This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft File: 4C44F6F543BDBB858D3656D41A36660407672BDE.mft (raw, json) Hash identifier: IBVKeXzHlLBF3Mz9HO2ks0aL3D3wKlaXj6hWY4wP/CQ= Subject key identifier: 61:D1:7F:E2:95:81:E0:F2:AE:9E:73:3E:17:46:EE:A3:C2:F0:0F:5A Authority key identifier: 4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE Certificate issuer: /CN=4C44F6F543BDBB858D3656D41A36660407672BDE Certificate serial: 342BDBB2ECF164320C384074D976875983361547 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft Manifest number: 027F Signing time: Fri 05 Dec 2025 13:41:04 +0000 Manifest this update: Fri 05 Dec 2025 13:36:04 +0000 Manifest next update: Mon 08 Dec 2025 21:48:04 +0000 Files and hashes: 1: 4C44F6F543BDBB858D3656D41A36660407672BDE.crl (hash: ffOyGNEtXHHAgXojfN2uELm5ctmWK06UHUwRlqbCszc=) 2: 3130332e32392e3138342e302f32332d3233203d3e203536323630.roa (hash: BmTBKF81iqbHECVQY3Ck/WKC+nTPpzrh6SVPoZTsvD4=) 3: 3130332e32392e3138342e302f32342d3234203d3e203536323630.roa (hash: LV0F6O0JrtgL58ARC8h1flo+UOdpKwAYXIa3PEvRfFg=) 4: 3130332e31312e3130372e302f32342d3234203d3e203538343832.roa (hash: TW2RLqGqp5GMVEosRG1Cl0owKGLEGJyPDYB2l9dTN4E=) 5: 3130332e31312e3130362e302f32342d3234203d3e203536323630.roa (hash: VWdyOYYTifudfSUwEVWa9ANGPIHpQabnls++DgVxljE=) 6: 3130332e32392e3138352e302f32342d3234203d3e203536323630.roa (hash: vJ0JThPWN5z9ya3yGVitmhJSsuKICvURyRQCb1oSUaA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 21:48:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2b:db:b2:ec:f1:64:32:0c:38:40:74:d9:76:87:59:83:36:15:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C44F6F543BDBB858D3656D41A36660407672BDE Validity Not Before: Dec 5 13:36:04 2025 GMT Not After : Dec 8 21:48:04 2025 GMT Subject: CN=61D17FE29581E0F2AE9E733E1746EEA3C2F00F5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:48:14:7a:11:98:51:85:b6:c9:7a:02:06:c9: 84:65:60:35:7a:b3:b6:f4:b9:39:a4:b2:83:80:c3: 4b:26:ab:7c:28:1e:11:3b:7d:0a:ec:80:1c:f0:ae: d2:e0:7c:fe:af:70:48:22:3b:16:bd:0c:7f:92:e2: 2d:87:5d:18:22:b4:f7:46:c1:fb:fd:7b:d5:7f:d2: a9:98:3a:20:96:8e:2c:1e:d0:18:57:97:92:24:1a: d0:b9:83:0e:96:9e:25:76:87:40:1b:72:f0:ad:03: c2:05:ab:06:c8:74:37:00:14:49:a4:e2:24:00:31: ed:d2:86:cd:62:df:2a:66:96:e5:24:fc:7f:59:5c: 2e:a2:34:3d:4c:7b:4c:ad:50:04:dd:14:4a:05:bd: 27:f6:29:04:d9:ff:e4:86:6b:0b:d7:aa:38:1a:47: 6d:b0:9a:af:ef:d4:63:02:b7:1c:26:92:9f:d0:91: ed:ef:a0:40:5a:1f:36:3b:dd:0a:83:60:9c:74:98: db:9c:38:3f:03:89:95:a6:fa:99:91:2a:1a:55:81: 54:b5:82:89:cd:e5:82:ea:00:bd:04:a3:14:6d:36: f8:d4:cc:22:13:ef:5b:0b:5f:f4:e2:78:18:f9:a7: b9:a3:fc:03:e5:2f:c9:88:15:bd:c4:14:bd:0d:3c: 05:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:D1:7F:E2:95:81:E0:F2:AE:9E:73:3E:17:46:EE:A3:C2:F0:0F:5A X509v3 Authority Key Identifier: keyid:4C:44:F6:F5:43:BD:BB:85:8D:36:56:D4:1A:36:66:04:07:67:2B:DE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/4C44F6F543BDBB858D3656D41A36660407672BDE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/85f2c66c-1f87-4d98-a467-3218b645b3ac/0/4C44F6F543BDBB858D3656D41A36660407672BDE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 73:2c:5b:7a:d6:b9:0f:79:d8:d0:71:08:2e:bb:1d:d2:61:80: 5b:f8:98:c9:23:bd:7e:8f:d3:01:ca:39:80:b3:c0:86:c8:61: 60:f1:a8:dd:4f:14:48:52:e7:60:2b:61:44:2c:86:dd:b7:50: 3f:b5:53:8b:6a:ba:be:ee:95:94:e5:b1:d5:9a:d8:8b:8e:d8: 6c:a1:11:c8:52:e0:e9:f4:a0:ab:ef:5f:f6:17:91:13:99:36: 1b:15:a8:08:d6:fd:80:e4:20:5e:70:d9:be:88:f4:d9:da:48: a0:01:1f:ed:9c:f0:dc:d5:71:cc:75:02:8c:45:9f:da:84:4d: 73:51:52:89:41:81:ee:98:8f:1d:0c:c2:8f:1d:af:eb:cf:08: ea:ea:71:74:4e:90:1c:34:79:73:eb:f7:59:20:53:06:95:33: 9f:50:a2:e1:33:fd:37:66:b3:3c:fb:12:73:71:18:fd:56:ed: 99:27:ef:af:e8:29:30:34:45:f4:07:8a:4e:3e:2c:4c:16:9d: a7:7c:28:fe:af:32:b0:a5:b4:4a:21:6f:4e:a7:f7:a2:62:05: 58:36:b7:6b:14:ad:18:fd:d8:e6:f1:4b:d2:71:be:f7:a4:1a: f3:ee:6b:67:3b:cb:36:62:54:9f:28:1d:70:35:62:43:38:49: eb:e0:b0:25 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNCvbsuzxZDIMOEB02XaHWYM2FUcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQw NzY3MkJERTAeFw0yNTEyMDUxMzM2MDRaFw0yNTEyMDgyMTQ4MDRaMDMxMTAvBgNV BAMTKDYxRDE3RkUyOTU4MUUwRjJBRTlFNzMzRTE3NDZFRUEzQzJGMDBGNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqSBR6EZhRhbbJegIGyYRlYDV6 s7b0uTmksoOAw0smq3woHhE7fQrsgBzwrtLgfP6vcEgiOxa9DH+S4i2HXRgitPdG wfv9e9V/0qmYOiCWjiwe0BhXl5IkGtC5gw6WniV2h0AbcvCtA8IFqwbIdDcAFEmk 4iQAMe3Shs1i3ypmluUk/H9ZXC6iND1Me0ytUATdFEoFvSf2KQTZ/+SGawvXqjga R22wmq/v1GMCtxwmkp/Qke3voEBaHzY73QqDYJx0mNucOD8DiZWm+pmRKhpVgVS1 gonN5YLqAL0EoxRtNvjUzCIT71sLX/TieBj5p7mj/APlL8mIFb3EFL0NPAVlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYdF/4pWB4PKunnM+F0buo8LwD1owHwYDVR0j BBgwFoAUTET29UO9u4WNNlbUGjZmBAdnK94wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NWYyYzY2Yy0xZjg3LTRkOTgtYTQ2Ny0zMjE4YjY0NWIzYWMvMC80QzQ0RjZGNTQz QkRCQjg1OEQzNjU2RDQxQTM2NjYwNDA3NjcyQkRFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2MDQwNzY3 MkJERS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODVmMmM2NmMtMWY4Ny00ZDk4LWE0 NjctMzIxOGI2NDViM2FjLzAvNEM0NEY2RjU0M0JEQkI4NThEMzY1NkQ0MUEzNjY2 MDQwNzY3MkJERS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHMsW3rWuQ952NBxCC67HdJhgFv4mMkjvX6P 0wHKOYCzwIbIYWDxqN1PFEhS52ArYUQsht23UD+1U4tqur7ulZTlsdWa2IuO2Gyh EchS4On0oKvvX/YXkROZNhsVqAjW/YDkIF5w2b6I9NnaSKABH+2c8NzVccx1AoxF n9qETXNRUolBge6Yjx0Mwo8dr+vPCOrqcXROkBw0eXPr91kgUwaVM59QouEz/Tdm szz7EnNxGP1W7Zkn76/oKTA0RfQHik4+LEwWnad8KP6vMrCltEohb06n96JiBVg2 t2sUrRj92ObxS9JxvvekGvPua2c7yzZiVJ8oHXA1YkM4SevgsCU= -----END CERTIFICATE-----Generated at Sun Dec 7 00:00:43 2025 by rpki-client