This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft File: 29692979765B670997413579D7BF5663C05BBD1A.mft (raw, json) Hash identifier: 1Z6lbRJ95P9wrcEsbC3aINulZ885fJ573iaUtOabQrQ= Subject key identifier: E6:01:97:B5:F5:B9:97:5E:C6:6F:C8:A4:2C:AF:ED:93:7D:26:B5:44 Authority key identifier: 29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A Certificate issuer: /CN=29692979765B670997413579D7BF5663C05BBD1A Certificate serial: 3E6C02F6B8C4A9A54E58AFFDD80F23A5A26B4F29 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft Manifest number: 0264 Signing time: Fri 05 Dec 2025 22:01:07 +0000 Manifest this update: Fri 05 Dec 2025 21:56:07 +0000 Manifest next update: Tue 09 Dec 2025 07:03:07 +0000 Files and hashes: 1: 34352e3235312e37322e302f32322d3234203d3e20313331373131.roa (hash: wQ45tmfAW0vTrcP1CHqdkU4kV8VsIFLIOnBtD5fu+LU=) 2: 3130332e392e3132342e302f32322d3234203d3e20313331373131.roa (hash: gJ4+RIzMU3sNK8zgeNrc/IFATPDJCmEd1aztpgZm3dA=) 3: 29692979765B670997413579D7BF5663C05BBD1A.crl (hash: rWJxdQ0F1iHgvr8FMFdOI0Wk9+RRvPkFAQ3yiWzSqCA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 07:03:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:6c:02:f6:b8:c4:a9:a5:4e:58:af:fd:d8:0f:23:a5:a2:6b:4f:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=29692979765B670997413579D7BF5663C05BBD1A Validity Not Before: Dec 5 21:56:07 2025 GMT Not After : Dec 9 07:03:07 2025 GMT Subject: CN=E60197B5F5B9975EC66FC8A42CAFED937D26B544 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:31:98:b8:28:79:1b:32:5a:97:be:d1:3e:55: f7:24:ca:25:d6:51:92:47:12:49:c5:8f:ae:2c:e1: 97:5b:a6:ef:05:43:4b:11:09:86:68:d3:98:49:46: ee:92:6f:ba:c3:26:d5:cf:8d:fb:04:7f:fa:24:b3: 22:63:2e:6f:86:97:f4:6e:69:d7:00:53:97:1b:bb: fd:28:e7:71:b5:32:48:65:58:9a:d4:1b:6f:08:bb: 83:a9:a4:d2:ff:7f:f6:7c:37:39:dd:a0:ba:ce:50: 31:6f:35:ab:b8:fb:c6:35:ca:c9:2f:0d:1a:2e:04: 2b:fd:1b:f0:f0:12:16:c7:eb:ad:ac:20:77:d2:a0: e9:dd:34:39:32:7c:f0:08:b8:62:cf:e3:7f:64:11: 93:31:18:d9:a0:d1:81:1b:13:b1:cc:3b:2c:10:a0: 8d:9a:46:7a:99:43:07:6b:1e:b1:6e:a7:ea:cf:d8: 06:1d:d4:bf:e0:b2:ce:9b:4c:67:5f:13:47:53:a8: 36:f7:cd:e3:85:2b:75:20:b2:5e:de:99:9b:6d:13: 8c:c7:35:50:d2:63:81:40:25:b7:57:96:00:62:1b: 74:62:41:20:30:b3:0c:94:48:fb:57:65:df:13:7b: 89:dd:f0:0b:07:67:ec:8f:9c:c3:46:61:20:a9:73: 65:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:01:97:B5:F5:B9:97:5E:C6:6F:C8:A4:2C:AF:ED:93:7D:26:B5:44 X509v3 Authority Key Identifier: keyid:29:69:29:79:76:5B:67:09:97:41:35:79:D7:BF:56:63:C0:5B:BD:1A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/29692979765B670997413579D7BF5663C05BBD1A.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3b0a11b5-9441-4cc9-a672-be9799b65520/0/29692979765B670997413579D7BF5663C05BBD1A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:07:c2:a9:c9:ff:5f:c0:03:df:ae:1f:44:3e:b1:34:db:45: b7:ed:f0:bd:15:11:d0:4e:9e:96:b2:f6:41:5d:ff:38:c3:2f: 30:fc:ff:e3:39:85:ca:ea:7e:65:1d:24:2c:d2:2f:fc:30:41: c5:24:76:8b:66:ae:7e:9d:85:df:8b:f2:20:dd:c9:fb:89:d0: d6:9d:de:30:0f:f5:34:15:b5:43:d6:03:54:68:47:f8:7c:5c: e6:6b:3a:12:0d:64:7b:5d:a3:33:cd:39:b8:56:6e:62:1e:fc: 84:3f:29:ba:a2:25:67:10:2f:91:6a:72:32:b1:c8:fb:14:b2: d3:7f:e1:2d:50:f6:63:1a:0a:f4:25:b4:70:e0:44:3b:6a:1f: a4:2f:04:0e:8b:65:36:72:24:69:35:42:aa:2e:20:ba:be:ec: cb:04:c9:4e:5f:d4:b1:f3:e3:68:16:c3:ee:75:f2:c4:c5:79: 53:82:8a:4e:5a:85:bf:d3:88:b4:56:e5:7b:56:d5:66:a7:2b: 14:0a:54:02:54:15:13:55:62:33:b3:3e:b9:ea:66:47:7d:a6: a4:83:da:8d:83:7f:de:26:6f:ba:ba:2a:ad:06:5a:21:19:1d: 28:4b:47:a3:84:d4:d2:bb:14:30:9b:40:04:d1:ad:a1:a8:b6: 5e:79:9a:96 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPmwC9rjEqaVOWK/92A8jpaJrTykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjND MDVCQkQxQTAeFw0yNTEyMDUyMTU2MDdaFw0yNTEyMDkwNzAzMDdaMDMxMTAvBgNV BAMTKEU2MDE5N0I1RjVCOTk3NUVDNjZGQzhBNDJDQUZFRDkzN0QyNkI1NDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDAMZi4KHkbMlqXvtE+VfckyiXW UZJHEknFj64s4Zdbpu8FQ0sRCYZo05hJRu6Sb7rDJtXPjfsEf/oksyJjLm+Gl/Ru adcAU5cbu/0o53G1MkhlWJrUG28Iu4OppNL/f/Z8NzndoLrOUDFvNau4+8Y1yskv DRouBCv9G/DwEhbH662sIHfSoOndNDkyfPAIuGLP439kEZMxGNmg0YEbE7HMOywQ oI2aRnqZQwdrHrFup+rP2AYd1L/gss6bTGdfE0dTqDb3zeOFK3Ugsl7emZttE4zH NVDSY4FAJbdXlgBiG3RiQSAwswyUSPtXZd8Te4nd8AsHZ+yPnMNGYSCpc2UJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5gGXtfW5l17Gb8ikLK/tk30mtUQwHwYDVR0j BBgwFoAUKWkpeXZbZwmXQTV5179WY8BbvRowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YjBhMTFiNS05NDQxLTRjYzktYTY3Mi1iZTk3OTliNjU1MjAvMC8yOTY5Mjk3OTc2 NUI2NzA5OTc0MTM1NzlEN0JGNTY2M0MwNUJCRDFBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2NjNDMDVC QkQxQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2IwYTExYjUtOTQ0MS00Y2M5LWE2 NzItYmU5Nzk5YjY1NTIwLzAvMjk2OTI5Nzk3NjVCNjcwOTk3NDEzNTc5RDdCRjU2 NjNDMDVCQkQxQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACgHwqnJ/1/AA9+uH0Q+sTTbRbft8L0VEdBO npay9kFd/zjDLzD8/+M5hcrqfmUdJCzSL/wwQcUkdotmrn6dhd+L8iDdyfuJ0Nad 3jAP9TQVtUPWA1RoR/h8XOZrOhINZHtdozPNObhWbmIe/IQ/KbqiJWcQL5FqcjKx yPsUstN/4S1Q9mMaCvQltHDgRDtqH6QvBA6LZTZyJGk1QqouILq+7MsEyU5f1LHz 42gWw+518sTFeVOCik5ahb/TiLRW5XtW1WanKxQKVAJUFRNVYjOzPrnqZkd9pqSD 2o2Df94mb7q6Kq0GWiEZHShLR6OE1NK7FDCbQATRraGotl55mpY= -----END CERTIFICATE-----Generated at Sun Dec 7 02:50:40 2025 by rpki-client