This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft (raw, json) Hash identifier: 8EBD/ArTFTrqWvoIT1eEih+kwm0uO/X1eID34Z1iGOg= Subject key identifier: 84:FB:2D:AA:C5:FB:7C:C4:03:E9:B6:12:D8:1F:01:5B:C1:9D:3F:B5 Authority key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Certificate issuer: /CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Certificate serial: 05E953921ADFE16A8C4CB170859626BEE187F5A6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject info access: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft Manifest number: 0264 Signing time: Fri 05 Dec 2025 15:01:13 +0000 Manifest this update: Fri 05 Dec 2025 14:56:13 +0000 Manifest next update: Mon 08 Dec 2025 20:15:13 +0000 Files and hashes: 1: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl (hash: f3C82gZb7SMUQHtSwHzQQeZzqpiC+IinuastUZeHblM=) 2: 3130332e3136392e3232342e302f32332d3233203d3e20313432333534.roa (hash: etYodgnJYh3trd5HBJwHsn5n2vL2wMwaYJQCzGIxOug=) 3: 3130332e3136392e3232352e302f32342d3234203d3e20313432333534.roa (hash: 0gXOJT38WPRdvZH/mvcMIDFy0eFxFO3CspBZZzjXpXE=) 4: 3130332e3136392e3232342e302f32342d3234203d3e20313432333534.roa (hash: LJlBxq8ymyHGerS3R49fpjBElb4mwDz4wakEqWAnKM4=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 20:15:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e9:53:92:1a:df:e1:6a:8c:4c:b1:70:85:96:26:be:e1:87:f5:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Validity Not Before: Dec 5 14:56:13 2025 GMT Not After : Dec 8 20:15:13 2025 GMT Subject: CN=84FB2DAAC5FB7CC403E9B612D81F015BC19D3FB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:ca:df:db:da:fe:1b:80:1f:55:72:ef:21:2a: d8:b7:56:7d:c4:c3:de:97:63:fd:58:06:d6:7d:6d: 64:43:90:1e:75:66:75:5b:f2:72:d4:e9:9b:03:38: 7d:49:f0:c9:6c:d8:3e:d4:62:aa:05:5d:d2:7d:25: e2:46:7a:f4:e4:86:e2:3f:52:97:3c:97:2a:5f:76: 08:8b:ee:28:e5:c0:ac:db:e8:21:ee:2c:8c:22:e5: 2a:50:15:49:1c:1b:7a:a4:d3:e1:85:c9:73:87:b2: cd:a2:91:e3:e9:67:ec:56:d1:78:46:87:64:b4:a1: 1d:80:ec:f7:f4:f0:3a:19:0c:f1:6c:b2:d1:19:84: 00:73:e3:4d:16:4d:03:a2:dc:1d:e3:01:65:c7:e8: f4:0e:e5:02:92:5b:d9:55:1a:84:b1:59:1f:a7:c9: b6:49:72:b9:90:3a:a4:02:bf:93:34:e4:93:f2:33: 2a:8c:6a:73:6b:57:8a:f3:b3:35:19:1c:52:40:b2: 5e:83:a4:56:45:6f:82:db:77:7a:7c:0f:68:88:4f: 96:d2:33:ae:f0:05:ee:aa:05:65:6f:e7:e6:20:da: 5f:97:6c:eb:9a:63:52:fc:8a:2c:d1:f5:65:c8:8e: d1:b9:0d:8a:2c:90:81:2f:0e:6c:54:0c:90:9a:38: 44:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FB:2D:AA:C5:FB:7C:C4:03:E9:B6:12:D8:1F:01:5B:C1:9D:3F:B5 X509v3 Authority Key Identifier: keyid:AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 19:99:38:08:22:fd:cb:27:26:f8:cb:0b:c8:a3:5b:00:6a:13: c4:b4:17:4c:ba:36:45:0c:37:e4:33:03:d8:17:2c:10:36:35: 08:06:0f:bd:83:1e:26:f3:ac:cb:39:4f:36:a8:49:65:4f:b7: 09:61:0c:79:ae:4b:66:df:ed:e0:64:a8:8c:a1:aa:9f:d9:97: 3b:b8:aa:f6:24:c8:a6:9a:40:ee:ec:18:83:ca:d4:5d:8b:5d: 4b:14:ba:c5:71:54:83:70:7d:2c:e3:50:a2:f1:e3:70:b0:3b: fb:c1:34:c8:e4:4c:16:1d:b7:15:b5:70:50:aa:3b:fd:33:60: 86:30:33:21:ff:ca:ed:e4:fd:b6:4a:0b:e3:77:95:bd:76:24: 96:8f:69:8a:ab:23:03:6e:73:9e:ad:d5:75:b9:2c:68:19:f7: 49:e0:39:cb:f1:76:1f:a9:fd:80:f5:7a:48:71:55:03:18:23: ab:c0:c0:5e:0e:b2:29:15:5c:4d:f1:62:95:82:d2:f7:1c:f3: 97:55:8c:fd:62:08:66:17:e0:30:ee:3c:8d:43:ef:c2:eb:72: c0:a5:b5:66:87:a7:6e:17:55:85:6d:ea:3c:9e:30:d7:2b:0f: ae:1c:e3:05:43:40:a0:97:dc:d7:da:f1:9a:0f:92:44:5e:e1: bc:fd:b1:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBelTkhrf4WqMTLFwhZYmvuGH9aYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3 NDg2N0Y1MzAeFw0yNTEyMDUxNDU2MTNaFw0yNTEyMDgyMDE1MTNaMDMxMTAvBgNV BAMTKDg0RkIyREFBQzVGQjdDQzQwM0U5QjYxMkQ4MUYwMTVCQzE5RDNGQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCjyt/b2v4bgB9Vcu8hKti3Vn3E w96XY/1YBtZ9bWRDkB51ZnVb8nLU6ZsDOH1J8Mls2D7UYqoFXdJ9JeJGevTkhuI/ Upc8lypfdgiL7ijlwKzb6CHuLIwi5SpQFUkcG3qk0+GFyXOHss2ikePpZ+xW0XhG h2S0oR2A7Pf08DoZDPFsstEZhABz400WTQOi3B3jAWXH6PQO5QKSW9lVGoSxWR+n ybZJcrmQOqQCv5M05JPyMyqManNrV4rzszUZHFJAsl6DpFZFb4Lbd3p8D2iIT5bS M67wBe6qBWVv5+Yg2l+XbOuaY1L8iizR9WXIjtG5DYoskIEvDmxUDJCaOESXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUhPstqsX7fMQD6bYS2B8BW8GdP7UwHwYDVR0j BBgwFoAUrSoPazAkv/EUWNcsjlYj+3SGf1MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby82 NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMC9BRDJBMEY2QjMw MjRCRkYxMTQ1OEQ3MkM4RTU2MjNGQjc0ODY3RjUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIzRkI3NDg2 N0Y1My5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNjZhZjRkZTUtNTAzNy00OTE3LTlh OTMtMDE5MmM2OTU5YmZiLzAvQUQyQTBGNkIzMDI0QkZGMTE0NThENzJDOEU1NjIz RkI3NDg2N0Y1My5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABmZOAgi/csnJvjLC8ijWwBqE8S0F0y6NkUM N+QzA9gXLBA2NQgGD72DHibzrMs5TzaoSWVPtwlhDHmuS2bf7eBkqIyhqp/Zlzu4 qvYkyKaaQO7sGIPK1F2LXUsUusVxVINwfSzjUKLx43CwO/vBNMjkTBYdtxW1cFCq O/0zYIYwMyH/yu3k/bZKC+N3lb12JJaPaYqrIwNuc56t1XW5LGgZ90ngOcvxdh+p /YD1ekhxVQMYI6vAwF4OsikVXE3xYpWC0vcc85dVjP1iCGYX4DDuPI1D78LrcsCl tWaHp24XVYVt6jyeMNcrD64c4wVDQKCX3Nfa8ZoPkkRe4bz9sUM= -----END CERTIFICATE-----Generated at Sat Dec 6 22:27:08 2025 by rpki-client