This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft File: 604C441ACDF554F380D7FED8F68B2EC7FB780413.mft (raw, json) Hash identifier: gZltdvmUmJVLx2Emwf5VUdZetEKIporD6rHcC8Ksc3E= Subject key identifier: 7E:94:63:1D:1B:F4:75:2F:64:51:46:81:F7:38:F5:97:B6:12:DD:D3 Authority key identifier: 60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 Certificate issuer: /CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Certificate serial: 41F55D27949585541F18A78D45B8871BDE192EE8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject info access: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft Manifest number: 01F5 Signing time: Fri 05 Dec 2025 17:31:07 +0000 Manifest this update: Fri 05 Dec 2025 17:26:07 +0000 Manifest next update: Mon 08 Dec 2025 18:27:07 +0000 Files and hashes: 1: 3130332e3139312e3139372e302f32342d3234203d3e20313439393334.roa (hash: sm8jeStS9mRgsrGl5CeRQ6sBSscm5f2rHE/KQpXoWj8=) 2: 3130332e3139312e3139362e302f32342d3234203d3e20313439393334.roa (hash: EQbr12ySqIrNTM9njp7Wb0XN8yJtB1BDEx2u9gpZun8=) 3: 604C441ACDF554F380D7FED8F68B2EC7FB780413.crl (hash: e7Rt/rqawoRb4Z9kZe13qP0xPcO/Xikqt2dHQdqTrxU=) 4: 3130332e3139312e3139362e302f32332d3234203d3e20313439393334.roa (hash: OjD7igAi8uIoux+rVxGtZEh2dpv8xELOea0gwWs5+6I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 18:27:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:f5:5d:27:94:95:85:54:1f:18:a7:8d:45:b8:87:1b:de:19:2e:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=604C441ACDF554F380D7FED8F68B2EC7FB780413 Validity Not Before: Dec 5 17:26:07 2025 GMT Not After : Dec 8 18:27:07 2025 GMT Subject: CN=7E94631D1BF4752F64514681F738F597B612DDD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:8a:53:2a:ac:9d:71:e0:17:ed:7a:fd:a0:87: a8:ca:39:0a:6b:15:69:42:44:0d:51:95:9f:b5:63: 4f:55:25:3e:56:b0:3b:69:71:ea:1d:99:bf:9c:6c: 1e:05:45:11:49:05:81:94:f3:b4:9d:42:0b:95:78: fe:e1:62:fb:0f:0e:6d:85:67:cf:c7:30:99:3d:bd: 2e:67:a9:1d:a7:ec:67:ad:dc:38:9a:e5:b6:51:99: 91:43:a5:95:86:ee:f7:f0:79:3a:73:7f:f8:b3:5a: e8:d2:43:cd:9c:8f:0f:c9:83:75:09:41:10:a7:cc: fd:73:0a:d8:2a:69:d4:a1:9e:79:9a:29:95:ac:0d: be:75:ac:ca:34:90:3b:50:4d:c1:ef:d1:2d:d5:22: 9c:81:31:94:9f:03:55:cd:9e:f8:2f:cd:9e:4e:1e: d5:dc:f8:a0:9a:b0:93:2c:5c:dc:d0:74:0d:ee:b7: cd:7d:6d:91:3b:f4:6e:dc:51:af:3f:00:20:04:91: b1:ed:ea:c8:4e:31:2c:7b:e7:19:9e:0e:6a:d6:35: 8e:87:df:23:f8:3b:d9:cc:5e:cb:ae:6b:4e:de:4e: 11:63:b4:cb:1e:db:32:0c:01:0f:e6:b5:6e:2d:71: 7c:44:30:7e:f1:24:4b:b3:f5:60:63:b5:9a:95:45: 40:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:94:63:1D:1B:F4:75:2F:64:51:46:81:F7:38:F5:97:B6:12:DD:D3 X509v3 Authority Key Identifier: keyid:60:4C:44:1A:CD:F5:54:F3:80:D7:FE:D8:F6:8B:2E:C7:FB:78:04:13 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/604C441ACDF554F380D7FED8F68B2EC7FB780413.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/75d6efff-85b2-4af4-89ab-6d98c9527da4/0/604C441ACDF554F380D7FED8F68B2EC7FB780413.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption be:b0:ed:5a:4c:84:e7:79:39:f8:0d:d5:fe:d2:8c:1d:60:2b: b1:da:71:d8:e3:3d:ae:ec:33:fc:44:15:b6:44:49:b0:f4:50: 6c:bd:63:5c:85:a3:74:ac:4e:50:03:b1:67:cc:81:40:b4:82: 16:47:b6:79:d9:db:81:1f:30:d7:05:a3:9c:64:27:43:87:a3: e0:d6:f3:90:58:58:2e:0d:cc:33:c7:6b:5c:79:1f:4a:ce:25: 78:78:69:6c:a2:e2:1d:88:fc:45:4b:d5:fd:e6:f8:48:c7:2a: 3b:b7:ec:43:2d:1d:76:1f:39:92:61:78:4e:53:af:5d:eb:a0: 4b:fc:9a:2f:38:9e:79:5b:02:a9:5c:70:09:a6:34:d8:08:36: 20:7e:72:c1:e8:bb:25:43:5e:6b:3b:b4:d8:e4:53:c0:dc:c8: 87:52:5e:56:07:92:ac:1a:03:38:c5:e0:9f:d8:62:06:8a:9f: 6c:5b:0e:54:4c:37:1c:58:12:f7:f9:70:95:c5:7f:6f:2a:ba: 11:3e:1b:63:0a:06:c9:f0:5e:aa:0f:44:1d:0a:29:30:11:12: fd:2b:12:3c:18:2a:f4:d8:3b:24:d1:64:11:f8:96:dd:c7:f4: 53:bc:30:5b:ee:8e:21:25:38:06:60:63:3a:5a:c8:76:53:ad: 36:35:3e:c3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUQfVdJ5SVhVQfGKeNRbiHG94ZLugwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdG Qjc4MDQxMzAeFw0yNTEyMDUxNzI2MDdaFw0yNTEyMDgxODI3MDdaMDMxMTAvBgNV BAMTKDdFOTQ2MzFEMUJGNDc1MkY2NDUxNDY4MUY3MzhGNTk3QjYxMkRERDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7ilMqrJ1x4Bftev2gh6jKOQpr FWlCRA1RlZ+1Y09VJT5WsDtpceodmb+cbB4FRRFJBYGU87SdQguVeP7hYvsPDm2F Z8/HMJk9vS5nqR2n7Get3Dia5bZRmZFDpZWG7vfweTpzf/izWujSQ82cjw/Jg3UJ QRCnzP1zCtgqadShnnmaKZWsDb51rMo0kDtQTcHv0S3VIpyBMZSfA1XNnvgvzZ5O HtXc+KCasJMsXNzQdA3ut819bZE79G7cUa8/ACAEkbHt6shOMSx75xmeDmrWNY6H 3yP4O9nMXsuua07eThFjtMse2zIMAQ/mtW4tcXxEMH7xJEuz9WBjtZqVRUCdAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUfpRjHRv0dS9kUUaB9zj1l7YS3dMwHwYDVR0j BBgwFoAUYExEGs31VPOA1/7Y9osux/t4BBMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83 NWQ2ZWZmZi04NWIyLTRhZjQtODlhYi02ZDk4Yzk1MjdkYTQvMC82MDRDNDQxQUNE RjU1NEYzODBEN0ZFRDhGNjhCMkVDN0ZCNzgwNDEzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJFQzdGQjc4 MDQxMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzVkNmVmZmYtODViMi00YWY0LTg5 YWItNmQ5OGM5NTI3ZGE0LzAvNjA0QzQ0MUFDREY1NTRGMzgwRDdGRUQ4RjY4QjJF QzdGQjc4MDQxMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAL6w7VpMhOd5OfgN1f7SjB1gK7HacdjjPa7s M/xEFbZESbD0UGy9Y1yFo3SsTlADsWfMgUC0ghZHtnnZ24EfMNcFo5xkJ0OHo+DW 85BYWC4NzDPHa1x5H0rOJXh4aWyi4h2I/EVL1f3m+EjHKju37EMtHXYfOZJheE5T r13roEv8mi84nnlbAqlccAmmNNgINiB+csHouyVDXms7tNjkU8DcyIdSXlYHkqwa AzjF4J/YYgaKn2xbDlRMNxxYEvf5cJXFf28quhE+G2MKBsnwXqoPRB0KKTAREv0r EjwYKvTYOyTRZBH4lt3H9FO8MFvujiElOAZgYzpayHZTrTY1PsM= -----END CERTIFICATE-----Generated at Sun Dec 7 00:48:42 2025 by rpki-client