This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft File: 9D21366ED4E3738A5F50E524109806C98D710BD3.mft (raw, json) Hash identifier: n61wolgxVvmaW5tubJJB25ugzQa2iGbYmoogPXMf4Ls= Subject key identifier: F1:5C:22:1A:AC:E8:84:60:71:23:58:C8:49:3C:76:EC:8C:28:DD:7E Authority key identifier: 9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 Certificate issuer: /CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Certificate serial: 366C58C4F224155D2B8EA54C84D9949DF9FECA4E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft Manifest number: D9 Signing time: Sun 07 Dec 2025 04:50:00 +0000 Manifest this update: Sun 07 Dec 2025 04:45:00 +0000 Manifest next update: Wed 10 Dec 2025 16:07:00 +0000 Files and hashes: 1: 3136302e32352e3131382e302f32332d3234203d3e20313533303936.roa (hash: TUzFMsEIFjmnDLri6vPKTFWHWFqmADC1pDUr5mNeK+o=) 2: 3136302e32352e3131382e302f32342d3234203d3e20313533303936.roa (hash: Nzl8vY9SfxTMTS+PrIiEnPNs8vGKrloce/myFfDThWk=) 3: 3136302e32352e3131392e302f32342d3234203d3e20313533303936.roa (hash: l9ERQS2lY9vY7cqdtac+IvPm2s0vxFEvQIVHJEks1Zc=) 4: 9D21366ED4E3738A5F50E524109806C98D710BD3.crl (hash: YnSC1w4wzGA04jmE6LgulbbX9K0/DIn7O0H/YSV8so4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:6c:58:c4:f2:24:15:5d:2b:8e:a5:4c:84:d9:94:9d:f9:fe:ca:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D21366ED4E3738A5F50E524109806C98D710BD3 Validity Not Before: Dec 7 04:45:00 2025 GMT Not After : Dec 10 16:07:00 2025 GMT Subject: CN=F15C221AACE88460712358C8493C76EC8C28DD7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:6c:ae:ad:62:5e:35:9d:13:4a:96:77:47:d6: db:4e:18:c8:f9:6e:98:06:04:ae:7f:ae:f2:a0:5c: 9e:2e:aa:40:07:f2:54:22:c0:64:0f:99:8c:62:4b: 71:e2:d5:03:6e:95:f5:1a:2c:00:a2:73:52:e5:c0: 6c:a1:09:cc:6c:1f:f1:60:64:c5:6d:7f:33:f8:83: 63:34:1e:71:f0:82:55:e4:83:cc:5f:a5:0e:c4:cf: 4a:60:77:47:79:8f:ca:0e:0d:0b:c3:0f:9d:4f:aa: 3c:a6:11:65:24:fd:6d:ab:0a:54:59:df:1f:38:d7: 24:da:bc:f4:90:1d:70:2c:2c:c5:1d:5e:f5:64:7b: 70:ca:47:c3:bb:5d:20:7d:dd:b2:aa:9a:49:27:90: c5:0a:6f:ea:02:46:f2:68:a5:79:52:de:a9:75:d6: 07:e4:cb:d6:56:9f:61:b5:50:72:e1:f0:89:ac:96: fc:b9:f2:2c:bd:e3:fa:cb:9d:7f:cb:2c:31:88:51: 94:27:1d:5e:3d:75:32:a9:15:55:ee:a8:5e:f1:f2: 94:d4:1a:06:13:67:05:cd:60:2e:16:8a:00:f1:da: 55:c4:ac:cb:30:73:e7:99:7a:ab:61:dc:cd:7b:2b: 3b:28:a8:a2:53:db:f9:9d:e1:d8:e9:48:5c:48:80: ca:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:5C:22:1A:AC:E8:84:60:71:23:58:C8:49:3C:76:EC:8C:28:DD:7E X509v3 Authority Key Identifier: keyid:9D:21:36:6E:D4:E3:73:8A:5F:50:E5:24:10:98:06:C9:8D:71:0B:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/9D21366ED4E3738A5F50E524109806C98D710BD3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/61e44665-e846-455b-aa1a-d5ab07deedf3/0/9D21366ED4E3738A5F50E524109806C98D710BD3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:59:e4:7d:3b:4c:2d:0d:d5:db:8c:5f:c4:eb:a8:be:a3:f1: 39:c3:87:3e:e7:6d:18:4c:58:4b:41:b6:b2:a2:0d:08:77:9f: f3:44:09:66:5c:71:79:8e:b4:e6:cf:36:08:17:0f:80:e6:d8: 00:fd:6e:02:08:be:0b:37:83:2d:7f:0c:9f:b6:3c:45:19:89: f9:fb:5c:ef:30:db:c5:65:6f:b8:a2:a7:8c:e5:0c:53:22:ad: 72:02:91:2f:6b:1b:7c:cd:40:c1:5d:de:b6:e7:44:3a:38:af: 84:26:66:1c:5a:2b:62:6a:17:64:db:ce:a3:ac:85:0f:3d:b0: 87:1c:70:05:9b:3b:a1:d1:35:81:65:43:0f:64:84:73:25:a5: 06:ef:ad:1e:c2:b7:d4:7e:3c:bb:4a:f5:d2:03:c6:56:e9:a5: 70:48:6f:6c:08:8a:5b:6b:b9:f8:06:fc:85:cd:21:03:c0:71: da:08:4d:b5:16:d5:2c:4d:95:c1:71:33:a5:e5:36:87:ab:3b: d8:e8:ab:1c:c5:42:c3:bc:ec:7f:3c:f0:32:6d:78:d6:f3:d6: d0:ab:6b:65:63:31:28:be:c9:8e:f7:01:b1:43:cd:cb:bd:b4: 81:23:1e:c5:95:9b:06:d1:28:2b:b9:6c:de:e7:2e:3d:1a:12: 58:29:87:cc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNmxYxPIkFV0rjqVMhNmUnfn+yk4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4 RDcxMEJEMzAeFw0yNTEyMDcwNDQ1MDBaFw0yNTEyMTAxNjA3MDBaMDMxMTAvBgNV BAMTKEYxNUMyMjFBQUNFODg0NjA3MTIzNThDODQ5M0M3NkVDOEMyOEREN0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpbK6tYl41nRNKlndH1ttOGMj5 bpgGBK5/rvKgXJ4uqkAH8lQiwGQPmYxiS3Hi1QNulfUaLACic1LlwGyhCcxsH/Fg ZMVtfzP4g2M0HnHwglXkg8xfpQ7Ez0pgd0d5j8oODQvDD51PqjymEWUk/W2rClRZ 3x841yTavPSQHXAsLMUdXvVke3DKR8O7XSB93bKqmkknkMUKb+oCRvJopXlS3ql1 1gfky9ZWn2G1UHLh8Imslvy58iy94/rLnX/LLDGIUZQnHV49dTKpFVXuqF7x8pTU GgYTZwXNYC4WigDx2lXErMswc+eZeqth3M17KzsoqKJT2/md4djpSFxIgMrXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8VwiGqzohGBxI1jISTx27Iwo3X4wHwYDVR0j BBgwFoAUnSE2btTjc4pfUOUkEJgGyY1xC9MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 MWU0NDY2NS1lODQ2LTQ1NWItYWExYS1kNWFiMDdkZWVkZjMvMC85RDIxMzY2RUQ0 RTM3MzhBNUY1MEU1MjQxMDk4MDZDOThENzEwQkQzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2Qzk4RDcx MEJEMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjFlNDQ2NjUtZTg0Ni00NTViLWFh MWEtZDVhYjA3ZGVlZGYzLzAvOUQyMTM2NkVENEUzNzM4QTVGNTBFNTI0MTA5ODA2 Qzk4RDcxMEJEMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKxZ5H07TC0N1duMX8TrqL6j8TnDhz7nbRhM WEtBtrKiDQh3n/NECWZccXmOtObPNggXD4Dm2AD9bgIIvgs3gy1/DJ+2PEUZifn7 XO8w28Vlb7iip4zlDFMirXICkS9rG3zNQMFd3rbnRDo4r4QmZhxaK2JqF2TbzqOs hQ89sIcccAWbO6HRNYFlQw9khHMlpQbvrR7Ct9R+PLtK9dIDxlbppXBIb2wIiltr ufgG/IXNIQPAcdoITbUW1SxNlcFxM6XlNoerO9joqxzFQsO87H888DJteNbz1tCr a2VjMSi+yY73AbFDzcu9tIEjHsWVmwbRKCu5bN7nLj0aElgph8w= -----END CERTIFICATE-----Generated at Sun Dec 7 10:30:37 2025 by rpki-client