This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: Jx1uHS+f9JYI0I7ZP0Y9bofGoJASXHb23EX1GqYL2qo= Subject key identifier: A3:08:B1:0F:BB:93:E5:FB:12:3A:2A:82:42:51:C7:06:22:ED:80:B9 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 0B56ADAFC8F717913B427034C15D2E28585DF646 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 0200 Signing time: Fri 05 Dec 2025 16:01:00 +0000 Manifest this update: Fri 05 Dec 2025 15:56:00 +0000 Manifest next update: Tue 09 Dec 2025 01:48:00 +0000 Files and hashes: 1: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) 2: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) 3: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: O0Xbp05QXnTkzF74zkzIPQJxjPYNfM9BjKTE72Ony6E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 01:48:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:56:ad:af:c8:f7:17:91:3b:42:70:34:c1:5d:2e:28:58:5d:f6:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Dec 5 15:56:00 2025 GMT Not After : Dec 9 01:48:00 2025 GMT Subject: CN=A308B10FBB93E5FB123A2A824251C70622ED80B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:f9:7d:50:f2:64:28:0e:fe:a6:e3:49:4d:87: d0:34:cc:ab:2c:f4:b3:5a:7e:3f:9c:51:52:e2:10: bd:59:74:9a:ce:1b:87:ac:bc:ae:18:82:11:b6:1f: 16:78:56:e8:8b:61:00:69:83:5a:db:33:99:83:76: 36:ea:06:45:ff:12:b9:8c:6f:2d:7f:c7:e9:e0:65: 20:9f:21:64:5a:65:70:23:fb:dd:6b:19:28:aa:ab: b8:af:00:eb:7c:9e:95:d5:9b:a0:9d:40:b2:e3:82: 31:49:41:32:e3:f8:19:7e:c7:29:2a:7d:fd:3d:57: 0b:2e:3d:33:e1:e0:56:0e:2c:c6:02:0f:9f:6c:f7: 27:73:32:1f:de:ba:a3:27:51:41:c6:e6:4e:dd:7e: 08:5d:ae:3b:3d:3c:3b:1d:94:58:30:5e:1a:e8:19: 3d:0f:00:8c:29:80:07:a6:42:7d:5a:24:ce:94:63: 24:27:23:81:55:fa:0f:69:cd:7b:84:54:54:a8:8e: f7:3a:e4:a7:c4:3f:2a:22:d0:24:be:c1:c5:be:d0: 20:8b:62:a0:e9:52:4a:cd:d7:67:06:2b:c4:a1:27: d8:22:e7:d3:d1:ca:68:61:92:3b:3a:cb:1f:55:c3: 0d:a6:98:1e:f1:34:40:a5:a9:bc:27:50:cd:fb:8a: 69:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:08:B1:0F:BB:93:E5:FB:12:3A:2A:82:42:51:C7:06:22:ED:80:B9 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:02:b0:5b:50:6d:63:8e:fb:44:9a:ee:0a:e2:b2:b9:be:7d: c2:8c:68:7e:19:25:19:ec:04:19:7c:7f:92:80:dc:20:f9:b5: e9:83:53:ff:24:e9:bf:57:69:33:3a:5f:5c:8b:28:aa:bd:5a: af:c1:e9:8f:11:e3:6f:51:5c:98:47:0e:d4:65:f0:96:90:42: 37:a8:2a:d7:94:23:94:e1:4c:e8:d9:cf:6c:5e:7e:37:c4:17: a2:4a:98:c3:82:96:6c:89:18:3e:82:08:60:31:cd:ca:30:b2: ce:1b:80:f1:2c:5f:c9:30:f2:a3:37:93:95:80:48:09:41:87: 0f:e0:bd:53:b6:b4:11:94:3f:79:fa:a3:88:f0:9c:06:0e:84: b4:2a:0a:9b:2c:7f:d7:1c:90:5f:87:14:4f:73:99:d8:ba:07: 68:7f:6b:b6:8a:fc:98:4d:3e:f6:3a:6d:f2:c1:2e:49:37:a1: 02:04:c0:25:24:63:5b:14:57:d8:b6:4e:3e:a1:57:d7:08:5a: b3:0e:63:dc:6c:78:c1:0b:68:ef:6d:3a:c3:8e:c5:a7:8d:51: 35:41:81:c1:64:73:23:ec:5c:8c:97:b8:f7:51:be:f8:fd:b9: 32:41:6a:02:ca:12:24:38:ce:c5:f1:fc:3e:6e:ba:f6:61:b6: 4b:c7:ab:05 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUC1atr8j3F5E7QnA0wV0uKFhd9kYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTEyMDUxNTU2MDBaFw0yNTEyMDkwMTQ4MDBaMDMxMTAvBgNV BAMTKEEzMDhCMTBGQkI5M0U1RkIxMjNBMkE4MjQyNTFDNzA2MjJFRDgwQjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDE+X1Q8mQoDv6m40lNh9A0zKss 9LNafj+cUVLiEL1ZdJrOG4esvK4YghG2HxZ4VuiLYQBpg1rbM5mDdjbqBkX/ErmM by1/x+ngZSCfIWRaZXAj+91rGSiqq7ivAOt8npXVm6CdQLLjgjFJQTLj+Bl+xykq ff09VwsuPTPh4FYOLMYCD59s9ydzMh/euqMnUUHG5k7dfghdrjs9PDsdlFgwXhro GT0PAIwpgAemQn1aJM6UYyQnI4FV+g9pzXuEVFSojvc65KfEPyoi0CS+wcW+0CCL YqDpUkrN12cGK8ShJ9gi59PRymhhkjs6yx9Vww2mmB7xNEClqbwnUM37imkVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUowixD7uT5fsSOiqCQlHHBiLtgLkwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJoCsFtQbWOO+0Sa7grisrm+fcKMaH4ZJRns BBl8f5KA3CD5temDU/8k6b9XaTM6X1yLKKq9Wq/B6Y8R429RXJhHDtRl8JaQQjeo KteUI5ThTOjZz2xefjfEF6JKmMOClmyJGD6CCGAxzcowss4bgPEsX8kw8qM3k5WA SAlBhw/gvVO2tBGUP3n6o4jwnAYOhLQqCpssf9cckF+HFE9zmdi6B2h/a7aK/JhN PvY6bfLBLkk3oQIEwCUkY1sUV9i2Tj6hV9cIWrMOY9xseMELaO9tOsOOxaeNUTVB gcFkcyPsXIyXuPdRvvj9uTJBagLKEiQ4zsXx/D5uuvZhtkvHqwU= -----END CERTIFICATE-----Generated at Sat Dec 6 19:49:54 2025 by rpki-client