This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft File: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft (raw, json) Hash identifier: rPCQLX8KhRNOcgeyZikWLTRjNd7rF43t2psI2PI9bSM= Subject key identifier: 70:E6:FF:A3:F5:A5:7A:95:3A:03:3D:D5:24:90:6E:C9:19:DA:48:79 Authority key identifier: CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B Certificate issuer: /CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Certificate serial: 23E1A79F0063685DEB391FD5C817C2BE82234F20 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft Manifest number: 022B Signing time: Fri 05 Dec 2025 09:02:28 +0000 Manifest this update: Fri 05 Dec 2025 08:57:28 +0000 Manifest next update: Mon 08 Dec 2025 17:35:28 +0000 Files and hashes: 1: 3130332e3131312e3131392e302f32342d3234203d3e20313439393531.roa (hash: SQEisBhY0DV53zHr/sBQtcOCDd0Bbr0+fAzbajSxd3s=) 2: CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl (hash: 1x1aGgmoyU7MYLzeXBSkOq8oOze2k0eJC0HNNwcBSJM=) 3: 323030313a6466313a316563303a3a2f34382d3438203d3e20313439393531.roa (hash: O62FaU7sfJ7WBpQAG4VOlHgoxy59qAGq0CxPAvacDkY=) 4: 3130332e3131312e3131382e302f32342d3234203d3e20313439393531.roa (hash: FK++k16W5o1G1ymHbgbWCr22LclnvM/8CkDyIWrtSXU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 17:35:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:e1:a7:9f:00:63:68:5d:eb:39:1f:d5:c8:17:c2:be:82:23:4f:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA14F96C33329D8CA42315C2B500AB2D57B1E35B Validity Not Before: Dec 5 08:57:28 2025 GMT Not After : Dec 8 17:35:28 2025 GMT Subject: CN=70E6FFA3F5A57A953A033DD524906EC919DA4879 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:93:42:b4:46:d5:1f:64:7a:ef:c1:8a:5f:36: bf:0f:68:2c:20:fe:0e:d3:d4:f3:9f:8d:0c:a9:dc: 29:eb:57:87:aa:7d:b8:92:18:70:0a:75:c9:41:3f: a0:74:93:3f:20:c1:29:44:de:f1:3f:60:2b:34:c0: 39:68:00:46:7d:f6:03:53:32:90:1f:84:27:91:ec: 7e:ef:b8:f3:3f:60:eb:71:1f:c7:98:32:47:9f:43: 3c:c1:e0:58:3e:32:a1:3a:f3:d1:8b:7c:f1:4e:44: 74:e1:ad:ed:64:ad:42:09:57:4e:a0:c6:45:b1:48: 7b:f5:cd:40:b2:7e:ff:33:05:be:f2:81:ab:61:31: 4a:bb:9f:ef:da:3e:83:b8:c9:30:3c:61:ff:9d:02: 52:34:33:95:93:ab:00:63:a9:b9:77:e5:7a:c4:44: 2a:49:37:63:52:10:0a:19:8b:96:e9:6c:c7:5c:da: 27:d8:90:d1:34:89:ef:a2:40:65:2c:49:c6:61:e0: 87:bb:4f:66:3d:5c:bb:ee:c1:c9:30:b4:23:f8:49: c3:0f:c9:07:75:f4:55:7e:63:97:06:c5:37:34:49: d5:d2:87:25:4e:a9:d1:19:fe:c5:58:87:31:6e:02: 2d:b3:e4:ac:72:49:64:bd:aa:f1:84:64:9b:48:39: ca:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:E6:FF:A3:F5:A5:7A:95:3A:03:3D:D5:24:90:6E:C9:19:DA:48:79 X509v3 Authority Key Identifier: keyid:CA:14:F9:6C:33:32:9D:8C:A4:23:15:C2:B5:00:AB:2D:57:B1:E3:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/51f16c45-96fb-4c92-804e-64b0bf280302/0/CA14F96C33329D8CA42315C2B500AB2D57B1E35B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8b:86:7c:ae:df:92:fa:cc:ad:18:a4:08:9c:57:70:5a:7e:2c: 63:94:3a:4e:db:57:31:97:65:08:ab:03:72:9e:ab:67:4a:53: 9a:46:2e:97:14:b3:69:a4:f7:ad:0f:f8:75:64:4c:6c:ff:d5: de:90:4c:6b:d2:b3:90:b3:d1:45:28:27:af:2a:72:27:f9:bb: 9b:d0:10:a4:5d:af:58:46:d9:e3:ed:38:02:79:cd:e4:14:62: 27:99:a9:9a:6f:69:9b:08:ed:91:1c:da:1d:f1:8e:d7:aa:be: bb:c6:99:3c:9e:4e:30:6c:ab:a7:d9:05:2f:31:42:d5:05:91: 58:8d:03:3d:a2:e4:49:a3:c8:30:da:2a:e0:7e:92:a4:b5:a0: fb:33:f1:47:70:81:73:8d:61:73:5b:f2:0b:ae:a4:93:04:3c: 14:38:b2:85:52:fe:3e:a1:7c:f0:31:b8:d9:e7:b6:b3:bc:3a: 57:43:96:49:2d:f3:81:5b:f8:79:3b:cb:a9:16:ba:37:06:8a: a5:23:d3:1f:a2:ed:4c:9e:5b:3b:04:fb:b5:5a:9a:19:09:d6: 29:a3:bb:d5:8b:b0:c3:09:4b:30:e2:45:2d:44:ac:40:37:15: ac:b8:bd:08:f2:a3:37:ca:b1:aa:87:b9:40:41:85:bf:a7:52: ea:ca:53:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUI+GnnwBjaF3rOR/VyBfCvoIjTyAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1 N0IxRTM1QjAeFw0yNTEyMDUwODU3MjhaFw0yNTEyMDgxNzM1MjhaMDMxMTAvBgNV BAMTKDcwRTZGRkEzRjVBNTdBOTUzQTAzM0RENTI0OTA2RUM5MTlEQTQ4NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhk0K0RtUfZHrvwYpfNr8PaCwg /g7T1POfjQyp3CnrV4eqfbiSGHAKdclBP6B0kz8gwSlE3vE/YCs0wDloAEZ99gNT MpAfhCeR7H7vuPM/YOtxH8eYMkefQzzB4Fg+MqE689GLfPFORHThre1krUIJV06g xkWxSHv1zUCyfv8zBb7ygathMUq7n+/aPoO4yTA8Yf+dAlI0M5WTqwBjqbl35XrE RCpJN2NSEAoZi5bpbMdc2ifYkNE0ie+iQGUsScZh4Ie7T2Y9XLvuwckwtCP4ScMP yQd19FV+Y5cGxTc0SdXShyVOqdEZ/sVYhzFuAi2z5KxySWS9qvGEZJtIOcpBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcOb/o/WlepU6Az3VJJBuyRnaSHkwHwYDVR0j BBgwFoAUyhT5bDMynYykIxXCtQCrLVex41swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 MWYxNmM0NS05NmZiLTRjOTItODA0ZS02NGIwYmYyODAzMDIvMC9DQTE0Rjk2QzMz MzI5RDhDQTQyMzE1QzJCNTAwQUIyRDU3QjFFMzVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFCMkQ1N0Ix RTM1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNTFmMTZjNDUtOTZmYi00YzkyLTgw NGUtNjRiMGJmMjgwMzAyLzAvQ0ExNEY5NkMzMzMyOUQ4Q0E0MjMxNUMyQjUwMEFC MkQ1N0IxRTM1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIuGfK7fkvrMrRikCJxXcFp+LGOUOk7bVzGX ZQirA3Keq2dKU5pGLpcUs2mk960P+HVkTGz/1d6QTGvSs5Cz0UUoJ68qcif5u5vQ EKRdr1hG2ePtOAJ5zeQUYieZqZpvaZsI7ZEc2h3xjteqvrvGmTyeTjBsq6fZBS8x QtUFkViNAz2i5EmjyDDaKuB+kqS1oPsz8UdwgXONYXNb8guupJMEPBQ4soVS/j6h fPAxuNnntrO8OldDlkkt84Fb+Hk7y6kWujcGiqUj0x+i7UyeWzsE+7VamhkJ1imj u9WLsMMJSzDiRS1ErEA3Fay4vQjyozfKsaqHuUBBhb+nUurKUy0= -----END CERTIFICATE-----Generated at Sun Dec 7 02:07:51 2025 by rpki-client