This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft File: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft (raw, json) Hash identifier: ujyDjuuRr8US0KNEnwWE0tUKXBAOupgf6LnT9ZRrxeU= Subject key identifier: 6D:55:42:09:B4:C2:B0:5B:7D:F0:61:A5:D7:73:77:D7:B2:11:C8:6B Authority key identifier: 03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB Certificate issuer: /CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Certificate serial: 188F6C8DF24D00EF2753F77EC94FFAFA324C7BBE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft Manifest number: 0531 Signing time: Fri 05 Dec 2025 06:20:42 +0000 Manifest this update: Fri 05 Dec 2025 06:15:42 +0000 Manifest next update: Mon 08 Dec 2025 13:12:42 +0000 Files and hashes: 1: 3130332e3235302e3139392e302f32342d3234203d3e203633343937.roa (hash: /yb5WnwWf7be714QZ0uw4tXzGTbER/znwtSV7ojDR4s=) 2: 3130332e3233322e3234322e302f32342d3234203d3e203633343937.roa (hash: f6DGPvhqyzvSYXpGkc0cFk921njju8cAzR6yZGDK+gU=) 3: 3130332e3233322e3234332e302f32342d3234203d3e203633343937.roa (hash: 5Zkq4VL7/xQa/k2/OTwG7CKYJU47Ei27gMdc6Ezzf0o=) 4: 3130332e3233322e3234302e302f32342d3234203d3e203633343937.roa (hash: bULrEt1X3G/jiy2aFh5cacfLRjb9rnKNnf+yCOK9lkk=) 5: 0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl (hash: dsWVII6rXFhZdqUPIoPbmXZ1F1UCaeUeKglLUxR9yOE=) 6: 3130332e39302e32362e302f32342d3234203d3e203633343937.roa (hash: bT4Fqpqcdb5rpokIZJm5TScSqR6ImzsbWRIe2yo3XE0=) 7: 3130332e3233322e3234322e302f32332d3233203d3e203633343937.roa (hash: 5hLdB80yHj82YkA94unb4g8aqK4XMar6o7GxOAOuQxc=) 8: 3130332e39302e32342e302f32342d3234203d3e20313332363733.roa (hash: J5t+PfCFG4MWyBW6jEWkugUvWvLki1MFqnfDET5KGi4=) 9: 3130332e39302e32352e302f32342d3234203d3e203633343937.roa (hash: t4SlmJKUrVi/pzXe4pRKejusr9o2fyen6lP4E+amyOk=) 10: 3130332e39302e32372e302f32342d3234203d3e20313332363733.roa (hash: fb4D9jSy0fLk0VJ3g8ZhjE32xxWPedYp/DzCfO9yFIU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 13:12:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:8f:6c:8d:f2:4d:00:ef:27:53:f7:7e:c9:4f:fa:fa:32:4c:7b:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0321984F98230A4F94667E82C0A3DEB1151C5EDB Validity Not Before: Dec 5 06:15:42 2025 GMT Not After : Dec 8 13:12:42 2025 GMT Subject: CN=6D554209B4C2B05B7DF061A5D77377D7B211C86B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:71:4d:f7:41:0d:70:33:7a:69:9e:24:21:07: 92:ea:3b:7b:be:ec:4a:93:4b:26:26:23:b3:8f:fd: d0:35:0b:16:20:a6:e5:56:28:0b:9b:ce:1c:3a:17: ac:52:56:ea:c4:4a:dc:59:71:43:7f:ef:ae:e7:e0: 7f:1d:f6:56:fc:42:5f:38:90:a2:e6:02:db:ee:47: ed:40:69:f0:23:50:f2:69:25:03:2d:2b:81:ca:7d: 70:0e:6d:94:67:75:e6:89:e3:cb:fb:3e:ff:d9:6f: e5:5f:01:9a:a5:8a:5f:45:53:58:af:fc:93:4a:c2: 8d:a4:e3:76:37:c9:1e:a6:29:28:8d:66:ab:b0:b5: 68:b3:87:a6:6e:7f:b0:c3:89:b2:26:fb:c0:15:f6: 41:f2:64:0e:96:2c:7a:5a:29:fc:43:dd:bb:83:d4: f0:fb:d9:54:f1:94:df:fc:b9:c6:21:00:e6:08:68: 31:94:33:55:7b:74:db:4e:57:9c:51:df:f9:86:f1: dc:35:53:5f:df:1b:18:ec:56:4a:38:44:58:11:80: 35:f7:a8:60:48:0b:e1:32:f6:10:25:55:60:56:6d: 99:2d:76:0a:a1:75:3e:ac:82:ba:9b:fd:80:9d:8c: 20:a9:b6:f8:b7:a6:66:b6:cc:81:ec:e3:5d:99:8a: e7:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:55:42:09:B4:C2:B0:5B:7D:F0:61:A5:D7:73:77:D7:B2:11:C8:6B X509v3 Authority Key Identifier: keyid:03:21:98:4F:98:23:0A:4F:94:66:7E:82:C0:A3:DE:B1:15:1C:5E:DB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0321984F98230A4F94667E82C0A3DEB1151C5EDB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a1633b8e-0df9-44ac-9cae-d6f6765a52c9/0/0321984F98230A4F94667E82C0A3DEB1151C5EDB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b1:20:96:fc:b3:95:64:f3:61:92:71:26:49:a8:4b:8f:48:68: b5:29:cc:f0:46:89:ce:0a:c3:80:c4:1c:29:c4:14:83:89:fe: e1:7e:a6:76:5e:db:5b:89:0a:c3:19:80:14:df:d6:33:2b:ae: ac:36:16:fd:00:bc:81:bb:72:78:7e:83:9e:00:f9:56:3b:bf: 63:7d:17:27:54:46:a8:91:bb:e1:16:99:20:03:40:b3:19:0e: 27:66:7d:b1:70:0b:9b:85:31:03:7e:0b:af:d5:5b:05:89:6a: 2a:4e:37:26:b3:21:db:f7:4a:57:c7:84:09:cf:83:fd:b3:ab: b5:25:5b:b5:7c:5c:c9:bd:1e:7f:b0:ad:7d:4d:65:b8:9c:9b: ab:da:d8:fe:43:4a:f7:d8:f4:39:51:51:03:d3:40:e2:a9:6a: ef:19:71:4e:2f:8a:ad:2e:13:c5:9e:5d:4c:97:b8:c6:1d:6c: 15:c8:12:cb:f8:79:75:6a:a3:7f:7b:e8:c3:bf:9b:44:6f:6a: 47:af:dd:1b:a9:67:a7:c7:f4:dc:7c:68:02:ac:e9:86:70:36: 61:b5:7e:89:24:ad:df:55:43:bb:f2:4f:89:b6:d7:cf:80:cb: 14:b9:34:86:7b:e4:51:15:49:39:3d:06:db:6f:e0:07:b7:d4: 9f:2c:05:ab -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGI9sjfJNAO8nU/d+yU/6+jJMe74wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjEx NTFDNUVEQjAeFw0yNTEyMDUwNjE1NDJaFw0yNTEyMDgxMzEyNDJaMDMxMTAvBgNV BAMTKDZENTU0MjA5QjRDMkIwNUI3REYwNjFBNUQ3NzM3N0Q3QjIxMUM4NkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvcU33QQ1wM3ppniQhB5LqO3u+ 7EqTSyYmI7OP/dA1CxYgpuVWKAubzhw6F6xSVurEStxZcUN/767n4H8d9lb8Ql84 kKLmAtvuR+1AafAjUPJpJQMtK4HKfXAObZRndeaJ48v7Pv/Zb+VfAZqlil9FU1iv /JNKwo2k43Y3yR6mKSiNZquwtWizh6Zuf7DDibIm+8AV9kHyZA6WLHpaKfxD3buD 1PD72VTxlN/8ucYhAOYIaDGUM1V7dNtOV5xR3/mG8dw1U1/fGxjsVko4RFgRgDX3 qGBIC+Ey9hAlVWBWbZktdgqhdT6sgrqb/YCdjCCptvi3pma2zIHs412ZiufRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbVVCCbTCsFt98GGl13N317IRyGswHwYDVR0j BBgwFoAUAyGYT5gjCk+UZn6CwKPesRUcXtswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h MTYzM2I4ZS0wZGY5LTQ0YWMtOWNhZS1kNmY2NzY1YTUyYzkvMC8wMzIxOTg0Rjk4 MjMwQTRGOTQ2NjdFODJDMEEzREVCMTE1MUM1RURCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RFQjExNTFD NUVEQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTE2MzNiOGUtMGRmOS00NGFjLTlj YWUtZDZmNjc2NWE1MmM5LzAvMDMyMTk4NEY5ODIzMEE0Rjk0NjY3RTgyQzBBM0RF QjExNTFDNUVEQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALEglvyzlWTzYZJxJkmoS49IaLUpzPBGic4K w4DEHCnEFIOJ/uF+pnZe21uJCsMZgBTf1jMrrqw2Fv0AvIG7cnh+g54A+VY7v2N9 FydURqiRu+EWmSADQLMZDidmfbFwC5uFMQN+C6/VWwWJaipONyazIdv3SlfHhAnP g/2zq7UlW7V8XMm9Hn+wrX1NZbicm6va2P5DSvfY9DlRUQPTQOKpau8ZcU4viq0u E8WeXUyXuMYdbBXIEsv4eXVqo3976MO/m0Rvakev3RupZ6fH9Nx8aAKs6YZwNmG1 fokkrd9VQ7vyT4m218+AyxS5NIZ75FEVSTk9Bttv4Ae31J8sBas= -----END CERTIFICATE-----Generated at Sun Dec 7 00:14:18 2025 by rpki-client