This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft File: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft (raw, json) Hash identifier: PbjBDlSktwDX0uSFQkwPqDFLX6hEX9Ej+N9/0bmoa+k= Subject key identifier: F3:D7:3A:37:89:21:58:F0:78:30:0B:89:8D:A7:86:9B:24:54:2D:5C Authority key identifier: 0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 Certificate issuer: /CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Certificate serial: 1F06930F0E994503D9590175DE121C96F8FFE834 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft Manifest number: DD Signing time: Sat 06 Dec 2025 17:32:08 +0000 Manifest this update: Sat 06 Dec 2025 17:27:08 +0000 Manifest next update: Wed 10 Dec 2025 04:09:08 +0000 Files and hashes: 1: 0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl (hash: hc4tY3VZxWAZJUYGUdMlWGLPsMjZeFEPJGW3s2owVqw=) 2: 3130332e3134382e38392e302f32342d3234203d3e20313430343231.roa (hash: TZoglv4gVSEGVdYtRZ4lgIJlzz7UT43dp4O+n8rkNNY=) 3: 3130332e3134382e38382e302f32342d3234203d3e20313430343231.roa (hash: neEFe0w5kAvbktE6GbOUZcC2jhb5+07V2Dgm04kOOSQ=) 4: 323030313a6466323a633938303a3a2f34382d3438203d3e20313430343231.roa (hash: S9qtO6NNat29VwWXnPO9Ad1pn0XLAWnDz3QkqSTjTbI=) 5: 3130332e3134382e38382e302f32332d3233203d3e20313430343231.roa (hash: l6is4dO0R0PbZ70dLKCH7MsIvztrQYbYg8s+N5j55/w=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:06:93:0f:0e:99:45:03:d9:59:01:75:de:12:1c:96:f8:ff:e8:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0BB4E952789AC502FA0CFB95C2E03F434497BFE3 Validity Not Before: Dec 6 17:27:08 2025 GMT Not After : Dec 10 04:09:08 2025 GMT Subject: CN=F3D73A37892158F078300B898DA7869B24542D5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:87:9d:2f:55:0e:d9:b1:97:ae:ed:85:50:46: f8:d2:45:3e:0d:23:08:5b:b2:b0:92:99:01:73:62: cc:ff:2e:01:03:02:86:80:f6:67:4b:db:60:ab:54: de:62:2c:dd:02:e1:e8:22:eb:61:fa:73:c9:4e:f1: 71:4f:79:11:14:66:fd:32:5d:df:23:9f:fa:0c:66: 4e:4e:33:26:6c:5b:e0:78:cd:79:f3:fa:f7:64:2a: b8:75:1e:a2:50:79:4f:0e:39:97:05:6c:47:27:23: 2b:24:e2:d1:2f:b5:5d:48:df:41:b3:f3:4e:04:35: af:f3:f6:9b:64:70:ff:da:20:db:49:ea:30:f1:c8: 53:f7:46:b6:5d:a5:71:f7:6a:49:90:26:96:fe:26: e8:1b:b9:8c:23:30:19:4f:85:b3:81:1b:f1:28:6c: 6a:4a:5d:d4:04:31:f7:50:f9:01:f3:5d:c7:14:71: 14:4c:42:a2:35:36:d2:b8:cf:1f:40:14:66:43:d5: bb:b1:c7:8f:93:53:2b:0f:2d:59:5c:14:01:2a:fe: ca:39:d9:2a:d6:14:d1:77:82:80:0e:3b:7b:fb:d5: 2d:f5:a6:2d:ce:c1:24:ab:0b:9a:65:ec:af:05:21: 02:0a:da:97:02:cd:8a:9c:f3:f5:57:17:a1:71:cc: bd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:D7:3A:37:89:21:58:F0:78:30:0B:89:8D:A7:86:9B:24:54:2D:5C X509v3 Authority Key Identifier: keyid:0B:B4:E9:52:78:9A:C5:02:FA:0C:FB:95:C2:E0:3F:43:44:97:BF:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8b72eca4-73ad-4e0b-a6a6-7a65698b73be/0/0BB4E952789AC502FA0CFB95C2E03F434497BFE3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b8:6c:3f:74:0a:0f:5d:17:79:da:66:59:dc:b8:16:08:5a:b4: ce:91:68:1a:cb:1a:2f:a5:0d:fd:00:3c:85:96:90:f4:35:2f: b9:f3:ec:b9:28:81:7a:f6:8c:fc:3a:66:b5:c0:5f:3b:7d:e3: 0b:97:06:35:e4:f3:57:49:a9:66:04:7b:c3:14:bf:34:66:ce: 56:8a:aa:8e:6a:de:eb:9e:18:41:a1:9f:98:76:d7:4d:1a:b6: 48:7d:98:39:be:27:99:05:49:55:4b:69:6e:38:68:54:6b:dc: 59:2a:78:59:f8:d1:30:85:ca:93:a9:e9:72:7c:34:58:98:32: 73:96:28:f6:32:53:5f:a7:2b:9a:64:0d:b4:a6:c5:a6:93:76: 78:55:c1:2b:1f:4d:63:b6:c6:df:2f:5b:8b:b8:ad:f3:9b:16: 49:eb:1c:9e:4b:83:38:d8:88:e1:70:23:df:52:b1:e7:06:46: 8c:dc:b3:dd:58:bc:93:1e:8a:fe:b7:53:09:24:e4:35:4c:07: ca:5b:87:0f:fd:61:45:94:3b:7a:0c:45:d0:1c:e9:61:b5:2e: 33:66:1d:ba:69:d8:21:ba:3f:16:55:6a:16:fe:40:7a:4c:a7: e3:5f:2d:b2:05:e6:3b:41:33:0b:c7:71:7a:d6:79:e6:7c:25: 0d:56:16:7d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUHwaTDw6ZRQPZWQF13hIclvj/6DQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0 NDk3QkZFMzAeFw0yNTEyMDYxNzI3MDhaFw0yNTEyMTAwNDA5MDhaMDMxMTAvBgNV BAMTKEYzRDczQTM3ODkyMTU4RjA3ODMwMEI4OThEQTc4NjlCMjQ1NDJENUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6h50vVQ7ZsZeu7YVQRvjSRT4N IwhbsrCSmQFzYsz/LgEDAoaA9mdL22CrVN5iLN0C4egi62H6c8lO8XFPeREUZv0y Xd8jn/oMZk5OMyZsW+B4zXnz+vdkKrh1HqJQeU8OOZcFbEcnIysk4tEvtV1I30Gz 804ENa/z9ptkcP/aINtJ6jDxyFP3RrZdpXH3akmQJpb+JugbuYwjMBlPhbOBG/Eo bGpKXdQEMfdQ+QHzXccUcRRMQqI1NtK4zx9AFGZD1buxx4+TUysPLVlcFAEq/so5 2SrWFNF3goAOO3v71S31pi3OwSSrC5pl7K8FIQIK2pcCzYqc8/VXF6FxzL1LAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU89c6N4khWPB4MAuJjaeGmyRULVwwHwYDVR0j BBgwFoAUC7TpUniaxQL6DPuVwuA/Q0SXv+MwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 YjcyZWNhNC03M2FkLTRlMGItYTZhNi03YTY1Njk4YjczYmUvMC8wQkI0RTk1Mjc4 OUFDNTAyRkEwQ0ZCOTVDMkUwM0Y0MzQ0OTdCRkUzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNGNDM0NDk3 QkZFMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGI3MmVjYTQtNzNhZC00ZTBiLWE2 YTYtN2E2NTY5OGI3M2JlLzAvMEJCNEU5NTI3ODlBQzUwMkZBMENGQjk1QzJFMDNG NDM0NDk3QkZFMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALhsP3QKD10XedpmWdy4FghatM6RaBrLGi+l Df0APIWWkPQ1L7nz7LkogXr2jPw6ZrXAXzt94wuXBjXk81dJqWYEe8MUvzRmzlaK qo5q3uueGEGhn5h2100atkh9mDm+J5kFSVVLaW44aFRr3FkqeFn40TCFypOp6XJ8 NFiYMnOWKPYyU1+nK5pkDbSmxaaTdnhVwSsfTWO2xt8vW4u4rfObFknrHJ5LgzjY iOFwI99SsecGRozcs91YvJMeiv63Uwkk5DVMB8pbhw/9YUWUO3oMRdAc6WG1LjNm Hbpp2CG6PxZVahb+QHpMp+NfLbIF5jtBMwvHcXrWeeZ8JQ1WFn0= -----END CERTIFICATE-----Generated at Sun Dec 7 02:10:15 2025 by rpki-client