This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft File: 20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft (raw, json) Hash identifier: cybA74d5da1bzSAX/vDr5Je40vJzu8SebXqzBaWbWcw= Subject key identifier: DE:B5:37:14:41:45:1E:3B:DC:B0:46:DF:F2:5C:D9:15:D2:06:0B:51 Authority key identifier: 20:A4:A2:CE:A0:09:88:40:AF:6A:1C:5B:F3:D8:4E:41:5D:7F:18:D5 Certificate issuer: /CN=20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5 Certificate serial: 3A2EFE10F271546E31038537F2CC65A929EAE80C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft Manifest number: CE Signing time: Sun 14 Dec 2025 10:40:01 +0000 Manifest this update: Sun 14 Dec 2025 10:35:01 +0000 Manifest next update: Wed 17 Dec 2025 21:19:01 +0000 Files and hashes: 1: 20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl (hash: 3kXpxVpZZgraN/xdXnfzOzzF8DGKHYn5RyNonRph6Mo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 21:19:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:2e:fe:10:f2:71:54:6e:31:03:85:37:f2:cc:65:a9:29:ea:e8:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5 Validity Not Before: Dec 14 10:35:01 2025 GMT Not After : Dec 17 21:19:01 2025 GMT Subject: CN=DEB5371441451E3BDCB046DFF25CD915D2060B51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f6:96:c7:cb:d6:bd:ae:b5:8f:b4:e6:98:1d: 85:6a:54:9a:96:56:4f:f2:17:97:8f:5a:97:cb:38: 6d:54:0c:0d:d8:c2:7b:61:f4:95:97:0c:ae:ab:d7: d8:6d:3d:e1:86:18:5a:60:1e:27:97:b8:e5:b3:4e: 1c:ed:1c:24:13:06:56:f0:58:92:e5:a2:b3:37:8b: c8:db:a2:1d:fc:00:4c:37:f8:bc:0f:20:27:1a:fb: c7:20:59:b5:7b:70:c8:66:1b:3c:e5:18:f7:8a:7d: 47:5b:c2:cb:e8:f9:da:a3:75:3e:e4:24:9e:86:8b: 62:dc:b6:08:7a:0a:5e:cc:60:2e:3f:42:9d:01:b0: 1d:76:6d:ff:23:aa:14:0e:9d:ef:01:b8:a2:45:da: 94:03:e9:14:e5:6d:01:0c:1c:07:fe:86:62:2a:28: c9:1f:fd:9f:92:75:47:4b:a3:65:95:2d:8c:e0:01: fe:6d:7d:ec:7e:02:57:01:46:48:b0:33:07:a1:12: 5c:21:d6:44:73:63:bf:8d:48:d5:68:d4:ae:db:40: cb:41:4d:33:69:c2:8c:6a:b1:70:6e:86:eb:12:4e: 2c:d5:47:a8:c0:ef:c2:a6:7a:a6:92:bc:d6:fc:ab: 20:2a:59:26:75:fd:ae:41:24:85:88:2d:72:b9:05: a1:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:B5:37:14:41:45:1E:3B:DC:B0:46:DF:F2:5C:D9:15:D2:06:0B:51 X509v3 Authority Key Identifier: keyid:20:A4:A2:CE:A0:09:88:40:AF:6A:1C:5B:F3:D8:4E:41:5D:7F:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:93:38:d4:7f:a4:9a:48:2a:d7:64:cf:e5:63:8e:46:85:bb: 71:20:60:dc:1f:32:01:7a:ff:f2:d1:60:3c:19:28:41:65:e9: 03:26:f8:41:ed:32:39:cc:52:f2:2b:da:35:69:e5:6c:37:78: 19:bd:46:cc:ba:ef:fd:16:d7:1a:e3:b8:64:be:40:cb:d7:78: 81:6c:09:73:a9:cd:11:ad:c5:2c:ff:a2:42:2a:e8:ac:00:1d: f7:3d:a3:88:a3:bb:9e:3d:e3:41:ce:26:a3:1b:8c:17:0d:3f: bc:3d:03:b0:25:b6:b5:e4:28:e3:f4:20:8c:52:27:b4:f6:cd: 56:63:c6:ef:9e:0d:c4:6f:30:2f:cd:cd:9b:4f:73:b0:5c:d1: e0:63:5e:4d:c9:08:22:b5:0b:26:7d:9f:34:ac:d9:2a:80:1b: 18:1f:d6:a0:cd:44:92:eb:e4:cb:b0:e4:38:3f:86:62:b1:68: 9d:36:a2:2d:4b:99:46:31:af:06:42:0e:e1:b1:98:bf:ba:bf: 98:37:0b:8e:3b:49:22:11:a8:03:e7:04:7b:1a:4b:d4:91:d3: 3c:2d:ec:73:e3:27:6c:ca:8e:77:a1:38:6e:ea:2d:66:f7:2c: 98:11:56:5c:47:40:ac:f9:da:d8:ef:c7:bc:09:87:09:cc:e3: 49:8e:ca:08 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUOi7+EPJxVG4xA4U38sxlqSnq6AwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRFNDE1 RDdGMThENTAeFw0yNTEyMTQxMDM1MDFaFw0yNTEyMTcyMTE5MDFaMDMxMTAvBgNV BAMTKERFQjUzNzE0NDE0NTFFM0JEQ0IwNDZERkYyNUNEOTE1RDIwNjBCNTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA9pbHy9a9rrWPtOaYHYVqVJqW Vk/yF5ePWpfLOG1UDA3Ywnth9JWXDK6r19htPeGGGFpgHieXuOWzThztHCQTBlbw WJLlorM3i8jboh38AEw3+LwPICca+8cgWbV7cMhmGzzlGPeKfUdbwsvo+dqjdT7k JJ6Gi2Lctgh6Cl7MYC4/Qp0BsB12bf8jqhQOne8BuKJF2pQD6RTlbQEMHAf+hmIq KMkf/Z+SdUdLo2WVLYzgAf5tfex+AlcBRkiwMwehElwh1kRzY7+NSNVo1K7bQMtB TTNpwoxqsXBuhusSTizVR6jA78KmeqaSvNb8qyAqWSZ1/a5BJIWILXK5BaGlAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU3rU3FEFFHjvcsEbf8lzZFdIGC1EwHwYDVR0j BBgwFoAUIKSizqAJiECvahxb89hOQV1/GNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzgxZTZlYy1jODdiLTRmZGItYTJmYS1lY2M0NzBjNDFkNTMvMC8yMEE0QTJDRUEw MDk4ODQwQUY2QTFDNUJGM0Q4NEU0MTVEN0YxOEQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRFNDE1RDdG MThENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWM4MWU2ZWMtYzg3Yi00ZmRiLWEy ZmEtZWNjNDcwYzQxZDUzLzAvMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRF NDE1RDdGMThENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAG2TONR/pJpIKtdkz+VjjkaFu3EgYNwfMgF6 //LRYDwZKEFl6QMm+EHtMjnMUvIr2jVp5Ww3eBm9Rsy67/0W1xrjuGS+QMvXeIFs CXOpzRGtxSz/okIq6KwAHfc9o4iju54940HOJqMbjBcNP7w9A7AltrXkKOP0IIxS J7T2zVZjxu+eDcRvMC/NzZtPc7Bc0eBjXk3JCCK1CyZ9nzSs2SqAGxgf1qDNRJLr 5Muw5Dg/hmKxaJ02oi1LmUYxrwZCDuGxmL+6v5g3C447SSIRqAPnBHsaS9SR0zwt 7HPjJ2zKjnehOG7qLWb3LJgRVlxHQKz52tjvx7wJhwnM40mOygg= -----END CERTIFICATE-----Generated at Tue Dec 16 00:31:25 2025 by rpki-client