This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft File: 2FD08E6755CF1CCAAF9D5834449797848A706B57.mft (raw, json) Hash identifier: 7kLhmaiyU8Y766C7R95zxfrjeHt8BoMJUiMsN9RV5So= Subject key identifier: DD:92:42:B9:7B:46:D6:EF:8C:F7:B1:D5:4E:95:26:C0:91:9D:85:64 Authority key identifier: 2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 Certificate issuer: /CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Certificate serial: 12DAA979CF564FF5DB74C162DCDC6E7D4133417D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft Manifest number: 03D4 Signing time: Sat 06 Dec 2025 09:32:03 +0000 Manifest this update: Sat 06 Dec 2025 09:27:03 +0000 Manifest next update: Tue 09 Dec 2025 15:15:03 +0000 Files and hashes: 1: 3130332e3136332e3232382e302f32332d3233203d3e20313431383935.roa (hash: XjGDHZwetIWHjLp7+uPq3/exRvIl0m5tUGNnQVZ+/fU=) 2: 3130332e3136332e3232382e302f32342d3234203d3e20313431383935.roa (hash: QZlEVkF+HK3hEYAiWRapnYHmq7/bX0k5ZRTsDh0lSOE=) 3: 2FD08E6755CF1CCAAF9D5834449797848A706B57.crl (hash: q5mxCF3eWlqpgBe9KElCgh/43SJH9U9GbRgH5zfhBMI=) 4: 3130332e3136332e3232392e302f32342d3234203d3e20313431383935.roa (hash: 73VvZzU4m43+fgjvOlr3Vv7ZHMtLS9jm+/QTGsOwFck=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:15:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:da:a9:79:cf:56:4f:f5:db:74:c1:62:dc:dc:6e:7d:41:33:41:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FD08E6755CF1CCAAF9D5834449797848A706B57 Validity Not Before: Dec 6 09:27:03 2025 GMT Not After : Dec 9 15:15:03 2025 GMT Subject: CN=DD9242B97B46D6EF8CF7B1D54E9526C0919D8564 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:6a:38:00:8e:fa:90:65:68:6e:0d:3e:58:70: e3:84:58:3f:1d:7e:ca:a7:4d:f2:2f:38:6b:01:ea: f0:b2:b5:76:14:7a:d7:e8:0a:f2:de:ca:99:af:3c: 0f:c3:41:af:c9:71:f6:d6:d4:78:2c:f3:05:b3:4b: df:a9:a4:10:f3:6c:88:52:15:b7:73:af:4b:55:a1: 3f:e1:7d:26:91:a6:c7:ed:ff:65:5d:26:22:45:23: d6:61:83:e2:c7:78:50:8e:22:2b:08:55:9f:a4:d2: b0:93:e3:0c:47:48:97:05:f5:4a:68:e2:fa:07:e2: 21:92:b0:ed:2b:73:f1:84:ee:8b:d9:b5:b1:08:cf: 7e:f5:15:b5:74:1b:07:06:11:4b:b0:b5:d8:24:90: 24:11:e1:4c:2f:2e:2e:86:3d:2e:8e:97:ee:1e:f9: be:c2:a8:ac:fa:1b:05:6c:4d:f4:b8:d8:92:ae:c9: a5:92:7a:17:ee:45:c3:f7:86:4c:5c:05:4b:0f:f0: 5a:02:34:4b:05:68:be:a3:00:d0:51:8f:ab:93:e2: a7:b9:2f:69:6e:a1:66:87:ea:83:a5:8b:17:7e:1b: 05:a4:28:41:79:d1:5e:a9:10:ea:7c:08:94:74:ee: 22:b4:89:da:d3:72:f4:81:0e:54:da:eb:12:2f:74: 52:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:92:42:B9:7B:46:D6:EF:8C:F7:B1:D5:4E:95:26:C0:91:9D:85:64 X509v3 Authority Key Identifier: keyid:2F:D0:8E:67:55:CF:1C:CA:AF:9D:58:34:44:97:97:84:8A:70:6B:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2FD08E6755CF1CCAAF9D5834449797848A706B57.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cd0d7fa-d6f8-4c22-b48a-58b8ed8edda7/0/2FD08E6755CF1CCAAF9D5834449797848A706B57.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:02:00:06:3e:6a:ff:05:b3:18:d7:1e:90:b9:78:9f:89:ce: bd:69:4b:2c:ff:f6:88:ce:41:f0:92:c3:78:b2:14:51:d0:69: f3:ba:48:a9:77:2b:19:06:6d:97:b5:c3:53:05:a5:60:ec:8e: 3a:47:58:91:a0:cd:3a:93:a4:1b:5f:70:ca:ef:b3:65:39:b3: 8a:b9:01:bd:33:a4:35:02:52:59:e9:1c:18:63:9c:3d:e1:98: 88:ac:2c:a5:bd:38:a3:48:a6:2f:7c:79:41:47:17:0f:84:0a: 7e:d8:d8:72:14:46:2a:c0:1e:9e:4e:3a:be:bb:5e:75:37:ad: 78:19:60:30:03:cf:7d:39:e6:5a:ed:db:a0:50:d3:15:de:1e: 17:8a:f0:2b:0d:58:e4:ab:49:42:9b:62:3f:e1:4c:9c:d6:3d: 1b:69:b9:0b:5e:e2:31:4c:04:5c:e7:62:cd:77:42:07:30:db: 7e:29:b6:5f:94:72:3c:ce:b8:8b:f3:1e:ee:2a:20:50:f6:47: 5c:a6:d2:3e:1e:66:e9:dd:9b:6b:e4:95:4f:d8:9b:99:82:23: 61:2b:1d:ec:da:45:d1:e2:f6:8e:72:74:6d:81:c5:65:b6:5e: 52:55:3d:45:a8:e5:f1:c3:7e:70:b2:fa:18:36:0a:44:ea:20: 11:62:a5:62 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEtqpec9WT/XbdMFi3NxufUEzQX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4 QTcwNkI1NzAeFw0yNTEyMDYwOTI3MDNaFw0yNTEyMDkxNTE1MDNaMDMxMTAvBgNV BAMTKEREOTI0MkI5N0I0NkQ2RUY4Q0Y3QjFENTRFOTUyNkMwOTE5RDg1NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5ajgAjvqQZWhuDT5YcOOEWD8d fsqnTfIvOGsB6vCytXYUetfoCvLeypmvPA/DQa/JcfbW1Hgs8wWzS9+ppBDzbIhS Fbdzr0tVoT/hfSaRpsft/2VdJiJFI9Zhg+LHeFCOIisIVZ+k0rCT4wxHSJcF9Upo 4voH4iGSsO0rc/GE7ovZtbEIz371FbV0GwcGEUuwtdgkkCQR4UwvLi6GPS6Ol+4e +b7CqKz6GwVsTfS42JKuyaWSehfuRcP3hkxcBUsP8FoCNEsFaL6jANBRj6uT4qe5 L2luoWaH6oOlixd+GwWkKEF50V6pEOp8CJR07iK0idrTcvSBDlTa6xIvdFLlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3ZJCuXtG1u+M97HVTpUmwJGdhWQwHwYDVR0j BBgwFoAUL9COZ1XPHMqvnVg0RJeXhIpwa1cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2QwZDdmYS1kNmY4LTRjMjItYjQ4YS01OGI4ZWQ4ZWRkYTcvMC8yRkQwOEU2NzU1 Q0YxQ0NBQUY5RDU4MzQ0NDk3OTc4NDhBNzA2QjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3ODQ4QTcw NkI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNkMGQ3ZmEtZDZmOC00YzIyLWI0 OGEtNThiOGVkOGVkZGE3LzAvMkZEMDhFNjc1NUNGMUNDQUFGOUQ1ODM0NDQ5Nzk3 ODQ4QTcwNkI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEcCAAY+av8FsxjXHpC5eJ+Jzr1pSyz/9ojO QfCSw3iyFFHQafO6SKl3KxkGbZe1w1MFpWDsjjpHWJGgzTqTpBtfcMrvs2U5s4q5 Ab0zpDUCUlnpHBhjnD3hmIisLKW9OKNIpi98eUFHFw+ECn7Y2HIURirAHp5OOr67 XnU3rXgZYDADz3055lrt26BQ0xXeHheK8CsNWOSrSUKbYj/hTJzWPRtpuQte4jFM BFznYs13Qgcw234ptl+UcjzOuIvzHu4qIFD2R1ym0j4eZundm2vklU/Ym5mCI2Er HezaRdHi9o5ydG2BxWW2XlJVPUWo5fHDfnCy+hg2CkTqIBFipWI= -----END CERTIFICATE-----Generated at Sun Dec 7 00:49:24 2025 by rpki-client