This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.

Manifest

$ rpki-client -vvf repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
File:                     8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft (raw, json)
Hash identifier:          AW5d46aUcWFTuRmHCUuYpkSbQA7OS010wt3uRji8ewA=
Subject key identifier:   E3:8D:98:10:B1:C7:64:01:FD:BE:55:51:78:D5:62:B0:57:6C:84:4E
Authority key identifier: 8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF
Certificate issuer:       /CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
Certificate serial:       0FC0CAFCDF5F42CB6CE90D515174F4BB19ACA67E
Authority info access:    rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
Subject info access:      rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
Manifest number:          F6
Signing time:             Mon 15 Dec 2025 08:01:14 +0000
Manifest this update:     Mon 15 Dec 2025 07:56:14 +0000
Manifest next update:     Thu 18 Dec 2025 12:06:14 +0000
Files and hashes:         1: 323430343a346563303a313a3a2f34382d3438203d3e20313338313339.roa (hash: X/C9vXKY/TY9dLHbewA4tddP0TItlp1o/B62rHS1ZLs=)
                          2: 3130332e3133332e3134372e302f32342d3234203d3e20313338313339.roa (hash: aR62APrh1DccZKre5l7C6SLFps3TBPFdm3R3znGJ1fA=)
                          3: 323430343a346563303a3a2f33322d3438203d3e20313338313339.roa (hash: A2G6b+fxTo20QvHK7lUw9boisWwmFFcOlzGIN95UCMI=)
                          4: 3130332e3133332e3134352e302f32342d3234203d3e20313338313339.roa (hash: AZoy99OzaaD9x6sZSBHTE/6tOjO7s0t/ExrzVTGMWVY=)
                          5: 8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl (hash: 3Il7mO7/rTr2eKmdb6PkC33hcrgEimum+YKACBh1tgM=)
                          6: 3130332e3133332e3134362e302f32342d3234203d3e20313338313339.roa (hash: nNqPduu/JjsIMhgAQMQxpm1Co5pg16TuoWu2Q/HzWgA=)
                          7: 3130332e3133332e3134342e302f32342d3234203d3e20313338313339.roa (hash: 4N3xCB2x4rBoMiXQaq1TIxjQcspdHHBn4voGBhoXwMQ=)
Validation:               OK
Signature path:           rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl
                          rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl
                          rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Thu 18 Dec 2025 12:06:14 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0f:c0:ca:fc:df:5f:42:cb:6c:e9:0d:51:51:74:f4:bb:19:ac:a6:7e
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF
        Validity
            Not Before: Dec 15 07:56:14 2025 GMT
            Not After : Dec 18 12:06:14 2025 GMT
        Subject: CN=E38D9810B1C76401FDBE555178D562B0576C844E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:ba:4a:24:b6:07:1a:70:cf:95:82:fd:ff:25:9f:
                    0f:e8:61:49:0b:cc:ba:05:ce:05:87:58:dc:d5:12:
                    22:10:86:cf:a4:85:98:f8:a2:62:6e:78:4d:36:88:
                    1d:b8:7b:95:30:f3:2b:26:73:50:ca:91:b1:8c:04:
                    2b:06:80:65:c1:a3:84:66:0f:28:64:78:4a:62:b4:
                    6f:1a:fe:14:57:6b:86:ec:ba:8b:4b:09:4b:2f:ee:
                    22:d5:2b:a8:51:6d:c7:95:5c:19:4b:79:06:0b:e0:
                    fb:57:47:de:09:74:69:81:78:4a:22:1a:19:2b:73:
                    33:e1:b3:95:99:bf:81:10:18:3a:d8:37:df:f8:00:
                    18:45:f4:39:cc:a8:0c:44:80:16:78:1e:5e:e4:db:
                    63:30:a3:69:99:fb:a7:89:66:95:d8:f1:ad:9b:d4:
                    14:a7:16:51:89:4f:a5:b9:b4:2a:1d:33:4d:fd:8d:
                    00:51:aa:45:63:a3:ba:f2:96:d5:ac:5e:87:ae:da:
                    61:dc:ff:2d:ce:be:2e:a5:ae:ff:b2:80:fb:71:49:
                    5c:06:32:52:65:9c:a9:e6:02:cc:fa:db:c2:3f:c9:
                    f8:17:72:e6:a4:12:6f:35:86:8b:01:30:fd:0b:c6:
                    ae:a8:a2:91:0e:a5:90:7f:30:c6:9b:cf:53:12:cd:
                    28:15
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                E3:8D:98:10:B1:C7:64:01:FD:BE:55:51:78:D5:62:B0:57:6C:84:4E
            X509v3 Authority Key Identifier:
                keyid:8B:A2:B5:E0:7F:AD:57:28:C7:DE:FB:F4:FC:10:BD:04:43:53:F6:FF

            X509v3 Key Usage: critical
                Digital Signature
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.crl

            Authority Information Access:
                CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.cer

            Subject Information Access:
                Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8c76c85f-9a4f-4afc-969b-8da2536c5c24/0/8BA2B5E07FAD5728C7DEFBF4FC10BD044353F6FF.mft

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

    Signature Algorithm: sha256WithRSAEncryption
         90:5d:12:06:72:9a:d3:9c:bc:d2:6d:4c:30:57:63:52:7a:7c:
         d6:c4:6e:b2:d8:f5:35:c5:da:26:48:8b:fe:61:02:44:e0:6c:
         dc:11:f0:e4:e8:b8:1c:0d:09:16:53:88:b3:14:90:04:88:49:
         99:7e:65:fc:b8:dd:03:ee:83:d9:85:dc:f6:70:4d:60:e2:07:
         5d:68:12:3a:38:f7:3e:6f:c5:8c:8b:06:28:32:6b:3f:1b:70:
         88:33:0b:04:fa:c1:51:e2:4d:57:bc:f8:d7:bf:7a:05:a1:e7:
         5e:ac:dd:a4:37:f6:38:b0:ab:9b:66:2a:40:32:c6:82:ac:79:
         18:0b:58:00:b7:fc:13:a7:2b:da:55:04:00:04:96:80:f1:35:
         20:a7:31:1a:58:10:d6:99:f6:c0:b7:fe:d3:09:fe:e3:f1:a0:
         a1:01:1b:c9:c9:66:6a:65:db:03:2b:7b:c5:97:51:61:21:9e:
         12:c3:07:56:02:47:e8:f3:14:7b:4e:38:0d:ae:99:0c:d2:f1:
         18:40:e4:db:50:fe:c3:8c:9e:01:07:72:83:bc:08:ef:b8:fa:
         56:4f:e5:87:2a:1f:71:62:3a:a4:21:43:8b:06:2b:38:47:be:
         ad:5a:96:00:a0:15:58:09:50:1e:b7:db:77:0e:4c:a6:ae:84:
         72:66:b5:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----