This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft File: 3703AC4154F05B1E642F31DEF71A238407E82D59.mft (raw, json) Hash identifier: Yxwbvo0oNn0KYVlJ9AmX9uc5amZsVtWebkHzlUNQzOk= Subject key identifier: 78:75:F4:5E:7F:4A:26:F3:FB:48:B8:B7:A6:7A:03:02:F6:DB:3E:49 Authority key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Certificate issuer: /CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Certificate serial: 594C218C7DB48F0D5E264C960AD45B1C4DEA3872 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft Manifest number: 04DA Signing time: Wed 17 Dec 2025 13:20:54 +0000 Manifest this update: Wed 17 Dec 2025 13:15:54 +0000 Manifest next update: Sat 20 Dec 2025 21:13:54 +0000 Files and hashes: 1: 3130332e3136302e34302e302f32332d3233203d3e20313431353936.roa (hash: RNQYxKN0Nubn/ygqO8rH37j/P4lI+9FQ1kXn5iYtC0w=) 2: 3703AC4154F05B1E642F31DEF71A238407E82D59.crl (hash: hpIp47j6KJWKMs7XbL+IRnWmys0saU7LNagXuGal3bY=) 3: 3130332e3136302e34302e302f32342d3234203d3e20313431353936.roa (hash: /26G7paj90BYpA/7obbRkQ0e5IpXJm+V8bRm2IMmu/M=) 4: 3130332e3136302e34312e302f32342d3234203d3e20313431353936.roa (hash: hTOnvJY78aaZJU0V/ewFlrDahpGLWlt1kXeTr26Q6jE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 21:13:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:4c:21:8c:7d:b4:8f:0d:5e:26:4c:96:0a:d4:5b:1c:4d:ea:38:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Validity Not Before: Dec 17 13:15:54 2025 GMT Not After : Dec 20 21:13:54 2025 GMT Subject: CN=7875F45E7F4A26F3FB48B8B7A67A0302F6DB3E49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:64:03:08:e6:f9:c7:2e:7e:f0:b2:a6:3c:23: ee:75:e6:84:2b:8e:0e:f8:cd:bb:63:12:74:8f:6e: c1:28:19:42:a8:6d:3e:23:ca:2d:45:00:cb:fe:d1: 13:a8:5c:8f:51:64:50:00:48:a9:2d:45:f6:b4:8f: 82:f0:61:98:73:0f:fc:55:4e:d4:65:33:3e:d0:7f: b0:3e:3a:f5:68:18:32:cc:a5:7c:06:fe:67:9f:83: 42:26:fb:c7:7d:20:25:55:5d:db:7a:c2:2f:e8:4c: 7a:ed:55:4a:b1:d0:ef:39:3b:6f:ef:e6:0f:f7:a9: ae:40:15:dc:11:53:7f:eb:f9:b4:fc:e2:b8:70:4a: 68:8b:a2:dc:4c:02:ad:c7:0f:11:01:6b:05:5d:a3: 74:53:38:cc:f3:b3:e3:60:45:41:b8:58:b6:43:f1: 68:4a:ec:2f:d5:c9:d2:51:96:11:06:90:31:99:5e: 14:65:b2:17:49:2f:65:eb:65:20:0f:e0:f6:04:45: 30:5e:28:f4:2d:2f:a2:3c:3e:e9:12:fb:65:e5:3d: 1c:fa:68:5a:14:86:59:f9:95:92:ac:d4:13:e1:48: 22:0f:f1:88:92:d5:94:e2:f7:bc:bd:2e:06:6c:3e: 83:ae:cd:b5:95:1b:57:4d:6f:72:1c:2e:c6:5b:98: 5d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:75:F4:5E:7F:4A:26:F3:FB:48:B8:B7:A6:7A:03:02:F6:DB:3E:49 X509v3 Authority Key Identifier: keyid:37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 91:c9:ea:c2:5a:1d:e3:74:59:88:a2:23:70:12:92:ff:97:b9: 20:9f:d7:f5:54:ff:9a:62:2c:9c:5b:32:63:3c:48:af:a2:e4: e0:ae:d6:14:ac:59:13:95:a5:15:1c:e9:54:50:5a:4a:f1:41: 7c:99:bf:a1:5f:1c:da:44:5c:29:24:12:67:92:9c:a7:a5:6a: 20:46:54:fd:9a:5d:0e:dc:82:11:ec:c4:1e:d3:bd:da:2c:50: 65:bc:8f:c0:45:d2:f3:54:35:c9:63:b7:5b:54:67:fe:af:ea: bc:cc:de:8f:14:7b:6f:c1:b8:7e:32:d0:13:31:ad:88:f5:34: 8d:19:9c:20:00:d7:19:d1:12:65:96:04:6b:a7:ff:3d:89:85: f4:b3:63:c6:74:33:02:ec:d8:93:98:7b:cd:48:ed:e5:24:96: 2d:31:7f:57:5f:bb:10:54:08:ae:7e:94:62:6c:85:d1:1a:ba: 2e:db:2d:47:2e:ce:23:cf:7f:d3:49:d3:a5:71:b7:67:0e:05: c1:a1:2a:77:f1:e9:2b:5b:3c:cd:37:d1:8e:a1:d7:a4:b4:d7: ad:9f:6e:26:4d:9d:cd:48:eb:ad:53:69:74:53:8d:ee:32:b2: dc:b4:3f:47:87:9b:f0:71:07:2e:28:ec:82:fe:e7:25:16:bd: 94:28:ca:fc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUWUwhjH20jw1eJkyWCtRbHE3qOHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQw N0U4MkQ1OTAeFw0yNTEyMTcxMzE1NTRaFw0yNTEyMjAyMTEzNTRaMDMxMTAvBgNV BAMTKDc4NzVGNDVFN0Y0QTI2RjNGQjQ4QjhCN0E2N0EwMzAyRjZEQjNFNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtZAMI5vnHLn7wsqY8I+515oQr jg74zbtjEnSPbsEoGUKobT4jyi1FAMv+0ROoXI9RZFAASKktRfa0j4LwYZhzD/xV TtRlMz7Qf7A+OvVoGDLMpXwG/mefg0Im+8d9ICVVXdt6wi/oTHrtVUqx0O85O2/v 5g/3qa5AFdwRU3/r+bT84rhwSmiLotxMAq3HDxEBawVdo3RTOMzzs+NgRUG4WLZD 8WhK7C/VydJRlhEGkDGZXhRlshdJL2XrZSAP4PYERTBeKPQtL6I8PukS+2XlPRz6 aFoUhln5lZKs1BPhSCIP8YiS1ZTi97y9LgZsPoOuzbWVG1dNb3IcLsZbmF3tAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUeHX0Xn9KJvP7SLi3pnoDAvbbPkkwHwYDVR0j BBgwFoAUNwOsQVTwWx5kLzHe9xojhAfoLVkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMC8zNzAzQUM0MTU0 RjA1QjFFNjQyRjMxREVGNzFBMjM4NDA3RTgyRDU5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIzODQwN0U4 MkQ1OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGEwOTlhZGYtN2UxMi00ZTgzLTk1 YzItZGQ3Zjc3NDk0Nzg4LzAvMzcwM0FDNDE1NEYwNUIxRTY0MkYzMURFRjcxQTIz ODQwN0U4MkQ1OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJHJ6sJaHeN0WYiiI3ASkv+XuSCf1/VU/5pi LJxbMmM8SK+i5OCu1hSsWROVpRUc6VRQWkrxQXyZv6FfHNpEXCkkEmeSnKelaiBG VP2aXQ7cghHsxB7TvdosUGW8j8BF0vNUNcljt1tUZ/6v6rzM3o8Ue2/BuH4y0BMx rYj1NI0ZnCAA1xnREmWWBGun/z2JhfSzY8Z0MwLs2JOYe81I7eUkli0xf1dfuxBU CK5+lGJshdEaui7bLUcuziPPf9NJ06Vxt2cOBcGhKnfx6StbPM030Y6h16S0162f biZNnc1I661TaXRTje4ysty0P0eHm/BxBy4o7IL+5yUWvZQoyvw= -----END CERTIFICATE-----Generated at Fri Dec 19 12:52:14 2025 by rpki-client