This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft File: A2F125E1CDB95BA2AF5636AF284A399496555F38.mft (raw, json) Hash identifier: S1EjPvhoQmfRuZBnNyVlFxcictGtUaic0rHi1381BWI= Subject key identifier: FE:E0:24:CC:3F:80:A3:FF:F5:23:33:A1:94:CF:E3:6C:C4:4B:50:97 Authority key identifier: A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 Certificate issuer: /CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Certificate serial: 06E841A32BCB9D5A1E0E601FB31C2E5F146532C4 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft Manifest number: 021B Signing time: Thu 04 Dec 2025 23:22:01 +0000 Manifest this update: Thu 04 Dec 2025 23:17:01 +0000 Manifest next update: Mon 08 Dec 2025 01:02:01 +0000 Files and hashes: 1: 3130332e3139312e3231382e302f32332d3234203d3e20313439393330.roa (hash: eU4CsIBkCNHWwkLGYk1dQXK+PlYTeSPnN5JLGBDdwoE=) 2: 3130332e3139312e3231392e302f32342d3234203d3e20313439393330.roa (hash: wMwayzIPwqMBIP88IOsXTpqmzpX3PVf3WfVEJ/JlX8M=) 3: 3130332e3139312e3231382e302f32342d3234203d3e20313439393330.roa (hash: GYOdgB5E6zAfN6csGwKvCQu8t1dBnuZsHYI8ZcYsOXc=) 4: A2F125E1CDB95BA2AF5636AF284A399496555F38.crl (hash: CREG5RJp/3HJAUckW6DaunV2WfM/8ofpQ9m7OVuxLEc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 01:02:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:e8:41:a3:2b:cb:9d:5a:1e:0e:60:1f:b3:1c:2e:5f:14:65:32:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A2F125E1CDB95BA2AF5636AF284A399496555F38 Validity Not Before: Dec 4 23:17:01 2025 GMT Not After : Dec 8 01:02:01 2025 GMT Subject: CN=FEE024CC3F80A3FFF52333A194CFE36CC44B5097 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ae:e4:5e:24:7e:a3:1d:35:2c:95:f0:ef:aa: 0d:43:a4:3e:26:93:36:05:6b:56:42:56:50:f4:8e: 4f:2b:45:ed:2d:82:ca:69:a5:1f:2f:33:f9:8a:93: 74:38:46:7c:fd:9d:78:cf:86:72:f4:30:74:7c:07: b2:3a:0b:9a:39:ff:58:55:a1:62:54:e6:7f:d7:dd: 58:de:11:92:ae:15:13:3d:e3:69:29:18:f7:dd:9c: 10:e7:e5:ac:ed:08:36:26:fc:83:9b:8e:c7:37:94: 3f:ef:c8:ea:cb:e7:48:40:22:12:75:ba:fb:9b:d0: 0f:02:72:c7:db:7c:a7:4b:96:83:eb:e2:56:bb:7d: 73:ca:5e:30:03:8d:d7:41:af:4d:be:89:26:5d:cb: b7:28:90:1c:c4:8b:fe:b8:53:41:2d:da:20:ef:8c: 4f:a2:f8:6e:6c:cb:6d:33:f5:3f:b2:02:59:53:27: ed:aa:43:2a:62:ad:86:ba:07:6e:28:dc:4e:46:1a: 40:be:3b:67:ff:78:e3:23:c8:42:cc:76:2e:21:11: 8a:36:6a:20:c7:34:a7:c4:22:e7:5a:74:4d:70:1f: 3d:09:0e:87:d6:8a:94:ae:3f:67:25:07:10:3d:b2: b3:b6:1a:be:3d:50:1e:f7:e8:1c:9e:65:f0:1a:85: 82:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:E0:24:CC:3F:80:A3:FF:F5:23:33:A1:94:CF:E3:6C:C4:4B:50:97 X509v3 Authority Key Identifier: keyid:A2:F1:25:E1:CD:B9:5B:A2:AF:56:36:AF:28:4A:39:94:96:55:5F:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/A2F125E1CDB95BA2AF5636AF284A399496555F38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b3370d24-a656-4336-842b-9bd5dca2b40a/0/A2F125E1CDB95BA2AF5636AF284A399496555F38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8d:4c:4d:74:9d:b9:aa:92:df:19:41:14:73:63:9a:e3:c0:94: 4e:70:34:af:9e:92:f2:1f:1c:1a:c5:ea:80:74:9c:c4:81:0f: fb:8d:b6:32:00:d0:1b:c1:1d:95:7b:d6:54:d3:01:1d:5d:8c: d4:72:db:26:2b:af:28:91:71:b6:df:3e:8b:bb:41:39:d3:d1: 4b:f6:a6:81:fb:39:87:35:d0:df:58:b8:dd:5e:f6:5e:3d:88: e4:48:b4:c9:a1:cc:c3:e7:8d:5e:b5:c0:cd:84:19:c9:e1:ca: 7a:35:22:67:23:76:46:fd:5f:53:f8:14:f2:d0:b6:39:5e:20: 35:90:c0:7b:e9:9f:56:a4:b6:b5:cd:28:f5:60:aa:a7:17:15: c7:df:9b:c1:96:ee:77:e9:2a:fc:62:ce:e3:a1:b3:65:74:51: 6b:d9:fc:b8:46:a1:fe:81:a4:9d:11:c5:aa:07:31:87:b7:ec: 4c:91:50:c2:39:97:71:32:62:2b:2a:1f:f9:07:d9:18:30:4f: 9e:9a:15:ce:12:50:e6:f9:dd:42:56:09:e5:7f:e3:53:6f:6d: 85:9f:dc:d9:ee:8a:3f:04:4f:54:e8:28:6c:97:42:3e:27:22: c0:3b:1c:79:00:c9:c9:bb:01:04:18:e5:8c:0b:93:bd:c7:0d: 0a:8a:f7:eb -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBuhBoyvLnVoeDmAfsxwuXxRlMsQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5 NjU1NUYzODAeFw0yNTEyMDQyMzE3MDFaFw0yNTEyMDgwMTAyMDFaMDMxMTAvBgNV BAMTKEZFRTAyNENDM0Y4MEEzRkZGNTIzMzNBMTk0Q0ZFMzZDQzQ0QjUwOTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHruReJH6jHTUslfDvqg1DpD4m kzYFa1ZCVlD0jk8rRe0tgspppR8vM/mKk3Q4Rnz9nXjPhnL0MHR8B7I6C5o5/1hV oWJU5n/X3VjeEZKuFRM942kpGPfdnBDn5aztCDYm/IObjsc3lD/vyOrL50hAIhJ1 uvub0A8CcsfbfKdLloPr4la7fXPKXjADjddBr02+iSZdy7cokBzEi/64U0Et2iDv jE+i+G5sy20z9T+yAllTJ+2qQypirYa6B24o3E5GGkC+O2f/eOMjyELMdi4hEYo2 aiDHNKfEIudadE1wHz0JDofWipSuP2clBxA9srO2Gr49UB736ByeZfAahYIxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU/uAkzD+Ao//1IzOhlM/jbMRLUJcwHwYDVR0j BBgwFoAUovEl4c25W6KvVjavKEo5lJZVXzgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i MzM3MGQyNC1hNjU2LTQzMzYtODQyYi05YmQ1ZGNhMmI0MGEvMC9BMkYxMjVFMUNE Qjk1QkEyQUY1NjM2QUYyODRBMzk5NDk2NTU1RjM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5OTQ5NjU1 NUYzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjMzNzBkMjQtYTY1Ni00MzM2LTg0 MmItOWJkNWRjYTJiNDBhLzAvQTJGMTI1RTFDREI5NUJBMkFGNTYzNkFGMjg0QTM5 OTQ5NjU1NUYzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAI1MTXSduaqS3xlBFHNjmuPAlE5wNK+ekvIf HBrF6oB0nMSBD/uNtjIA0BvBHZV71lTTAR1djNRy2yYrryiRcbbfPou7QTnT0Uv2 poH7OYc10N9YuN1e9l49iORItMmhzMPnjV61wM2EGcnhyno1Imcjdkb9X1P4FPLQ tjleIDWQwHvpn1aktrXNKPVgqqcXFcffm8GW7nfpKvxizuOhs2V0UWvZ/LhGof6B pJ0RxaoHMYe37EyRUMI5l3EyYisqH/kH2RgwT56aFc4SUOb53UJWCeV/41NvbYWf 3Nnuij8ET1ToKGyXQj4nIsA7HHkAycm7AQQY5YwLk73HDQqK9+s= -----END CERTIFICATE-----Generated at Sun Dec 7 01:50:10 2025 by rpki-client