This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft File: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft (raw, json) Hash identifier: VpeDAcb3cPt3TFWvrWklNtVur+Q6LdJ37KpuJIKft0s= Subject key identifier: FD:8E:FB:DC:7E:C1:66:97:90:B9:4E:DC:B7:1B:71:07:66:D1:DE:EC Authority key identifier: 3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 Certificate issuer: /CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Certificate serial: 7D2E05C0A78F61258CB98AF266007818818B8990 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft Manifest number: 013C Signing time: Mon 15 Dec 2025 20:01:24 +0000 Manifest this update: Mon 15 Dec 2025 19:56:24 +0000 Manifest next update: Fri 19 Dec 2025 06:58:24 +0000 Files and hashes: 1: 3130332e3133322e3233302e302f32342d3234203d3e20313338313237.roa (hash: FC4YL6B+zkeYZOTJZ5N7Yi4YIq94WZ3uKMPO/1YmBIg=) 2: 3130332e3133322e3233312e302f32342d3234203d3e20313338313237.roa (hash: WyVvseBUv5X8ksDjsVqSJfve5PyMPgdJn+/FGNUqcmk=) 3: 3130332e3133322e3233302e302f32332d3234203d3e20313338313237.roa (hash: fcE9nxP4F/tonEL2jLycsAVcDyzYWrh05xw29/4haAg=) 4: 3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl (hash: Z4y+KMGOEwUPCznA7zw6ar3Go0Si/tQfAxdgVR88LGk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 06:58:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:2e:05:c0:a7:8f:61:25:8c:b9:8a:f2:66:00:78:18:81:8b:89:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0B957B582D8AEF99A49C6448F9993C72378BF3 Validity Not Before: Dec 15 19:56:24 2025 GMT Not After : Dec 19 06:58:24 2025 GMT Subject: CN=FD8EFBDC7EC1669790B94EDCB71B710766D1DEEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:74:c6:9d:b1:99:37:fb:71:3a:39:0d:a5:90: 5a:ee:6e:93:bd:be:9e:db:62:a2:d8:ad:a0:d5:ea: a8:c6:f0:c0:d5:99:7f:21:cb:b9:3d:50:4e:87:99: a8:ad:a6:47:ca:e5:45:4f:52:78:0a:ea:90:65:29: 15:f1:d9:dc:66:98:8b:d6:0a:86:78:ab:a2:d2:59: 17:be:27:60:96:29:17:b1:78:c1:64:91:b1:ab:3d: c7:a0:1a:b9:44:5e:24:31:00:a9:c6:c2:91:c9:b6: 26:d8:74:5c:d1:9c:4c:ca:9b:ab:30:9b:d5:c8:b9: 98:c9:99:b5:bb:56:2e:a5:3d:35:3f:0c:16:4f:6a: 73:a4:c8:66:c7:63:82:ed:59:0e:dc:fe:a1:0a:a1: ce:32:50:38:42:11:3c:de:84:23:95:2a:17:cb:30: 86:cd:66:00:a9:3b:69:89:ca:31:66:b6:80:8f:c7: c3:b1:d6:de:f9:87:ec:d2:34:5e:6a:dd:73:85:c5: e7:b1:67:0e:1c:18:78:c4:3c:b3:77:a1:b1:e2:e9: 78:06:fd:c4:1c:5a:33:3c:39:53:44:35:9f:4f:a0: be:ca:0b:e8:8f:25:58:fe:42:b2:ac:1c:9e:4f:49: 57:6d:ae:d1:39:05:ad:f4:38:90:63:6b:6c:b4:8f: 22:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:8E:FB:DC:7E:C1:66:97:90:B9:4E:DC:B7:1B:71:07:66:D1:DE:EC X509v3 Authority Key Identifier: keyid:3E:0B:95:7B:58:2D:8A:EF:99:A4:9C:64:48:F9:99:3C:72:37:8B:F3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3E0B957B582D8AEF99A49C6448F9993C72378BF3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/4edc9e4f-8180-41d6-b08d-8ee5a8a70a05/0/3E0B957B582D8AEF99A49C6448F9993C72378BF3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 55:73:8c:66:f2:6c:6e:c1:ad:4d:5e:04:8c:05:73:74:31:4e: 7e:7a:cb:4a:22:f7:b5:91:77:dd:c2:94:31:ab:c4:78:ce:1b: 98:84:ae:c5:0a:a8:f1:dc:f7:87:8e:9f:d9:ce:97:d6:1e:ff: 9c:5d:06:90:c4:8f:c7:49:c1:89:a1:05:c4:6b:00:e1:c5:3d: 1c:92:b4:e3:c5:03:1c:2a:cb:a6:9c:cc:1a:3e:b8:de:58:1b: ae:9c:80:33:31:7d:0d:4d:37:66:de:36:61:21:5c:6b:b0:6c: 01:8f:d0:4d:7f:cd:0c:5a:e6:9f:5a:0b:50:db:10:82:fd:ad: 0a:45:1e:6d:3e:79:17:4d:1e:51:57:e2:18:4f:c8:75:72:98: 04:62:76:1a:10:2d:4b:bf:f7:26:54:37:89:03:8e:cb:51:eb: fd:7e:e8:a7:48:12:c0:cd:05:e0:a8:61:44:bc:ca:bb:e5:ec: 2c:fb:ee:7f:77:19:1a:1a:5b:14:5e:63:05:a2:dd:81:e3:a4: 10:e7:cc:5c:bf:dd:a4:f2:d0:52:ba:ea:92:21:77:6f:39:e6: c3:5c:05:e2:18:6f:85:39:84:0f:46:06:fd:31:52:2f:ab:e4: 16:26:35:1a:94:c7:8a:2f:0b:bd:f9:0d:e0:b4:aa:cd:7d:65: d8:a1:e0:5f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfS4FwKePYSWMuYryZgB4GIGLiZAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3 MjM3OEJGMzAeFw0yNTEyMTUxOTU2MjRaFw0yNTEyMTkwNjU4MjRaMDMxMTAvBgNV BAMTKEZEOEVGQkRDN0VDMTY2OTc5MEI5NEVEQ0I3MUI3MTA3NjZEMURFRUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJdMadsZk3+3E6OQ2lkFrubpO9 vp7bYqLYraDV6qjG8MDVmX8hy7k9UE6HmaitpkfK5UVPUngK6pBlKRXx2dxmmIvW CoZ4q6LSWRe+J2CWKRexeMFkkbGrPcegGrlEXiQxAKnGwpHJtibYdFzRnEzKm6sw m9XIuZjJmbW7Vi6lPTU/DBZPanOkyGbHY4LtWQ7c/qEKoc4yUDhCETzehCOVKhfL MIbNZgCpO2mJyjFmtoCPx8Ox1t75h+zSNF5q3XOFxeexZw4cGHjEPLN3obHi6XgG /cQcWjM8OVNENZ9PoL7KC+iPJVj+QrKsHJ5PSVdtrtE5Ba30OJBja2y0jyINAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/Y773H7BZpeQuU7ctxtxB2bR3uwwHwYDVR0j BBgwFoAUPguVe1gtiu+ZpJxkSPmZPHI3i/MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby80 ZWRjOWU0Zi04MTgwLTQxZDYtYjA4ZC04ZWU1YThhNzBhMDUvMC8zRTBCOTU3QjU4 MkQ4QUVGOTlBNDlDNjQ0OEY5OTkzQzcyMzc4QkYzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5M0M3MjM3 OEJGMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNGVkYzllNGYtODE4MC00MWQ2LWIw OGQtOGVlNWE4YTcwYTA1LzAvM0UwQjk1N0I1ODJEOEFFRjk5QTQ5QzY0NDhGOTk5 M0M3MjM3OEJGMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFVzjGbybG7BrU1eBIwFc3QxTn56y0oi97WR d93ClDGrxHjOG5iErsUKqPHc94eOn9nOl9Ye/5xdBpDEj8dJwYmhBcRrAOHFPRyS tOPFAxwqy6aczBo+uN5YG66cgDMxfQ1NN2beNmEhXGuwbAGP0E1/zQxa5p9aC1Db EIL9rQpFHm0+eRdNHlFX4hhPyHVymARidhoQLUu/9yZUN4kDjstR6/1+6KdIEsDN BeCoYUS8yrvl7Cz77n93GRoaWxReYwWi3YHjpBDnzFy/3aTy0FK66pIhd2855sNc BeIYb4U5hA9GBv0xUi+r5BYmNRqUx4ovC735DeC0qs19Zdih4F8= -----END CERTIFICATE-----Generated at Wed Dec 17 16:41:47 2025 by rpki-client