This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft File: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft (raw, json) Hash identifier: T1GHShyJaY4aMOuihKi8o1VCqocehV+WUnSKUe+JbrA= Subject key identifier: A0:F6:72:80:E7:D3:BA:24:1E:24:35:64:65:01:85:12:3D:6D:8D:DA Authority key identifier: 70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E Certificate issuer: /CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Certificate serial: 60487A7353600D80C4104D0D4B383CAAB1A9CAA3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft Manifest number: 04C9 Signing time: Sat 06 Dec 2025 15:41:23 +0000 Manifest this update: Sat 06 Dec 2025 15:36:23 +0000 Manifest next update: Tue 09 Dec 2025 21:56:23 +0000 Files and hashes: 1: 7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl (hash: iWt3DMvt+BCwvkWT4IgIMk6+Y3rWa/zvpdc3Hq2pPDE=) 2: 3130332e3134362e3139362e302f32332d3233203d3e20313339393431.roa (hash: KEUVODDrcsujN0g1v6DrUa6Mji4U9jJWIyDXhx1aJNY=) 3: 3130332e3134362e3139362e302f32342d3234203d3e20313339393431.roa (hash: WkFNZS79+nq1P3vYzsoqHasGlqkPwC3TJbG5gTcIHd8=) 4: 3130332e3134362e3139372e302f32342d3234203d3e20313339393431.roa (hash: p7Jtuo2fT9SMHQpNlniVY5E8TDvsdgf0sorpgXPSACM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:48:7a:73:53:60:0d:80:c4:10:4d:0d:4b:38:3c:aa:b1:a9:ca:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7008868799E77C42E437F0D7ACCF683CF5B2AA4E Validity Not Before: Dec 6 15:36:23 2025 GMT Not After : Dec 9 21:56:23 2025 GMT Subject: CN=A0F67280E7D3BA241E243564650185123D6D8DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:63:22:e4:9e:ee:49:27:26:5e:14:b7:41:a3: 5c:46:81:94:dc:30:ba:59:eb:28:1e:14:7f:fb:3c: bd:69:12:e5:a7:43:17:53:83:1a:9a:b6:26:26:fe: c0:5e:c6:e5:fb:8c:7a:ae:77:54:b0:8c:64:d8:78: f6:7e:73:ae:8d:ca:ca:4b:60:7c:ca:a5:7e:5b:94: dc:0b:cb:48:ee:51:a4:86:ec:cc:d2:28:bb:96:67: 29:f6:7f:07:42:99:d7:f2:5b:6e:47:46:6d:b4:33: a5:81:83:bc:75:40:11:ed:b2:82:57:e7:ea:94:e8: a5:c6:b6:64:bf:95:c6:00:2b:d0:72:da:f4:93:2e: 16:18:f5:cb:03:d4:b0:9d:fe:dd:bf:11:bf:a5:14: 7a:9e:c0:a9:89:a8:83:55:30:df:93:9e:c5:bc:20: a6:a3:b6:a2:c4:a2:2b:b5:25:c9:e8:28:25:09:0f: eb:a5:57:db:7d:72:b4:18:69:86:b6:55:db:d4:83: dc:a8:08:75:b7:71:d3:da:df:da:2b:d7:4f:a3:a9: 61:3e:c5:60:ef:12:04:c5:1e:b8:1e:6d:fe:a0:af: 98:96:f0:b5:d5:81:cf:d7:bd:d4:4a:93:1c:90:f2: f8:e3:6f:f7:ac:40:75:88:7e:34:3e:98:df:16:5b: c8:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F6:72:80:E7:D3:BA:24:1E:24:35:64:65:01:85:12:3D:6D:8D:DA X509v3 Authority Key Identifier: keyid:70:08:86:87:99:E7:7C:42:E4:37:F0:D7:AC:CF:68:3C:F5:B2:AA:4E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/835048c6-8ccd-463d-ad34-ae7428647a9c/0/7008868799E77C42E437F0D7ACCF683CF5B2AA4E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c2:f3:7e:c3:8d:1d:64:ac:f5:b4:39:82:9e:02:78:db:bd:0a: 7f:e0:9d:e6:ab:8a:e8:2c:c2:11:1e:d1:ec:91:a4:6d:b0:c2: 00:58:74:57:55:c4:7c:74:4e:3d:71:26:9d:6a:ee:b5:e2:34: a8:d0:55:c0:ec:cb:0e:16:7a:5c:2b:71:5c:bb:f4:8f:cc:f0: 69:2e:83:0f:df:c7:dc:04:a7:52:e5:22:81:b5:46:65:ed:31: 3c:42:5e:84:67:07:12:35:a7:7f:f6:be:6f:b2:ab:fb:43:3a: 56:55:b5:ff:8d:8f:40:bc:f7:85:39:22:ba:d5:a8:01:1b:c4: 27:45:41:48:0d:55:e8:ce:80:34:9b:6c:44:fc:f2:70:76:31: cc:52:75:5a:7d:95:7e:88:b2:71:87:e4:a0:cf:72:cc:d0:c6: df:ad:1f:a6:7e:3a:14:50:44:2c:49:33:5e:f8:6b:da:40:ea: 94:d1:1b:36:f5:a7:b0:6a:1b:7f:0c:7e:a7:68:95:54:8d:62: 7a:e0:98:8a:77:27:e2:8b:0e:36:04:35:0d:23:0c:52:3c:4d: 51:d5:70:12:1e:11:5b:76:a8:95:72:59:8b:c1:6e:b8:27:4d: b4:ec:d8:78:b4:61:95:1c:7a:e6:02:9c:6c:92:38:e5:d0:e3: 87:af:f4:d3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYEh6c1NgDYDEEE0NSzg8qrGpyqMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NG NUIyQUE0RTAeFw0yNTEyMDYxNTM2MjNaFw0yNTEyMDkyMTU2MjNaMDMxMTAvBgNV BAMTKEEwRjY3MjgwRTdEM0JBMjQxRTI0MzU2NDY1MDE4NTEyM0Q2RDhEREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDwYyLknu5JJyZeFLdBo1xGgZTc MLpZ6ygeFH/7PL1pEuWnQxdTgxqatiYm/sBexuX7jHqud1SwjGTYePZ+c66NyspL YHzKpX5blNwLy0juUaSG7MzSKLuWZyn2fwdCmdfyW25HRm20M6WBg7x1QBHtsoJX 5+qU6KXGtmS/lcYAK9By2vSTLhYY9csD1LCd/t2/Eb+lFHqewKmJqINVMN+TnsW8 IKajtqLEoiu1JcnoKCUJD+ulV9t9crQYaYa2VdvUg9yoCHW3cdPa39or10+jqWE+ xWDvEgTFHrgebf6gr5iW8LXVgc/XvdRKkxyQ8vjjb/esQHWIfjQ+mN8WW8jLAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUoPZygOfTuiQeJDVkZQGFEj1tjdowHwYDVR0j BBgwFoAUcAiGh5nnfELkN/DXrM9oPPWyqk4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 MzUwNDhjNi04Y2NkLTQ2M2QtYWQzNC1hZTc0Mjg2NDdhOWMvMC83MDA4ODY4Nzk5 RTc3QzQyRTQzN0YwRDdBQ0NGNjgzQ0Y1QjJBQTRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4M0NGNUIy QUE0RS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODM1MDQ4YzYtOGNjZC00NjNkLWFk MzQtYWU3NDI4NjQ3YTljLzAvNzAwODg2ODc5OUU3N0M0MkU0MzdGMEQ3QUNDRjY4 M0NGNUIyQUE0RS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMLzfsONHWSs9bQ5gp4CeNu9Cn/gneariugs whEe0eyRpG2wwgBYdFdVxHx0Tj1xJp1q7rXiNKjQVcDsyw4WelwrcVy79I/M8Gku gw/fx9wEp1LlIoG1RmXtMTxCXoRnBxI1p3/2vm+yq/tDOlZVtf+Nj0C894U5IrrV qAEbxCdFQUgNVejOgDSbbET88nB2McxSdVp9lX6IsnGH5KDPcszQxt+tH6Z+OhRQ RCxJM174a9pA6pTRGzb1p7BqG38MfqdolVSNYnrgmIp3J+KLDjYENQ0jDFI8TVHV cBIeEVt2qJVyWYvBbrgnTbTs2Hi0YZUceuYCnGySOOXQ44ev9NM= -----END CERTIFICATE-----Generated at Sun Dec 7 00:13:26 2025 by rpki-client