This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft File: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft (raw, json) Hash identifier: 1oBC7bZ34H16tYGd0fP9drDEzCnlwR4AWm/RwFLAHyo= Subject key identifier: EA:48:5E:F8:BD:57:0D:A4:42:44:D3:BF:47:1D:E5:3F:AF:B1:C4:47 Authority key identifier: 8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 Certificate issuer: /CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Certificate serial: 0C461747F49075AECC690C936EAA34D1CD801E60 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject info access: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft Manifest number: D2 Signing time: Sat 06 Dec 2025 16:20:51 +0000 Manifest this update: Sat 06 Dec 2025 16:15:51 +0000 Manifest next update: Tue 09 Dec 2025 19:43:51 +0000 Files and hashes: 1: 3136302e32322e3235302e302f32342d3234203d3e20313430343536.roa (hash: OJeztSNPa6Ny2Jrl9pv1yxSSkQT/t6rbcjh/ieoX/VA=) 2: 3136302e32322e3235312e302f32342d3234203d3e20313430343536.roa (hash: 9NuukBIDDZ7f6DuKuIwjkGDhtnMzcPyVVkUYuDF3dPM=) 3: 8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl (hash: p46dftwEoXMFJfnidM4xF+4EcXrm+ldOAs5bEqIL/yc=) 4: 3136302e32322e3235302e302f32332d3233203d3e20313430343536.roa (hash: NLnyyxEhnshl8M0vZmmh6y422VBLzdBQzG682UNLOQc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:46:17:47:f4:90:75:ae:cc:69:0c:93:6e:aa:34:d1:cd:80:1e:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36 Validity Not Before: Dec 6 16:15:51 2025 GMT Not After : Dec 9 19:43:51 2025 GMT Subject: CN=EA485EF8BD570DA44244D3BF471DE53FAFB1C447 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:9c:ea:6a:ff:f0:b0:fa:1a:e9:56:06:61:71: db:75:49:37:ff:93:23:e4:ab:39:21:8d:cc:49:2a: ec:2a:22:fa:b7:26:c5:17:f1:ef:5f:23:22:56:93: d9:d1:c0:b1:2f:7c:d2:37:a0:25:32:db:ff:e2:df: 10:ec:8d:4a:27:11:08:f4:91:53:6c:20:1d:b2:55: 3d:e4:dd:3c:60:2b:87:1f:4b:0d:ad:b7:cc:ae:8e: 09:52:c6:35:e3:ec:5b:ba:1e:51:7a:72:cb:97:b5: ff:bb:b5:67:05:74:b1:1e:63:24:21:97:e0:9b:d0: 20:72:89:45:b3:c2:a3:af:5b:bf:42:82:cc:e4:18: 06:eb:6a:53:e6:43:4e:46:b1:c4:4e:1f:84:b3:00: 0e:be:71:72:99:29:66:b2:31:cb:01:a5:43:bb:c1: 86:21:fb:4d:6f:e6:57:88:11:31:26:fa:3f:92:e7: 33:93:dd:90:95:c6:e2:da:5f:4d:31:91:35:77:1d: 5a:7b:63:7c:37:2a:61:b4:25:bc:10:72:92:7a:45: 24:46:80:df:b9:83:36:f8:2f:af:14:f7:89:fd:bb: 5e:4c:8d:47:7c:c4:1b:b7:87:cd:c4:37:ae:b2:f1: 95:e0:c6:90:a4:ff:53:9d:99:68:ef:a4:fe:95:3d: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:48:5E:F8:BD:57:0D:A4:42:44:D3:BF:47:1D:E5:3F:AF:B1:C4:47 X509v3 Authority Key Identifier: keyid:8E:20:59:B2:D2:44:85:85:D1:1E:D2:B0:14:3F:EF:C0:E9:B2:DA:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/908ab157-d827-49a8-bb86-28be131c3d26/0/8E2059B2D2448585D11ED2B0143FEFC0E9B2DA36.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:1e:9f:fd:02:bd:94:fd:61:0f:8e:c1:99:b7:2f:4f:b1:73: f7:89:84:1a:d4:5a:3d:17:55:33:c3:7b:7c:24:85:85:af:08: d3:64:91:0b:86:0a:19:f5:b1:78:de:a1:9e:42:c7:a9:e6:9b: 65:c3:4f:bd:dd:e1:ed:e0:56:1d:b4:44:53:f1:94:57:ba:30: 27:f7:9a:c8:01:31:6a:33:f6:c4:4b:8f:39:ea:2b:e0:a9:6a: f8:21:80:c7:c7:6b:d5:43:2c:6d:f6:aa:a6:6d:30:9c:ea:af: 90:24:53:cc:78:d4:01:61:83:62:1f:07:27:7d:0b:42:2d:76: 43:3e:27:8f:c1:e3:9c:8b:85:69:95:45:84:d0:0f:d4:dc:03: cc:d9:42:1e:55:b4:e8:c3:16:1e:44:b2:6c:d2:cc:9f:82:36: c7:ea:77:3f:77:ec:e6:13:1c:53:fd:8c:f5:5b:f3:be:a1:0c: bc:51:76:4d:2d:40:68:cf:68:a1:47:31:64:b6:04:a5:5d:0d: 72:f7:55:6c:53:cc:f2:4f:68:5c:31:d0:57:c5:84:e1:d4:6c: f3:be:84:2f:16:fe:2c:f5:2c:36:a4:27:d5:31:64:ef:1b:39: 3a:0f:18:62:88:8f:bc:d3:15:6a:3f:ce:ba:1a:db:93:55:1a: a8:84:64:a2 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDEYXR/SQda7MaQyTbqo00c2AHmAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBF OUIyREEzNjAeFw0yNTEyMDYxNjE1NTFaFw0yNTEyMDkxOTQzNTFaMDMxMTAvBgNV BAMTKEVBNDg1RUY4QkQ1NzBEQTQ0MjQ0RDNCRjQ3MURFNTNGQUZCMUM0NDcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcnOpq//Cw+hrpVgZhcdt1STf/ kyPkqzkhjcxJKuwqIvq3JsUX8e9fIyJWk9nRwLEvfNI3oCUy2//i3xDsjUonEQj0 kVNsIB2yVT3k3TxgK4cfSw2tt8yujglSxjXj7Fu6HlF6csuXtf+7tWcFdLEeYyQh l+Cb0CByiUWzwqOvW79CgszkGAbralPmQ05GscROH4SzAA6+cXKZKWayMcsBpUO7 wYYh+01v5leIETEm+j+S5zOT3ZCVxuLaX00xkTV3HVp7Y3w3KmG0JbwQcpJ6RSRG gN+5gzb4L68U94n9u15MjUd8xBu3h83EN66y8ZXgxpCk/1OdmWjvpP6VPTuVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6khe+L1XDaRCRNO/Rx3lP6+xxEcwHwYDVR0j BBgwFoAUjiBZstJEhYXRHtKwFD/vwOmy2jYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 MDhhYjE1Ny1kODI3LTQ5YTgtYmI4Ni0yOGJlMTMxYzNkMjYvMC84RTIwNTlCMkQy NDQ4NTg1RDExRUQyQjAxNDNGRUZDMEU5QjJEQTM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVGQzBFOUIy REEzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTA4YWIxNTctZDgyNy00OWE4LWJi ODYtMjhiZTEzMWMzZDI2LzAvOEUyMDU5QjJEMjQ0ODU4NUQxMUVEMkIwMTQzRkVG QzBFOUIyREEzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAken/0CvZT9YQ+OwZm3L0+xc/eJhBrUWj0X VTPDe3wkhYWvCNNkkQuGChn1sXjeoZ5Cx6nmm2XDT73d4e3gVh20RFPxlFe6MCf3 msgBMWoz9sRLjznqK+CpavghgMfHa9VDLG32qqZtMJzqr5AkU8x41AFhg2IfByd9 C0ItdkM+J4/B45yLhWmVRYTQD9TcA8zZQh5VtOjDFh5EsmzSzJ+CNsfqdz937OYT HFP9jPVb876hDLxRdk0tQGjPaKFHMWS2BKVdDXL3VWxTzPJPaFwx0FfFhOHUbPO+ hC8W/iz1LDakJ9UxZO8bOToPGGKIj7zTFWo/zroa25NVGqiEZKI= -----END CERTIFICATE-----Generated at Sat Dec 6 23:26:00 2025 by rpki-client