This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft File: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft (raw, json) Hash identifier: jhn9yplQcQ5LlhIukAdcHaFt26T3tV1m+AsCcLeUMcQ= Subject key identifier: C9:F2:DD:12:A9:C4:55:5B:89:23:09:37:08:0C:E7:21:25:1B:BA:78 Authority key identifier: 21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 Certificate issuer: /CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Certificate serial: 96BA5BE73A6EE2B3C4BF549F24D46E6191674C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft Manifest number: 021C Signing time: Sat 06 Dec 2025 14:41:26 +0000 Manifest this update: Sat 06 Dec 2025 14:36:26 +0000 Manifest next update: Tue 09 Dec 2025 20:47:26 +0000 Files and hashes: 1: 3130332e3139332e3136362e302f32332d3233203d3e20313530313835.roa (hash: 6gMRYCDTA91uCrSpOJHQwzXcDUzZZQ/fPopmQLU54uQ=) 2: 3130332e3139332e3136362e302f32342d3234203d3e20313530313835.roa (hash: jkr10nu1KheD3rFITjZKu8+8qzjxbIrM8OjPSducB+Q=) 3: 3130332e3139332e3136372e302f32342d3234203d3e20313530313835.roa (hash: GK6TjIFHP3OKYpdF9mQ2NlZ0xI3zyr1c1AWcP5mkKcw=) 4: 210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl (hash: H+/Xbea9tWpJOW3y3HvjodqfmageGSoF5Zsu+PleZfA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 96:ba:5b:e7:3a:6e:e2:b3:c4:bf:54:9f:24:d4:6e:61:91:67:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=210BE7BD512F122FD63FE9057A7F1522DC9B81A7 Validity Not Before: Dec 6 14:36:26 2025 GMT Not After : Dec 9 20:47:26 2025 GMT Subject: CN=C9F2DD12A9C4555B89230937080CE721251BBA78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9d:63:a4:13:23:a9:5e:2f:eb:74:ba:7d:ab: dd:02:f2:4e:92:22:a1:3a:13:ce:d6:ee:20:9b:34: 14:05:18:60:3e:83:c1:97:cd:f3:ff:1c:c7:e9:0c: a2:08:f0:60:99:b1:14:55:4f:5b:fa:5b:85:1c:c8: 89:6e:4e:5e:18:d3:4f:2a:2a:74:48:88:f3:10:62: 66:b5:1b:61:7d:1d:ca:50:69:69:55:a6:6e:43:f7: ca:50:d2:ef:7a:5f:2e:59:92:42:5d:a2:b6:ec:d8: cd:e0:a8:56:fb:a5:62:b4:22:a0:a3:30:13:04:31: cd:1e:86:df:16:c6:15:ec:8e:b4:b0:58:b7:95:cd: 3b:80:5a:2e:10:dc:77:fc:ac:9d:f6:5d:4d:f2:07: a6:e0:7c:9c:81:0c:f3:95:3f:7f:08:6d:4b:db:33: 4d:c2:34:f3:de:e0:3c:96:1f:a5:94:c7:13:c7:69: 92:1b:9c:9a:1f:aa:51:49:a7:76:13:54:6a:ae:b6: 08:9a:bf:d2:11:67:17:97:b1:c4:de:69:dd:be:bc: b7:05:47:91:d3:17:4e:30:a0:55:88:3b:65:c4:29: 90:b5:4e:ff:dc:ca:7c:92:a5:64:e5:b9:62:8e:59: 59:36:b8:82:56:46:b6:fc:dd:4d:fb:57:cb:d9:cc: 5a:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:F2:DD:12:A9:C4:55:5B:89:23:09:37:08:0C:E7:21:25:1B:BA:78 X509v3 Authority Key Identifier: keyid:21:0B:E7:BD:51:2F:12:2F:D6:3F:E9:05:7A:7F:15:22:DC:9B:81:A7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/b7036974-8131-45af-94ce-f49b4811c173/0/210BE7BD512F122FD63FE9057A7F1522DC9B81A7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b9:7e:98:43:bf:b5:5b:b9:45:35:11:1b:90:8b:43:eb:33:12: cc:86:97:19:1d:8d:51:bb:a3:95:4e:0e:5b:36:69:4c:32:97: 4d:9d:57:1a:96:13:40:a1:0c:1d:6b:9b:4e:7b:29:03:1f:f5: 2f:24:8d:a3:3d:ac:a9:d0:73:b6:e7:da:2a:78:00:5c:78:44: 71:37:1a:26:88:1e:8c:f9:e2:a5:3c:cc:52:09:06:c8:69:51: 4e:3e:10:af:2b:9a:93:f7:d9:fc:dd:49:a1:2f:7f:db:a1:3a: 0f:8a:30:31:85:ad:93:a4:e3:12:fa:86:03:ab:7b:27:57:27: 43:f1:73:b7:5a:de:2d:35:2e:5f:e1:0e:6d:d1:ef:0e:bd:5e: dc:3d:2b:2d:11:7d:ec:f4:d4:aa:7e:ea:43:46:4e:50:fc:a3: aa:4d:52:6b:15:cc:86:89:2a:2c:15:55:65:f0:29:85:89:03: 67:21:27:07:35:79:01:fe:e4:7c:3f:53:d6:12:5d:e4:33:04: 4c:7a:18:42:04:ce:b0:73:45:d4:c6:f4:78:9b:ed:dc:1b:b2: 82:ef:e0:d6:d9:ab:34:5c:18:6d:a5:cf:a3:42:e6:79:5f:1d: 07:e8:aa:74:f4:48:50:96:3d:55:bc:af:a3:79:24:62:9a:df: e4:2a:20:79 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAJa6W+c6buKzxL9UnyTUbmGRZ0wwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJE QzlCODFBNzAeFw0yNTEyMDYxNDM2MjZaFw0yNTEyMDkyMDQ3MjZaMDMxMTAvBgNV BAMTKEM5RjJERDEyQTlDNDU1NUI4OTIzMDkzNzA4MENFNzIxMjUxQkJBNzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPnWOkEyOpXi/rdLp9q90C8k6S IqE6E87W7iCbNBQFGGA+g8GXzfP/HMfpDKII8GCZsRRVT1v6W4UcyIluTl4Y008q KnRIiPMQYma1G2F9HcpQaWlVpm5D98pQ0u96Xy5ZkkJdorbs2M3gqFb7pWK0IqCj MBMEMc0eht8WxhXsjrSwWLeVzTuAWi4Q3Hf8rJ32XU3yB6bgfJyBDPOVP38IbUvb M03CNPPe4DyWH6WUxxPHaZIbnJofqlFJp3YTVGqutgiav9IRZxeXscTead2+vLcF R5HTF04woFWIO2XEKZC1Tv/cynySpWTluWKOWVk2uIJWRrb83U37V8vZzFpNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUyfLdEqnEVVuJIwk3CAznISUbungwHwYDVR0j BBgwFoAUIQvnvVEvEi/WP+kFen8VItybgacwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i NzAzNjk3NC04MTMxLTQ1YWYtOTRjZS1mNDliNDgxMWMxNzMvMC8yMTBCRTdCRDUx MkYxMjJGRDYzRkU5MDU3QTdGMTUyMkRDOUI4MUE3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1MjJEQzlC ODFBNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYjcwMzY5NzQtODEzMS00NWFmLTk0 Y2UtZjQ5YjQ4MTFjMTczLzAvMjEwQkU3QkQ1MTJGMTIyRkQ2M0ZFOTA1N0E3RjE1 MjJEQzlCODFBNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALl+mEO/tVu5RTURG5CLQ+szEsyGlxkdjVG7 o5VODls2aUwyl02dVxqWE0ChDB1rm057KQMf9S8kjaM9rKnQc7bn2ip4AFx4RHE3 GiaIHoz54qU8zFIJBshpUU4+EK8rmpP32fzdSaEvf9uhOg+KMDGFrZOk4xL6hgOr eydXJ0Pxc7da3i01Ll/hDm3R7w69Xtw9Ky0Rfez01Kp+6kNGTlD8o6pNUmsVzIaJ KiwVVWXwKYWJA2chJwc1eQH+5Hw/U9YSXeQzBEx6GEIEzrBzRdTG9Hib7dwbsoLv 4NbZqzRcGG2lz6NC5nlfHQfoqnT0SFCWPVW8r6N5JGKa3+QqIHk= -----END CERTIFICATE-----Generated at Sun Dec 7 02:12:59 2025 by rpki-client