This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft File: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft (raw, json) Hash identifier: JkK78vo6PtNxpj0t7zeaH+DD2nBJEllyOueRlgb245c= Subject key identifier: 26:7A:E0:89:F6:F0:2B:35:CA:7A:61:EF:2C:77:F0:80:07:9F:E2:CC Authority key identifier: 9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B Certificate issuer: /CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Certificate serial: 4931C7F33732E6CA602410A4EAF807EAB7D9B235 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft Manifest number: 01E8 Signing time: Fri 05 Dec 2025 20:52:13 +0000 Manifest this update: Fri 05 Dec 2025 20:47:13 +0000 Manifest next update: Tue 09 Dec 2025 07:04:13 +0000 Files and hashes: 1: 9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl (hash: Qkp32PLjfEBpmze1QGJ3Dyn2q3T2+ZADOxfnF80+gw8=) 2: 3130332e33392e37302e302f32342d3234203d3e20313530323734.roa (hash: n9HiNkJ52DbLxZISXERFZtFdqx3265M08OZ/zKtOVYU=) 3: 3130332e33392e37312e302f32342d3234203d3e20313530323734.roa (hash: vX/A9y9l7mDzRfDBjuCxoiwVgHmV7OjNWsTWxTukflI=) 4: 3130332e33392e37302e302f32332d3233203d3e20313530323734.roa (hash: Na4r9r8nnow4eud4P32zyb2HwE34kjIncW5/HOVTmbY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 07:04:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:31:c7:f3:37:32:e6:ca:60:24:10:a4:ea:f8:07:ea:b7:d9:b2:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B Validity Not Before: Dec 5 20:47:13 2025 GMT Not After : Dec 9 07:04:13 2025 GMT Subject: CN=267AE089F6F02B35CA7A61EF2C77F080079FE2CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:a7:e5:5b:73:f6:ab:ca:a3:b6:67:b9:36: 92:14:0e:20:fd:94:8a:b7:a2:5a:3d:b3:ef:7d:43: 08:fc:2f:dd:42:d6:7f:96:3f:b3:38:12:35:5e:12: f4:82:ef:a4:a7:d6:e2:7c:97:cb:5e:e0:63:c1:56: cd:0b:7f:de:ec:0a:45:77:44:f3:9c:04:8c:2f:eb: 46:73:ad:e0:fe:6a:fe:1c:92:25:6a:6b:0a:a2:f6: a3:1c:3f:2d:8c:88:52:8c:51:a3:05:aa:88:fd:02: 8a:66:90:c1:f2:91:ea:e4:70:e2:9a:ce:d0:22:a4: 82:6d:b2:c2:fe:0b:b7:07:22:83:44:40:78:d2:d1: fc:b8:c1:67:9c:68:c6:32:c5:c4:52:5e:3a:9b:7b: b5:0f:4c:27:22:d5:76:af:a8:16:fa:5f:d8:b7:a8: 35:e3:53:73:a2:01:80:33:64:0f:9c:45:31:1a:70: b8:cc:e2:db:55:e6:5f:55:b2:be:48:d3:5c:67:9c: d0:87:5b:2c:a2:31:41:03:ab:6b:e9:6d:20:99:93: 35:71:8c:62:52:40:34:3d:92:34:1e:81:cb:ff:c6: e9:bc:b3:62:61:38:b3:84:42:84:26:54:1f:1a:17: 47:b4:cc:fc:03:ee:07:43:4e:52:ff:28:ef:41:c0: 44:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:7A:E0:89:F6:F0:2B:35:CA:7A:61:EF:2C:77:F0:80:07:9F:E2:CC X509v3 Authority Key Identifier: keyid:9F:FC:46:BA:A3:F1:95:22:AF:5B:DD:60:DF:7D:E9:2E:94:F5:AB:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e57d543-baf0-4348-8857-3d2601c3a803/0/9FFC46BAA3F19522AF5BDD60DF7DE92E94F5AB7B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 65:72:1c:9f:eb:07:4f:78:fe:87:b7:e6:c4:1e:25:cb:59:6d: da:e7:69:07:09:d7:73:a7:16:c1:89:0e:bb:fd:9c:43:54:f4: e0:8f:fd:97:79:bc:37:6a:7a:0a:81:a4:36:86:38:b1:7f:3c: ae:57:4d:6a:25:8a:c3:ae:99:fb:2a:53:b3:fc:e9:48:e4:04: dc:f4:f8:e3:32:b2:20:db:38:ad:40:e8:b7:91:4d:40:72:ca: 17:e0:cb:f4:50:f1:8a:be:ae:44:33:79:40:bf:2c:06:fe:e0: 47:3d:43:74:75:59:af:ab:d7:8f:ea:64:c3:df:66:b4:5a:33: 20:64:85:41:ec:b0:3d:30:ac:27:4d:7e:ed:3b:e9:66:a1:6e: 80:99:dd:32:5b:b8:fc:a1:ed:d1:d9:4a:b1:fc:11:47:81:b4: 7d:d0:bf:96:8c:3e:f0:ee:09:4a:07:68:e1:39:af:10:c3:55: b7:6f:fe:79:7b:20:fc:b1:29:fc:4d:b0:db:d3:d5:1e:25:5b: 38:d6:9e:e1:ca:67:99:d8:2f:26:dc:c3:0c:fc:63:c5:bf:b5: fa:df:e1:7f:c0:9f:3f:00:65:c4:3e:0c:d3:0d:f3:39:9f:9f: 57:aa:73:89:15:9e:d2:2a:1c:cc:77:85:0a:47:7d:bb:ea:d0: 91:19:38:4b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSTHH8zcy5spgJBCk6vgH6rfZsjUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5 NEY1QUI3QjAeFw0yNTEyMDUyMDQ3MTNaFw0yNTEyMDkwNzA0MTNaMDMxMTAvBgNV BAMTKDI2N0FFMDg5RjZGMDJCMzVDQTdBNjFFRjJDNzdGMDgwMDc5RkUyQ0MwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMeKflW3P2q8qjtme5NpIUDiD9 lIq3olo9s+99Qwj8L91C1n+WP7M4EjVeEvSC76Sn1uJ8l8te4GPBVs0Lf97sCkV3 RPOcBIwv60ZzreD+av4ckiVqawqi9qMcPy2MiFKMUaMFqoj9AopmkMHykerkcOKa ztAipIJtssL+C7cHIoNEQHjS0fy4wWecaMYyxcRSXjqbe7UPTCci1XavqBb6X9i3 qDXjU3OiAYAzZA+cRTEacLjM4ttV5l9Vsr5I01xnnNCHWyyiMUEDq2vpbSCZkzVx jGJSQDQ9kjQegcv/xum8s2JhOLOEQoQmVB8aF0e0zPwD7gdDTlL/KO9BwERHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUJnrgifbwKzXKemHvLHfwgAef4swwHwYDVR0j BBgwFoAUn/xGuqPxlSKvW91g333pLpT1q3swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTU3ZDU0My1iYWYwLTQzNDgtODg1Ny0zZDI2MDFjM2E4MDMvMC85RkZDNDZCQUEz RjE5NTIyQUY1QkRENjBERjdERTkyRTk0RjVBQjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5MkU5NEY1 QUI3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2U1N2Q1NDMtYmFmMC00MzQ4LTg4 NTctM2QyNjAxYzNhODAzLzAvOUZGQzQ2QkFBM0YxOTUyMkFGNUJERDYwREY3REU5 MkU5NEY1QUI3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGVyHJ/rB094/oe35sQeJctZbdrnaQcJ13On FsGJDrv9nENU9OCP/Zd5vDdqegqBpDaGOLF/PK5XTWolisOumfsqU7P86UjkBNz0 +OMysiDbOK1A6LeRTUByyhfgy/RQ8Yq+rkQzeUC/LAb+4Ec9Q3R1Wa+r14/qZMPf ZrRaMyBkhUHssD0wrCdNfu076WahboCZ3TJbuPyh7dHZSrH8EUeBtH3Qv5aMPvDu CUoHaOE5rxDDVbdv/nl7IPyxKfxNsNvT1R4lWzjWnuHKZ5nYLybcwwz8Y8W/tfrf 4X/Anz8AZcQ+DNMN8zmfn1eqc4kVntIqHMx3hQpHfbvq0JEZOEs= -----END CERTIFICATE-----Generated at Sat Dec 6 23:51:38 2025 by rpki-client