This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft File: 952177DE616DE181FF461A8481C060AD744E2603.mft (raw, json) Hash identifier: yv0+DwBWpHZWhpuTtuM0XHU8tHOOGal1nC1TjNjTFtk= Subject key identifier: 91:13:57:AB:16:4B:80:E7:D5:A7:1B:43:59:6C:3F:85:C0:E2:57:23 Authority key identifier: 95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 Certificate issuer: /CN=952177DE616DE181FF461A8481C060AD744E2603 Certificate serial: 1FDA695333D0E9D684C3C9BBE3BD38D717468DEE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft Manifest number: E6 Signing time: Sat 06 Dec 2025 00:00:44 +0000 Manifest this update: Fri 05 Dec 2025 23:55:44 +0000 Manifest next update: Tue 09 Dec 2025 10:31:44 +0000 Files and hashes: 1: 3135372e31352e3137342e302f32342d3234203d3e20313532333739.roa (hash: keRrjXE2aFv5lood59DLSEKDpD72rCKDg82GWlf1ewQ=) 2: 952177DE616DE181FF461A8481C060AD744E2603.crl (hash: kechcxqhNVHaz70v0j50nZmqWmoXrjx6tnSACIQlPSo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 06:55:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:da:69:53:33:d0:e9:d6:84:c3:c9:bb:e3:bd:38:d7:17:46:8d:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=952177DE616DE181FF461A8481C060AD744E2603 Validity Not Before: Dec 5 23:55:44 2025 GMT Not After : Dec 9 10:31:44 2025 GMT Subject: CN=911357AB164B80E7D5A71B43596C3F85C0E25723 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ed:e2:31:75:40:06:7f:de:03:ac:07:4f:06: 59:e1:82:f3:07:77:0e:cc:2d:99:db:d2:98:41:97: c3:d6:d9:0d:15:20:1d:a3:84:6e:3a:ef:f3:ad:c9: 50:cf:80:7b:fe:25:24:09:ee:bc:35:d0:26:26:bb: 95:e9:25:b4:6c:75:ae:27:a3:5d:61:59:40:68:c9: ec:5d:d0:0d:9c:7b:6d:b0:94:6e:dd:18:97:77:be: 0f:54:bb:24:d6:bd:ff:0b:db:9c:22:96:2c:51:bd: fa:7b:0b:6e:42:51:66:47:2e:2e:16:fc:1e:79:ef: 64:70:6b:23:87:44:7d:ec:20:a3:dd:e0:db:e3:f3: d2:a0:1c:3b:36:4a:9b:41:62:af:42:76:06:9c:4f: fe:f6:7f:7c:f0:2d:c0:88:50:59:18:d9:8b:a5:38: 4c:a1:5a:cb:4b:2a:34:eb:cf:26:6c:03:2f:b9:84: 57:30:6e:c4:88:11:56:0e:31:d6:49:80:0e:34:65: a0:14:5d:86:d2:27:4d:ec:9f:b2:03:c2:87:29:81: 17:d3:79:b7:5a:1b:cd:28:dd:b3:af:2f:24:e2:0c: d6:49:c1:26:34:ae:87:db:91:45:7e:b0:fa:94:05: d3:25:76:1b:df:81:33:9b:7e:8b:cc:66:06:b6:55: 17:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:13:57:AB:16:4B:80:E7:D5:A7:1B:43:59:6C:3F:85:C0:E2:57:23 X509v3 Authority Key Identifier: keyid:95:21:77:DE:61:6D:E1:81:FF:46:1A:84:81:C0:60:AD:74:4E:26:03 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/952177DE616DE181FF461A8481C060AD744E2603.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ab002992-acb2-4f77-997d-3217ead99bb5/0/952177DE616DE181FF461A8481C060AD744E2603.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 51:76:2d:9a:40:09:c3:3e:f3:7a:e7:ab:fb:c7:8e:d8:14:fa: d4:db:57:c6:29:86:f8:39:fd:9e:de:f8:52:3a:a7:e9:36:df: 14:b6:f8:53:d1:8a:d5:fc:70:98:26:ce:c7:c4:1e:a8:5a:ec: df:00:6d:f1:33:1d:09:bc:76:a4:d4:64:17:85:e5:06:21:43: a7:25:b0:e0:bc:1e:a4:59:eb:5a:05:aa:2a:fc:6b:e3:a4:7e: 03:98:18:1e:9d:55:4f:53:06:ba:71:aa:b8:79:08:43:77:ac: 26:06:1a:ab:d6:a5:8c:95:7d:da:d2:80:28:8e:b6:71:95:56: 62:9b:7b:cf:82:f4:00:08:09:f2:1f:71:a5:39:cb:f8:42:af: 57:1a:4d:e0:f8:e0:fd:b6:97:46:cc:d9:2f:48:06:9b:f2:4e: ee:1e:07:5a:7a:84:68:5b:53:4c:4e:62:6f:61:17:e5:bc:b2: bc:7a:44:cd:b6:40:2f:0b:66:56:31:ee:0a:d2:56:16:66:e4: ef:bf:95:11:27:1a:4f:dc:ba:12:06:b1:d1:4d:f1:11:8b:81: ca:09:de:92:0c:74:f3:70:16:19:ae:37:4c:00:af:ef:c8:e1: c3:8b:41:5f:a9:dd:5e:a5:a0:99:8b:96:72:21:d1:1c:6b:25: 1a:a0:3c:76 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUH9ppUzPQ6daEw8m747041xdGje4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3 NDRFMjYwMzAeFw0yNTEyMDUyMzU1NDRaFw0yNTEyMDkxMDMxNDRaMDMxMTAvBgNV BAMTKDkxMTM1N0FCMTY0QjgwRTdENUE3MUI0MzU5NkMzRjg1QzBFMjU3MjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDP7eIxdUAGf94DrAdPBlnhgvMH dw7MLZnb0phBl8PW2Q0VIB2jhG467/OtyVDPgHv+JSQJ7rw10CYmu5XpJbRsda4n o11hWUBoyexd0A2ce22wlG7dGJd3vg9UuyTWvf8L25wilixRvfp7C25CUWZHLi4W /B5572RwayOHRH3sIKPd4Nvj89KgHDs2SptBYq9CdgacT/72f3zwLcCIUFkY2Yul OEyhWstLKjTrzyZsAy+5hFcwbsSIEVYOMdZJgA40ZaAUXYbSJ03sn7IDwocpgRfT ebdaG80o3bOvLyTiDNZJwSY0rofbkUV+sPqUBdMldhvfgTObfovMZga2VRd9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUkRNXqxZLgOfVpxtDWWw/hcDiVyMwHwYDVR0j BBgwFoAUlSF33mFt4YH/RhqEgcBgrXROJgMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YjAwMjk5Mi1hY2IyLTRmNzctOTk3ZC0zMjE3ZWFkOTliYjUvMC85NTIxNzdERTYx NkRFMTgxRkY0NjFBODQ4MUMwNjBBRDc0NEUyNjAzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYwQUQ3NDRF MjYwMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWIwMDI5OTItYWNiMi00Zjc3LTk5 N2QtMzIxN2VhZDk5YmI1LzAvOTUyMTc3REU2MTZERTE4MUZGNDYxQTg0ODFDMDYw QUQ3NDRFMjYwMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFF2LZpACcM+83rnq/vHjtgU+tTbV8Yphvg5 /Z7e+FI6p+k23xS2+FPRitX8cJgmzsfEHqha7N8AbfEzHQm8dqTUZBeF5QYhQ6cl sOC8HqRZ61oFqir8a+OkfgOYGB6dVU9TBrpxqrh5CEN3rCYGGqvWpYyVfdrSgCiO tnGVVmKbe8+C9AAICfIfcaU5y/hCr1caTeD44P22l0bM2S9IBpvyTu4eB1p6hGhb U0xOYm9hF+W8srx6RM22QC8LZlYx7grSVhZm5O+/lREnGk/cuhIGsdFN8RGLgcoJ 3pIMdPNwFhmuN0wAr+/I4cOLQV+p3V6loJmLlnIh0RxrJRqgPHY= -----END CERTIFICATE-----Generated at Sat Dec 6 23:26:01 2025 by rpki-client