This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft File: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft (raw, json) Hash identifier: HOlGVjHPTn1yxwNjOjqrdvIhauEciN9pVlY8lgBPPkU= Subject key identifier: 6E:4F:3E:89:42:A6:8F:7A:9D:7A:98:9D:37:65:24:28:87:1A:71:05 Authority key identifier: D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F Certificate issuer: /CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Certificate serial: 7C52B0407ED58017D1DA25D1B2C84E93592607ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft Manifest number: 053E Signing time: Sat 06 Dec 2025 14:21:24 +0000 Manifest this update: Sat 06 Dec 2025 14:16:24 +0000 Manifest next update: Wed 10 Dec 2025 00:36:24 +0000 Files and hashes: 1: 3130332e3231392e3234382e302f32322d3234203d3e20313335343434.roa (hash: lX6yK5ZXngZW7ELU3wR8WQZxB1PZNhMXdAdxnRkfpzY=) 2: D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl (hash: 7xnPprmZtEs6/9HHHp7w8Fj76TETNsMqPHM6jnB0+MU=) 3: 3130332e3233352e37342e302f32342d3234203d3e20313431313230.roa (hash: e9uiS3KNGlZ+EQjSXY4m6NwJ9lRr8aifmafZU96mQ7k=) 4: 3130332e3233352e37322e302f32342d3234203d3e20313335343434.roa (hash: OjdsG/TdDn+RUWERJayMK04SkHQ7zRmm5hb518X40Eo=) 5: 323030313a6466323a356130303a3a2f34382d3438203d3e20313335343434.roa (hash: TiFQ5+3RDDZw3hEMovau4FHuHmfphOknHBNZEgIPquo=) 6: 3130332e3233352e37332e302f32342d3234203d3e20313335333630.roa (hash: Gss2BFwCvkYMrYmTDPR8XZwGfdbzMzVTFBRvuPZp/uA=) 7: 3130332e3233352e37352e302f32342d3234203d3e20313335343434.roa (hash: lz/aRA5xwGbvGMSgXL70n8EEkKYV5RNTgznI5gnec7Q=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:52:b0:40:7e:d5:80:17:d1:da:25:d1:b2:c8:4e:93:59:26:07:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D9CD40474BDD0C0707766CEDBAF0B6A186CF582F Validity Not Before: Dec 6 14:16:24 2025 GMT Not After : Dec 10 00:36:24 2025 GMT Subject: CN=6E4F3E8942A68F7A9D7A989D37652428871A7105 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:28:0b:44:7c:7c:d7:57:82:25:c3:c9:0f:65: 22:02:6d:7d:f7:a5:3f:7a:8e:67:4c:23:fe:43:c3: 9a:e7:c1:32:79:0e:41:af:9f:24:68:d0:3f:b9:03: 8f:77:d9:9d:ac:be:ee:ef:87:d8:73:13:50:cc:8a: c7:98:63:b9:de:2c:c0:1c:dc:e7:d6:a0:17:49:c9: eb:a3:a4:5b:8e:91:64:a4:b5:b5:8c:58:25:77:3a: 98:db:d8:01:97:e0:7d:12:aa:a9:62:eb:fc:7a:c0: 17:99:64:f4:9f:0a:86:26:16:20:73:bc:f1:29:a6: c2:7a:53:76:e8:4f:d4:cb:e0:01:4a:59:01:c2:e0: d2:50:80:c1:43:4b:44:37:53:e7:af:95:3d:cf:25: 7f:da:04:5f:c8:f8:cb:0c:b6:85:49:11:2a:81:2e: 10:0a:d1:84:db:0d:04:63:e0:77:37:02:54:03:b2: b5:bb:19:26:57:76:72:ff:2d:26:38:31:e2:17:09: 60:70:55:8b:37:99:0b:4c:28:a1:51:77:18:a2:41: af:37:c2:39:db:42:d8:8b:63:d1:03:6b:7f:a9:79: 0a:2e:a2:ed:05:00:75:94:cd:97:8d:76:be:f7:c5: 0d:8b:d5:f0:31:5f:80:2a:b0:41:2b:59:8d:60:e0: f7:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:4F:3E:89:42:A6:8F:7A:9D:7A:98:9D:37:65:24:28:87:1A:71:05 X509v3 Authority Key Identifier: keyid:D9:CD:40:47:4B:DD:0C:07:07:76:6C:ED:BA:F0:B6:A1:86:CF:58:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b1a77add-a49a-4c8f-a735-ef96c33ab29f/0/D9CD40474BDD0C0707766CEDBAF0B6A186CF582F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4e:f9:51:f8:94:aa:e7:f9:9c:28:fe:73:85:16:dd:d9:d2:f1: e4:3f:83:1d:40:8b:42:e6:c8:41:35:7c:4d:82:3a:06:a2:91: 19:0b:58:a9:fd:a6:38:62:eb:4b:09:cd:61:23:e5:84:49:16: fa:95:85:46:8d:64:2c:29:f2:1a:c4:43:84:7f:3d:4b:3d:42: be:f0:4e:4b:89:14:6a:87:72:15:b5:b6:6e:63:40:ad:cc:97: 8c:0c:0f:28:40:dc:a6:1e:25:b6:e0:70:16:47:39:47:9d:02: 10:8d:e3:9e:c0:df:3c:2e:d9:d0:38:a4:74:0f:fd:72:40:e8: 05:44:5e:a8:88:c7:82:16:7a:d3:e1:62:24:99:a1:b7:17:5e: 00:4a:64:11:18:0e:24:38:4c:1d:38:35:60:e9:7b:bc:17:68: 63:69:96:96:71:35:5b:2e:3a:01:c3:70:de:b0:28:86:1d:99: 5f:5a:63:8a:01:00:6f:33:f4:49:28:19:22:14:21:90:69:4b: d1:10:67:aa:1f:3e:1b:e8:eb:c5:f5:bd:f2:2b:03:76:ae:4f: db:cb:fb:da:88:db:77:5c:4d:0f:15:48:fb:4d:87:6e:93:73: 9f:c5:4c:db:e5:47:74:a8:40:7b:34:52:48:f4:0b:cb:4e:77: 47:a2:2b:5e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUfFKwQH7VgBfR2iXRsshOk1kmB+0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4 NkNGNTgyRjAeFw0yNTEyMDYxNDE2MjRaFw0yNTEyMTAwMDM2MjRaMDMxMTAvBgNV BAMTKDZFNEYzRTg5NDJBNjhGN0E5RDdBOTg5RDM3NjUyNDI4ODcxQTcxMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXKAtEfHzXV4Ilw8kPZSICbX33 pT96jmdMI/5Dw5rnwTJ5DkGvnyRo0D+5A4932Z2svu7vh9hzE1DMiseYY7neLMAc 3OfWoBdJyeujpFuOkWSktbWMWCV3Opjb2AGX4H0Sqqli6/x6wBeZZPSfCoYmFiBz vPEppsJ6U3boT9TL4AFKWQHC4NJQgMFDS0Q3U+evlT3PJX/aBF/I+MsMtoVJESqB LhAK0YTbDQRj4Hc3AlQDsrW7GSZXdnL/LSY4MeIXCWBwVYs3mQtMKKFRdxiiQa83 wjnbQtiLY9EDa3+peQouou0FAHWUzZeNdr73xQ2L1fAxX4AqsEErWY1g4Pc3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbk8+iUKmj3qdepidN2UkKIcacQUwHwYDVR0j BBgwFoAU2c1AR0vdDAcHdmztuvC2oYbPWC8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MWE3N2FkZC1hNDlhLTRjOGYtYTczNS1lZjk2YzMzYWIyOWYvMC9EOUNENDA0NzRC REQwQzA3MDc3NjZDRURCQUYwQjZBMTg2Q0Y1ODJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2QTE4NkNG NTgyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjFhNzdhZGQtYTQ5YS00YzhmLWE3 MzUtZWY5NmMzM2FiMjlmLzAvRDlDRDQwNDc0QkREMEMwNzA3NzY2Q0VEQkFGMEI2 QTE4NkNGNTgyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE75UfiUquf5nCj+c4UW3dnS8eQ/gx1Ai0Lm yEE1fE2COgaikRkLWKn9pjhi60sJzWEj5YRJFvqVhUaNZCwp8hrEQ4R/PUs9Qr7w TkuJFGqHchW1tm5jQK3Ml4wMDyhA3KYeJbbgcBZHOUedAhCN457A3zwu2dA4pHQP /XJA6AVEXqiIx4IWetPhYiSZobcXXgBKZBEYDiQ4TB04NWDpe7wXaGNplpZxNVsu OgHDcN6wKIYdmV9aY4oBAG8z9EkoGSIUIZBpS9EQZ6ofPhvo68X1vfIrA3auT9vL +9qI23dcTQ8VSPtNh26Tc5/FTNvlR3SoQHs0Ukj0C8tOd0eiK14= -----END CERTIFICATE-----Generated at Sun Dec 7 03:12:41 2025 by rpki-client