This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft File: 41071AAF0C0E6BD84877680334B4F604B4B4E786.mft (raw, json) Hash identifier: oavcKEHPuRuez1bgZrbHfpKDuYNSAY6QJr/V5v2V3dw= Subject key identifier: 9F:81:AF:6A:3C:D8:27:DE:ED:7F:B1:AF:64:DF:F1:41:04:AD:D7:0A Authority key identifier: 41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 Certificate issuer: /CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Certificate serial: 1CD9D9844938D05F0ACFC564BCCFCB15B58791 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject info access: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft Manifest number: 0224 Signing time: Fri 05 Dec 2025 17:42:19 +0000 Manifest this update: Fri 05 Dec 2025 17:37:19 +0000 Manifest next update: Mon 08 Dec 2025 22:22:19 +0000 Files and hashes: 1: 3130332e3136372e322e302f32342d3234203d3e20313431393637.roa (hash: S3FgE0+gcaLyx6nH2zsRG+Hi0BgVRkLf/ndGC4F7z/0=) 2: 41071AAF0C0E6BD84877680334B4F604B4B4E786.crl (hash: WHBxdvbfqNflUb/tQnsswuRP6eZ9B4tWr6PVZ1l6tyA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 22:22:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:d9:d9:84:49:38:d0:5f:0a:cf:c5:64:bc:cf:cb:15:b5:87:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41071AAF0C0E6BD84877680334B4F604B4B4E786 Validity Not Before: Dec 5 17:37:19 2025 GMT Not After : Dec 8 22:22:19 2025 GMT Subject: CN=9F81AF6A3CD827DEED7FB1AF64DFF14104ADD70A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:3f:77:a0:c3:f4:60:b5:5a:72:31:98:ae:2a: 9b:a1:0f:b5:a5:de:86:bf:df:73:da:e1:4e:dc:73: 98:e0:9f:f8:18:79:01:ef:97:12:4d:f9:92:b9:db: db:10:3a:6b:fb:c7:20:4f:fb:9d:33:08:3e:b4:89: 89:bb:f0:97:77:92:2b:84:68:cb:d0:05:30:25:cf: 9c:1a:90:a0:52:ed:6e:4e:ec:d1:ce:78:7a:fe:14: 07:97:49:10:93:61:93:05:06:d9:1e:5a:3b:cb:ab: 67:2b:cd:9d:17:ad:22:8e:8f:e0:5c:d9:f1:87:a0: 41:6b:ef:92:9c:80:a6:99:ae:ea:1a:25:ab:80:b6: 13:cd:f8:65:6d:24:07:84:8a:b4:30:96:9d:20:8d: 1c:b4:ce:a9:b3:2d:3c:75:f9:be:55:f3:56:7b:72: 07:46:28:f5:14:b5:9e:05:70:bc:78:c0:24:b1:14: 82:0f:d8:43:8d:c7:73:d3:ea:59:cc:11:dd:ad:20: f1:a0:fa:40:3b:15:3e:08:4c:f2:4f:14:83:70:a9: ce:f5:0f:71:31:59:1d:e8:93:0f:e3:f2:a5:5d:6e: b4:ee:3e:e2:4d:5b:60:69:fc:af:b1:81:d2:3b:56: 96:88:82:e4:63:89:f7:01:d3:4f:43:80:12:56:13: 5a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:81:AF:6A:3C:D8:27:DE:ED:7F:B1:AF:64:DF:F1:41:04:AD:D7:0A X509v3 Authority Key Identifier: keyid:41:07:1A:AF:0C:0E:6B:D8:48:77:68:03:34:B4:F6:04:B4:B4:E7:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/41071AAF0C0E6BD84877680334B4F604B4B4E786.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/7e27b3e1-f611-4afe-9a49-5fa4fd557653/0/41071AAF0C0E6BD84877680334B4F604B4B4E786.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0c:9a:b3:95:e1:8d:e2:93:60:3e:f4:8b:3f:c6:74:9f:ae:a9: a5:64:f0:65:50:20:c2:6a:78:49:e6:14:59:7f:57:7e:6e:80: a9:49:e9:73:fe:ec:86:61:6d:40:49:c9:8e:81:9a:36:77:04: 8c:65:d9:f3:cd:a9:07:d2:26:6a:9f:57:f2:92:de:15:3b:b6: 85:c2:1c:3a:8c:89:1e:d1:21:cc:c0:da:a9:b9:bf:d5:e7:fe: 30:d0:ca:94:4a:c2:85:98:50:69:00:b6:7d:2c:bf:92:29:18: c3:5f:7f:08:36:4c:4f:47:11:e1:0c:dd:ed:60:75:4b:39:32: b3:66:fc:3b:c2:89:2d:1a:1e:42:51:c1:84:de:e8:18:37:3c: 1d:3f:2f:5f:cb:34:5c:8c:f6:54:7e:53:5d:11:e7:d0:62:71: 9f:c4:6a:0f:2a:33:6b:42:3b:e1:1b:17:24:69:30:aa:a9:7f: d1:86:48:46:a3:71:5e:69:17:77:49:4d:89:a4:06:28:9c:be: 82:48:a2:7a:02:82:3d:fd:cd:3d:7b:05:1a:16:1d:c8:2a:16: ab:71:f6:00:fa:c2:d2:1e:23:3b:e6:13:32:d9:2e:1c:7e:1e: a2:b0:95:c0:41:3e:66:03:ca:ca:36:f9:58:1a:26:25:ae:f0: b4:ef:35:04 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITHNnZhEk40F8Kz8VkvM/LFbWHkTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyg0MTA3MUFBRjBDMEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0 QjRFNzg2MB4XDTI1MTIwNTE3MzcxOVoXDTI1MTIwODIyMjIxOVowMzExMC8GA1UE AxMoOUY4MUFGNkEzQ0Q4MjdERUVEN0ZCMUFGNjRERkYxNDEwNEFERDcwQTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJo/d6DD9GC1WnIxmK4qm6EPtaXe hr/fc9rhTtxzmOCf+Bh5Ae+XEk35krnb2xA6a/vHIE/7nTMIPrSJibvwl3eSK4Ro y9AFMCXPnBqQoFLtbk7s0c54ev4UB5dJEJNhkwUG2R5aO8urZyvNnRetIo6P4FzZ 8YegQWvvkpyAppmu6holq4C2E834ZW0kB4SKtDCWnSCNHLTOqbMtPHX5vlXzVnty B0Yo9RS1ngVwvHjAJLEUgg/YQ43Hc9PqWcwR3a0g8aD6QDsVPghM8k8Ug3CpzvUP cTFZHeiTD+PypV1utO4+4k1bYGn8r7GB0jtWloiC5GOJ9wHTT0OAElYTWhMCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBSfga9qPNgn3u1/sa9k3/FBBK3XCjAfBgNVHSME GDAWgBRBBxqvDA5r2Eh3aAM0tPYEtLTnhjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdl MjdiM2UxLWY2MTEtNGFmZS05YTQ5LTVmYTRmZDU1NzY1My8wLzQxMDcxQUFGMEMw RTZCRDg0ODc3NjgwMzM0QjRGNjA0QjRCNEU3ODYuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi80MTA3MUFBRjBDMEU2QkQ4NDg3NzY4MDMzNEI0RjYwNEI0QjRF Nzg2LmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby83ZTI3YjNlMS1mNjExLTRhZmUtOWE0 OS01ZmE0ZmQ1NTc2NTMvMC80MTA3MUFBRjBDMEU2QkQ4NDg3NzY4MDMzNEI0RjYw NEI0QjRFNzg2Lm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEADJqzleGN4pNgPvSLP8Z0n66ppWTwZVAgwmp4 SeYUWX9Xfm6AqUnpc/7shmFtQEnJjoGaNncEjGXZ882pB9Imap9X8pLeFTu2hcIc OoyJHtEhzMDaqbm/1ef+MNDKlErChZhQaQC2fSy/kikYw19/CDZMT0cR4Qzd7WB1 Szkys2b8O8KJLRoeQlHBhN7oGDc8HT8vX8s0XIz2VH5TXRHn0GJxn8RqDyoza0I7 4RsXJGkwqql/0YZIRqNxXmkXd0lNiaQGKJy+gkiiegKCPf3NPXsFGhYdyCoWq3H2 APrC0h4jO+YTMtkuHH4eorCVwEE+ZgPKyjb5WBomJa7wtO81BA== -----END CERTIFICATE-----Generated at Sun Dec 7 04:36:04 2025 by rpki-client