This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft File: DE4325727D17555F6DABCC72788E361C741D47CF.mft (raw, json) Hash identifier: MKp+53UUxRIhROjPWxO0psytesRkZOKvQBcwjZ4cCCU= Subject key identifier: 31:03:83:65:40:7A:63:7E:0D:CC:B9:DB:FB:C0:43:B5:18:9E:AA:DA Authority key identifier: DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF Certificate issuer: /CN=DE4325727D17555F6DABCC72788E361C741D47CF Certificate serial: 1AD401D0ADBB99C7471B44D592874F074F5BA28A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject info access: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft Manifest number: 01ED Signing time: Sat 06 Dec 2025 13:30:03 +0000 Manifest this update: Sat 06 Dec 2025 13:25:03 +0000 Manifest next update: Tue 09 Dec 2025 17:39:03 +0000 Files and hashes: 1: DE4325727D17555F6DABCC72788E361C741D47CF.crl (hash: vDvPo8ruHW1ieX2xqa6R6MMN+UCTzFxJcfPvWpXT81k=) 2: 3130332e3135352e32342e302f32332d3233203d3e20313431303734.roa (hash: 6aU9uz5CHHldU1HIevUJsAf5erVKI657uWFvNEr+ic0=) 3: 323430363a363263303a3a2f33322d3332203d3e20313431303734.roa (hash: 2Lk6auTAFU1KMFXNa9pRSBxyYyKqC713tFzsVGAw9EU=) 4: 3130332e3135352e32352e302f32342d3234203d3e20313431303734.roa (hash: G51YluNBJVnWJJLUM3oLTxL1SDaPjGOTZwYfGpp2BCE=) 5: 3130332e3135352e32342e302f32342d3234203d3e20313431303734.roa (hash: frVX3KU+95dnNdoEu8zY99nlhl5o8DK8rzkyAoketnM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:d4:01:d0:ad:bb:99:c7:47:1b:44:d5:92:87:4f:07:4f:5b:a2:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE4325727D17555F6DABCC72788E361C741D47CF Validity Not Before: Dec 6 13:25:03 2025 GMT Not After : Dec 9 17:39:03 2025 GMT Subject: CN=31038365407A637E0DCCB9DBFBC043B5189EAADA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:81:8e:40:b5:eb:04:09:27:4e:0f:0c:d5:60: 8e:3a:7d:cd:ba:bb:b6:42:6c:61:87:88:a7:4b:6a: 0f:c2:f1:ae:62:02:69:70:44:ad:7c:d3:91:c0:51: f3:a5:6d:cd:2e:f9:41:a0:1c:dd:43:87:21:3e:6e: bb:6d:fb:54:2b:3f:74:30:ba:28:32:9a:f9:0a:06: b0:3d:60:44:19:7b:1e:4e:1c:93:fb:43:0f:65:d1: 54:f2:02:50:42:94:f9:6a:73:a9:2c:c1:62:2b:2a: 92:89:0d:b8:ca:14:dd:aa:bc:f4:f1:be:02:44:75: 56:05:77:78:13:da:1d:0f:89:f7:67:5a:13:b0:1c: 00:74:a9:f6:9f:15:c9:d6:2f:9a:e6:80:a9:1c:c9: da:34:fd:4b:81:28:f0:5a:92:ed:57:9e:b5:7c:08: ac:a4:00:3d:a5:e0:b8:6c:62:c0:8b:28:6a:54:6e: 9c:5f:74:f3:35:3f:cf:b0:b5:40:f3:aa:14:08:2a: 40:ae:8b:10:bb:bc:de:6e:08:9c:86:1a:39:3a:6c: fe:d3:1f:f1:0a:c7:fa:29:0f:c3:d5:83:34:c3:c7: 50:e4:43:a4:8e:f3:41:2d:21:0a:8f:d1:1d:9b:65: 8d:e8:28:87:8f:aa:e3:2b:1f:8e:20:ef:09:68:c8: a0:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:03:83:65:40:7A:63:7E:0D:CC:B9:DB:FB:C0:43:B5:18:9E:AA:DA X509v3 Authority Key Identifier: keyid:DE:43:25:72:7D:17:55:5F:6D:AB:CC:72:78:8E:36:1C:74:1D:47:CF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DE4325727D17555F6DABCC72788E361C741D47CF.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/907608ce-c3f8-44eb-aee7-b784ae20c9c7/0/DE4325727D17555F6DABCC72788E361C741D47CF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:a0:6a:94:0f:02:1a:0b:f8:18:16:bc:33:12:40:3b:6a:6e: e8:ed:08:93:fc:4c:f2:61:35:f6:81:8d:f9:d8:7d:0f:50:10: 4b:07:75:c7:f5:17:91:49:62:35:ea:ed:3b:40:b7:53:f1:e3: 02:6c:85:45:3b:69:06:26:42:d8:ac:a1:09:ed:f5:99:8f:89: cf:13:c7:c2:f1:ab:1b:5a:2a:3d:63:a3:8a:e6:4d:48:c5:7a: 24:1b:41:da:da:e3:5b:25:fc:ac:f7:cf:a1:4f:7a:2c:5b:38: ba:81:f6:3a:76:d7:d2:d2:87:39:80:8b:ab:dd:41:94:19:9c: a6:03:92:e5:55:c1:f9:fc:1f:28:61:e1:00:09:8b:cf:38:84: f4:f6:c3:6a:b2:ee:38:a7:b8:32:81:aa:1c:05:13:4a:13:c7: 12:3d:7c:e4:fd:82:87:92:b7:a3:8b:6f:e5:bc:77:bd:34:87: 93:f9:0e:1a:e1:7c:87:84:29:f5:9d:35:11:a5:af:eb:4d:5a: 56:7c:32:b8:f0:c2:50:50:ab:ee:62:4b:ff:e8:01:fb:2a:70: 8a:ae:30:17:79:40:fe:bc:57:e3:21:1b:4e:0a:f8:54:f4:65: 9f:63:f1:3a:ec:c1:51:13:0e:a2:c2:f3:0f:2d:09:b1:c9:b7: 2e:dd:c9:31 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGtQB0K27mcdHG0TVkodPB09booowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3 NDFENDdDRjAeFw0yNTEyMDYxMzI1MDNaFw0yNTEyMDkxNzM5MDNaMDMxMTAvBgNV BAMTKDMxMDM4MzY1NDA3QTYzN0UwRENDQjlEQkZCQzA0M0I1MTg5RUFBREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFgY5AtesECSdODwzVYI46fc26 u7ZCbGGHiKdLag/C8a5iAmlwRK1805HAUfOlbc0u+UGgHN1DhyE+brtt+1QrP3Qw uigymvkKBrA9YEQZex5OHJP7Qw9l0VTyAlBClPlqc6kswWIrKpKJDbjKFN2qvPTx vgJEdVYFd3gT2h0PifdnWhOwHAB0qfafFcnWL5rmgKkcydo0/UuBKPBaku1XnrV8 CKykAD2l4LhsYsCLKGpUbpxfdPM1P8+wtUDzqhQIKkCuixC7vN5uCJyGGjk6bP7T H/EKx/opD8PVgzTDx1DkQ6SO80EtIQqP0R2bZY3oKIePquMrH44g7wloyKC9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMQODZUB6Y34NzLnb+8BDtRieqtowHwYDVR0j BBgwFoAU3kMlcn0XVV9tq8xyeI42HHQdR88wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDc2MDhjZS1jM2Y4LTQ0ZWItYWVlNy1iNzg0YWUyMGM5YzcvMC9ERTQzMjU3MjdE MTc1NTVGNkRBQkNDNzI3ODhFMzYxQzc0MUQ0N0NGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2MUM3NDFE NDdDRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA3NjA4Y2UtYzNmOC00NGViLWFl ZTctYjc4NGFlMjBjOWM3LzAvREU0MzI1NzI3RDE3NTU1RjZEQUJDQzcyNzg4RTM2 MUM3NDFENDdDRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB2gapQPAhoL+BgWvDMSQDtqbujtCJP8TPJh NfaBjfnYfQ9QEEsHdcf1F5FJYjXq7TtAt1Px4wJshUU7aQYmQtisoQnt9ZmPic8T x8LxqxtaKj1jo4rmTUjFeiQbQdra41sl/Kz3z6FPeixbOLqB9jp219LShzmAi6vd QZQZnKYDkuVVwfn8Hyhh4QAJi884hPT2w2qy7jinuDKBqhwFE0oTxxI9fOT9goeS t6OLb+W8d700h5P5DhrhfIeEKfWdNRGlr+tNWlZ8MrjwwlBQq+5iS//oAfsqcIqu MBd5QP68V+MhG04K+FT0ZZ9j8TrswVETDqLC8w8tCbHJty7dyTE= -----END CERTIFICATE-----Generated at Sun Dec 7 00:14:27 2025 by rpki-client