This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/947c6ecb-0bae-45c3-aada-43a6a171c046/0/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.mft File: 0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.mft (raw, json) Hash identifier: MXImEVPcTq5e3yidhGjia1IdrVV/00K+d8re4Z2Y3gE= Subject key identifier: 89:74:28:50:97:46:75:25:69:38:4D:32:36:DA:31:A3:69:35:45:39 Authority key identifier: 0A:FD:8F:6B:02:40:5F:4D:E9:A9:46:84:0C:C5:AE:2E:6A:C8:E4:0C Certificate issuer: /CN=0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C Certificate serial: 5383A8060772D09B091F23FC7612B82CE6A84D3C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/947c6ecb-0bae-45c3-aada-43a6a171c046/0/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.mft Manifest number: 0489 Signing time: Sat 06 Dec 2025 12:50:03 +0000 Manifest this update: Sat 06 Dec 2025 12:45:02 +0000 Manifest next update: Tue 09 Dec 2025 19:15:02 +0000 Files and hashes: 1: 0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.crl (hash: 8U4Ush0Khca/lehgLhrMOy/cWoC8reClT2vR5daqPQE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/947c6ecb-0bae-45c3-aada-43a6a171c046/0/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.crl rsync://repo-rpki.idnic.net/repo/947c6ecb-0bae-45c3-aada-43a6a171c046/0/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:83:a8:06:07:72:d0:9b:09:1f:23:fc:76:12:b8:2c:e6:a8:4d:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C Validity Not Before: Dec 6 12:45:02 2025 GMT Not After : Dec 9 19:15:02 2025 GMT Subject: CN=897428509746752569384D3236DA31A369354539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:54:4b:a5:7d:f5:8f:07:cc:b1:09:7c:40:58: f2:e0:cd:1c:10:b0:3c:73:43:33:b2:07:a5:5a:34: 86:ea:34:69:51:19:7e:31:d1:09:5b:68:be:e2:74: c7:22:94:f0:ca:65:bd:99:53:74:5a:7d:f5:17:7c: f7:a5:4a:68:7b:e8:11:12:50:f1:97:2c:91:a5:7d: 19:0c:d1:d8:bc:a4:dd:88:34:c2:0a:4a:63:d8:84: f4:4d:87:b8:04:ef:62:cc:40:f0:17:92:0d:79:36: 54:31:4b:ce:80:49:9a:9f:23:88:40:28:83:f3:b1: ac:1d:4c:b7:5e:ba:43:76:fb:de:b1:8f:8f:a2:b1: 27:d4:86:54:6c:6a:fb:00:ad:3f:3e:c2:2e:fa:61: 11:c1:b9:eb:3c:23:c4:75:8d:32:6a:d5:46:7d:51: b7:3d:af:13:19:2c:bf:21:98:03:41:e9:5e:ad:d3: a4:ad:d1:fd:21:8c:f6:c4:0b:6f:31:b5:5a:0b:0b: ff:31:9a:eb:90:02:4b:e1:27:ab:6a:7a:ca:3e:25: 57:9d:72:4f:54:64:15:0c:d4:ba:44:6e:4b:7d:30: a5:77:f9:ea:38:d6:74:e0:2e:2c:e8:31:29:d7:a1: d7:ed:f3:1d:0e:3e:7e:ee:19:d5:27:95:68:64:74: ab:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:74:28:50:97:46:75:25:69:38:4D:32:36:DA:31:A3:69:35:45:39 X509v3 Authority Key Identifier: keyid:0A:FD:8F:6B:02:40:5F:4D:E9:A9:46:84:0C:C5:AE:2E:6A:C8:E4:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/947c6ecb-0bae-45c3-aada-43a6a171c046/0/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/947c6ecb-0bae-45c3-aada-43a6a171c046/0/0AFD8F6B02405F4DE9A946840CC5AE2E6AC8E40C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2a:b5:a3:e7:e3:3f:7b:d3:c8:69:b9:be:2b:24:4b:d0:db:40: 61:c9:57:ed:a2:72:40:97:7d:0b:0c:77:33:36:32:56:d3:ee: c8:c5:e0:3f:f0:3c:f5:81:10:eb:88:69:a9:60:e9:e3:02:27: 86:2f:40:91:e3:d1:25:8b:63:86:a1:d0:9f:1f:f0:05:bb:8a: fc:d9:ca:6f:5a:de:d7:08:39:b7:87:66:8c:bc:e5:42:fe:f3: 28:87:54:14:d9:25:79:84:dd:bb:f0:f9:ad:ae:22:a9:da:53: 20:45:81:e8:2b:c2:fb:6a:85:e0:13:2d:2d:69:6d:55:ea:5e: 4a:56:e6:87:79:d9:f4:2d:ba:c4:08:19:56:2a:e2:4c:79:b1: 0d:3d:b0:0c:7f:b1:0f:88:7c:04:43:bb:d7:26:65:b0:a2:55: a5:17:e7:1b:75:f6:97:16:5a:40:24:12:d8:0b:92:7c:28:d8: e9:f2:b9:97:f7:76:ef:a6:ae:59:b5:12:b2:60:3f:ee:64:b3: 02:3a:b5:6e:8e:71:39:dd:2f:e1:7f:9d:03:22:fe:6c:d5:db: 9a:6d:e4:8f:5e:08:a6:7f:14:22:d5:5f:81:3e:5e:a9:4c:35: be:c3:c9:42:51:50:f4:9b:e3:45:f3:a6:b5:3a:73:a3:dc:33: b6:65:85:bb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUU4OoBgdy0JsJHyP8dhK4LOaoTTwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMEFGRDhGNkIwMjQwNUY0REU5QTk0Njg0MENDNUFFMkU2 QUM4RTQwQzAeFw0yNTEyMDYxMjQ1MDJaFw0yNTEyMDkxOTE1MDJaMDMxMTAvBgNV BAMTKDg5NzQyODUwOTc0Njc1MjU2OTM4NEQzMjM2REEzMUEzNjkzNTQ1MzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+VEulffWPB8yxCXxAWPLgzRwQ sDxzQzOyB6VaNIbqNGlRGX4x0QlbaL7idMcilPDKZb2ZU3RaffUXfPelSmh76BES UPGXLJGlfRkM0di8pN2INMIKSmPYhPRNh7gE72LMQPAXkg15NlQxS86ASZqfI4hA KIPzsawdTLdeukN2+96xj4+isSfUhlRsavsArT8+wi76YRHBues8I8R1jTJq1UZ9 Ubc9rxMZLL8hmANB6V6t06St0f0hjPbEC28xtVoLC/8xmuuQAkvhJ6tqeso+JVed ck9UZBUM1LpEbkt9MKV3+eo41nTgLizoMSnXodft8x0OPn7uGdUnlWhkdKvbAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUiXQoUJdGdSVpOE0yNtoxo2k1RTkwHwYDVR0j BBgwFoAUCv2PawJAX03pqUaEDMWuLmrI5AwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 NDdjNmVjYi0wYmFlLTQ1YzMtYWFkYS00M2E2YTE3MWMwNDYvMC8wQUZEOEY2QjAy NDA1RjRERTlBOTQ2ODQwQ0M1QUUyRTZBQzhFNDBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMEFGRDhGNkIwMjQwNUY0REU5QTk0Njg0MENDNUFFMkU2QUM4 RTQwQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOTQ3YzZlY2ItMGJhZS00NWMzLWFh ZGEtNDNhNmExNzFjMDQ2LzAvMEFGRDhGNkIwMjQwNUY0REU5QTk0Njg0MENDNUFF MkU2QUM4RTQwQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACq1o+fjP3vTyGm5viskS9DbQGHJV+2ickCX fQsMdzM2MlbT7sjF4D/wPPWBEOuIaalg6eMCJ4YvQJHj0SWLY4ah0J8f8AW7ivzZ ym9a3tcIObeHZoy85UL+8yiHVBTZJXmE3bvw+a2uIqnaUyBFgegrwvtqheATLS1p bVXqXkpW5od52fQtusQIGVYq4kx5sQ09sAx/sQ+IfARDu9cmZbCiVaUX5xt19pcW WkAkEtgLknwo2OnyuZf3du+mrlm1ErJgP+5kswI6tW6OcTndL+F/nQMi/mzV25pt 5I9eCKZ/FCLVX4E+XqlMNb7DyUJRUPSb40XzprU6c6PcM7Zlhbs= -----END CERTIFICATE-----Generated at Sun Dec 7 07:28:22 2025 by rpki-client