This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft File: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft (raw, json) Hash identifier: M5EglkyxaMUB+AFXo2E5NcZpUZkD/GdtP8vyLkwNtMg= Subject key identifier: B5:93:E9:B2:F3:14:67:24:D9:BC:2A:9E:DB:2B:E8:04:64:89:1D:CA Authority key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Certificate issuer: /CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Certificate serial: 1812259F9B30A272666FFAAFF3B0177E9EFFE39C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft Manifest number: 026D Signing time: Sat 06 Dec 2025 11:22:00 +0000 Manifest this update: Sat 06 Dec 2025 11:17:00 +0000 Manifest next update: Tue 09 Dec 2025 16:55:00 +0000 Files and hashes: 1: 3130332e3136362e3233342e302f32342d3234203d3e20313430343037.roa (hash: 2lTJuwgktOu4lo9SNeOCA4rDFu8XBUgqcawUv+9j6hA=) 2: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl (hash: gy6UGX1qMyRbOlVvsX1HjsnNgf6/MCF+IksunPM2xU0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:12:25:9f:9b:30:a2:72:66:6f:fa:af:f3:b0:17:7e:9e:ff:e3:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Validity Not Before: Dec 6 11:17:00 2025 GMT Not After : Dec 9 16:55:00 2025 GMT Subject: CN=B593E9B2F3146724D9BC2A9EDB2BE80464891DCA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:72:36:86:ec:3e:3b:fe:da:ef:fd:12:d9:70: 1a:5c:1b:67:f2:e8:73:40:1f:89:b7:ed:d7:30:99: c6:19:ae:fb:88:64:28:28:3d:ca:d9:88:c5:2f:18: d7:ec:60:d1:78:96:07:11:cf:90:26:82:08:c9:4a: 27:7f:d1:8f:e8:c1:66:c3:f2:a8:9b:3d:d4:fc:7e: df:dc:3c:d4:47:9b:4f:8c:b1:f9:55:3b:26:6a:03: b5:96:d4:71:f7:46:aa:00:bf:9a:cf:07:c8:c1:3c: 86:86:c4:2c:b6:04:05:93:bf:d1:f2:32:00:a0:31: 9e:bb:92:99:a3:a0:50:8f:aa:4f:82:8e:cd:c3:88: 79:62:36:e3:25:1d:af:2b:db:f0:47:ce:0d:98:44: 06:28:7d:d6:18:1c:36:42:03:5c:a3:30:82:d2:29: 98:00:8c:73:6d:ce:e9:cf:d2:5a:d4:3a:b7:5f:19: 6d:b5:d6:f1:8a:54:ae:19:95:ac:c4:23:75:05:b2: 71:12:7f:40:cb:21:be:5b:37:bd:27:ca:4d:d0:6a: a4:23:87:b4:0b:d6:02:ce:c7:ca:1a:dd:2a:78:23: aa:f4:c2:56:d2:1e:3c:1b:df:e9:49:78:e5:c1:88: 77:59:7a:19:b3:07:97:a1:4f:a2:35:9f:b7:4c:ff: 64:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:93:E9:B2:F3:14:67:24:D9:BC:2A:9E:DB:2B:E8:04:64:89:1D:CA X509v3 Authority Key Identifier: keyid:DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 12:bc:c9:86:44:97:c4:1e:fa:aa:d6:4e:c9:38:67:c5:34:58: 1a:9e:07:0d:a8:c9:36:c4:6e:bd:69:34:8f:09:d0:d1:4c:a0: 3b:89:ec:c2:0c:9b:6b:f1:6d:6f:34:b6:9d:09:0e:3c:32:17: dd:cc:1d:64:33:69:85:4b:f0:71:34:50:47:1e:bd:ec:54:51: b3:80:b8:fe:a5:a8:76:62:6a:d3:50:17:89:45:1f:a7:57:b8: 86:60:e4:d3:e5:16:3b:50:78:fa:38:7d:91:01:01:6b:ea:03: 92:54:59:72:8f:1f:ad:28:a4:1d:a4:c6:c5:15:2b:a3:18:71: 49:e1:56:74:5b:c7:0f:a5:9e:4e:be:9f:6e:07:0f:42:c8:f3: 42:75:3b:d2:0a:3c:26:d9:bc:28:46:e4:b9:1e:86:ec:2a:74: da:e8:38:5f:aa:da:f2:55:9a:2e:83:bb:b3:a8:d2:e6:fc:16: 4f:4a:21:bf:76:d1:cd:d3:ea:77:c7:98:55:55:f0:0b:a8:f6: a7:4a:23:78:3e:c4:84:71:e3:f3:cb:dc:31:65:44:e2:c2:f8: 29:55:18:ac:c9:95:c8:5c:fb:d9:80:3d:85:f3:ec:45:bb:b4: 78:0e:37:b2:19:b2:b6:4c:79:f4:25:41:dd:fb:11:9f:fd:46: 3b:4d:fd:59 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGBIln5swonJmb/qv87AXfp7/45wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVC N0ExQUVGMjAeFw0yNTEyMDYxMTE3MDBaFw0yNTEyMDkxNjU1MDBaMDMxMTAvBgNV BAMTKEI1OTNFOUIyRjMxNDY3MjREOUJDMkE5RURCMkJFODA0NjQ4OTFEQ0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCocjaG7D47/trv/RLZcBpcG2fy 6HNAH4m37dcwmcYZrvuIZCgoPcrZiMUvGNfsYNF4lgcRz5AmggjJSid/0Y/owWbD 8qibPdT8ft/cPNRHm0+MsflVOyZqA7WW1HH3RqoAv5rPB8jBPIaGxCy2BAWTv9Hy MgCgMZ67kpmjoFCPqk+Cjs3DiHliNuMlHa8r2/BHzg2YRAYofdYYHDZCA1yjMILS KZgAjHNtzunP0lrUOrdfGW211vGKVK4ZlazEI3UFsnESf0DLIb5bN70nyk3QaqQj h7QL1gLOx8oa3Sp4I6r0wlbSHjwb3+lJeOXBiHdZehmzB5ehT6I1n7dM/2T7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtZPpsvMUZyTZvCqe2yvoBGSJHcowHwYDVR0j BBgwFoAU3xmUnOF9wRbnt8IkjJM0BbehrvIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMC9ERjE5OTQ5Q0Ux N0RDMTE2RTdCN0MyMjQ4QzkzMzQwNUI3QTFBRUYyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0MDVCN0Ex QUVGMi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FlZjc4NmItNjIyNi00NGFmLTg1 MmQtMWZiMDQ1YzRkZWIzLzAvREYxOTk0OUNFMTdEQzExNkU3QjdDMjI0OEM5MzM0 MDVCN0ExQUVGMi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABK8yYZEl8Qe+qrWTsk4Z8U0WBqeBw2oyTbE br1pNI8J0NFMoDuJ7MIMm2vxbW80tp0JDjwyF93MHWQzaYVL8HE0UEcevexUUbOA uP6lqHZiatNQF4lFH6dXuIZg5NPlFjtQePo4fZEBAWvqA5JUWXKPH60opB2kxsUV K6MYcUnhVnRbxw+lnk6+n24HD0LI80J1O9IKPCbZvChG5LkehuwqdNroOF+q2vJV mi6Du7Oo0ub8Fk9KIb920c3T6nfHmFVV8Auo9qdKI3g+xIRx4/PL3DFlROLC+ClV GKzJlchc+9mAPYXz7EW7tHgON7IZsrZMefQlQd37EZ/9RjtN/Vk= -----END CERTIFICATE-----Generated at Sun Dec 7 01:46:27 2025 by rpki-client