This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft File: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft (raw, json) Hash identifier: O+en1fWevyH/Q9QvlwfwgW5yLj3lU/Yr17LBwv4Xa7U= Subject key identifier: 4B:54:CC:34:11:B0:67:39:8E:CE:3F:62:8D:39:E2:0A:83:A3:B5:D0 Authority key identifier: D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B Certificate issuer: /CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Certificate serial: 1A01310A7B923F398FF044CB653CB401B8A4D4B6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft Manifest number: 01C0 Signing time: Thu 04 Dec 2025 16:31:53 +0000 Manifest this update: Thu 04 Dec 2025 16:26:53 +0000 Manifest next update: Mon 08 Dec 2025 04:08:53 +0000 Files and hashes: 1: 3130332e3231332e3131362e302f32342d3234203d3e203338373530.roa (hash: bk766NBayeqzl2TpClpr9IhYx+ApKL2x4uzDJCxWkIk=) 2: 3230322e3137392e3138392e302f32342d3234203d3e203338373530.roa (hash: cN4silcvuPV22OI3IsNy5UveikGt8GvqnC8R2u5vZmI=) 3: 3130332e3231332e3131372e302f32342d3234203d3e203338373530.roa (hash: XubVHR1uW/U3u8JfLGlOr8aeDpjn5EspQIPSeyKbXv4=) 4: 3230322e3137392e3138342e302f32342d3234203d3e203338373530.roa (hash: 9Eop7Wi9KDAgTJcnqm4m9VblRXdXAgnSYGkJE3U1uCo=) 5: 3230322e3137392e3138382e302f32342d3234203d3e203338373530.roa (hash: DZYxEEoedEoh7hUvK00A3sjPaarHyHkFwFSubpvLa90=) 6: 3230322e3137392e3138352e302f32342d3234203d3e203338373530.roa (hash: Y4Wi8qAYZ81rv46ZtcXhKaHsjEBVaOJAYBhmKDi8JTE=) 7: 3230322e3137392e3139302e302f32342d3234203d3e203338373530.roa (hash: IlfpZnqN0u5jMQ+MMy/Uh2Q/ScrlgNhJWft3oBH8Ovo=) 8: 3230322e3137392e3139312e302f32342d3234203d3e203338373530.roa (hash: L4h2Wp4fQdhUrMD0z3Ssoa6P+p1dDNjkEiybK+QQebs=) 9: 3230322e3137392e3138362e302f32342d3234203d3e203338373530.roa (hash: zofQAGzRLVSbQfa8x1HxlEvAC2rTzuC4QEGkc7xHMvw=) 10: 3230322e3137392e3138372e302f32342d3234203d3e203338373530.roa (hash: B48tlPMvOf7K7HzDvvhN+csuCxhTxi2XsZzldYqsXqU=) 11: 3130332e3231332e3131382e302f32342d3234203d3e203338373530.roa (hash: WKBxmJwVLzCYBVgxt4LMTfwAcTtnh7yu4VGARK2zxgY=) 12: 3130332e3231332e3131392e302f32342d3234203d3e203338373530.roa (hash: s4bQxfKSzhThJnV2s35QtgCBE4otyhr6xeMzoqnFm8Y=) 13: D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl (hash: 55cSpGnTMdI3ZUBX0LmTYFIEylOPzYIReoOIhsGGJ6M=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 04:08:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:01:31:0a:7b:92:3f:39:8f:f0:44:cb:65:3c:b4:01:b8:a4:d4:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D55BE8217A22212F977BD95B41F7C9EE9DE3201B Validity Not Before: Dec 4 16:26:53 2025 GMT Not After : Dec 8 04:08:53 2025 GMT Subject: CN=4B54CC3411B067398ECE3F628D39E20A83A3B5D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:3c:ab:3f:cc:a8:f0:2b:8f:1d:a1:54:87:08: 79:41:44:b7:7e:09:49:e0:aa:2a:9c:fc:18:24:aa: c5:a8:4f:b2:cc:fe:0e:d5:a6:c0:44:27:2c:0a:71: 9a:7d:bd:5e:02:ab:50:ed:df:46:f9:d0:4f:71:4d: 69:a7:95:c5:53:15:6a:e7:28:00:8a:8d:56:f5:55: 65:42:d7:ff:80:1d:f9:8e:64:14:a5:1d:5d:5a:b6: c1:81:08:fa:13:b3:15:6a:4f:ef:d4:5f:8b:40:f8: 6f:18:3e:a3:24:40:fe:f2:14:34:e3:ab:be:6f:40: 87:69:aa:d1:8a:ca:20:f0:df:b2:bc:d7:a7:d3:92: e2:f8:e5:6c:7d:fd:0d:f7:2f:ac:75:2d:50:f3:01: 3b:f8:03:bd:56:5d:cd:4b:d4:03:72:c3:39:f3:00: ac:3c:15:95:ff:40:2b:c6:32:7f:2d:9f:e3:9f:df: 51:51:50:c6:f6:02:c6:34:c2:41:1a:79:a0:60:b8: 19:59:69:36:8c:b2:f2:e3:43:c8:d1:d4:ce:35:69: 69:a4:ce:88:be:25:40:83:66:f3:75:59:fb:ef:31: 04:10:d1:9a:ed:a6:0e:ea:d8:69:93:18:76:2d:23: 42:fe:7b:f7:44:cc:f3:12:94:d5:b4:99:e9:39:01: 6a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:54:CC:34:11:B0:67:39:8E:CE:3F:62:8D:39:E2:0A:83:A3:B5:D0 X509v3 Authority Key Identifier: keyid:D5:5B:E8:21:7A:22:21:2F:97:7B:D9:5B:41:F7:C9:EE:9D:E3:20:1B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/70f5cfdb-7987-4351-bc2e-66c24f49f440/0/D55BE8217A22212F977BD95B41F7C9EE9DE3201B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:a7:ba:1a:f4:df:d4:20:00:23:43:4b:f9:70:dc:3a:78:2d: 2b:94:31:c2:03:4e:ea:86:61:46:7b:f2:e0:cb:31:12:1e:5a: 50:25:4d:5d:9b:38:ae:d9:6b:c3:de:dd:d4:4f:43:4d:5e:d6: 85:a7:7c:a7:aa:fa:f6:3e:56:1f:e4:97:00:e9:67:79:f5:48: cb:86:ff:01:fa:6b:81:52:ec:b8:90:38:7b:ae:ee:d7:58:be: 43:3c:9e:f9:b0:a9:cc:50:a7:d0:37:c3:7b:0f:2f:ac:ae:89: 1b:dc:bd:90:78:41:81:ff:a8:46:32:06:ec:7c:d5:1a:a4:41: c8:21:b3:73:19:bc:91:1b:de:51:5c:31:0b:1e:87:23:7f:62: 22:19:59:ec:0f:f8:35:cc:69:b5:b7:e4:69:13:0d:9f:9c:d7: 21:26:f2:28:86:65:90:f6:6d:a4:0d:b3:63:7c:bd:00:d7:51: 7c:f5:91:44:99:02:a8:3f:66:20:c6:05:9b:b0:9e:3c:f6:d6: 0c:fe:7d:24:3b:50:7a:c5:32:ef:7a:07:cc:e8:83:2f:87:02: 6c:62:56:cb:7b:99:0f:e3:3b:98:79:16:9d:23:2a:eb:ac:24: 23:05:bc:40:8c:f6:91:5c:25:43:47:d2:cb:0c:95:22:38:8e: 6a:56:d2:96 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGgExCnuSPzmP8ETLZTy0Abik1LYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5 REUzMjAxQjAeFw0yNTEyMDQxNjI2NTNaFw0yNTEyMDgwNDA4NTNaMDMxMTAvBgNV BAMTKDRCNTRDQzM0MTFCMDY3Mzk4RUNFM0Y2MjhEMzlFMjBBODNBM0I1RDAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC9PKs/zKjwK48doVSHCHlBRLd+ CUngqiqc/BgkqsWoT7LM/g7VpsBEJywKcZp9vV4Cq1Dt30b50E9xTWmnlcVTFWrn KACKjVb1VWVC1/+AHfmOZBSlHV1atsGBCPoTsxVqT+/UX4tA+G8YPqMkQP7yFDTj q75vQIdpqtGKyiDw37K816fTkuL45Wx9/Q33L6x1LVDzATv4A71WXc1L1ANywznz AKw8FZX/QCvGMn8tn+Of31FRUMb2AsY0wkEaeaBguBlZaTaMsvLjQ8jR1M41aWmk zoi+JUCDZvN1WfvvMQQQ0Zrtpg7q2GmTGHYtI0L+e/dEzPMSlNW0mek5AWrJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS1TMNBGwZzmOzj9ijTniCoOjtdAwHwYDVR0j BBgwFoAU1VvoIXoiIS+Xe9lbQffJ7p3jIBswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 MGY1Y2ZkYi03OTg3LTQzNTEtYmMyZS02NmMyNGY0OWY0NDAvMC9ENTVCRTgyMTdB MjIyMTJGOTc3QkQ5NUI0MUY3QzlFRTlERTMyMDFCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5RUU5REUz MjAxQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzBmNWNmZGItNzk4Ny00MzUxLWJj MmUtNjZjMjRmNDlmNDQwLzAvRDU1QkU4MjE3QTIyMjEyRjk3N0JEOTVCNDFGN0M5 RUU5REUzMjAxQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHinuhr039QgACNDS/lw3Dp4LSuUMcIDTuqG YUZ78uDLMRIeWlAlTV2bOK7Za8Pe3dRPQ01e1oWnfKeq+vY+Vh/klwDpZ3n1SMuG /wH6a4FS7LiQOHuu7tdYvkM8nvmwqcxQp9A3w3sPL6yuiRvcvZB4QYH/qEYyBux8 1RqkQcghs3MZvJEb3lFcMQsehyN/YiIZWewP+DXMabW35GkTDZ+c1yEm8iiGZZD2 baQNs2N8vQDXUXz1kUSZAqg/ZiDGBZuwnjz21gz+fSQ7UHrFMu96B8zogy+HAmxi Vst7mQ/jO5h5Fp0jKuusJCMFvECM9pFcJUNH0ssMlSI4jmpW0pY= -----END CERTIFICATE-----Generated at Sun Dec 7 05:17:23 2025 by rpki-client