This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.mft (raw, json) Hash identifier: lo9VtiJT+Cg88UzRn8SYi61N+XUE7Xt+/+BLpygEcus= Subject key identifier: 6A:03:85:5B:CC:A6:C1:DB:54:3D:BF:4D:67:DF:75:EE:41:5A:7A:1E Authority key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Certificate issuer: /CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Certificate serial: 467B60C367AD64823CAD19EEDBC046795CBDA038 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft Manifest number: 02EB Signing time: Fri 05 Dec 2025 10:41:17 +0000 Manifest this update: Fri 05 Dec 2025 10:36:17 +0000 Manifest next update: Mon 08 Dec 2025 16:28:17 +0000 Files and hashes: 1: 3130332e3137362e34352e302f32342d3234203d3e20313437313238.roa (hash: QO9yzDb4CC7G7ZrOt9x3m3LlZY080vHY8ADNw1G145c=) 2: 3130332e3137362e34342e302f32332d3233203d3e20313437313238.roa (hash: QdIixnzSq8N8sCH+dxKebIKtXdrr8qVttS8Xci0wB7M=) 3: 024ABFF2959A6144CC4889C70F77F968FA410EF1.crl (hash: 8SAS/E8NOiFZDH2PpbfWpjh6I/fwzf/fewtBhh999D4=) 4: 3130332e3137362e34342e302f32342d3234203d3e20313437313238.roa (hash: Dc4qfVtP8INNtKjh1IR53nYnK3S3BQyGrJeyd5Z5XHM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 16:28:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:7b:60:c3:67:ad:64:82:3c:ad:19:ee:db:c0:46:79:5c:bd:a0:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Validity Not Before: Dec 5 10:36:17 2025 GMT Not After : Dec 8 16:28:17 2025 GMT Subject: CN=6A03855BCCA6C1DB543DBF4D67DF75EE415A7A1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f4:24:6a:bd:d3:1e:27:df:99:83:04:3a:49: e0:a9:b0:d7:38:40:7b:21:d4:dd:28:c1:4f:df:0c: 0e:b2:55:4b:fa:57:71:b8:87:16:8a:4a:f1:7f:31: b8:ba:d3:29:3c:2e:a8:13:7e:8f:26:47:b0:9f:a9: 96:d6:a5:8d:f6:d0:f5:a7:8a:8d:4c:a1:bc:3c:48: 74:a9:0a:e1:22:f2:72:6a:fb:d1:be:6f:2b:7c:76: 61:f5:c2:49:46:43:54:8a:5c:14:7e:4a:ab:d3:65: 8c:ab:ac:b2:80:0d:31:55:2b:f4:3a:09:6e:4c:13: 97:ca:b4:23:fe:66:a4:89:67:9e:ad:7d:e5:5a:43: 9f:b7:97:8e:ba:02:a7:91:4a:5e:cb:e2:70:4d:aa: 46:6b:83:76:5b:4f:ff:96:2c:1d:b2:21:91:c7:6b: bb:98:4c:da:6f:55:0a:2e:b9:cd:4e:ad:18:35:3d: 9b:17:2a:54:9f:6f:0c:9a:75:04:15:53:00:fb:92: cd:44:bb:e3:a3:87:30:f4:42:31:74:ea:9e:cf:88: 51:ae:18:39:fa:5e:1e:11:77:26:45:92:a8:cc:4b: a0:70:81:8f:ff:50:ff:5d:3e:47:3b:d8:68:2c:1e: 08:a4:f0:1d:68:15:80:30:57:c8:49:70:68:d7:56: f6:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:03:85:5B:CC:A6:C1:DB:54:3D:BF:4D:67:DF:75:EE:41:5A:7A:1E X509v3 Authority Key Identifier: keyid:02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 93:01:97:2f:12:53:d5:a6:51:c7:d5:ab:d4:a0:3b:99:bd:0c: 83:a8:83:74:85:6d:8b:6b:6f:8a:0f:1e:7c:ff:15:d3:16:7f: fa:41:6e:23:8c:ce:91:9e:5c:f8:f6:21:cc:05:16:c1:3e:cc: f7:bd:4e:e8:58:47:50:c3:2d:82:89:08:a9:ab:1f:26:d3:6c: 52:1e:ad:c1:01:10:86:53:2e:37:0f:a8:57:72:ee:cc:28:61: 8c:e2:a3:6f:29:bd:17:bf:26:6f:45:ff:51:b3:ae:43:f3:79: 39:eb:79:e1:16:a1:4a:e8:dd:cf:21:dd:a8:c6:ac:81:cc:0a: fd:2e:af:c1:b2:8a:b4:e6:18:81:4f:4e:4e:70:bb:44:46:be: aa:82:8a:5e:13:3d:46:f5:ab:eb:34:77:25:fd:60:40:79:db: d1:d4:5c:4d:49:b0:67:8c:cd:48:1f:95:87:75:a4:f7:82:a5: 52:02:15:a6:57:3f:a7:42:54:a8:b9:10:c3:59:c3:33:a2:2a: 11:a2:ab:69:00:6f:47:6b:c5:69:b8:89:e3:1b:61:89:93:ec: b2:04:79:4a:a5:5e:20:ff:86:38:13:d5:b8:96:32:ba:98:ef: 65:78:8f:b9:a4:7d:95:18:34:05:17:c1:fa:d6:5e:76:e0:5f: 6f:1c:61:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURntgw2etZII8rRnu28BGeVy9oDgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhG QTQxMEVGMTAeFw0yNTEyMDUxMDM2MTdaFw0yNTEyMDgxNjI4MTdaMDMxMTAvBgNV BAMTKDZBMDM4NTVCQ0NBNkMxREI1NDNEQkY0RDY3REY3NUVFNDE1QTdBMUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp9CRqvdMeJ9+ZgwQ6SeCpsNc4 QHsh1N0owU/fDA6yVUv6V3G4hxaKSvF/Mbi60yk8LqgTfo8mR7CfqZbWpY320PWn io1Mobw8SHSpCuEi8nJq+9G+byt8dmH1wklGQ1SKXBR+SqvTZYyrrLKADTFVK/Q6 CW5ME5fKtCP+ZqSJZ56tfeVaQ5+3l466AqeRSl7L4nBNqkZrg3ZbT/+WLB2yIZHH a7uYTNpvVQouuc1OrRg1PZsXKlSfbwyadQQVUwD7ks1Eu+OjhzD0QjF06p7PiFGu GDn6Xh4RdyZFkqjMS6BwgY//UP9dPkc72GgsHgik8B1oFYAwV8hJcGjXVvY7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUagOFW8ymwdtUPb9NZ9917kFaeh4wHwYDVR0j BBgwFoAUAkq/8pWaYUTMSInHD3f5aPpBDvEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMC8wMjRBQkZGMjk1 OUE2MTQ0Q0M0ODg5QzcwRjc3Rjk2OEZBNDEwRUYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5NjhGQTQx MEVGMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDMxYTk0MjYtM2MzNS00NzBlLWJm MzQtMzBlN2U0MTYwMmNiLzAvMDI0QUJGRjI5NTlBNjE0NENDNDg4OUM3MEY3N0Y5 NjhGQTQxMEVGMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJMBly8SU9WmUcfVq9SgO5m9DIOog3SFbYtr b4oPHnz/FdMWf/pBbiOMzpGeXPj2IcwFFsE+zPe9TuhYR1DDLYKJCKmrHybTbFIe rcEBEIZTLjcPqFdy7swoYYzio28pvRe/Jm9F/1GzrkPzeTnreeEWoUro3c8h3ajG rIHMCv0ur8GyirTmGIFPTk5wu0RGvqqCil4TPUb1q+s0dyX9YEB529HUXE1JsGeM zUgflYd1pPeCpVICFaZXP6dCVKi5EMNZwzOiKhGiq2kAb0drxWm4ieMbYYmT7LIE eUqlXiD/hjgT1biWMrqY72V4j7mkfZUYNAUXwfrWXnbgX28cYZc= -----END CERTIFICATE-----Generated at Sat Dec 6 23:51:14 2025 by rpki-client