This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft File: BD685C24FF8F432543C3E583484044A44E53067B.mft (raw, json) Hash identifier: Re1z5fIduYbHkKHftZI0Mr4UH4a4aftxmBEzLZeM0aw= Subject key identifier: 2C:A0:45:66:D9:B4:89:56:75:1E:71:C6:EC:39:C8:14:21:4C:79:18 Authority key identifier: BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B Certificate issuer: /CN=BD685C24FF8F432543C3E583484044A44E53067B Certificate serial: 26758A0186DA433E18AC3F11B80C59EBCC2F3271 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft Manifest number: 12 Signing time: Thu 04 Dec 2025 17:21:17 +0000 Manifest this update: Thu 04 Dec 2025 17:16:17 +0000 Manifest next update: Mon 08 Dec 2025 01:20:17 +0000 Files and hashes: 1: 3130332e38332e3139382e302f32342d3234203d3e20313336303931.roa (hash: dhpkhk04ab2tWVnfTiYy7HAwnFkFS5/nKq6B26Ta2Ao=) 2: BD685C24FF8F432543C3E583484044A44E53067B.crl (hash: AFBhf9Klo3gXd1rabRjWRGcV+TkIXU+XKw2jJoeVvBY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 01:20:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:75:8a:01:86:da:43:3e:18:ac:3f:11:b8:0c:59:eb:cc:2f:32:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD685C24FF8F432543C3E583484044A44E53067B Validity Not Before: Dec 4 17:16:17 2025 GMT Not After : Dec 8 01:20:17 2025 GMT Subject: CN=2CA04566D9B48956751E71C6EC39C814214C7918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:1c:02:49:25:15:b0:a4:0d:c7:5b:b6:26:e4: 69:cb:50:ff:ef:27:78:9d:d1:17:b4:64:9e:06:f4: 05:c8:51:1b:72:f9:97:19:9b:84:e6:57:c7:f3:1f: 32:47:bb:6d:1c:7a:0c:f3:12:c0:e3:00:b7:2e:87: 0d:e9:65:81:04:9d:c2:d8:90:70:4c:ac:bd:91:90: 9b:a2:92:49:b8:cf:48:15:75:51:9e:c9:05:3e:77: 22:ef:3e:61:87:27:10:18:b2:67:d0:4a:30:fb:d8: 23:1d:ef:a7:38:f2:a9:8c:e8:aa:51:47:fe:ca:ae: eb:1b:5f:fb:97:5c:99:2b:ff:22:1d:d3:7a:9e:81: 18:a5:45:eb:53:cf:d6:c2:7e:17:f6:8c:df:df:0b: df:e5:30:a0:d2:f7:01:6c:5f:97:1a:d0:b5:84:f0: 15:c8:f2:d2:6a:98:e9:ea:11:e2:f6:df:48:61:95: 7e:a7:f6:76:7b:6a:08:22:37:5b:f6:1f:a3:0d:1e: 12:80:f3:d3:50:a2:7b:72:de:5c:73:e9:ce:8c:8e: af:bd:a1:23:29:3f:80:54:5a:9c:6e:5d:8c:be:ef: c8:7c:e2:82:fc:b6:a4:7a:01:0f:a3:71:8f:bd:a6: f5:2b:03:af:ad:d3:a3:b4:56:38:34:a8:11:dd:f2: ff:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:A0:45:66:D9:B4:89:56:75:1E:71:C6:EC:39:C8:14:21:4C:79:18 X509v3 Authority Key Identifier: keyid:BD:68:5C:24:FF:8F:43:25:43:C3:E5:83:48:40:44:A4:4E:53:06:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD685C24FF8F432543C3E583484044A44E53067B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b4bf8641-bf70-4e3f-9871-ee26a33db3a2/0/BD685C24FF8F432543C3E583484044A44E53067B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:69:67:8b:dc:c5:f0:fb:42:9a:48:ff:26:64:a0:64:8d:db: c5:95:86:60:24:ce:4d:21:97:5a:55:8d:fb:23:07:5a:64:4a: d5:36:b7:42:90:fd:8d:54:77:7d:88:8d:d4:38:7d:ec:66:3f: 3b:33:96:22:45:9a:fe:a8:be:93:11:ff:34:00:6f:dc:59:52: ac:21:12:5b:b5:d1:da:11:57:3b:86:0c:9e:b9:c4:9b:ff:2f: 6c:2e:fe:aa:6b:1d:4d:26:03:ff:01:9e:d6:76:e8:2c:64:58: 30:12:57:e1:9f:f8:e1:68:fa:54:8b:7a:19:4c:9d:cd:e5:d6: 7c:02:29:7c:44:72:82:b5:72:e1:ef:5b:cd:a9:d9:12:f0:25: 62:e7:b1:ad:63:5f:34:b5:0a:8a:90:2b:ea:eb:4a:71:65:a0: d1:65:a1:83:df:7c:4b:2a:08:18:dd:6e:87:d8:ee:f6:08:68: 5c:b3:28:2f:4d:bf:0c:99:dd:93:8a:7e:ff:f5:66:3a:8b:73: 08:a9:62:5d:56:d2:1d:63:2d:7d:89:9f:fa:7a:41:59:72:2a: a0:42:9a:aa:fa:dc:f9:36:2f:fb:ff:a5:3b:73:ed:fc:a9:b8: 9e:8c:d5:d6:d5:f5:de:05:48:c1:5e:0e:07:7d:18:1a:ec:d3: b0:b5:33:93 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJnWKAYbaQz4YrD8RuAxZ68wvMnEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0 RTUzMDY3QjAeFw0yNTEyMDQxNzE2MTdaFw0yNTEyMDgwMTIwMTdaMDMxMTAvBgNV BAMTKDJDQTA0NTY2RDlCNDg5NTY3NTFFNzFDNkVDMzlDODE0MjE0Qzc5MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4HAJJJRWwpA3HW7Ym5GnLUP/v J3id0Re0ZJ4G9AXIURty+ZcZm4TmV8fzHzJHu20cegzzEsDjALcuhw3pZYEEncLY kHBMrL2RkJuikkm4z0gVdVGeyQU+dyLvPmGHJxAYsmfQSjD72CMd76c48qmM6KpR R/7KrusbX/uXXJkr/yId03qegRilRetTz9bCfhf2jN/fC9/lMKDS9wFsX5ca0LWE 8BXI8tJqmOnqEeL230hhlX6n9nZ7aggiN1v2H6MNHhKA89NQonty3lxz6c6Mjq+9 oSMpP4BUWpxuXYy+78h84oL8tqR6AQ+jcY+9pvUrA6+t06O0Vjg0qBHd8v9vAgMB AAGjggI8MIICODAdBgNVHQ4EFgQULKBFZtm0iVZ1HnHG7DnIFCFMeRgwHwYDVR0j BBgwFoAUvWhcJP+PQyVDw+WDSEBEpE5TBnswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NGJmODY0MS1iZjcwLTRlM2YtOTg3MS1lZTI2YTMzZGIzYTIvMC9CRDY4NUMyNEZG OEY0MzI1NDNDM0U1ODM0ODQwNDRBNDRFNTMwNjdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0QTQ0RTUz MDY3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjRiZjg2NDEtYmY3MC00ZTNmLTk4 NzEtZWUyNmEzM2RiM2EyLzAvQkQ2ODVDMjRGRjhGNDMyNTQzQzNFNTgzNDg0MDQ0 QTQ0RTUzMDY3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEBpZ4vcxfD7QppI/yZkoGSN28WVhmAkzk0h l1pVjfsjB1pkStU2t0KQ/Y1Ud32IjdQ4fexmPzszliJFmv6ovpMR/zQAb9xZUqwh Elu10doRVzuGDJ65xJv/L2wu/qprHU0mA/8BntZ26CxkWDASV+Gf+OFo+lSLehlM nc3l1nwCKXxEcoK1cuHvW82p2RLwJWLnsa1jXzS1CoqQK+rrSnFloNFloYPffEsq CBjdbofY7vYIaFyzKC9NvwyZ3ZOKfv/1ZjqLcwipYl1W0h1jLX2Jn/p6QVlyKqBC mqr63Pk2L/v/pTtz7fypuJ6M1dbV9d4FSMFeDgd9GBrs07C1M5M= -----END CERTIFICATE-----Generated at Sun Dec 7 00:15:56 2025 by rpki-client