This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft File: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft (raw, json) Hash identifier: kjFooe+85HnWm0suyI1QpHDj8yLjSKCuPzwKU+4zr+M= Subject key identifier: F4:AA:70:F5:4B:52:1F:4D:60:D5:C5:F0:69:68:05:B2:96:B8:76:4F Authority key identifier: D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB Certificate issuer: /CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Certificate serial: 6CA8BE6A759374891D7FF95F9F393636D0609FC0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft Manifest number: 025C Signing time: Fri 05 Dec 2025 20:32:09 +0000 Manifest this update: Fri 05 Dec 2025 20:27:09 +0000 Manifest next update: Mon 08 Dec 2025 21:13:09 +0000 Files and hashes: 1: 3130332e3138332e3235302e302f32332d3234203d3e2034383030.roa (hash: pN4ghT04j5zTe3lEB7yWGrreTGcCSMxjpmVgBxWJn+Y=) 2: D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl (hash: K06y3P94bQaX0CUQWh3S4vFQLWgeqCaVSuXQDgboV6I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 21:13:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:a8:be:6a:75:93:74:89:1d:7f:f9:5f:9f:39:36:36:d0:60:9f:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB Validity Not Before: Dec 5 20:27:09 2025 GMT Not After : Dec 8 21:13:09 2025 GMT Subject: CN=F4AA70F54B521F4D60D5C5F0696805B296B8764F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:72:b1:c4:30:e3:2f:8b:08:b3:44:b9:f4:97: da:5e:29:08:c9:62:13:06:5e:af:f9:da:b3:68:3e: 29:d1:81:b4:c3:1a:f3:06:1a:3d:61:2b:aa:56:69: 60:49:88:a9:eb:99:fe:ab:70:08:6f:09:54:82:7c: 55:6d:cb:df:1b:a9:67:ed:95:40:19:8a:db:85:a0: a6:a7:7d:6a:72:d2:f9:e9:d9:aa:5e:95:a5:12:a9: d1:6e:9a:80:73:08:c6:9b:6b:66:1f:6a:e4:d7:0e: 6f:10:a5:73:b2:0a:7e:2e:98:03:f3:5c:66:83:ef: 93:c5:69:3e:c9:35:4b:19:a7:04:14:d4:7d:b4:94: b1:44:a8:f9:4d:b3:54:a3:19:52:87:1f:4b:65:50: 27:91:b6:16:02:94:dc:ec:1b:ee:47:ed:64:20:48: 83:b8:4f:21:17:6d:9a:97:b2:73:03:b7:54:82:06: c4:10:af:6f:23:38:19:b8:e9:cb:52:ce:0c:5b:19: 34:c8:96:b3:d6:81:bc:f3:58:bb:6f:84:ab:0d:63: 4f:dd:4e:69:bb:31:d0:76:f4:81:ff:a1:35:b6:a6: ea:7e:6e:2d:5a:c0:18:e7:62:7e:fe:7b:21:1c:1d: dc:83:a1:cb:ea:92:4a:e8:11:83:60:6b:aa:26:3e: 84:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:AA:70:F5:4B:52:1F:4D:60:D5:C5:F0:69:68:05:B2:96:B8:76:4F X509v3 Authority Key Identifier: keyid:D9:D0:73:0D:B5:12:95:FE:C5:BD:48:0C:DD:42:B5:E8:51:7C:8F:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/5ae2b8b3-dec8-41cf-a16d-e1171561d725/0/D9D0730DB51295FEC5BD480CDD42B5E8517C8FDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:61:2b:98:55:72:7b:3b:d3:d2:c2:17:06:c3:47:a8:52:1c: ee:aa:b6:a5:3c:d7:db:12:27:ba:3b:e0:e2:27:6c:ae:b6:87: 93:c0:2a:df:21:b8:6e:be:1e:a1:d0:5f:a6:66:4a:51:a5:67: b3:b3:f3:85:4e:b1:89:3d:18:2f:7b:94:5c:b8:cb:95:96:ad: c2:e2:41:25:c2:fd:2d:1f:8f:ec:17:97:e7:9a:46:69:b5:b5: fb:9f:ea:c0:f3:8b:9e:78:58:15:f4:0b:2b:f0:d9:ad:46:55: 48:2f:e3:4b:83:7d:9f:89:69:6a:80:ed:59:dd:99:72:a6:8a: 7d:42:8d:68:10:5f:a1:82:ef:07:4e:a5:00:63:cc:17:3f:3b: 95:fe:66:36:d2:41:32:6f:95:ad:c2:5c:38:12:43:63:0c:7f: e2:63:3c:72:43:d3:a6:0b:1a:88:cd:c9:d6:25:5a:0b:4d:91: 3f:11:f6:a9:af:bf:fc:b0:4a:7f:a5:27:8c:38:1c:33:d9:67: b3:5d:2c:76:e5:40:30:11:4c:13:75:a5:e0:30:6d:01:52:09: 1c:1c:87:3a:43:67:b6:3b:d9:95:67:7c:bb:0c:99:07:a6:c1: 5e:8b:d7:dd:cb:20:3d:67:58:5f:2a:fe:cf:2a:8c:8d:54:dc: 9c:09:7b:15 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbKi+anWTdIkdf/lfnzk2NtBgn8AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1 MTdDOEZEQjAeFw0yNTEyMDUyMDI3MDlaFw0yNTEyMDgyMTEzMDlaMDMxMTAvBgNV BAMTKEY0QUE3MEY1NEI1MjFGNEQ2MEQ1QzVGMDY5NjgwNUIyOTZCODc2NEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9crHEMOMviwizRLn0l9peKQjJ YhMGXq/52rNoPinRgbTDGvMGGj1hK6pWaWBJiKnrmf6rcAhvCVSCfFVty98bqWft lUAZituFoKanfWpy0vnp2apelaUSqdFumoBzCMaba2YfauTXDm8QpXOyCn4umAPz XGaD75PFaT7JNUsZpwQU1H20lLFEqPlNs1SjGVKHH0tlUCeRthYClNzsG+5H7WQg SIO4TyEXbZqXsnMDt1SCBsQQr28jOBm46ctSzgxbGTTIlrPWgbzzWLtvhKsNY0/d Tmm7MdB29IH/oTW2pup+bi1awBjnYn7+eyEcHdyDocvqkkroEYNga6omPoQzAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU9Kpw9UtSH01g1cXwaWgFspa4dk8wHwYDVR0j BBgwFoAU2dBzDbUSlf7FvUgM3UK16FF8j9swDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby81 YWUyYjhiMy1kZWM4LTQxY2YtYTE2ZC1lMTE3MTU2MWQ3MjUvMC9EOUQwNzMwREI1 MTI5NUZFQzVCRDQ4MENERDQyQjVFODUxN0M4RkRCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1RTg1MTdD OEZEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNWFlMmI4YjMtZGVjOC00MWNmLWEx NmQtZTExNzE1NjFkNzI1LzAvRDlEMDczMERCNTEyOTVGRUM1QkQ0ODBDREQ0MkI1 RTg1MTdDOEZEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAANhK5hVcns709LCFwbDR6hSHO6qtqU819sS J7o74OInbK62h5PAKt8huG6+HqHQX6ZmSlGlZ7Oz84VOsYk9GC97lFy4y5WWrcLi QSXC/S0fj+wXl+eaRmm1tfuf6sDzi554WBX0Cyvw2a1GVUgv40uDfZ+JaWqA7Vnd mXKmin1CjWgQX6GC7wdOpQBjzBc/O5X+ZjbSQTJvla3CXDgSQ2MMf+JjPHJD06YL GojNydYlWgtNkT8R9qmvv/ywSn+lJ4w4HDPZZ7NdLHblQDARTBN1peAwbQFSCRwc hzpDZ7Y72ZVnfLsMmQemwV6L193LID1nWF8q/s8qjI1U3JwJexU= -----END CERTIFICATE-----Generated at Sun Dec 7 03:35:31 2025 by rpki-client