This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft File: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft (raw, json) Hash identifier: ZZxUZBWfePCon1fGHgsbvwoyET379AGmOcZNSKYnLXY= Subject key identifier: A3:58:87:18:72:F0:2A:37:8C:B1:1B:1B:7F:B1:BB:B5:97:3E:F1:B6 Authority key identifier: 0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C Certificate issuer: /CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Certificate serial: 312C7F8169F8D240B958D26F8A290A1170930722 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft Manifest number: 015F Signing time: Fri 05 Dec 2025 00:01:54 +0000 Manifest this update: Thu 04 Dec 2025 23:56:54 +0000 Manifest next update: Mon 08 Dec 2025 10:17:54 +0000 Files and hashes: 1: 0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl (hash: L8lKdNbPYR+Ay9DikeatKON/SQ2eLG+7+AyyfZNn/Gw=) 2: 3130332e3139302e3131332e302f32342d3234203d3e20313439393037.roa (hash: 3qwvc0M9032XGDH7vraV4T7cy4QhAdHQHEpVds7HICk=) 3: 3130332e3139302e3131322e302f32332d3234203d3e20313439393037.roa (hash: ki0hIXEeGo8cU77Xr7lKfx7zoFMhB4mSH2tdcqcaUcQ=) 4: 3130332e3139302e3131322e302f32342d3234203d3e20313439393037.roa (hash: RiJQOn+iteWsGaHDQ7CJgxTOw5x3cmMgsW4Cbj99H/E=) 5: 323030313a6466303a663963303a3a2f34382d3438203d3e20313439393037.roa (hash: dQqh/UiHoQw/70mJd+ZId7SvE382IQVHD0RnWmbxwtI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 10:17:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:2c:7f:81:69:f8:d2:40:b9:58:d2:6f:8a:29:0a:11:70:93:07:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C Validity Not Before: Dec 4 23:56:54 2025 GMT Not After : Dec 8 10:17:54 2025 GMT Subject: CN=A358871872F02A378CB11B1B7FB1BBB5973EF1B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a9:82:20:86:00:95:f5:11:3b:3c:37:87:38: 50:96:62:e0:0f:3b:17:9a:b9:f7:f5:1f:48:bf:83: b8:72:1a:f1:3a:9d:30:cb:5f:fc:28:ca:fe:4d:91: da:35:39:b2:6f:82:66:e1:4c:12:dd:37:29:9e:f8: 28:20:a8:7d:f2:89:5b:b6:88:3b:ef:3f:61:3f:7b: 93:24:cf:a4:c7:66:e2:17:32:8d:07:7e:26:f3:47: ed:cf:f6:08:07:82:14:37:59:5a:68:f2:20:a3:d2: d1:ea:54:4d:86:32:31:63:24:a1:9a:a7:81:e5:08: 17:36:c1:d1:82:61:70:ec:90:d8:26:4f:96:c7:c9: f7:77:af:ca:2a:f5:72:36:78:70:da:93:93:83:6e: c5:30:38:77:c5:c1:9d:16:29:c7:3b:8d:d1:44:82: 1f:a4:98:6d:c8:0a:7c:e6:ad:c0:93:7e:0c:0f:2c: 06:60:bc:3a:d6:e2:1c:be:3c:64:b6:5f:d9:d6:41: ab:85:bb:1d:1e:90:2f:6d:3d:c3:6e:12:43:33:9c: 26:c2:99:39:f0:8b:cd:40:15:d3:3b:d1:13:56:f5: 2b:9c:c1:b6:bc:b6:e6:52:eb:7a:18:81:5c:48:0d: 39:9d:82:8d:8e:00:37:43:58:26:f2:82:46:8a:8c: c4:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:58:87:18:72:F0:2A:37:8C:B1:1B:1B:7F:B1:BB:B5:97:3E:F1:B6 X509v3 Authority Key Identifier: keyid:0C:E1:E1:11:46:E2:51:D0:CD:52:BD:83:7A:1A:0A:CD:B7:E0:BA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b0516a7a-4195-44b3-a24e-cf8ed578d791/0/0CE1E11146E251D0CD52BD837A1A0ACDB7E0BA0C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:b1:d7:48:99:5b:92:e0:e8:5e:de:4f:c6:da:7d:6a:97:08: b9:bc:9c:85:e9:78:9f:8c:82:ee:22:27:1b:6c:19:2e:97:7f: 58:a9:69:05:ef:1e:5a:d9:ce:93:42:9a:5f:dc:d5:e1:54:86: 00:a5:03:d2:f8:e7:59:2a:24:60:b2:6f:7d:08:a7:7a:f4:e4: ab:c7:1f:40:17:96:52:5d:3c:4f:6b:3c:2b:69:99:e7:43:34: 14:eb:1c:91:1d:40:0a:97:77:a5:36:f7:45:d3:01:88:3c:42: a9:21:cd:4e:fe:06:76:d2:7d:a0:b5:23:7d:84:60:8d:bf:a1: 0a:f5:fd:0f:c0:31:fd:69:40:5d:71:80:19:28:b5:09:6e:3a: 5e:71:e3:d1:86:ea:78:e1:7c:ab:70:1e:5e:de:2b:dc:12:4c: b1:9f:b1:01:65:cd:a2:de:d5:42:29:22:b5:b0:9a:d3:45:7d: 7e:d3:52:b2:53:d8:af:b3:8d:27:9b:6f:d5:73:49:1a:62:63: 80:0b:43:1e:5c:d4:d6:e4:cf:bd:b5:f6:f5:93:d8:58:64:51: a4:a7:4b:46:fb:50:c0:58:1c:e6:d9:25:0b:51:94:40:31:58: fa:be:b0:ba:ce:98:21:20:f0:e0:78:19:00:6d:da:7e:77:00: f5:4e:7b:ac -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUMSx/gWn40kC5WNJviikKEXCTByIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RC N0UwQkEwQzAeFw0yNTEyMDQyMzU2NTRaFw0yNTEyMDgxMDE3NTRaMDMxMTAvBgNV BAMTKEEzNTg4NzE4NzJGMDJBMzc4Q0IxMUIxQjdGQjFCQkI1OTczRUYxQjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCdqYIghgCV9RE7PDeHOFCWYuAP Oxeauff1H0i/g7hyGvE6nTDLX/woyv5Nkdo1ObJvgmbhTBLdNyme+CggqH3yiVu2 iDvvP2E/e5Mkz6THZuIXMo0HfibzR+3P9ggHghQ3WVpo8iCj0tHqVE2GMjFjJKGa p4HlCBc2wdGCYXDskNgmT5bHyfd3r8oq9XI2eHDak5ODbsUwOHfFwZ0WKcc7jdFE gh+kmG3ICnzmrcCTfgwPLAZgvDrW4hy+PGS2X9nWQauFux0ekC9tPcNuEkMznCbC mTnwi81AFdM70RNW9Sucwba8tuZS63oYgVxIDTmdgo2OADdDWCbygkaKjMSHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUo1iHGHLwKjeMsRsbf7G7tZc+8bYwHwYDVR0j BBgwFoAUDOHhEUbiUdDNUr2DehoKzbfgugwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MDUxNmE3YS00MTk1LTQ0YjMtYTI0ZS1jZjhlZDU3OGQ3OTEvMC8wQ0UxRTExMTQ2 RTI1MUQwQ0Q1MkJEODM3QTFBMEFDREI3RTBCQTBDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBBQ0RCN0Uw QkEwQy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjA1MTZhN2EtNDE5NS00NGIzLWEy NGUtY2Y4ZWQ1NzhkNzkxLzAvMENFMUUxMTE0NkUyNTFEMENENTJCRDgzN0ExQTBB Q0RCN0UwQkEwQy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIax10iZW5Lg6F7eT8bafWqXCLm8nIXpeJ+M gu4iJxtsGS6Xf1ipaQXvHlrZzpNCml/c1eFUhgClA9L451kqJGCyb30Ip3r05KvH H0AXllJdPE9rPCtpmedDNBTrHJEdQAqXd6U290XTAYg8QqkhzU7+BnbSfaC1I32E YI2/oQr1/Q/AMf1pQF1xgBkotQluOl5x49GG6njhfKtwHl7eK9wSTLGfsQFlzaLe 1UIpIrWwmtNFfX7TUrJT2K+zjSebb9VzSRpiY4ALQx5c1Nbkz7219vWT2FhkUaSn S0b7UMBYHObZJQtRlEAxWPq+sLrOmCEg8OB4GQBt2n53APVOe6w= -----END CERTIFICATE-----Generated at Sun Dec 7 07:00:02 2025 by rpki-client