This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft File: 157E8817E413B3A8B2866190AD82151E868B1FA7.mft (raw, json) Hash identifier: 69eWcphewfRhPfmcEUpRP445P5Uelz3NTRrftj6ce0U= Subject key identifier: EB:A8:14:80:DA:C3:FC:90:36:67:8A:C6:EA:E9:65:D6:18:09:4D:80 Authority key identifier: 15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 Certificate issuer: /CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Certificate serial: 2B04C1F300E3BBF7EAFAB332108A4E3E322D51C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft Manifest number: 021B Signing time: Fri 05 Dec 2025 16:42:21 +0000 Manifest this update: Fri 05 Dec 2025 16:37:21 +0000 Manifest next update: Tue 09 Dec 2025 03:18:21 +0000 Files and hashes: 1: 323030313a6466363a353330303a3a2f34382d3438203d3e20313439373130.roa (hash: 2eKYMh+o40ipOAi8hjr+a/aFZYlLyRfS6uvyieWq8yI=) 2: 157E8817E413B3A8B2866190AD82151E868B1FA7.crl (hash: Agwm3wsJFMvBnKjSvB2LAU9pg/Oopdrl6CUScs5RiZo=) 3: 3130332e3132312e3139362e302f32342d3234203d3e20313439373130.roa (hash: lpSwfmAmKL23RbErKtEZj4srMqeOQng2UqSoQbv0+GE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 03:18:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:04:c1:f3:00:e3:bb:f7:ea:fa:b3:32:10:8a:4e:3e:32:2d:51:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=157E8817E413B3A8B2866190AD82151E868B1FA7 Validity Not Before: Dec 5 16:37:21 2025 GMT Not After : Dec 9 03:18:21 2025 GMT Subject: CN=EBA81480DAC3FC9036678AC6EAE965D618094D80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:cf:8e:82:f2:b4:72:29:37:47:49:45:7e:ec: a9:30:54:1f:6e:dc:51:b0:20:34:b1:94:54:11:7e: 59:c5:d7:0b:57:a7:94:c9:9e:0a:3d:01:ac:9c:fe: 72:cb:34:70:d7:bb:b9:d6:47:72:01:07:48:bb:ec: e3:86:9f:a8:42:79:86:94:08:f3:c9:27:65:e8:6a: 48:52:81:3c:1a:cf:f1:2b:cc:4d:77:5e:4d:f6:bd: 8d:db:e9:3f:35:52:ed:3f:87:70:8b:e0:55:78:b9: 47:1d:91:da:5f:f9:2e:38:67:cf:b3:0c:3a:a3:76: d3:b7:0f:de:9f:e6:ab:3a:46:2d:9b:ee:02:a5:ba: e6:b3:14:ac:74:90:37:36:e6:a5:21:3e:5f:d7:b8: 75:7e:ae:5c:2d:f7:9d:20:ba:74:c1:69:28:11:cb: 53:52:36:03:ef:94:c5:48:ac:b3:80:0d:f5:8e:20: 2a:b5:19:8d:55:11:b4:f6:f5:95:ee:bc:19:ef:41: 75:33:c5:18:94:59:5b:06:49:f4:45:44:d2:06:8d: ec:6a:71:79:4a:9c:fc:e1:9b:0f:a9:dc:7f:9f:62: 80:93:bd:b4:a3:0b:a6:6d:36:16:34:1b:f5:8a:e7: 11:94:0f:f4:d1:1c:63:83:0d:c2:4f:1b:ad:a4:4b: e9:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A8:14:80:DA:C3:FC:90:36:67:8A:C6:EA:E9:65:D6:18:09:4D:80 X509v3 Authority Key Identifier: keyid:15:7E:88:17:E4:13:B3:A8:B2:86:61:90:AD:82:15:1E:86:8B:1F:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/157E8817E413B3A8B2866190AD82151E868B1FA7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/83cd60b2-0f57-4fc5-bc62-1d9b6c48fcf0/0/157E8817E413B3A8B2866190AD82151E868B1FA7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 0d:1e:b0:0b:aa:60:f8:45:43:b2:91:a4:2f:33:23:79:df:0f: 33:09:bc:ce:97:ad:94:75:e8:50:3c:50:b4:4a:fb:76:66:1f: a0:fa:be:02:4c:5b:51:9b:4c:b9:ed:57:56:8b:f7:c6:96:46: 58:27:ac:97:3c:f0:36:1e:f9:f8:70:0a:02:a6:44:dd:5f:d6: 5b:66:47:47:a9:c5:0b:7a:45:f6:49:72:cd:ac:65:07:bb:19: 88:1a:59:f0:3e:d5:c5:83:99:53:46:c1:90:92:ce:77:dd:40: 14:e2:24:0d:29:b8:5f:5f:04:a4:14:75:2e:b0:59:9c:67:98: 01:98:53:cf:bb:64:84:92:24:0f:87:e9:93:7e:15:0a:82:9a: ea:da:7d:56:7d:b6:4c:b7:2f:1c:66:97:45:23:c5:81:5c:e5: fb:39:a3:8a:30:1b:22:58:bb:a9:24:3f:71:01:e1:9b:c1:de: da:22:c2:ed:03:3b:a5:3d:31:d3:81:b9:23:5e:75:85:67:13: 56:e1:2b:35:83:b6:08:cf:d9:68:49:12:63:3e:19:50:da:1b: c1:49:3c:51:74:f2:c4:b4:5f:c9:e1:2f:63:33:98:21:b0:fa: b2:c0:96:13:f7:d0:73:d1:a0:4a:2d:99:fa:39:0c:b1:45:0e: ca:46:9f:8b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUKwTB8wDju/fq+rMyEIpOPjItUcAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4 NjhCMUZBNzAeFw0yNTEyMDUxNjM3MjFaFw0yNTEyMDkwMzE4MjFaMDMxMTAvBgNV BAMTKEVCQTgxNDgwREFDM0ZDOTAzNjY3OEFDNkVBRTk2NUQ2MTgwOTREODAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUz46C8rRyKTdHSUV+7KkwVB9u 3FGwIDSxlFQRflnF1wtXp5TJngo9Aayc/nLLNHDXu7nWR3IBB0i77OOGn6hCeYaU CPPJJ2XoakhSgTwaz/ErzE13Xk32vY3b6T81Uu0/h3CL4FV4uUcdkdpf+S44Z8+z DDqjdtO3D96f5qs6Ri2b7gKluuazFKx0kDc25qUhPl/XuHV+rlwt950gunTBaSgR y1NSNgPvlMVIrLOADfWOICq1GY1VEbT29ZXuvBnvQXUzxRiUWVsGSfRFRNIGjexq cXlKnPzhmw+p3H+fYoCTvbSjC6ZtNhY0G/WK5xGUD/TRHGODDcJPG62kS+mHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU66gUgNrD/JA2Z4rG6ull1hgJTYAwHwYDVR0j BBgwFoAUFX6IF+QTs6iyhmGQrYIVHoaLH6cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 M2NkNjBiMi0wZjU3LTRmYzUtYmM2Mi0xZDliNmM0OGZjZjAvMC8xNTdFODgxN0U0 MTNCM0E4QjI4NjYxOTBBRDgyMTUxRTg2OEIxRkE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1MUU4NjhC MUZBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODNjZDYwYjItMGY1Ny00ZmM1LWJj NjItMWQ5YjZjNDhmY2YwLzAvMTU3RTg4MTdFNDEzQjNBOEIyODY2MTkwQUQ4MjE1 MUU4NjhCMUZBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAA0esAuqYPhFQ7KRpC8zI3nfDzMJvM6XrZR1 6FA8ULRK+3ZmH6D6vgJMW1GbTLntV1aL98aWRlgnrJc88DYe+fhwCgKmRN1f1ltm R0epxQt6RfZJcs2sZQe7GYgaWfA+1cWDmVNGwZCSznfdQBTiJA0puF9fBKQUdS6w WZxnmAGYU8+7ZISSJA+H6ZN+FQqCmurafVZ9tky3Lxxml0UjxYFc5fs5o4owGyJY u6kkP3EB4ZvB3toiwu0DO6U9MdOBuSNedYVnE1bhKzWDtgjP2WhJEmM+GVDaG8FJ PFF08sS0X8nhL2MzmCGw+rLAlhP30HPRoEotmfo5DLFFDspGn4s= -----END CERTIFICATE-----Generated at Sun Dec 7 07:29:33 2025 by rpki-client