6ta7BSau9fNh374tRbzBlXU253vwV582YQB+SYUbgrP642LBH1Q9UIttA5wDxNpn qD6zP0vHk8mJWRNqhA5edUagG+LzrPXq96h2RsRt0XoFu4ry0tVUupYN8/q6OPBe SkrJ7ZmSBKYnriTF50Kgaxt733nNCwVlf8Re93heICKw1b5WFyA= -----END CERTIFICATE-----Generated at Sun Dec 7 03:57:15 2025 by rpki-client