This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft File: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft (raw, json) Hash identifier: k7cz5y4Q6FjlDXiXTc4va34bkpO/uqIjjK5995Sg2XI= Subject key identifier: 6E:07:E0:D3:66:85:22:BC:F0:B3:F5:03:3E:26:CF:51:63:C4:46:E5 Authority key identifier: 68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 Certificate issuer: /CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Certificate serial: 19442557E152628AAC5169C9A381134C14AFA9D1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft Manifest number: 0494 Signing time: Fri 05 Dec 2025 20:11:05 +0000 Manifest this update: Fri 05 Dec 2025 20:06:05 +0000 Manifest next update: Tue 09 Dec 2025 07:42:05 +0000 Files and hashes: 1: 3130332e3136312e3131312e302f32342d3234203d3e20313431363135.roa (hash: g4MCHQFO3MQThoyM2TjwQb6nRcwAjTBYmahYDBr6bho=) 2: 3130332e3136312e3131302e302f32342d3234203d3e20313431363135.roa (hash: LmeqzYeHbwqjRvKuIbroVaXCpVEz8bLJBtycTcCFJu4=) 3: 68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl (hash: eVPZAQr+dUuP6mUKuLc7+Oz92ssFB2ohCYK249YVVfA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 07:42:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:44:25:57:e1:52:62:8a:ac:51:69:c9:a3:81:13:4c:14:af:a9:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68D5782FBADB914CFD74AE28DA59784A5AAEAAF8 Validity Not Before: Dec 5 20:06:05 2025 GMT Not After : Dec 9 07:42:05 2025 GMT Subject: CN=6E07E0D3668522BCF0B3F5033E26CF5163C446E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c7:7e:5f:66:59:05:9c:59:af:4a:bc:5d:eb: 95:11:d0:9c:c5:7f:40:ee:67:a8:e1:08:73:c3:26: 8d:b7:2d:9a:c2:e7:b6:25:a6:64:19:94:b3:9e:60: 55:7d:c6:a5:aa:d5:8b:a2:24:52:68:cc:1b:89:cf: 38:f4:a8:8f:fb:1d:5f:89:a8:65:5b:db:f0:20:2a: 78:46:0a:b9:d9:bf:cb:66:30:2e:ce:d7:78:ec:df: a1:92:2b:0a:e4:60:35:46:15:56:06:84:2a:d9:b2: 42:be:ec:17:7f:8d:84:ab:bc:8e:50:81:22:63:36: 48:03:9c:68:18:1a:54:76:74:b2:62:65:3c:75:26: c8:ab:ac:15:6e:a8:d1:b8:94:5a:60:45:11:43:88: 9f:76:d5:a5:f2:a5:98:e3:6d:f0:6e:c4:65:50:33: 7c:25:1e:61:90:70:14:39:da:6b:17:69:4a:4e:7d: e3:39:79:3c:e0:92:4f:ac:52:5d:1a:81:ba:94:6a: 72:07:5c:5f:d6:4b:0c:41:26:0a:41:5e:50:34:1b: b3:e3:c8:16:9d:57:7c:75:e7:da:fd:e4:f5:f8:fc: d6:cc:e2:f4:64:8c:07:6c:6d:a1:5e:5c:1d:c0:40: 1d:b8:2a:2a:47:64:7d:60:4b:5b:2b:7a:e0:52:86: 39:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:07:E0:D3:66:85:22:BC:F0:B3:F5:03:3E:26:CF:51:63:C4:46:E5 X509v3 Authority Key Identifier: keyid:68:D5:78:2F:BA:DB:91:4C:FD:74:AE:28:DA:59:78:4A:5A:AE:AA:F8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3f408e44-3e9c-45e5-bca4-5dfbd4b27130/0/68D5782FBADB914CFD74AE28DA59784A5AAEAAF8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 63:49:d6:00:3e:84:16:9c:ab:20:5b:37:01:e8:fe:73:c2:e8: 66:d0:7e:8f:d5:36:d5:e8:3a:b0:9f:3a:e4:0a:ad:37:dc:2a: 26:17:87:02:f3:5b:9a:b8:b0:b3:49:e6:e1:bd:ba:2c:0e:ed: 5b:94:4d:3c:26:43:99:b2:78:14:83:a2:f3:24:ae:84:cc:53: ca:42:13:ad:20:cf:4b:56:61:18:2f:05:ac:e7:09:f7:e0:45: 5d:2d:8b:7e:bd:50:61:0a:7d:7a:8b:55:c8:62:5c:cd:7a:ac: d7:3e:36:65:80:91:ed:e5:57:c0:98:42:0d:1b:18:5b:b5:bc: 35:8a:21:bd:85:8b:65:c0:62:51:bb:7d:4b:d2:0e:e1:90:ed: c8:76:24:04:8b:fd:20:2b:a5:42:b3:ed:04:85:44:a8:71:7d: d3:f2:1f:fc:71:e0:f7:4e:da:cb:85:0b:fe:2e:d8:33:c8:44: 43:75:73:69:82:bb:20:eb:ec:12:4c:fa:7c:5e:4e:d2:d9:d5: 17:d2:3f:fa:4b:5b:f1:5a:69:13:87:99:19:8f:ff:bb:8b:b8: 74:33:c1:11:49:22:75:c9:7b:af:c9:9a:3c:f0:b6:23:99:71: 48:0f:3c:93:07:d4:c1:31:2d:b8:3d:32:52:16:e6:6c:89:df: 5e:21:6f:06 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGUQlV+FSYoqsUWnJo4ETTBSvqdEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1 QUFFQUFGODAeFw0yNTEyMDUyMDA2MDVaFw0yNTEyMDkwNzQyMDVaMDMxMTAvBgNV BAMTKDZFMDdFMEQzNjY4NTIyQkNGMEIzRjUwMzNFMjZDRjUxNjNDNDQ2RTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9x35fZlkFnFmvSrxd65UR0JzF f0DuZ6jhCHPDJo23LZrC57YlpmQZlLOeYFV9xqWq1YuiJFJozBuJzzj0qI/7HV+J qGVb2/AgKnhGCrnZv8tmMC7O13js36GSKwrkYDVGFVYGhCrZskK+7Bd/jYSrvI5Q gSJjNkgDnGgYGlR2dLJiZTx1JsirrBVuqNG4lFpgRRFDiJ921aXypZjjbfBuxGVQ M3wlHmGQcBQ52msXaUpOfeM5eTzgkk+sUl0agbqUanIHXF/WSwxBJgpBXlA0G7Pj yBadV3x159r95PX4/NbM4vRkjAdsbaFeXB3AQB24KipHZH1gS1sreuBShjnjAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbgfg02aFIrzws/UDPibPUWPERuUwHwYDVR0j BBgwFoAUaNV4L7rbkUz9dK4o2ll4SlquqvgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZjQwOGU0NC0zZTljLTQ1ZTUtYmNhNC01ZGZiZDRiMjcxMzAvMC82OEQ1NzgyRkJB REI5MTRDRkQ3NEFFMjhEQTU5Nzg0QTVBQUVBQUY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4NEE1QUFF QUFGOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2Y0MDhlNDQtM2U5Yy00NWU1LWJj YTQtNWRmYmQ0YjI3MTMwLzAvNjhENTc4MkZCQURCOTE0Q0ZENzRBRTI4REE1OTc4 NEE1QUFFQUFGOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGNJ1gA+hBacqyBbNwHo/nPC6GbQfo/VNtXo OrCfOuQKrTfcKiYXhwLzW5q4sLNJ5uG9uiwO7VuUTTwmQ5myeBSDovMkroTMU8pC E60gz0tWYRgvBaznCffgRV0ti369UGEKfXqLVchiXM16rNc+NmWAke3lV8CYQg0b GFu1vDWKIb2Fi2XAYlG7fUvSDuGQ7ch2JASL/SArpUKz7QSFRKhxfdPyH/xx4PdO 2suFC/4u2DPIREN1c2mCuyDr7BJM+nxeTtLZ1RfSP/pLW/FaaROHmRmP/7uLuHQz wRFJInXJe6/JmjzwtiOZcUgPPJMH1MExLbg9MlIW5myJ314hbwY= -----END CERTIFICATE-----Generated at Sun Dec 7 02:09:18 2025 by rpki-client