This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft File: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft (raw, json) Hash identifier: sfNzv9eoYiB0bt6d12zikprf8aHshyomvcsNy3dF9Kk= Subject key identifier: F8:18:74:6D:72:3A:2C:47:F7:ED:9C:1C:52:51:F0:29:A6:8C:EF:F6 Authority key identifier: 67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F Certificate issuer: /CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Certificate serial: 1617847A08E90E205365675381AEEBA1370F72CC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft Manifest number: 01DF Signing time: Fri 05 Dec 2025 13:51:24 +0000 Manifest this update: Fri 05 Dec 2025 13:46:24 +0000 Manifest next update: Mon 08 Dec 2025 19:24:24 +0000 Files and hashes: 1: 67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl (hash: Nvb4aWkwOE3j3Q9vsFtbCaPtt181vWoa7SZx/pn+QXY=) 2: 3130332e35392e39342e302f32332d3234203d3e20313336303532.roa (hash: 8iEgHOEIqDfpr7gSt8jxyho1deCIzw83qW565uPVSgs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 19:24:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:17:84:7a:08:e9:0e:20:53:65:67:53:81:ae:eb:a1:37:0f:72:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F Validity Not Before: Dec 5 13:46:24 2025 GMT Not After : Dec 8 19:24:24 2025 GMT Subject: CN=F818746D723A2C47F7ED9C1C5251F029A68CEFF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:72:ae:d9:39:65:36:b9:66:8d:49:10:f4:26: 9c:e9:95:8c:cd:c7:f5:d9:79:8f:73:5c:ea:7d:97: 69:53:84:84:ad:b7:41:91:5c:a3:49:24:18:71:eb: 4e:85:a4:d9:50:78:42:9a:78:ab:9f:29:74:8b:26: fc:c4:34:44:a5:01:bb:73:c6:6c:ba:bc:26:43:ed: cb:bc:e1:9e:b0:ad:f0:26:d2:45:1c:f7:71:b8:11: a2:e9:97:ce:ec:57:68:96:84:1d:98:01:8b:7c:df: ab:ac:c8:3c:8d:c1:f1:de:4a:d3:2b:76:3b:04:83: 28:1a:bc:0e:84:92:15:1f:7d:1e:fd:60:d7:d1:96: 6f:02:1e:af:3f:7c:99:b3:bd:04:44:27:04:94:44: cc:13:d9:74:c2:4b:e2:72:11:8a:80:41:2b:22:24: f7:35:04:89:57:72:e6:b8:1c:01:46:43:8d:44:24: 9f:6f:88:3c:c9:b8:e1:7c:93:ae:a5:15:c1:d8:66: f4:c2:3a:a8:69:1d:b6:57:4b:15:37:71:7d:06:29: 0e:15:2d:41:dd:ac:eb:7b:6e:40:53:40:5e:97:9c: 70:e1:a9:66:b4:1b:2a:19:07:b5:c0:c2:79:fb:dd: 58:4b:cd:70:93:1d:94:4d:b1:57:28:2d:8e:9d:75: 11:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:18:74:6D:72:3A:2C:47:F7:ED:9C:1C:52:51:F0:29:A6:8C:EF:F6 X509v3 Authority Key Identifier: keyid:67:A4:28:D3:DC:89:DD:EF:5B:E7:AC:43:FB:7C:88:17:5E:C3:87:1F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/a66a8f28-9a03-4376-b612-31f5ad1c1ed6/0/67A428D3DC89DDEF5BE7AC43FB7C88175EC3871F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9a:6b:d5:86:7a:52:8d:3d:60:e0:94:cf:ba:7f:a8:a4:ca:b7: 5b:a5:b4:96:6b:c6:b5:b8:eb:32:54:41:ec:71:84:19:d5:1b: 2c:c4:2f:ef:1b:e9:74:6e:5e:72:02:aa:b6:b2:b5:10:06:3c: 6c:71:db:a4:f4:37:28:40:2d:9e:91:e4:cb:2c:80:71:18:3f: f2:ad:cb:00:ce:c9:82:5b:b4:ff:2c:1d:89:62:ec:7c:20:33: c8:1e:69:e3:0f:b1:d7:d0:52:dc:b0:a1:f9:1e:07:7e:88:98: ea:21:31:f5:fa:2f:82:40:39:55:19:ce:94:be:36:7d:a4:65: 65:b6:a9:0a:2c:d9:56:70:eb:76:fe:6b:8c:c8:e3:d6:99:17: 3e:5a:25:42:8b:44:25:4c:ac:2d:1a:6d:89:32:6f:65:5a:e0: b8:1a:1a:0a:10:33:ed:a6:cf:24:b5:ea:c9:42:17:0d:7d:99: 9a:2f:f2:e5:01:fe:21:13:71:43:15:c6:d7:35:e0:c2:c2:0b: fa:9a:1a:0d:a9:d3:b2:45:61:7d:a5:74:00:3d:57:58:c0:b5: 1f:4c:1f:41:23:5e:81:99:94:e9:0a:d4:06:f4:8b:8a:62:99: 9e:bd:6e:57:bf:bb:bd:c0:5e:b3:ef:5f:31:d6:72:2d:1e:66: 85:ec:4e:55 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFheEegjpDiBTZWdTga7roTcPcswwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1 RUMzODcxRjAeFw0yNTEyMDUxMzQ2MjRaFw0yNTEyMDgxOTI0MjRaMDMxMTAvBgNV BAMTKEY4MTg3NDZENzIzQTJDNDdGN0VEOUMxQzUyNTFGMDI5QTY4Q0VGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+cq7ZOWU2uWaNSRD0JpzplYzN x/XZeY9zXOp9l2lThIStt0GRXKNJJBhx606FpNlQeEKaeKufKXSLJvzENESlAbtz xmy6vCZD7cu84Z6wrfAm0kUc93G4EaLpl87sV2iWhB2YAYt836usyDyNwfHeStMr djsEgygavA6EkhUffR79YNfRlm8CHq8/fJmzvQREJwSURMwT2XTCS+JyEYqAQSsi JPc1BIlXcua4HAFGQ41EJJ9viDzJuOF8k66lFcHYZvTCOqhpHbZXSxU3cX0GKQ4V LUHdrOt7bkBTQF6XnHDhqWa0GyoZB7XAwnn73VhLzXCTHZRNsVcoLY6ddRFfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU+Bh0bXI6LEf37ZwcUlHwKaaM7/YwHwYDVR0j BBgwFoAUZ6Qo09yJ3e9b56xD+3yIF17Dhx8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h NjZhOGYyOC05YTAzLTQzNzYtYjYxMi0zMWY1YWQxYzFlZDYvMC82N0E0MjhEM0RD ODlEREVGNUJFN0FDNDNGQjdDODgxNzVFQzM4NzFGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4MTc1RUMz ODcxRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYTY2YThmMjgtOWEwMy00Mzc2LWI2 MTItMzFmNWFkMWMxZWQ2LzAvNjdBNDI4RDNEQzg5RERFRjVCRTdBQzQzRkI3Qzg4 MTc1RUMzODcxRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJpr1YZ6Uo09YOCUz7p/qKTKt1ultJZrxrW4 6zJUQexxhBnVGyzEL+8b6XRuXnICqraytRAGPGxx26T0NyhALZ6R5MssgHEYP/Kt ywDOyYJbtP8sHYli7HwgM8geaeMPsdfQUtywofkeB36ImOohMfX6L4JAOVUZzpS+ Nn2kZWW2qQos2VZw63b+a4zI49aZFz5aJUKLRCVMrC0abYkyb2Va4LgaGgoQM+2m zyS16slCFw19mZov8uUB/iETcUMVxtc14MLCC/qaGg2p07JFYX2ldAA9V1jAtR9M H0EjXoGZlOkK1Ab0i4pimZ69ble/u73AXrPvXzHWci0eZoXsTlU= -----END CERTIFICATE-----Generated at Sat Dec 6 20:16:50 2025 by rpki-client