This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft File: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft (raw, json) Hash identifier: sODoH/PxTbm61nbNVIQglVpF1UW6CyIA9szcy9Nav7A= Subject key identifier: 62:65:47:61:A4:D2:D3:41:6A:82:A4:86:65:29:22:75:C5:DB:D3:DF Authority key identifier: AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 Certificate issuer: /CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Certificate serial: 68EA9FB7FB070B9610F2AE25B06BFEDB6A8759A2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft Manifest number: 0202 Signing time: Sat 06 Dec 2025 14:21:46 +0000 Manifest this update: Sat 06 Dec 2025 14:16:46 +0000 Manifest next update: Wed 10 Dec 2025 01:33:46 +0000 Files and hashes: 1: 3130332e31372e3134332e302f32342d3234203d3e2039333431.roa (hash: 0GFIWUiUrqRfAE/w3eKveKOv4M+2LjJoosY6Pp8ypUc=) 2: AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl (hash: /CM+gXHrhvaAD4YtP6HjcKlOqYSHwjIXZbBAi3xD5jQ=) 3: 3130332e31372e3134322e302f32342d3234203d3e2039333431.roa (hash: aDPjpRT6pfd3T7ltNqLLQRA6RqqiOtEG5C4gW/hEaTI=) 4: 3130332e31372e3134322e302f32332d3233203d3e2039333431.roa (hash: 7zBTS0bU7PgzGa8PCcebIzMScdeyLBIAzKr1yoDxbbo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ea:9f:b7:fb:07:0b:96:10:f2:ae:25:b0:6b:fe:db:6a:87:59:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40 Validity Not Before: Dec 6 14:16:46 2025 GMT Not After : Dec 10 01:33:46 2025 GMT Subject: CN=62654761A4D2D3416A82A48665292275C5DBD3DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d2:75:dd:7a:08:2e:be:3e:90:03:26:55:0e: 68:b2:88:1b:3d:a9:43:94:d3:7c:ca:73:29:a6:ed: 63:cc:d6:3b:e9:ff:29:61:1d:dd:d0:92:db:c8:e2: 73:e9:32:44:e5:39:1e:a4:03:86:36:09:05:52:73: cb:d4:93:c0:c2:a0:b2:e2:ab:6f:7e:f4:6c:b8:8d: 83:e7:61:df:8e:91:a1:88:bd:29:c9:cb:22:49:8a: a2:60:eb:25:10:14:6d:37:8a:e2:01:73:85:a9:71: 36:fa:d9:5c:f7:5d:59:5c:e5:7f:9d:1f:1b:e6:6b: 82:61:45:e9:0e:72:a9:ab:a0:cf:4d:61:a2:0a:a6: 1c:a2:f5:fe:89:31:66:bc:67:4a:67:0b:bb:74:86: 1f:31:b6:96:fa:06:c5:ba:7a:6f:35:01:38:88:87: 17:c1:ec:60:2b:d2:90:d5:9d:d6:9d:7c:ad:8e:51: 42:bb:27:3c:13:b3:e3:04:d4:d0:ba:b9:19:a0:77: d4:da:c5:e9:ef:8a:51:b8:7b:78:a1:3b:f9:f3:f4: 58:71:67:fa:9f:36:5f:45:dd:00:11:be:d5:9f:e6: 03:a0:07:cd:f7:0d:36:58:ee:f0:41:0a:66:60:54: 5c:78:e4:5a:89:b0:5d:4b:fd:49:65:d0:4f:ce:64: 1b:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:65:47:61:A4:D2:D3:41:6A:82:A4:86:65:29:22:75:C5:DB:D3:DF X509v3 Authority Key Identifier: keyid:AE:DA:3A:68:76:F2:BB:6E:33:C8:1B:B2:8B:08:F9:F3:6C:80:DC:40 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4759476e-6adb-4f2e-be75-8467259e128f/0/AEDA3A6876F2BB6E33C81BB28B08F9F36C80DC40.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:c0:81:c2:87:bf:46:a5:d1:c3:a5:37:2f:95:d7:fb:f3:ea: 0e:1b:15:a7:be:c8:57:23:7f:16:c1:f9:c6:f6:49:a5:d5:72: d0:cb:6d:3b:c3:d2:8c:4f:ea:0e:3d:6f:97:2b:8c:4b:fa:1e: 7e:e8:e2:bd:a4:87:ec:2f:41:1c:67:2e:b3:37:59:a4:0d:9d: 47:79:49:b6:e1:63:45:e2:6c:f2:d8:4d:5d:45:7a:f2:c8:3e: 95:da:34:dd:bb:b8:dd:52:e5:40:a7:8d:9e:e8:22:13:08:af: 4a:d8:e0:92:8a:c3:80:a0:66:1f:db:65:9d:2a:1b:2f:b7:7c: ad:e4:e9:5b:52:b0:cb:b7:c3:d6:93:d6:10:bc:15:6e:b7:df: aa:d5:99:45:61:52:99:43:17:9a:a5:99:6e:cb:1d:39:35:31: a4:da:56:44:d1:5c:00:0c:c5:bb:c0:43:5c:65:b3:a2:4e:58: 10:08:46:5e:78:48:b1:d6:00:e8:5e:75:ed:a9:93:c7:f8:e5: 65:e0:16:30:43:e7:fd:50:9a:bd:e9:fd:f5:f8:67:a8:dd:60: ee:aa:52:32:7a:58:53:10:74:05:c4:66:3a:57:f7:9f:60:6b: 14:40:cd:e0:63:f7:02:ef:c5:09:0a:5b:62:1b:3e:17:2e:b9: a7:63:b6:6d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUaOqft/sHC5YQ8q4lsGv+22qHWaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2 QzgwREM0MDAeFw0yNTEyMDYxNDE2NDZaFw0yNTEyMTAwMTMzNDZaMDMxMTAvBgNV BAMTKDYyNjU0NzYxQTREMkQzNDE2QTgyQTQ4NjY1MjkyMjc1QzVEQkQzREYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb0nXdegguvj6QAyZVDmiyiBs9 qUOU03zKcymm7WPM1jvp/ylhHd3QktvI4nPpMkTlOR6kA4Y2CQVSc8vUk8DCoLLi q29+9Gy4jYPnYd+OkaGIvSnJyyJJiqJg6yUQFG03iuIBc4WpcTb62Vz3XVlc5X+d Hxvma4JhRekOcqmroM9NYaIKphyi9f6JMWa8Z0pnC7t0hh8xtpb6BsW6em81ATiI hxfB7GAr0pDVndadfK2OUUK7JzwTs+ME1NC6uRmgd9TaxenvilG4e3ihO/nz9Fhx Z/qfNl9F3QARvtWf5gOgB833DTZY7vBBCmZgVFx45FqJsF1L/Ull0E/OZBv1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYmVHYaTS00FqgqSGZSkidcXb098wHwYDVR0j BBgwFoAUrto6aHbyu24zyBuyiwj582yA3EAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 NzU5NDc2ZS02YWRiLTRmMmUtYmU3NS04NDY3MjU5ZTEyOGYvMC9BRURBM0E2ODc2 RjJCQjZFMzNDODFCQjI4QjA4RjlGMzZDODBEQzQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5RjM2Qzgw REM0MC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNDc1OTQ3NmUtNmFkYi00ZjJlLWJl NzUtODQ2NzI1OWUxMjhmLzAvQUVEQTNBNjg3NkYyQkI2RTMzQzgxQkIyOEIwOEY5 RjM2QzgwREM0MC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACvAgcKHv0al0cOlNy+V1/vz6g4bFae+yFcj fxbB+cb2SaXVctDLbTvD0oxP6g49b5crjEv6Hn7o4r2kh+wvQRxnLrM3WaQNnUd5 SbbhY0XibPLYTV1FevLIPpXaNN27uN1S5UCnjZ7oIhMIr0rY4JKKw4CgZh/bZZ0q Gy+3fK3k6VtSsMu3w9aT1hC8FW6336rVmUVhUplDF5qlmW7LHTk1MaTaVkTRXAAM xbvAQ1xls6JOWBAIRl54SLHWAOhede2pk8f45WXgFjBD5/1Qmr3p/fX4Z6jdYO6q UjJ6WFMQdAXEZjpX959gaxRAzeBj9wLvxQkKW2IbPhcuuadjtm0= -----END CERTIFICATE-----Generated at Sat Dec 6 23:52:51 2025 by rpki-client