This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft File: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft (raw, json) Hash identifier: i7AAEiMV6ZYrLS4nMlo9ajAVZIaeOMwUQtpe41ccA6Y= Subject key identifier: 68:AE:9E:59:14:FB:77:09:15:5E:27:92:D4:E9:FC:4C:E9:99:7F:01 Authority key identifier: 27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC Certificate issuer: /CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Certificate serial: 333DFCA8900B48E10DA197C69607F1FF444FE329 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject info access: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft Manifest number: 01B8 Signing time: Sat 06 Dec 2025 06:51:19 +0000 Manifest this update: Sat 06 Dec 2025 06:46:19 +0000 Manifest next update: Tue 09 Dec 2025 16:42:19 +0000 Files and hashes: 1: 3130332e37302e31372e302f32342d3234203d3e20313335343632.roa (hash: 6gVzJ3lnoTzbRecAFAnRC8x24kDXXXW3lAWqPBdz2dw=) 2: 3130332e37302e31392e302f32342d3234203d3e20313335343632.roa (hash: 6N2J2kg+Zlk+0sQHWC1BIhfECV5xjbZiRhQRFmUUNag=) 3: 3130332e37302e31362e302f32342d3234203d3e20313335343632.roa (hash: JiNsqLJvEYFIyhrR6R0JR1hrj3KWiaaB75HG9L5QPcg=) 4: 27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl (hash: s1Uz5sx38DkdDbXIdoXXfMkqQxW1os95BrrpoTSTd8I=) 5: 3130332e37302e31382e302f32342d3234203d3e20313335343632.roa (hash: Q3xxSdQXC23vXFGFdHyLQV020HZB9BgH6IL3S5vtQAA=) 6: 3130332e37302e31362e302f32322d3232203d3e20313335343632.roa (hash: 1f4e1XEuXG9su40zHvwmNI+q39l2fKb22IFThBoIE0Y=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:3d:fc:a8:90:0b:48:e1:0d:a1:97:c6:96:07:f1:ff:44:4f:e3:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=27B773A173E0400FBC0D7FEDFCFF7809B53695FC Validity Not Before: Dec 6 06:46:19 2025 GMT Not After : Dec 9 16:42:19 2025 GMT Subject: CN=68AE9E5914FB7709155E2792D4E9FC4CE9997F01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:4d:d8:b3:cd:71:45:4b:a5:70:fb:40:7b:56: 4c:e6:c3:c1:ab:ce:6b:27:aa:33:f7:24:41:b5:5b: 10:d6:dc:df:d5:fd:51:ef:db:2b:0a:0d:34:a5:d1: 51:80:75:97:2f:ca:6c:68:68:0e:b8:18:f8:2a:7b: 9e:b5:48:33:2d:65:a7:83:ba:de:17:5d:fc:4c:a1: db:e9:fb:e1:82:42:46:c2:52:2f:26:67:f8:73:09: 0d:f5:2f:a9:f0:b1:a2:3b:c6:70:0b:9d:4f:ef:8c: 0f:65:69:f5:51:2a:f2:27:c3:03:3a:b4:7a:af:53: 47:05:06:a0:ad:4e:3c:7d:8b:cf:67:40:72:63:b6: c4:63:0e:0f:f3:ce:f4:2b:7e:7d:d3:57:89:8b:41: 90:88:cd:f7:8d:32:cc:90:74:e7:bc:21:7b:7b:37: 18:82:5f:4f:58:2a:6b:89:0e:01:b1:8b:f1:74:71: 1a:3c:86:35:b3:2e:bd:38:6c:b5:b3:9e:8c:0e:aa: 63:11:e7:a4:da:d8:dc:66:ae:05:ed:d2:ac:3d:82: 87:a8:7c:fd:36:e0:76:28:c3:bb:04:9f:48:8e:60: 54:3b:51:39:f9:b2:02:9e:d4:77:e3:78:0a:28:62: 81:5c:f7:f8:93:aa:0e:03:0c:9b:64:9c:45:f0:6c: 35:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:AE:9E:59:14:FB:77:09:15:5E:27:92:D4:E9:FC:4C:E9:99:7F:01 X509v3 Authority Key Identifier: keyid:27:B7:73:A1:73:E0:40:0F:BC:0D:7F:ED:FC:FF:78:09:B5:36:95:FC X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/86f4d4f1-b36c-4a46-8844-4e6c7a3c97d9/0/27B773A173E0400FBC0D7FEDFCFF7809B53695FC.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 42:05:1b:e2:9f:5f:9d:67:e7:01:3d:c2:4a:09:1e:d6:a4:08: 1d:c4:cd:ab:55:79:05:f4:e2:1d:5a:3f:f1:f8:eb:64:96:d2: 7f:11:09:6e:c4:34:e8:32:2c:37:06:7d:66:41:68:df:b3:43: 6a:a0:4a:5d:d9:8f:95:6b:5d:d3:c9:49:6f:1a:e4:ba:3d:c6: ff:ab:31:42:12:63:61:de:bd:82:a4:e2:b4:a4:f3:0f:67:0c: 6e:d3:27:0d:37:7c:f7:fa:aa:5f:b7:ed:03:05:e3:1f:c8:08: 8c:3a:12:b7:f8:ce:83:bc:98:dc:40:23:65:f9:2c:5a:67:25: 5c:31:ac:66:ac:68:9c:b5:d3:55:d0:80:8a:f2:b7:9b:9c:99: 30:23:08:5a:9b:e8:5a:dc:e2:1e:66:47:1c:69:e0:f5:1a:57: 5d:4d:e4:16:4e:cd:c1:46:a0:ff:45:80:6b:aa:e4:8c:1c:1f: 67:e0:bd:14:1e:ee:9c:0e:15:3c:d6:86:69:d1:76:c0:8e:a6: eb:6f:ac:a1:4f:d8:5b:44:27:ca:4c:84:97:97:af:44:ff:ab: f7:13:59:e3:2f:82:b1:dd:c6:cc:9e:65:18:52:89:fd:c0:ff: 37:ce:12:28:5d:0e:04:4a:c4:de:62:2f:c8:b2:57:c7:07:02: bf:a6:9d:c1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMz38qJALSOENoZfGlgfx/0RP4ykwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlC NTM2OTVGQzAeFw0yNTEyMDYwNjQ2MTlaFw0yNTEyMDkxNjQyMTlaMDMxMTAvBgNV BAMTKDY4QUU5RTU5MTRGQjc3MDkxNTVFMjc5MkQ0RTlGQzRDRTk5OTdGMDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC/TdizzXFFS6Vw+0B7Vkzmw8Gr zmsnqjP3JEG1WxDW3N/V/VHv2ysKDTSl0VGAdZcvymxoaA64GPgqe561SDMtZaeD ut4XXfxModvp++GCQkbCUi8mZ/hzCQ31L6nwsaI7xnALnU/vjA9lafVRKvInwwM6 tHqvU0cFBqCtTjx9i89nQHJjtsRjDg/zzvQrfn3TV4mLQZCIzfeNMsyQdOe8IXt7 NxiCX09YKmuJDgGxi/F0cRo8hjWzLr04bLWznowOqmMR56Ta2NxmrgXt0qw9goeo fP024HYow7sEn0iOYFQ7UTn5sgKe1HfjeAooYoFc9/iTqg4DDJtknEXwbDVbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUaK6eWRT7dwkVXieS1On8TOmZfwEwHwYDVR0j BBgwFoAUJ7dzoXPgQA+8DX/t/P94CbU2lfwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 NmY0ZDRmMS1iMzZjLTRhNDYtODg0NC00ZTZjN2EzYzk3ZDkvMC8yN0I3NzNBMTcz RTA0MDBGQkMwRDdGRURGQ0ZGNzgwOUI1MzY5NUZDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4MDlCNTM2 OTVGQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODZmNGQ0ZjEtYjM2Yy00YTQ2LTg4 NDQtNGU2YzdhM2M5N2Q5LzAvMjdCNzczQTE3M0UwNDAwRkJDMEQ3RkVERkNGRjc4 MDlCNTM2OTVGQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEIFG+KfX51n5wE9wkoJHtakCB3EzatVeQX0 4h1aP/H462SW0n8RCW7ENOgyLDcGfWZBaN+zQ2qgSl3Zj5VrXdPJSW8a5Lo9xv+r MUISY2HevYKk4rSk8w9nDG7TJw03fPf6ql+37QMF4x/ICIw6Erf4zoO8mNxAI2X5 LFpnJVwxrGasaJy101XQgIryt5ucmTAjCFqb6Frc4h5mRxxp4PUaV11N5BZOzcFG oP9FgGuq5IwcH2fgvRQe7pwOFTzWhmnRdsCOputvrKFP2FtEJ8pMhJeXr0T/q/cT WeMvgrHdxsyeZRhSif3A/zfOEihdDgRKxN5iL8iyV8cHAr+mncE= -----END CERTIFICATE-----Generated at Sun Dec 7 01:43:19 2025 by rpki-client