This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft File: 2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft (raw, json) Hash identifier: XihUDISAjbgnC0+fl8VtHClCusPgMlgFYXhU7isCG/M= Subject key identifier: 71:16:D5:56:56:12:33:51:77:4D:B6:5A:CC:6E:F0:25:1C:1C:56:A6 Authority key identifier: 26:64:CB:E1:0F:2B:9F:F1:BE:C5:0A:6A:85:DC:7A:A5:2B:9F:17:FA Certificate issuer: /CN=2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA Certificate serial: 61957E9A08FB68761171B27F23773CC39A0F1183 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft Manifest number: 03E3 Signing time: Wed 17 Dec 2025 22:32:19 +0000 Manifest this update: Wed 17 Dec 2025 22:27:19 +0000 Manifest next update: Sun 21 Dec 2025 06:42:19 +0000 Files and hashes: 1: 2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.crl (hash: 2S9b6+InBt08QJviSaAoL4l0RV6j/puhWEZ7slVz7yo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.crl rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 06:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:95:7e:9a:08:fb:68:76:11:71:b2:7f:23:77:3c:c3:9a:0f:11:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA Validity Not Before: Dec 17 22:27:19 2025 GMT Not After : Dec 21 06:42:19 2025 GMT Subject: CN=7116D55656123351774DB65ACC6EF0251C1C56A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:dc:5f:eb:1c:09:60:fe:d6:26:2a:da:4e:31: 36:a2:2f:98:f6:15:85:bb:af:b5:f3:69:d0:fe:b0: af:b8:63:f4:94:2b:64:ed:0e:e6:c0:72:9b:36:e3: c2:6a:98:f3:5f:5f:bc:42:be:b1:aa:92:73:9a:78: 1f:80:5b:8a:74:38:35:3a:08:28:29:f2:0d:34:f2: 8e:1d:9a:da:38:0c:e2:79:d8:ea:8d:7f:2f:82:51: 62:a8:3d:4a:7b:e5:26:89:a7:dc:70:ff:2e:22:61: 4a:15:15:b0:b8:dc:29:a6:f1:19:21:9d:be:1e:dc: 8d:f6:da:df:09:36:02:1a:8a:0a:04:72:3d:5a:f8: 83:6c:45:53:0a:b2:5a:04:c1:b1:21:0d:78:a4:e6: d4:24:82:85:6a:46:96:41:17:13:54:c8:63:3d:18: 5b:0b:4f:1e:46:ee:44:e9:61:ce:72:dd:8c:ef:21: 17:ba:03:1f:39:6b:28:d0:85:c7:dc:55:39:7e:db: 11:82:9f:67:28:b3:c3:0e:e9:a4:53:c8:54:35:cf: 22:67:d4:ba:6b:3a:60:b3:b4:9b:b4:e9:d8:df:6d: 1d:69:ae:33:0b:4e:7b:e8:05:6a:ea:df:e7:03:33: 10:4a:bc:f5:6e:35:da:e3:8e:f5:02:37:08:cd:83: 6c:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:16:D5:56:56:12:33:51:77:4D:B6:5A:CC:6E:F0:25:1C:1C:56:A6 X509v3 Authority Key Identifier: keyid:26:64:CB:E1:0F:2B:9F:F1:BE:C5:0A:6A:85:DC:7A:A5:2B:9F:17:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:34:1a:49:51:98:15:6f:8a:9a:99:22:73:d9:8d:e6:aa:a6: 78:96:62:46:7a:2a:55:f6:a1:b4:5e:86:f3:66:d0:21:da:c9: ea:bf:b3:b6:0b:fa:46:63:4a:83:55:0e:46:ba:42:fe:9e:76: f3:68:98:8b:35:0a:38:dd:6a:f7:ce:58:76:ca:6d:46:bc:d5: 80:5d:af:15:fb:bc:c2:f7:4c:1f:4a:5a:85:50:26:6d:1b:22: 41:24:13:73:fa:cd:70:f4:f8:e2:24:f9:a2:b3:ec:a4:29:98: 96:e4:94:0f:14:e0:6a:2f:be:2c:09:cf:e5:c5:41:2a:e7:86: 61:a2:24:ab:75:54:9c:52:a5:c9:78:b1:0b:2d:54:1f:5c:6f: 75:bb:27:9c:e3:47:66:94:7f:6f:cc:b9:96:43:fa:a2:a6:e6: 8e:de:e6:a8:d4:41:20:56:cd:79:5a:80:75:d9:34:2d:b9:a6: 94:52:f3:cc:7b:7d:6c:3c:55:e5:63:7e:68:8d:11:b7:c4:3a: 95:4c:3c:a0:75:ee:dd:49:22:a7:f4:3d:e5:30:8c:4c:f1:48: 49:06:f5:60:c9:11:52:10:06:f6:28:c0:2e:47:66:52:41:e9: be:e5:48:cf:01:ba:5d:3c:2d:eb:d4:1e:44:db:5b:0d:fe:a1: e0:ef:76:bf -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYZV+mgj7aHYRcbJ/I3c8w5oPEYMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY2NENCRTEwRjJCOUZGMUJFQzUwQTZBODVEQzdBQTUy QjlGMTdGQTAeFw0yNTEyMTcyMjI3MTlaFw0yNTEyMjEwNjQyMTlaMDMxMTAvBgNV BAMTKDcxMTZENTU2NTYxMjMzNTE3NzREQjY1QUNDNkVGMDI1MUMxQzU2QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCy3F/rHAlg/tYmKtpOMTaiL5j2 FYW7r7XzadD+sK+4Y/SUK2TtDubAcps248JqmPNfX7xCvrGqknOaeB+AW4p0ODU6 CCgp8g008o4dmto4DOJ52OqNfy+CUWKoPUp75SaJp9xw/y4iYUoVFbC43Cmm8Rkh nb4e3I322t8JNgIaigoEcj1a+INsRVMKsloEwbEhDXik5tQkgoVqRpZBFxNUyGM9 GFsLTx5G7kTpYc5y3YzvIRe6Ax85ayjQhcfcVTl+2xGCn2cos8MO6aRTyFQ1zyJn 1LprOmCztJu06djfbR1prjMLTnvoBWrq3+cDMxBKvPVuNdrjjvUCNwjNg2y7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUcRbVVlYSM1F3TbZazG7wJRwcVqYwHwYDVR0j BBgwFoAUJmTL4Q8rn/G+xQpqhdx6pSufF/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2YzYzIxMS0wNjQ1LTQ4ODItYTRmMS00NmJlODY3Yjc5ODMvMC8yNjY0Q0JFMTBG MkI5RkYxQkVDNTBBNkE4NURDN0FBNTJCOUYxN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY2NENCRTEwRjJCOUZGMUJFQzUwQTZBODVEQzdBQTUyQjlG MTdGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNmM2MyMTEtMDY0NS00ODgyLWE0 ZjEtNDZiZTg2N2I3OTgzLzAvMjY2NENCRTEwRjJCOUZGMUJFQzUwQTZBODVEQzdB QTUyQjlGMTdGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIw0GklRmBVvipqZInPZjeaqpniWYkZ6KlX2 obRehvNm0CHayeq/s7YL+kZjSoNVDka6Qv6edvNomIs1CjjdavfOWHbKbUa81YBd rxX7vML3TB9KWoVQJm0bIkEkE3P6zXD0+OIk+aKz7KQpmJbklA8U4GovviwJz+XF QSrnhmGiJKt1VJxSpcl4sQstVB9cb3W7J5zjR2aUf2/MuZZD+qKm5o7e5qjUQSBW zXlagHXZNC25ppRS88x7fWw8VeVjfmiNEbfEOpVMPKB17t1JIqf0PeUwjEzxSEkG 9WDJEVIQBvYowC5HZlJB6b7lSM8Bul08LevUHkTbWw3+oeDvdr8= -----END CERTIFICATE-----Generated at Thu Dec 18 07:42:15 2025 by rpki-client