This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft File: 3703AC4154F05B1E642F31DEF71A238407E82D59.mft (raw, json) Hash identifier: 0RY3WOcd1RsAi/sHZf+nRenHoK4d6bx2oE4NyOimUuk= Subject key identifier: C3:E4:C3:2B:EF:B7:32:7F:53:79:AE:6C:36:E8:10:7F:44:EF:42:A7 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 55A99E5E9895519230C68346B2A218300ACAF1EA Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft Manifest number: 04D5 Signing time: Fri 05 Dec 2025 23:00:55 +0000 Manifest this update: Fri 05 Dec 2025 22:55:55 +0000 Manifest next update: Tue 09 Dec 2025 04:10:55 +0000 Files and hashes: 1: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (hash: hTOnvJY78aaZJU0V/ewFlrDahpGLWlt1kXeTr26Q6jE=) 2: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (hash: /26G7paj90BYpA/7obbRkQ0e5IpXJm+V8bRm2IMmu/M=) 3: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (hash: RNQYxKN0Nubn/ygqO8rH37j/P4lI+9FQ1kXn5iYtC0w=) 4: 3703AC4154F05B1E642F31DEF71A238407E82D59.crl (hash: yGdimG2KhZZslHko5O8S/qb5EOBkohsVICvGSEgFed0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 04:10:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:a9:9e:5e:98:95:51:92:30:c6:83:46:b2:a2:18:30:0a:ca:f1:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Dec 5 22:55:55 2025 GMT Not After : Dec 9 04:10:55 2025 GMT Subject: CN=C3E4C32BEFB7327F5379AE6C36E8107F44EF42A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e2:16:c0:92:f3:10:3b:b4:e4:cf:65:13:32: f4:da:ca:a2:2b:1e:cb:11:59:6a:f7:7b:f3:7f:19: 11:82:d9:1e:6f:41:a7:0b:7a:e7:27:17:de:5d:49: 84:4d:59:25:a9:f5:0f:0a:4f:fe:ba:86:fe:48:24: 41:22:e1:35:3f:55:32:7e:3a:63:bd:5a:32:d6:9d: 1d:b0:32:0e:a1:43:33:4f:7c:80:d6:7b:b4:28:ca: b0:90:f7:cb:c9:2d:26:de:bb:91:4e:5f:6a:c3:a1: ac:f0:8b:9d:5e:d9:9a:68:8e:5d:ca:49:75:6a:7d: b2:d6:e7:7b:8f:b5:3e:73:b7:d8:b7:56:d0:fe:67: 0e:ff:01:e1:e2:c9:f0:c5:f9:0b:cd:2e:66:ef:d3: e8:bd:13:ee:2b:5b:54:b5:5d:05:58:c0:e2:7c:83: 3a:1d:6e:a6:e9:3a:e0:19:31:b3:5c:dd:e4:a5:bc: 19:a3:69:56:92:35:31:e8:97:b8:e4:78:94:01:d7: 82:7c:c6:c4:e9:2f:d8:85:d5:17:4a:01:43:43:9f: aa:6c:69:0c:49:56:12:f0:db:5d:ef:fe:7b:0e:7f: c2:52:af:87:f9:92:3b:37:5b:8d:22:59:24:86:4c: 73:a5:0c:a6:d1:ac:37:be:57:d4:98:01:8e:73:69: d5:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:E4:C3:2B:EF:B7:32:7F:53:79:AE:6C:36:E8:10:7F:44:EF:42:A7 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:3f:b7:4a:c3:a3:fe:e5:fc:9b:5a:3f:a8:dc:d9:30:e7:97: 2a:9f:88:8c:fb:a5:55:42:12:78:57:36:b1:e2:c2:b1:ed:b5: c5:72:b1:30:42:62:c8:d1:01:8d:b8:41:ec:b4:6c:57:c7:d0: 2c:d3:8c:76:3c:64:91:65:8c:31:4d:f5:91:99:ca:67:01:3c: a7:63:44:6d:c8:c5:05:19:a0:92:c0:9f:16:75:2e:d6:7b:a6: 73:20:19:2f:32:aa:52:8d:de:93:92:96:a1:b5:c2:f2:76:ed: 6f:32:41:f2:e5:93:24:b9:16:ab:23:77:21:e9:dc:73:13:22: 6d:39:b6:90:db:aa:9e:ae:a3:c0:a5:17:42:52:61:3c:e5:5b: c5:e3:2b:5b:ee:98:b4:d1:bd:1d:f4:dc:e9:e7:57:7b:2b:3f: e4:f3:b2:59:ae:60:89:1d:46:e7:bd:55:da:ab:34:13:af:65: 88:b9:37:e6:fc:e0:18:f0:ac:da:8c:0f:17:da:6d:6e:ef:14: fc:e6:71:89:cf:92:42:35:2e:17:bb:21:05:51:38:b4:e0:cb: 6a:20:b9:61:79:44:1b:47:8e:f4:d2:e1:a8:a7:ec:ce:7d:58: ec:0a:c8:08:1e:8a:85:0a:3c:c7:5a:56:af:b3:1e:cd:a1:d0: a7:c4:19:0b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUVameXpiVUZIwxoNGsqIYMArK8eowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTEyMDUyMjU1NTVaFw0yNTEyMDkwNDEwNTVaMDMxMTAvBgNV BAMTKEMzRTRDMzJCRUZCNzMyN0Y1Mzc5QUU2QzM2RTgxMDdGNDRFRjQyQTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC24hbAkvMQO7Tkz2UTMvTayqIr HssRWWr3e/N/GRGC2R5vQacLeucnF95dSYRNWSWp9Q8KT/66hv5IJEEi4TU/VTJ+ OmO9WjLWnR2wMg6hQzNPfIDWe7QoyrCQ98vJLSbeu5FOX2rDoazwi51e2Zpojl3K SXVqfbLW53uPtT5zt9i3VtD+Zw7/AeHiyfDF+QvNLmbv0+i9E+4rW1S1XQVYwOJ8 gzodbqbpOuAZMbNc3eSlvBmjaVaSNTHol7jkeJQB14J8xsTpL9iF1RdKAUNDn6ps aQxJVhLw213v/nsOf8JSr4f5kjs3W40iWSSGTHOlDKbRrDe+V9SYAY5zadWrAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUw+TDK++3Mn9Tea5sNugQf0TvQqcwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGEwOTlhZGYtN2UxMi00ZTgzLTk1 YzItZGQ3Zjc3NDk0Nzg4LzAvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIz ODQwN0U4MkQ1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADg/t0rDo/7l/JtaP6jc2TDnlyqfiIz7pVVC EnhXNrHiwrHttcVysTBCYsjRAY24Qey0bFfH0CzTjHY8ZJFljDFN9ZGZymcBPKdj RG3IxQUZoJLAnxZ1LtZ7pnMgGS8yqlKN3pOSlqG1wvJ27W8yQfLlkyS5FqsjdyHp 3HMTIm05tpDbqp6uo8ClF0JSYTzlW8XjK1vumLTRvR303OnnV3srP+TzslmuYIkd Rue9VdqrNBOvZYi5N+b84BjwrNqMDxfabW7vFPzmcYnPkkI1Lhe7IQVROLTgy2og uWF5RBtHjvTS4ain7M59WOwKyAgeioUKPMdaVq+zHs2h0KfEGQs= -----END CERTIFICATE-----Generated at Sun Dec 7 07:44:45 2025 by rpki-client