This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft File: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft (raw, json) Hash identifier: gcQE7Kvbsqqc6IM3SOlOoiG69IVDVD0BT/JTx1FsWNY= Subject key identifier: F8:41:38:34:B0:66:D0:80:8A:18:BD:A0:FA:6C:08:47:EC:F2:C8:10 Authority key identifier: 89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 Certificate issuer: /CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Certificate serial: 0A9D969E147B36F237EDD848AAFC0D6882A9AABC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft Manifest number: 01B3 Signing time: Sat 06 Dec 2025 00:01:33 +0000 Manifest this update: Fri 05 Dec 2025 23:56:33 +0000 Manifest next update: Tue 09 Dec 2025 01:30:33 +0000 Files and hashes: 1: 3130332e3133302e38322e302f32342d3234203d3e20313530393636.roa (hash: WdwAhrLb01WctAevsLo2E5F0+guZcHnuWIL6/QTKVQY=) 2: 3130332e3133302e38322e302f32332d3233203d3e20313530393636.roa (hash: wzb3XBaqsWwxrRVk4X/B9M9lBaxhMB40Ug9owyKd8Yw=) 3: 3130332e3133302e38332e302f32342d3234203d3e20313530393636.roa (hash: MueUJKcGkwue3xJukPLYM+05PMMpQl2v+Pz0FDXtNcM=) 4: 8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl (hash: SZi/RalpsnhCJQZe3OqowOMhoQaBaa+hmxEJ7dsA7vU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 01:30:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:9d:96:9e:14:7b:36:f2:37:ed:d8:48:aa:fc:0d:68:82:a9:aa:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8989D0431453556F22D882A21B2BBB9F4E4A2C24 Validity Not Before: Dec 5 23:56:33 2025 GMT Not After : Dec 9 01:30:33 2025 GMT Subject: CN=F8413834B066D0808A18BDA0FA6C0847ECF2C810 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:1a:27:b2:37:b5:e4:07:a1:a9:1f:02:b0:bd: de:88:5f:6e:a7:8c:32:10:39:71:5e:b1:3a:e9:57: f8:17:c8:50:3d:da:ce:b5:76:ed:a0:1f:90:50:fd: 18:19:05:24:9f:1b:f8:50:2c:6d:98:58:9e:ea:2b: c5:d7:35:8d:35:f6:fd:50:aa:7e:d8:b4:6b:3b:ca: 57:9b:fa:72:77:29:fb:03:cc:ac:0f:fb:ca:1b:01: c0:24:87:81:16:27:d5:db:cd:38:45:c5:d2:52:6b: dd:7f:1c:a5:77:95:7c:5e:36:7e:c6:78:65:de:7b: 66:3e:1d:a5:b8:63:68:01:26:66:4f:59:6b:64:10: 1c:46:fd:91:22:e5:43:31:e2:db:c2:41:15:36:cf: 92:c1:87:7a:10:f6:b0:fc:4b:9c:bf:eb:9a:ab:44: d8:c3:f9:5e:28:a8:60:9a:42:0a:24:f8:24:db:08: 08:a6:f2:1c:2c:b8:c6:ec:c7:d4:47:36:ff:94:fb: 8d:46:3c:59:dc:1a:d8:cd:53:35:0e:0f:6f:52:fb: 00:0e:45:3c:09:69:64:06:ad:46:7c:48:cb:cd:30: 3a:e6:68:de:cc:ca:3d:d6:99:8a:67:74:8f:a7:12: 4f:4f:7a:9c:89:64:26:7c:19:a2:30:81:dc:da:30: d2:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:41:38:34:B0:66:D0:80:8A:18:BD:A0:FA:6C:08:47:EC:F2:C8:10 X509v3 Authority Key Identifier: keyid:89:89:D0:43:14:53:55:6F:22:D8:82:A2:1B:2B:BB:9F:4E:4A:2C:24 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8989D0431453556F22D882A21B2BBB9F4E4A2C24.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4a87064b-5f27-4270-90e4-99f43ae84db7/0/8989D0431453556F22D882A21B2BBB9F4E4A2C24.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:0a:c5:05:25:00:73:bb:4f:42:48:1a:6d:c3:37:96:19:a9: a0:ba:e6:0d:da:23:ca:20:bb:71:20:44:bc:d8:b9:23:d3:09: 92:fa:9c:93:44:a2:5f:17:96:93:58:e1:b6:4d:ab:47:74:25: 89:41:44:a3:e8:ee:8e:81:8d:78:2e:09:05:d1:d7:97:9d:ea: 52:49:ea:ae:c4:cc:60:4c:74:45:ba:c6:0f:80:62:3a:18:e6: c6:45:e5:eb:8c:e9:cf:ce:44:30:1b:95:ce:af:a4:a2:92:6d: 0c:0b:48:0a:59:6f:af:33:6b:cf:b1:60:90:fb:8d:5a:14:1a: fc:be:50:ec:2d:5d:e3:0a:fa:90:2e:95:d7:68:7a:68:4f:94: 81:93:ef:14:50:19:b9:ac:77:76:fc:9a:b6:06:74:f9:58:76: a0:ae:4d:f3:91:4c:46:b4:96:e9:ba:4b:6c:04:52:79:9c:e8: a4:c0:e0:dd:c1:a7:bb:f8:f1:7d:21:68:72:8d:ce:46:23:ea: 20:64:68:89:27:fb:42:9a:7a:9b:ba:26:a4:a2:b4:0d:fb:7c: 99:f0:8b:fd:bb:eb:e2:67:90:d9:60:32:42:c5:3e:b6:82:b7: 52:f9:92:06:45:22:ad:51:31:28:20:57:f4:ef:a9:1e:35:bc: c9:92:72:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUCp2WnhR7NvI37dhIqvwNaIKpqrwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0 RTRBMkMyNDAeFw0yNTEyMDUyMzU2MzNaFw0yNTEyMDkwMTMwMzNaMDMxMTAvBgNV BAMTKEY4NDEzODM0QjA2NkQwODA4QTE4QkRBMEZBNkMwODQ3RUNGMkM4MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJGieyN7XkB6GpHwKwvd6IX26n jDIQOXFesTrpV/gXyFA92s61du2gH5BQ/RgZBSSfG/hQLG2YWJ7qK8XXNY019v1Q qn7YtGs7yleb+nJ3KfsDzKwP+8obAcAkh4EWJ9XbzThFxdJSa91/HKV3lXxeNn7G eGXee2Y+HaW4Y2gBJmZPWWtkEBxG/ZEi5UMx4tvCQRU2z5LBh3oQ9rD8S5y/65qr RNjD+V4oqGCaQgok+CTbCAim8hwsuMbsx9RHNv+U+41GPFncGtjNUzUOD29S+wAO RTwJaWQGrUZ8SMvNMDrmaN7Myj3WmYpndI+nEk9PepyJZCZ8GaIwgdzaMNIDAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+EE4NLBm0ICKGL2g+mwIR+zyyBAwHwYDVR0j BBgwFoAUiYnQQxRTVW8i2IKiGyu7n05KLCQwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 YTg3MDY0Yi01ZjI3LTQyNzAtOTBlNC05OWY0M2FlODRkYjcvMC84OTg5RDA0MzE0 NTM1NTZGMjJEODgyQTIxQjJCQkI5RjRFNEEyQzI0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJCOUY0RTRB MkMyNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGE4NzA2NGItNWYyNy00MjcwLTkw ZTQtOTlmNDNhZTg0ZGI3LzAvODk4OUQwNDMxNDUzNTU2RjIyRDg4MkEyMUIyQkJC OUY0RTRBMkMyNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABwKxQUlAHO7T0JIGm3DN5YZqaC65g3aI8og u3EgRLzYuSPTCZL6nJNEol8XlpNY4bZNq0d0JYlBRKPo7o6BjXguCQXR15ed6lJJ 6q7EzGBMdEW6xg+AYjoY5sZF5euM6c/ORDAblc6vpKKSbQwLSApZb68za8+xYJD7 jVoUGvy+UOwtXeMK+pAulddoemhPlIGT7xRQGbmsd3b8mrYGdPlYdqCuTfORTEa0 lum6S2wEUnmc6KTA4N3Bp7v48X0haHKNzkYj6iBkaIkn+0Kaepu6JqSitA37fJnw i/276+JnkNlgMkLFPraCt1L5kgZFIq1RMSggV/TvqR41vMmScs4= -----END CERTIFICATE-----Generated at Sun Dec 7 04:56:04 2025 by rpki-client