This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft File: 20566897603B029812606C25ABC972BAC5BF4AFB.mft (raw, json) Hash identifier: orwiU+JKyoDOGe+2+bUinZV3HE0mZoW0jGsu/DG5BFU= Subject key identifier: 31:7D:B2:CA:09:F6:E8:AA:D0:52:1C:CE:03:73:F2:53:B3:4B:6A:65 Authority key identifier: 20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB Certificate issuer: /CN=20566897603B029812606C25ABC972BAC5BF4AFB Certificate serial: 5E2DB8587E5EF1411BE92A64A708276CC2FCE32C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft Manifest number: 0276 Signing time: Fri 05 Dec 2025 02:42:24 +0000 Manifest this update: Fri 05 Dec 2025 02:37:24 +0000 Manifest next update: Mon 08 Dec 2025 14:07:24 +0000 Files and hashes: 1: 323430363a316230303a3a2f33322d3438203d3e203435333137.roa (hash: TjP7GmHfPb+wwoosrfBI6nsarX9S8cjrwBDpRp71p84=) 2: 20566897603B029812606C25ABC972BAC5BF4AFB.crl (hash: MiDMBLlkji9AYKv5ZVWbXXXOdvZRMu/ce9HQhjzABLw=) 3: 3230332e3139302e34302e302f32312d3234203d3e203435333137.roa (hash: HofDLGmwqIsnj587taUbViIIFJnwZV6L29IBKkzVuIE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 14:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:2d:b8:58:7e:5e:f1:41:1b:e9:2a:64:a7:08:27:6c:c2:fc:e3:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20566897603B029812606C25ABC972BAC5BF4AFB Validity Not Before: Dec 5 02:37:24 2025 GMT Not After : Dec 8 14:07:24 2025 GMT Subject: CN=317DB2CA09F6E8AAD0521CCE0373F253B34B6A65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:83:be:18:fc:a7:ed:55:90:99:fa:66:2e:d6: 34:b6:9f:de:e9:1d:ea:31:3d:8a:2b:80:0e:9d:04: 63:d1:55:a0:14:fe:68:3c:f6:87:e1:fb:8b:3b:cd: a2:c9:84:0b:fe:d6:71:50:cf:65:e0:06:6d:7f:a7: 88:be:1f:a2:a8:ae:e2:5c:45:c0:06:f3:ab:6d:f2: 59:28:65:82:92:d6:3a:98:10:5d:06:eb:f0:7d:a3: 0f:21:13:9f:76:10:2b:cb:00:a6:ad:49:ee:74:cc: e6:fd:01:1c:21:e2:0b:d4:75:bd:44:00:64:9e:e2: 34:f5:1a:f3:6b:b8:e2:70:92:d9:22:d2:d8:0d:f4: 44:2e:de:f9:22:5f:43:6c:dd:09:c8:fe:75:80:8f: fd:54:85:24:b8:71:09:a5:2e:21:dc:29:68:ce:42: ba:58:0a:a3:36:1b:40:9e:d4:cd:da:29:41:78:ed: 63:c1:89:d3:f0:f2:18:d1:78:b7:2e:f7:50:82:60: b4:de:34:5f:96:74:f1:c2:22:13:1f:e4:06:15:2d: fa:64:cb:bf:90:2b:c6:a5:f8:df:4c:77:fa:e0:ac: 0e:19:aa:05:ce:14:32:57:61:eb:29:f3:16:e1:d2: 91:6a:da:2c:7d:82:6d:74:83:87:83:e1:a4:53:bc: bf:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:7D:B2:CA:09:F6:E8:AA:D0:52:1C:CE:03:73:F2:53:B3:4B:6A:65 X509v3 Authority Key Identifier: keyid:20:56:68:97:60:3B:02:98:12:60:6C:25:AB:C9:72:BA:C5:BF:4A:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20566897603B029812606C25ABC972BAC5BF4AFB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/9dacc365-e194-4ac0-953a-4df3a5900b14/0/20566897603B029812606C25ABC972BAC5BF4AFB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 41:e9:2f:62:46:6c:8d:0f:d8:5c:3e:73:af:ef:bb:cd:78:b7: 31:cc:0f:5a:3b:fd:0e:71:f1:dd:78:28:53:45:1e:cb:1d:91: 98:88:27:d6:d6:b3:68:6e:a6:ef:d1:71:16:50:32:4f:42:c0: fa:ea:16:f1:ae:61:4f:f2:3b:a6:53:22:0a:29:57:5a:78:1d: 09:88:4d:84:3a:74:ae:c6:e4:6a:df:bd:6e:1a:c1:76:08:e9: fe:59:ba:27:ff:30:c5:20:2b:8e:ae:87:15:92:ac:b5:50:24: ae:72:ae:3a:3c:c5:bd:b7:5b:43:4f:24:12:c8:e1:24:b0:e2: 10:ff:fd:d8:80:a0:cf:db:38:c4:f3:6d:b3:5b:bf:fa:f8:9b: c5:b0:3e:72:8e:70:a4:56:24:e2:22:83:02:17:e9:3d:c0:73: 94:11:f9:3f:2b:13:ba:7b:7f:b6:08:31:cf:24:fe:91:38:32: 49:93:50:4a:2f:fe:ec:15:32:7c:b4:4f:7e:75:80:d4:32:a3: 1b:64:27:7d:27:2c:58:4c:45:63:05:b7:f4:39:ea:c8:16:09: bd:49:15:5d:15:a7:be:03:58:80:5a:85:c6:c9:7e:ce:0d:80: d3:85:3a:81:ef:b5:a2:53:3a:b0:98:10:5a:af:f8:c7:de:de: 44:5d:f2:00 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUXi24WH5e8UEb6SpkpwgnbML84ywwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFD NUJGNEFGQjAeFw0yNTEyMDUwMjM3MjRaFw0yNTEyMDgxNDA3MjRaMDMxMTAvBgNV BAMTKDMxN0RCMkNBMDlGNkU4QUFEMDUyMUNDRTAzNzNGMjUzQjM0QjZBNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6g74Y/KftVZCZ+mYu1jS2n97p HeoxPYorgA6dBGPRVaAU/mg89ofh+4s7zaLJhAv+1nFQz2XgBm1/p4i+H6KoruJc RcAG86tt8lkoZYKS1jqYEF0G6/B9ow8hE592ECvLAKatSe50zOb9ARwh4gvUdb1E AGSe4jT1GvNruOJwktki0tgN9EQu3vkiX0Ns3QnI/nWAj/1UhSS4cQmlLiHcKWjO QrpYCqM2G0Ce1M3aKUF47WPBidPw8hjReLcu91CCYLTeNF+WdPHCIhMf5AYVLfpk y7+QK8al+N9Md/rgrA4ZqgXOFDJXYesp8xbh0pFq2ix9gm10g4eD4aRTvL9BAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMX2yygn26KrQUhzOA3PyU7NLamUwHwYDVR0j BBgwFoAUIFZol2A7ApgSYGwlq8lyusW/SvswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby85 ZGFjYzM2NS1lMTk0LTRhYzAtOTUzYS00ZGYzYTU5MDBiMTQvMC8yMDU2Njg5NzYw M0IwMjk4MTI2MDZDMjVBQkM5NzJCQUM1QkY0QUZCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcyQkFDNUJG NEFGQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOWRhY2MzNjUtZTE5NC00YWMwLTk1 M2EtNGRmM2E1OTAwYjE0LzAvMjA1NjY4OTc2MDNCMDI5ODEyNjA2QzI1QUJDOTcy QkFDNUJGNEFGQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEHpL2JGbI0P2Fw+c6/vu814tzHMD1o7/Q5x 8d14KFNFHssdkZiIJ9bWs2hupu/RcRZQMk9CwPrqFvGuYU/yO6ZTIgopV1p4HQmI TYQ6dK7G5GrfvW4awXYI6f5Zuif/MMUgK46uhxWSrLVQJK5yrjo8xb23W0NPJBLI 4SSw4hD//diAoM/bOMTzbbNbv/r4m8WwPnKOcKRWJOIigwIX6T3Ac5QR+T8rE7p7 f7YIMc8k/pE4MkmTUEov/uwVMny0T351gNQyoxtkJ30nLFhMRWMFt/Q56sgWCb1J FV0Vp74DWIBahcbJfs4NgNOFOoHvtaJTOrCYEFqv+Mfe3kRd8gA= -----END CERTIFICATE-----Generated at Sun Dec 7 06:37:40 2025 by rpki-client