This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft File: D4D0F3E6E684847D602FC73758893CE2BB05D399.mft (raw, json) Hash identifier: bXPfphsKoWrAATk/GRaDMsUZn9tZpa5mpGps0Ibkjd8= Subject key identifier: F1:7C:12:D3:FB:64:DC:88:0A:2E:BD:14:AD:5C:49:DE:E1:C6:58:3B Authority key identifier: D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99 Certificate issuer: /CN=D4D0F3E6E684847D602FC73758893CE2BB05D399 Certificate serial: 1A7F4E88B3A5BF6D7CF7E8A8346A95EC52BF544F Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer Subject info access: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft Manifest number: 01D2 Signing time: Fri 05 Dec 2025 16:20:47 +0000 Manifest this update: Fri 05 Dec 2025 16:15:47 +0000 Manifest next update: Mon 08 Dec 2025 21:22:47 +0000 Files and hashes: 1: D4D0F3E6E684847D602FC73758893CE2BB05D399.crl (hash: ECKbVQOp4TI/Jg21yNSlx+g1EaxlbTSxek+Dj1Mkbgw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.crl rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 21:22:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:7f:4e:88:b3:a5:bf:6d:7c:f7:e8:a8:34:6a:95:ec:52:bf:54:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4D0F3E6E684847D602FC73758893CE2BB05D399 Validity Not Before: Dec 5 16:15:47 2025 GMT Not After : Dec 8 21:22:47 2025 GMT Subject: CN=F17C12D3FB64DC880A2EBD14AD5C49DEE1C6583B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:bd:61:e0:cd:1c:4d:a2:09:04:28:40:ab:e8: c1:23:df:92:ab:dd:61:af:45:ab:be:84:fc:4f:03: 8c:1b:6c:93:33:19:26:17:d0:6e:c3:c6:61:69:36: 6e:aa:7f:d6:df:3a:29:6b:48:1d:b1:d0:e1:6d:4c: 5b:af:ab:2a:a0:d5:e3:86:2c:8d:1e:d1:b0:60:6b: 16:f1:1a:39:4e:a6:20:80:d8:6f:ab:58:51:fa:ed: 74:b2:9a:e5:e0:eb:16:9e:e6:48:da:74:ea:2b:93: 4b:9c:b9:66:ae:34:7c:93:a8:bb:9f:57:a5:c9:29: 25:b9:23:3d:54:9f:f3:09:d6:d5:9f:30:18:47:92: 85:d9:58:5b:f1:c2:65:6b:e9:89:14:00:f9:66:39: 69:43:20:14:bf:72:dc:80:1e:3d:0a:49:c3:29:3a: d4:b3:70:15:e2:73:8d:3d:00:33:02:0c:74:1c:c7: c1:aa:be:0b:b7:63:61:1b:63:8c:38:96:79:e2:ce: 9f:ae:5c:60:31:f1:8c:e5:f4:7b:e8:cb:26:25:41: a4:35:2d:7f:f6:46:3a:90:43:d3:10:97:45:f9:07: 33:52:13:0f:e4:2e:42:81:46:45:d1:9f:ab:2d:81: 7e:96:50:6a:60:33:27:2d:84:ef:1c:79:3d:65:26: 7f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:7C:12:D3:FB:64:DC:88:0A:2E:BD:14:AD:5C:49:DE:E1:C6:58:3B X509v3 Authority Key Identifier: keyid:D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b5:d1:99:97:2f:c1:cb:59:98:71:78:e3:df:93:ca:4e:fa:7e: 07:85:d0:f3:1a:dd:83:68:23:65:bf:4a:78:7a:f5:20:59:d0: c1:fe:e3:77:c9:f0:52:7f:bc:5c:9a:d2:ad:79:14:57:fc:2d: 31:aa:2f:c4:2a:fa:18:2b:df:de:12:79:d3:c8:b5:d8:75:6d: f9:b3:54:69:d0:37:99:95:f8:7a:5d:58:59:d1:ad:59:b9:3b: e4:15:61:16:14:46:b1:f2:90:3a:65:d1:ba:5a:72:50:d1:de: 73:09:05:1d:d3:f9:d1:12:35:b4:70:d7:a4:fc:4b:e5:4b:7f: be:fc:8d:e2:e5:0b:e3:48:86:12:46:00:39:e9:7e:25:8f:3a: 47:fc:7e:ec:62:78:92:b7:c2:86:44:37:04:45:b0:11:9f:2b: 2b:12:91:4b:01:d8:1c:42:b2:0a:68:e3:96:87:f1:1e:40:09: 5b:3a:ba:19:6b:83:8f:c2:27:81:99:6b:f3:6d:6e:4a:2a:19: db:d1:8b:ac:e3:2b:99:e2:41:bb:bf:e7:73:29:46:a9:6c:2a: 88:da:35:a7:24:62:ae:7d:8d:c6:6e:f6:15:e2:67:5b:b7:c4: b9:16:a5:56:2d:3d:ec:e6:ba:09:5f:16:71:91:b4:f3:7d:72: 84:d9:b2:35 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGn9OiLOlv2189+ioNGqV7FK/VE8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDREMEYzRTZFNjg0ODQ3RDYwMkZDNzM3NTg4OTNDRTJC QjA1RDM5OTAeFw0yNTEyMDUxNjE1NDdaFw0yNTEyMDgyMTIyNDdaMDMxMTAvBgNV BAMTKEYxN0MxMkQzRkI2NERDODgwQTJFQkQxNEFENUM0OURFRTFDNjU4M0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvvWHgzRxNogkEKECr6MEj35Kr 3WGvRau+hPxPA4wbbJMzGSYX0G7DxmFpNm6qf9bfOilrSB2x0OFtTFuvqyqg1eOG LI0e0bBgaxbxGjlOpiCA2G+rWFH67XSymuXg6xae5kjadOork0ucuWauNHyTqLuf V6XJKSW5Iz1Un/MJ1tWfMBhHkoXZWFvxwmVr6YkUAPlmOWlDIBS/ctyAHj0KScMp OtSzcBXic409ADMCDHQcx8Gqvgu3Y2EbY4w4lnnizp+uXGAx8Yzl9HvoyyYlQaQ1 LX/2RjqQQ9MQl0X5BzNSEw/kLkKBRkXRn6stgX6WUGpgMycthO8ceT1lJn8JAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU8XwS0/tk3IgKLr0UrVxJ3uHGWDswHwYDVR0j BBgwFoAU1NDz5uaEhH1gL8c3WIk84rsF05kwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MjM1MzBlYy05OTBlLTQxZDctOWQ3OC1iNzdlMjBkNzZiY2QvMC9ENEQwRjNFNkU2 ODQ4NDdENjAyRkM3Mzc1ODg5M0NFMkJCMDVEMzk5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDREMEYzRTZFNjg0ODQ3RDYwMkZDNzM3NTg4OTNDRTJCQjA1 RDM5OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODIzNTMwZWMtOTkwZS00MWQ3LTlk NzgtYjc3ZTIwZDc2YmNkLzAvRDREMEYzRTZFNjg0ODQ3RDYwMkZDNzM3NTg4OTND RTJCQjA1RDM5OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALXRmZcvwctZmHF449+Tyk76fgeF0PMa3YNo I2W/Snh69SBZ0MH+43fJ8FJ/vFya0q15FFf8LTGqL8Qq+hgr394SedPItdh1bfmz VGnQN5mV+HpdWFnRrVm5O+QVYRYURrHykDpl0bpaclDR3nMJBR3T+dESNbRw16T8 S+VLf778jeLlC+NIhhJGADnpfiWPOkf8fuxieJK3woZENwRFsBGfKysSkUsB2BxC sgpo45aH8R5ACVs6uhlrg4/CJ4GZa/NtbkoqGdvRi6zjK5niQbu/53MpRqlsKoja NackYq59jcZu9hXiZ1u3xLkWpVYtPezmuglfFnGRtPN9coTZsjU= -----END CERTIFICATE-----Generated at Sat Dec 6 22:51:20 2025 by rpki-client