This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft File: 20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft (raw, json) Hash identifier: y9q9s/6ZN2ugXHOJQEnZLVy/ukb1liFK46d5NZocBWs= Subject key identifier: EF:4C:85:AB:AA:70:58:E0:6E:77:BD:97:AD:F9:42:AB:DC:C4:39:B1 Authority key identifier: 20:A4:A2:CE:A0:09:88:40:AF:6A:1C:5B:F3:D8:4E:41:5D:7F:18:D5 Certificate issuer: /CN=20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5 Certificate serial: 7815F19E05DAEB0E48C8A7851CE01F68E9341EAB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft Manifest number: CA Signing time: Fri 05 Dec 2025 06:00:01 +0000 Manifest this update: Fri 05 Dec 2025 05:55:01 +0000 Manifest next update: Mon 08 Dec 2025 08:43:01 +0000 Files and hashes: 1: 20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl (hash: u6R6Can2JXiXjPsrVPJx6JBJGaND79vck5rO6oP30To=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 08:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:15:f1:9e:05:da:eb:0e:48:c8:a7:85:1c:e0:1f:68:e9:34:1e:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5 Validity Not Before: Dec 5 05:55:01 2025 GMT Not After : Dec 8 08:43:01 2025 GMT Subject: CN=EF4C85ABAA7058E06E77BD97ADF942ABDCC439B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ee:29:71:3d:2d:3c:51:3b:bf:b5:0a:a8:37: 15:fc:ed:5e:54:bb:1b:d6:f3:12:7f:d8:f2:6a:af: b1:db:04:b8:fe:79:21:37:ba:45:98:46:52:0b:51: de:bb:db:d8:f0:d4:5a:38:6e:4d:36:91:be:31:1a: c2:c8:17:ea:74:99:bd:3a:9b:97:19:d5:40:34:a7: 16:84:8f:4f:d0:98:e4:4c:48:bf:08:ed:f2:f2:f8: 3f:dd:94:35:13:c2:4f:70:44:63:52:19:83:5d:d9: e9:0d:17:54:c2:0c:e9:03:2c:f1:e1:e5:20:2a:e6: 4b:99:35:79:8b:24:e9:34:df:27:bd:39:14:f5:3a: aa:2b:07:75:4c:d2:f1:3e:a3:17:7d:bc:d4:a8:53: e9:da:c3:97:c2:01:66:c2:96:b2:df:c6:d4:21:eb: ae:24:df:9e:d5:d7:eb:f9:a7:d5:b2:6f:77:4f:7a: 9e:e4:7c:0e:65:56:f3:83:56:b2:1a:9c:cb:10:c9: 1e:56:19:5d:a6:0b:cf:53:36:c2:5c:83:66:68:59: 7f:48:27:e2:89:a6:58:32:16:7d:18:1a:69:74:23: 66:14:29:b6:15:73:5e:c1:11:6b:12:7c:7a:41:eb: fa:50:ac:5d:4e:b2:be:18:db:27:a0:ae:6f:e2:8b: 16:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:4C:85:AB:AA:70:58:E0:6E:77:BD:97:AD:F9:42:AB:DC:C4:39:B1 X509v3 Authority Key Identifier: keyid:20:A4:A2:CE:A0:09:88:40:AF:6A:1C:5B:F3:D8:4E:41:5D:7F:18:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ac81e6ec-c87b-4fdb-a2fa-ecc470c41d53/0/20A4A2CEA0098840AF6A1C5BF3D84E415D7F18D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 53:b6:28:cd:4e:11:5d:09:3d:71:e9:45:62:df:d0:55:ee:b1: b0:3e:c6:33:03:22:93:74:0d:19:a5:6b:4a:f6:fd:ae:20:d1: 45:57:69:55:02:f1:37:5b:38:7d:e6:c3:94:ee:18:2d:86:48: 80:7f:39:6e:ec:b8:94:21:db:ad:58:99:20:79:96:bb:a7:b5: 90:32:b8:00:a5:30:06:97:e5:1a:85:88:bc:2e:a6:f8:92:3e: 01:29:ec:b9:22:4c:79:45:8b:10:72:dd:49:14:d7:f4:9f:95: 72:1c:8d:59:ee:0a:13:02:e4:8f:f0:20:05:82:4a:76:46:ef: 89:10:6f:6f:34:ce:15:04:99:5f:ce:c4:0b:26:40:d0:21:08: 64:4c:f4:27:29:19:5e:3d:3a:8f:03:82:55:d5:87:93:7c:68: 25:28:0e:0b:89:37:4f:35:d5:75:67:a3:91:92:ee:18:83:3f: 81:06:da:f5:2c:33:c9:63:7a:ac:02:19:1b:17:37:0e:5f:fb: e6:4d:1a:4d:1b:1b:a0:d2:9b:e5:ac:99:49:a5:f7:72:8c:8e: d4:85:7c:4d:a8:da:15:a8:fa:2d:89:4d:75:39:4d:6d:b0:e1: 60:33:f5:a0:28:e2:43:1d:8e:59:e9:22:75:bf:a8:e8:fc:10: 14:96:7a:bc -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeBXxngXa6w5IyKeFHOAfaOk0HqswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRFNDE1 RDdGMThENTAeFw0yNTEyMDUwNTU1MDFaFw0yNTEyMDgwODQzMDFaMDMxMTAvBgNV BAMTKEVGNEM4NUFCQUE3MDU4RTA2RTc3QkQ5N0FERjk0MkFCRENDNDM5QjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC7ilxPS08UTu/tQqoNxX87V5U uxvW8xJ/2PJqr7HbBLj+eSE3ukWYRlILUd6729jw1Fo4bk02kb4xGsLIF+p0mb06 m5cZ1UA0pxaEj0/QmORMSL8I7fLy+D/dlDUTwk9wRGNSGYNd2ekNF1TCDOkDLPHh 5SAq5kuZNXmLJOk03ye9ORT1OqorB3VM0vE+oxd9vNSoU+naw5fCAWbClrLfxtQh 664k357V1+v5p9Wyb3dPep7kfA5lVvODVrIanMsQyR5WGV2mC89TNsJcg2ZoWX9I J+KJplgyFn0YGml0I2YUKbYVc17BEWsSfHpB6/pQrF1Osr4Y2yegrm/iixaxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU70yFq6pwWOBud72XrflCq9zEObEwHwYDVR0j BBgwFoAUIKSizqAJiECvahxb89hOQV1/GNUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h YzgxZTZlYy1jODdiLTRmZGItYTJmYS1lY2M0NzBjNDFkNTMvMC8yMEE0QTJDRUEw MDk4ODQwQUY2QTFDNUJGM0Q4NEU0MTVEN0YxOEQ1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRFNDE1RDdG MThENS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYWM4MWU2ZWMtYzg3Yi00ZmRiLWEy ZmEtZWNjNDcwYzQxZDUzLzAvMjBBNEEyQ0VBMDA5ODg0MEFGNkExQzVCRjNEODRF NDE1RDdGMThENS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFO2KM1OEV0JPXHpRWLf0FXusbA+xjMDIpN0 DRmla0r2/a4g0UVXaVUC8TdbOH3mw5TuGC2GSIB/OW7suJQh261YmSB5lruntZAy uAClMAaX5RqFiLwupviSPgEp7LkiTHlFixBy3UkU1/SflXIcjVnuChMC5I/wIAWC SnZG74kQb280zhUEmV/OxAsmQNAhCGRM9CcpGV49Oo8DglXVh5N8aCUoDguJN081 1XVno5GS7hiDP4EG2vUsM8ljeqwCGRsXNw5f++ZNGk0bG6DSm+WsmUml93KMjtSF fE2o2hWo+i2JTXU5TW2w4WAz9aAo4kMdjlnpInW/qOj8EBSWerw= -----END CERTIFICATE-----Generated at Sun Dec 7 05:13:52 2025 by rpki-client