This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft File: 2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft (raw, json) Hash identifier: 5Hk0VrBFfnd+bfx9T2aucf3kMGgEyahJsu2q+YDdD3U= Subject key identifier: 82:E0:3E:ED:77:67:5F:9C:77:BD:FC:D9:D5:48:E1:AD:83:84:4D:B5 Authority key identifier: 26:64:CB:E1:0F:2B:9F:F1:BE:C5:0A:6A:85:DC:7A:A5:2B:9F:17:FA Certificate issuer: /CN=2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA Certificate serial: 7F5687D2604263CA136187068DADE9C13466747D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft Manifest number: 03DD Signing time: Thu 04 Dec 2025 18:32:19 +0000 Manifest this update: Thu 04 Dec 2025 18:27:19 +0000 Manifest next update: Mon 08 Dec 2025 03:12:19 +0000 Files and hashes: 1: 2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.crl (hash: 0PEHj93qqeJG95HNw7u68kxxcTw67FFwf9NKZN9gLjs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.crl rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 03:12:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:56:87:d2:60:42:63:ca:13:61:87:06:8d:ad:e9:c1:34:66:74:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA Validity Not Before: Dec 4 18:27:19 2025 GMT Not After : Dec 8 03:12:19 2025 GMT Subject: CN=82E03EED77675F9C77BDFCD9D548E1AD83844DB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:e0:3d:b3:3f:c5:ea:be:aa:68:d8:eb:c9:0e: f8:3c:51:62:59:ff:cb:27:6c:a2:4d:cb:3e:72:3f: ff:87:a8:8a:a9:6a:ec:5d:cd:a0:b7:4f:bb:59:24: 72:0b:86:f7:81:a0:45:17:83:4b:a7:13:5b:b1:f7: 51:23:72:05:e3:83:4a:55:d6:5d:5e:25:a5:8f:2d: d9:60:8e:48:15:a6:3f:60:f3:6d:1d:fa:8f:93:76: 67:41:24:97:1e:7a:54:0a:56:bf:69:9d:59:cf:59: 02:0c:7e:d5:80:06:83:63:00:3b:cb:63:bb:a4:29: 1a:91:cd:3c:fc:43:94:c9:7f:52:8f:d0:d7:3c:1d: ec:6a:a8:00:f3:68:fd:c4:ea:83:d7:1b:39:d5:ed: bc:c8:9a:27:c5:ea:e5:e7:ee:12:45:f6:2b:0c:b9: 06:7b:77:38:bf:c5:29:9f:e3:72:53:99:89:aa:51: ec:1d:33:62:b2:30:08:0a:72:bb:ad:d7:e4:ce:9b: 67:69:a7:a3:9c:c7:57:dc:fe:9c:a3:a7:59:bb:ee: de:44:f0:21:3e:37:2e:2d:c5:52:eb:40:75:24:a9: b2:7a:18:3d:4d:03:d2:e2:a7:b2:46:37:27:a0:54: cb:3b:b9:49:ee:8c:6a:d7:30:2c:9b:66:29:83:48: 25:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E0:3E:ED:77:67:5F:9C:77:BD:FC:D9:D5:48:E1:AD:83:84:4D:B5 X509v3 Authority Key Identifier: keyid:26:64:CB:E1:0F:2B:9F:F1:BE:C5:0A:6A:85:DC:7A:A5:2B:9F:17:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8cf3c211-0645-4882-a4f1-46be867b7983/0/2664CBE10F2B9FF1BEC50A6A85DC7AA52B9F17FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b4:d1:66:de:5d:92:8c:e0:f8:e7:ec:5d:37:b0:de:a8:d4:54: 8d:b4:d6:59:66:69:88:61:21:52:ed:c2:b0:4f:5a:28:48:84: 64:79:bc:4c:d0:20:78:59:84:ac:84:0c:76:da:f5:77:10:bb: 10:4d:92:af:ed:af:e5:58:63:e2:80:b2:b3:c6:af:7d:69:bc: e6:8e:b7:56:14:71:2f:fa:b2:69:c0:c2:69:75:bb:97:df:23: 83:5f:ba:db:a0:20:8c:db:a3:4f:90:97:68:e6:0e:41:b2:e7: 4e:1f:e3:c4:74:35:69:62:07:27:e4:28:96:1b:c7:dc:8e:86: 39:3c:5a:95:dc:46:b4:3e:8e:81:a5:a3:25:48:fa:79:59:6c: e0:45:cf:81:7a:db:30:bc:bf:c1:af:30:02:7f:2a:d3:5d:c7: eb:9f:fb:51:fb:ce:46:c8:d0:b7:42:35:c6:2a:8d:c2:ca:16: 04:14:ca:06:36:0c:1b:4e:50:a7:e5:8e:ba:7a:79:4b:03:87: 73:f9:2b:0e:8e:5a:2d:2d:56:99:2e:b8:be:cf:d5:bf:8e:d2: 68:8e:bc:a2:36:42:47:3b:02:76:db:d6:83:70:2a:37:d4:12: fa:d0:b9:0b:fe:57:07:d8:78:45:ba:07:be:a0:93:a8:ec:63: a1:f6:e7:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUf1aH0mBCY8oTYYcGja3pwTRmdH0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjY2NENCRTEwRjJCOUZGMUJFQzUwQTZBODVEQzdBQTUy QjlGMTdGQTAeFw0yNTEyMDQxODI3MTlaFw0yNTEyMDgwMzEyMTlaMDMxMTAvBgNV BAMTKDgyRTAzRUVENzc2NzVGOUM3N0JERkNEOUQ1NDhFMUFEODM4NDREQjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI4D2zP8Xqvqpo2OvJDvg8UWJZ /8snbKJNyz5yP/+HqIqpauxdzaC3T7tZJHILhveBoEUXg0unE1ux91EjcgXjg0pV 1l1eJaWPLdlgjkgVpj9g820d+o+TdmdBJJceelQKVr9pnVnPWQIMftWABoNjADvL Y7ukKRqRzTz8Q5TJf1KP0Nc8HexqqADzaP3E6oPXGznV7bzImifF6uXn7hJF9isM uQZ7dzi/xSmf43JTmYmqUewdM2KyMAgKcrut1+TOm2dpp6Ocx1fc/pyjp1m77t5E 8CE+Ny4txVLrQHUkqbJ6GD1NA9Lip7JGNyegVMs7uUnujGrXMCybZimDSCWxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUguA+7XdnX5x3vfzZ1UjhrYOETbUwHwYDVR0j BBgwFoAUJmTL4Q8rn/G+xQpqhdx6pSufF/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 Y2YzYzIxMS0wNjQ1LTQ4ODItYTRmMS00NmJlODY3Yjc5ODMvMC8yNjY0Q0JFMTBG MkI5RkYxQkVDNTBBNkE4NURDN0FBNTJCOUYxN0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjY2NENCRTEwRjJCOUZGMUJFQzUwQTZBODVEQzdBQTUyQjlG MTdGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGNmM2MyMTEtMDY0NS00ODgyLWE0 ZjEtNDZiZTg2N2I3OTgzLzAvMjY2NENCRTEwRjJCOUZGMUJFQzUwQTZBODVEQzdB QTUyQjlGMTdGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALTRZt5dkozg+OfsXTew3qjUVI201llmaYhh IVLtwrBPWihIhGR5vEzQIHhZhKyEDHba9XcQuxBNkq/tr+VYY+KAsrPGr31pvOaO t1YUcS/6smnAwml1u5ffI4NfutugIIzbo0+Ql2jmDkGy504f48R0NWliByfkKJYb x9yOhjk8WpXcRrQ+joGloyVI+nlZbOBFz4F62zC8v8GvMAJ/KtNdx+uf+1H7zkbI 0LdCNcYqjcLKFgQUygY2DBtOUKfljrp6eUsDh3P5Kw6OWi0tVpkuuL7P1b+O0miO vKI2Qkc7Anbb1oNwKjfUEvrQuQv+VwfYeEW6B76gk6jsY6H250o= -----END CERTIFICATE-----Generated at Sun Dec 7 01:00:37 2025 by rpki-client