This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft (raw, json) Hash identifier: yjUfoJKYUC/Ixaw7za7ry4JGmbtrVZAlCfOpsOGKvGQ= Subject key identifier: 9F:A1:35:B8:B8:DF:29:AA:8E:44:C9:4F:BC:91:2B:AC:9C:D1:A3:84 Authority key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Certificate issuer: /CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Certificate serial: 4A035CF69D7E5A88165825FCC2A4D86026F6EBF2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject info access: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft Manifest number: 0232 Signing time: Sat 06 Dec 2025 00:21:34 +0000 Manifest this update: Sat 06 Dec 2025 00:16:34 +0000 Manifest next update: Tue 09 Dec 2025 09:11:34 +0000 Files and hashes: 1: 3130332e3138392e3131392e302f32342d3234203d3e20313439383833.roa (hash: CeJsPXYZaSv3nt0/slveGAtFgQcdV+Sze89sGyxFRnw=) 2: 3130332e3138392e3131382e302f32332d3233203d3e20313439383833.roa (hash: N0XCMCw3s4kIWnX0GxZG8K7vrea02I3zr3x0DohynM4=) 3: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl (hash: nMYbuGPtksOh8OAGNnAdqc2ptZJohVvB29tDupgO3cA=) 4: 3130332e3138392e3131382e302f32342d3234203d3e20313439383833.roa (hash: D9RmffxIYaHEobvTe2y7ZZC1r4KqpQ5ll315JKMW8os=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 09:11:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:03:5c:f6:9d:7e:5a:88:16:58:25:fc:c2:a4:d8:60:26:f6:eb:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Validity Not Before: Dec 6 00:16:34 2025 GMT Not After : Dec 9 09:11:34 2025 GMT Subject: CN=9FA135B8B8DF29AA8E44C94FBC912BAC9CD1A384 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e5:c8:35:8e:80:0e:19:7a:93:3f:88:c1:2c: 2f:94:b0:13:0a:09:e1:db:75:6d:b8:5e:d4:65:2b: 70:25:c9:6b:84:0e:64:a0:0d:0e:06:81:ae:51:7f: 0d:c2:45:25:7c:36:8c:8c:97:29:ba:cb:93:98:ab: ea:00:2c:13:14:97:5d:be:fc:39:f1:96:22:5d:01: 50:9d:a1:b2:1b:90:29:25:e8:51:dc:84:96:ea:c6: 14:e0:a8:20:02:b7:22:2d:67:97:04:13:6b:2a:de: 68:66:ee:e9:0f:6c:9a:af:8f:82:20:33:34:ef:80: 57:02:d8:8b:78:fc:c4:6a:3c:ac:b3:7f:f7:19:5b: f0:8a:33:62:04:ad:d1:72:b9:97:52:43:e6:19:06: db:78:26:a7:90:5e:58:66:81:dc:ba:ad:3e:01:f7: ba:1b:18:e3:7a:0b:e0:88:17:d7:25:e8:8b:9e:33: 8c:74:85:fe:8b:9a:45:16:4f:18:32:af:a7:2e:70: ad:df:f0:73:e6:c2:c1:29:43:fc:8b:9b:d2:b2:6b: 88:36:20:98:f0:a7:a6:59:1b:99:8e:7d:20:d2:d2: 27:cf:00:c3:2d:ae:af:89:4e:f7:23:f7:e0:59:9a: 9e:0a:df:d3:ca:f7:da:d1:34:a4:12:cd:a7:50:9c: 0c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:A1:35:B8:B8:DF:29:AA:8E:44:C9:4F:BC:91:2B:AC:9C:D1:A3:84 X509v3 Authority Key Identifier: keyid:BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0e:29:e4:e6:a6:1d:a5:13:a7:23:75:c8:c5:d3:55:62:16:a2: b0:a2:43:a4:b6:e5:03:0a:ff:5d:d6:9e:7d:54:86:9f:92:b8: 12:74:28:a5:9c:18:25:9d:b4:a1:db:88:94:3e:8c:b2:0a:54: 85:aa:e0:3c:a0:bc:52:ab:1c:b4:bb:74:97:0e:69:9c:8d:b4: 24:b0:a5:9d:48:52:c5:59:54:82:b3:b6:df:5f:7c:01:09:84: a0:41:4b:c3:bf:31:e5:6d:ba:e9:0d:5b:a4:b1:88:e6:2d:45: 61:f9:a7:8f:c6:ff:95:42:0d:a2:32:bb:76:3f:45:8d:fe:cf: 5e:04:65:96:be:ea:23:ce:69:2b:78:e0:52:5e:a7:0e:23:bf: ec:a9:6e:6e:0d:53:7e:f0:ab:45:5e:a3:bd:01:fe:6a:f2:b2: 57:c9:7a:28:7f:75:32:8b:34:b0:14:52:62:32:5f:20:ac:64: f6:e5:d2:37:b1:76:eb:5d:c8:cd:ad:e7:08:08:83:d5:d6:06: 82:df:58:b9:48:88:6f:df:d3:38:38:d7:f8:3f:a8:73:fc:11: 79:53:62:a7:93:5d:21:3f:e0:a0:c5:06:b8:15:15:b9:e4:f0: 36:96:30:05:c1:6b:cc:c1:32:8c:bf:89:b6:a2:bf:87:87:d3: ca:da:31:ec -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUSgNc9p1+WogWWCX8wqTYYCb26/IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQx OEMzRUE3MzAeFw0yNTEyMDYwMDE2MzRaFw0yNTEyMDkwOTExMzRaMDMxMTAvBgNV BAMTKDlGQTEzNUI4QjhERjI5QUE4RTQ0Qzk0RkJDOTEyQkFDOUNEMUEzODQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp5cg1joAOGXqTP4jBLC+UsBMK CeHbdW24XtRlK3AlyWuEDmSgDQ4Gga5Rfw3CRSV8NoyMlym6y5OYq+oALBMUl12+ /DnxliJdAVCdobIbkCkl6FHchJbqxhTgqCACtyItZ5cEE2sq3mhm7ukPbJqvj4Ig MzTvgFcC2It4/MRqPKyzf/cZW/CKM2IErdFyuZdSQ+YZBtt4JqeQXlhmgdy6rT4B 97obGON6C+CIF9cl6IueM4x0hf6LmkUWTxgyr6cucK3f8HPmwsEpQ/yLm9Kya4g2 IJjwp6ZZG5mOfSDS0ifPAMMtrq+JTvcj9+BZmp4K39PK99rRNKQSzadQnAz3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUn6E1uLjfKaqORMlPvJErrJzRo4QwHwYDVR0j BBgwFoAUusgqTVWzaPSNgL4EXg9KhBjD6nMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMC9CQUM4MkE0RDU1 QjM2OEY0OEQ4MEJFMDQ1RTBGNEE4NDE4QzNFQTczLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRBODQxOEMz RUE3My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDNhZDUyMjYtNjU2ZC00NjFkLTlj ZmYtYzgzYWMwNzQyZjIwLzAvQkFDODJBNEQ1NUIzNjhGNDhEODBCRTA0NUUwRjRB ODQxOEMzRUE3My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA4p5OamHaUTpyN1yMXTVWIWorCiQ6S25QMK /13Wnn1Uhp+SuBJ0KKWcGCWdtKHbiJQ+jLIKVIWq4DygvFKrHLS7dJcOaZyNtCSw pZ1IUsVZVIKztt9ffAEJhKBBS8O/MeVtuukNW6SxiOYtRWH5p4/G/5VCDaIyu3Y/ RY3+z14EZZa+6iPOaSt44FJepw4jv+ypbm4NU37wq0Veo70B/mryslfJeih/dTKL NLAUUmIyXyCsZPbl0jexdutdyM2t5wgIg9XWBoLfWLlIiG/f0zg41/g/qHP8EXlT YqeTXSE/4KDFBrgVFbnk8DaWMAXBa8zBMoy/ibaiv4eH08raMew= -----END CERTIFICATE-----Generated at Sat Dec 6 23:13:44 2025 by rpki-client