This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft (raw, json) Hash identifier: el1aDqXZUWiVlMrmOiWN14U8m6Nf8Ip3afVMqi1JLEo= Subject key identifier: 67:1A:8A:FD:87:7E:04:4F:B2:E6:36:EF:04:FD:23:82:34:1B:02:17 Authority key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Certificate issuer: /CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Certificate serial: 75A4275B78F114A6F3D6721F82545AB5738EC0FE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject info access: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft Manifest number: 0384 Signing time: Sat 06 Dec 2025 16:51:38 +0000 Manifest this update: Sat 06 Dec 2025 16:46:38 +0000 Manifest next update: Tue 09 Dec 2025 22:52:38 +0000 Files and hashes: 1: 3130332e3136392e3133322e302f32342d3234203d3e20313432333431.roa (hash: mdAnNzPQX1fBQRxqx/liQc+y8HoOIQ1ZRmWeSXm/9lE=) 2: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl (hash: w7+CxpK8bK8yK4WOMmZJGakLHCcdg6OlxqIB3nsMJbw=) 3: 3130332e3136392e3133332e302f32342d3234203d3e20313432333431.roa (hash: XIli98cQ5DslYaylLZi+5Ts9pki82Z8fAKzqEWLUjbk=) 4: 3130332e3136392e3133322e302f32332d3233203d3e20313432333431.roa (hash: OqgAqdXTkd1D2NhPAZ/UZhCfurgUG69NUxmVZKteHcQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:a4:27:5b:78:f1:14:a6:f3:d6:72:1f:82:54:5a:b5:73:8e:c0:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Validity Not Before: Dec 6 16:46:38 2025 GMT Not After : Dec 9 22:52:38 2025 GMT Subject: CN=671A8AFD877E044FB2E636EF04FD2382341B0217 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:e4:2d:64:87:43:30:36:ea:a2:50:09:9d: 3b:9d:50:c1:f2:56:fc:7b:78:9b:55:26:e5:40:c9: f5:6e:e6:6b:fc:53:23:07:c9:c7:84:2c:46:c6:9d: 56:9f:4b:9d:c5:13:01:da:d1:9f:21:fc:c9:58:61: 6c:d6:7f:08:6d:a9:89:fa:72:e3:ad:c0:76:c6:bb: 98:93:01:73:ed:da:b2:a9:45:f2:11:0d:95:5e:2b: f3:7c:f3:14:29:3b:f1:20:6a:10:4d:df:72:30:3b: 01:52:6d:5c:40:b5:b4:6c:55:49:d2:61:08:55:51: 8c:e4:99:7f:88:37:0e:0e:22:10:c2:10:47:c7:fa: b1:51:25:75:bd:2e:89:28:80:28:bb:51:f2:96:e0: 0a:c9:5a:d2:9c:a8:7c:75:b6:0b:99:83:9b:b7:fc: 5f:a2:ff:5b:82:a2:4b:14:5c:c5:95:53:25:4b:30: 56:8d:81:82:08:4f:be:1b:14:22:d3:da:9c:6d:3f: b1:4e:1e:76:95:0f:e2:b1:96:9f:26:6a:3e:cf:d1: 66:8b:6e:14:9b:55:f1:e7:34:85:b3:ab:50:f1:6a: a5:6e:96:57:1c:6c:d6:bf:39:28:5f:db:14:2d:3d: 26:39:bb:74:ee:90:88:20:6e:8f:cd:1b:9e:97:ee: d3:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:1A:8A:FD:87:7E:04:4F:B2:E6:36:EF:04:FD:23:82:34:1B:02:17 X509v3 Authority Key Identifier: keyid:36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 29:96:b9:4d:07:9a:c9:e8:ec:2c:c0:eb:60:10:55:ed:c1:ab: 81:d4:f0:b6:b3:62:f5:aa:7d:9d:e8:99:c0:bc:b8:de:4a:a1: c0:20:fe:7b:f5:58:89:66:22:89:02:54:09:5a:ac:05:60:87: 55:72:d0:bb:d0:a8:37:46:b2:0e:c5:b6:25:e1:95:8f:83:c9: 3c:00:61:e6:47:ce:b2:64:fd:2c:20:4e:b3:f1:c1:69:ab:9e: 32:cb:0f:b9:94:51:0a:4f:02:00:d4:65:18:8a:31:c5:48:6a: 6a:4c:dc:96:59:3c:40:36:61:c9:93:6c:1a:7c:68:76:77:bf: 80:93:93:0d:35:b0:68:0e:b8:d2:fa:da:f5:14:1a:c9:cc:27: 1e:c0:1f:df:a4:0a:42:f4:90:c9:a2:d0:54:9b:a8:1a:bd:11: f0:a8:69:25:6d:28:0d:36:3c:50:67:24:4e:5c:f8:cd:7f:7d: 5b:51:26:00:48:e7:53:c6:2a:c9:47:76:7a:ca:86:a9:ba:3e: 28:57:0e:72:9f:3a:34:a6:37:bd:ae:51:e2:dd:4f:3f:65:e6: e8:e1:83:a5:db:48:3a:0f:78:1b:88:78:30:30:8b:cd:7c:66: 16:fd:3d:33:f5:ac:15:bd:bd:29:3b:c4:c5:19:0a:a8:ca:99: f6:65:b4:a3 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdaQnW3jxFKbz1nIfglRatXOOwP4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VF NDlFOEExNzAeFw0yNTEyMDYxNjQ2MzhaFw0yNTEyMDkyMjUyMzhaMDMxMTAvBgNV BAMTKDY3MUE4QUZEODc3RTA0NEZCMkU2MzZFRjA0RkQyMzgyMzQxQjAyMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBiuQtZIdDMDbqolAJnTudUMHy Vvx7eJtVJuVAyfVu5mv8UyMHyceELEbGnVafS53FEwHa0Z8h/MlYYWzWfwhtqYn6 cuOtwHbGu5iTAXPt2rKpRfIRDZVeK/N88xQpO/EgahBN33IwOwFSbVxAtbRsVUnS YQhVUYzkmX+INw4OIhDCEEfH+rFRJXW9LokogCi7UfKW4ArJWtKcqHx1tguZg5u3 /F+i/1uCoksUXMWVUyVLMFaNgYIIT74bFCLT2pxtP7FOHnaVD+Kxlp8maj7P0WaL bhSbVfHnNIWzq1DxaqVullccbNa/OShf2xQtPSY5u3TukIggbo/NG56X7tMvAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUZxqK/Yd+BE+y5jbvBP0jgjQbAhcwHwYDVR0j BBgwFoAUNuaOKiZOGL/Z9J5HLQ0mfuSeihcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMC8zNkU2OEUyQTI2 NEUxOEJGRDlGNDlFNDcyRDBEMjY3RUU0OUU4QTE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2N0VFNDlF OEExNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vODdkMjAzMWItMjc2MS00YzM2LWI2 OTAtNWI2OWQxNTY5YmFlLzAvMzZFNjhFMkEyNjRFMThCRkQ5RjQ5RTQ3MkQwRDI2 N0VFNDlFOEExNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACmWuU0Hmsno7CzA62AQVe3Bq4HU8LazYvWq fZ3omcC8uN5KocAg/nv1WIlmIokCVAlarAVgh1Vy0LvQqDdGsg7FtiXhlY+DyTwA YeZHzrJk/SwgTrPxwWmrnjLLD7mUUQpPAgDUZRiKMcVIampM3JZZPEA2YcmTbBp8 aHZ3v4CTkw01sGgOuNL62vUUGsnMJx7AH9+kCkL0kMmi0FSbqBq9EfCoaSVtKA02 PFBnJE5c+M1/fVtRJgBI51PGKslHdnrKhqm6PihXDnKfOjSmN72uUeLdTz9l5ujh g6XbSDoPeBuIeDAwi818Zhb9PTP1rBW9vSk7xMUZCqjKmfZltKM= -----END CERTIFICATE-----Generated at Sun Dec 7 01:43:15 2025 by rpki-client