This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft File: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft (raw, json) Hash identifier: BMPXjhFnZEyDCJSeCZ4cWM1CtXTK0Vk5u3NCqmiPwe0= Subject key identifier: C3:CD:3F:35:C7:E7:E3:85:AC:54:7A:14:93:72:CD:9D:F5:D9:FD:E5 Authority key identifier: 42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA Certificate issuer: /CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Certificate serial: 77C339BCB62D070103D2B790B5A63254C3C842B2 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft Manifest number: 0203 Signing time: Sat 06 Dec 2025 13:41:26 +0000 Manifest this update: Sat 06 Dec 2025 13:36:26 +0000 Manifest next update: Tue 09 Dec 2025 17:58:26 +0000 Files and hashes: 1: 428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl (hash: MuY/6uRle/50zIRC13UCD5R41QVkTwhctsTRhwr4QYk=) 2: 3130332e3139312e33392e302f32342d3234203d3e20313439393233.roa (hash: Hm8P4hacYfkZNd8sZfNbLj4+ngt9DzF5s+/x8t3BFqA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:c3:39:bc:b6:2d:07:01:03:d2:b7:90:b5:a6:32:54:c3:c8:42:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=428173DF58B0C16D8FB92F81F342D6017FB0CECA Validity Not Before: Dec 6 13:36:26 2025 GMT Not After : Dec 9 17:58:26 2025 GMT Subject: CN=C3CD3F35C7E7E385AC547A149372CD9DF5D9FDE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:69:c7:3d:93:13:b4:f2:f2:eb:a7:b7:0a:1d: 1b:57:59:41:56:4c:e1:e7:67:ce:fd:c0:f2:a9:ee: b3:53:71:41:03:d9:e6:fe:fd:99:6c:bb:ab:bc:10: 7c:5a:4f:3e:5e:1a:ad:ae:ae:93:ac:cc:8e:54:87: 76:fd:61:4e:e1:01:d5:64:3c:5e:d2:ef:4e:aa:90: f7:e1:59:7b:67:5b:0c:25:c4:92:9d:84:d3:07:86: 2d:e3:aa:17:ea:a8:8a:da:7b:f3:cc:dd:cb:97:34: 34:a3:0f:99:47:8a:eb:a2:fa:33:31:46:de:b0:74: 80:5e:e2:cc:02:9b:7d:be:2c:0a:a1:71:5e:91:8d: b7:8f:96:43:00:e1:f4:9d:18:09:51:70:4f:34:69: b4:e8:fa:d6:1b:95:2b:21:33:59:46:a9:ec:34:8c: 39:13:fd:66:5f:1e:2e:1f:95:bc:f7:80:3a:cb:9e: a0:60:79:db:e8:e9:a4:0a:91:ab:6e:18:59:7c:a5: 95:ed:2a:80:34:f9:7f:f4:44:6d:d9:b1:b0:9f:96: dd:f0:cd:81:72:9d:3d:07:21:2e:cf:e1:0b:7f:b5: 94:a8:b1:0c:fa:74:52:5e:a3:ce:12:3a:fb:65:f2: 22:c6:fa:b2:38:1a:07:78:e8:66:22:6f:2a:92:26: 31:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:CD:3F:35:C7:E7:E3:85:AC:54:7A:14:93:72:CD:9D:F5:D9:FD:E5 X509v3 Authority Key Identifier: keyid:42:81:73:DF:58:B0:C1:6D:8F:B9:2F:81:F3:42:D6:01:7F:B0:CE:CA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/428173DF58B0C16D8FB92F81F342D6017FB0CECA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/65f84278-e06d-4119-ba44-5c32968a8bbd/0/428173DF58B0C16D8FB92F81F342D6017FB0CECA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4f:de:f8:2a:78:db:ad:fe:c4:e8:be:75:f1:c3:91:a6:ce:57: ed:4c:5e:56:dc:e4:03:d0:3c:08:2d:2f:a5:ca:f3:2e:39:d7: ed:61:f2:f2:e1:33:af:79:47:aa:15:f3:c6:1a:7d:9c:5d:af: 32:fc:cc:8e:b8:8a:97:70:f6:c6:23:cc:2d:86:0b:e0:ca:1f: 2f:b9:df:6d:ad:d3:82:ac:40:6b:9c:fd:fd:df:20:90:a6:4f: 1f:21:80:64:4f:84:ab:42:85:4c:5c:47:ca:47:50:37:04:ba: 5d:7f:f1:c5:4c:ad:f2:bc:bb:3b:79:93:08:d0:3d:af:69:12: ab:60:4c:ee:5b:ca:83:27:e1:ff:30:92:1a:0a:ec:df:69:90: 17:09:c2:33:29:9c:e1:e5:8d:f1:96:0b:97:ad:9f:58:10:36: 8f:88:4c:5d:0b:c2:3b:51:90:38:92:57:b0:15:07:e9:67:9e: 42:73:be:41:79:87:97:84:b5:48:4c:0d:7c:cb:2d:a7:8f:68: 84:be:9f:24:d5:3e:72:b6:20:e1:c3:b0:23:3c:da:ea:7b:bd: b4:e6:e6:94:70:3c:91:aa:ae:39:54:70:6f:f0:7a:be:6b:91: 2e:14:7b:ff:ef:a5:0a:56:57:35:1c:11:0e:bb:2d:6e:f8:eb: d9:ad:d6:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUd8M5vLYtBwED0reQtaYyVMPIQrIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3 RkIwQ0VDQTAeFw0yNTEyMDYxMzM2MjZaFw0yNTEyMDkxNzU4MjZaMDMxMTAvBgNV BAMTKEMzQ0QzRjM1QzdFN0UzODVBQzU0N0ExNDkzNzJDRDlERjVEOUZERTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxacc9kxO08vLrp7cKHRtXWUFW TOHnZ879wPKp7rNTcUED2eb+/Zlsu6u8EHxaTz5eGq2urpOszI5Uh3b9YU7hAdVk PF7S706qkPfhWXtnWwwlxJKdhNMHhi3jqhfqqIrae/PM3cuXNDSjD5lHiuui+jMx Rt6wdIBe4swCm32+LAqhcV6RjbePlkMA4fSdGAlRcE80abTo+tYblSshM1lGqew0 jDkT/WZfHi4flbz3gDrLnqBgedvo6aQKkatuGFl8pZXtKoA0+X/0RG3ZsbCflt3w zYFynT0HIS7P4Qt/tZSosQz6dFJeo84SOvtl8iLG+rI4Ggd46GYibyqSJjHHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUw80/Ncfn44WsVHoUk3LNnfXZ/eUwHwYDVR0j BBgwFoAUQoFz31iwwW2PuS+B80LWAX+wzsowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NWY4NDI3OC1lMDZkLTQxMTktYmE0NC01YzMyOTY4YThiYmQvMC80MjgxNzNERjU4 QjBDMTZEOEZCOTJGODFGMzQyRDYwMTdGQjBDRUNBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2MDE3RkIw Q0VDQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjVmODQyNzgtZTA2ZC00MTE5LWJh NDQtNWMzMjk2OGE4YmJkLzAvNDI4MTczREY1OEIwQzE2RDhGQjkyRjgxRjM0MkQ2 MDE3RkIwQ0VDQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE/e+Cp4263+xOi+dfHDkabOV+1MXlbc5APQ PAgtL6XK8y451+1h8vLhM695R6oV88YafZxdrzL8zI64ipdw9sYjzC2GC+DKHy+5 322t04KsQGuc/f3fIJCmTx8hgGRPhKtChUxcR8pHUDcEul1/8cVMrfK8uzt5kwjQ Pa9pEqtgTO5byoMn4f8wkhoK7N9pkBcJwjMpnOHljfGWC5etn1gQNo+ITF0LwjtR kDiSV7AVB+lnnkJzvkF5h5eEtUhMDXzLLaePaIS+nyTVPnK2IOHDsCM82up7vbTm 5pRwPJGqrjlUcG/wer5rkS4Ue//vpQpWVzUcEQ67LW7469mt1uY= -----END CERTIFICATE-----Generated at Sun Dec 7 02:04:05 2025 by rpki-client