This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft File: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft (raw, json) Hash identifier: HFL4/Uq/9Y/8mUSAqRLQgM0m2ckcGHucphuQ+r1kX+I= Subject key identifier: F3:A3:77:FE:B9:63:05:5C:52:D1:91:09:DC:B5:5B:BE:6A:9E:1F:83 Authority key identifier: 3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 Certificate issuer: /CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Certificate serial: 5FB8ACB5B4FB8FE79F9598650A4035B5C0E3F9DC Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft Manifest number: 04B9 Signing time: Sat 06 Dec 2025 06:22:23 +0000 Manifest this update: Sat 06 Dec 2025 06:17:23 +0000 Manifest next update: Tue 09 Dec 2025 07:40:23 +0000 Files and hashes: 1: 3130332e32342e35392e302f32342d3234203d3e203436303532.roa (hash: QKBrvi0RsDMYjSNqwszDPfOesbOlEOIHdE8u3xcyVKM=) 2: 3130332e32342e35382e302f32342d3234203d3e203436303532.roa (hash: q/CV3YIPQOm1aZYip5fIR1K9i7bDSVO+nIFF+ycG0Go=) 3: 323030313a6466303a61383a3a2f34382d3438203d3e203436303532.roa (hash: ceA/XjkZTjtckNNE+B0y8t16H7RYtmT+yFrD+MsXpYk=) 4: 3130332e32342e35372e302f32342d3234203d3e203436303532.roa (hash: zCUg4ypvv2GlwnHN93OEr6YWYy+0fl7UKwqXyrw+mYs=) 5: 3130332e32342e35362e302f32342d3234203d3e203436303532.roa (hash: 0yCL5KXTraWL90iq30pQr9XlRbIvmMrP24hOvDxVdWE=) 6: 3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl (hash: XmITCmN4a9D/fYO0m8a3T+vrqyEP0mGYZPWTXGdZ8Zc=) 7: 3230322e392e38352e302f32342d3234203d3e203436303532.roa (hash: rkHE7dCGWjwiXKSo5AmkFhmGB4j/W88po8KuTJD9fS0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 07:40:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b8:ac:b5:b4:fb:8f:e7:9f:95:98:65:0a:40:35:b5:c0:e3:f9:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D13C6FB9DB22CE134706325357C20E1DC9A1269 Validity Not Before: Dec 6 06:17:23 2025 GMT Not After : Dec 9 07:40:23 2025 GMT Subject: CN=F3A377FEB963055C52D19109DCB55BBE6A9E1F83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:2d:f6:28:f4:58:ea:8a:8c:6f:a4:4d:21:ff: ab:05:45:e5:43:98:41:df:81:c3:52:3f:8d:6e:82: dc:e3:e1:8e:8b:cf:1e:bf:be:62:a5:e1:20:0f:b1: d6:f9:19:00:08:20:23:2b:50:24:b3:d6:b7:14:e7: 59:2e:8a:44:fe:bd:19:9a:cd:22:ac:6f:ba:84:c5: c9:be:4a:ba:51:0a:4d:58:08:5d:33:e4:bb:d9:ba: 64:6f:3b:f0:40:97:8e:e8:c9:56:77:88:8f:38:71: 09:ca:5c:89:7c:ce:55:d0:4e:d5:c4:8a:95:35:c3: 3d:8b:a9:dc:e4:7e:eb:e6:b6:14:31:ad:3f:cc:98: b8:2d:dc:87:0e:88:6d:f5:3a:36:f8:b2:e2:ec:0b: 6b:fb:74:87:99:32:8c:21:fa:eb:95:d1:50:ee:25: 66:7c:8f:eb:78:31:82:3c:96:98:90:22:f9:93:44: f3:fb:73:5b:17:e3:bb:60:a8:ae:6e:b1:b0:14:8f: 5b:f4:5e:57:0c:ca:1e:f9:3b:db:c9:6c:d0:46:c0: 40:0b:6c:60:83:fc:99:f6:33:1b:e5:01:a8:30:0f: 71:4a:30:55:71:b0:01:86:68:62:a7:b6:f5:db:82: 77:99:7c:00:d3:e7:48:6a:f5:ae:be:76:c5:c1:66: cc:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:A3:77:FE:B9:63:05:5C:52:D1:91:09:DC:B5:5B:BE:6A:9E:1F:83 X509v3 Authority Key Identifier: keyid:3D:13:C6:FB:9D:B2:2C:E1:34:70:63:25:35:7C:20:E1:DC:9A:12:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D13C6FB9DB22CE134706325357C20E1DC9A1269.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bd1ee5e2-338c-4d20-807e-e50b75583db8/0/3D13C6FB9DB22CE134706325357C20E1DC9A1269.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:e5:1d:4f:48:ca:b2:30:66:dd:e9:ab:8b:d3:71:af:aa:e0: c6:63:3f:20:3c:43:6d:0e:d3:10:b6:75:06:0c:b4:2f:6c:8d: 5b:db:04:1c:59:d3:ae:67:e1:c4:67:17:90:1a:7c:36:a5:07: e4:02:6d:ee:24:85:0b:e3:f5:d1:99:da:0b:8e:43:70:83:d7: 1f:c0:20:ae:a3:b9:68:61:6f:a2:fd:73:53:b7:9d:b1:a7:2a: 6a:33:de:c5:d3:30:8b:63:9b:51:4b:3b:cc:a8:f1:6f:7d:ad: 64:57:56:40:10:ff:5d:f5:86:9b:32:18:0f:0f:61:b7:33:d2: e7:3d:b6:86:11:f7:67:4b:9d:d6:03:fc:9c:d4:5d:9a:d0:bb: 4b:d6:e8:4e:6f:cc:1d:68:46:f0:c2:56:2d:78:83:2d:71:87: 05:75:ed:2b:24:af:ca:73:d5:8d:f8:2d:25:34:fc:6f:4e:2e: de:07:47:3c:25:e6:86:4b:76:6f:3c:f5:b8:ec:4f:8f:b6:7d: 32:57:90:ac:3c:8e:ab:7c:a2:d2:27:4a:bd:ff:52:b7:93:76: 9d:88:5f:95:2e:b1:aa:e5:b5:2f:e4:f2:c6:74:21:f9:95:43: aa:8b:e7:8b:0a:98:f1:01:32:81:c3:b2:26:33:8e:1e:7f:1c: 27:b9:3b:e6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUX7istbT7j+eflZhlCkA1tcDj+dwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFE QzlBMTI2OTAeFw0yNTEyMDYwNjE3MjNaFw0yNTEyMDkwNzQwMjNaMDMxMTAvBgNV BAMTKEYzQTM3N0ZFQjk2MzA1NUM1MkQxOTEwOURDQjU1QkJFNkE5RTFGODMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgLfYo9FjqioxvpE0h/6sFReVD mEHfgcNSP41ugtzj4Y6Lzx6/vmKl4SAPsdb5GQAIICMrUCSz1rcU51kuikT+vRma zSKsb7qExcm+SrpRCk1YCF0z5LvZumRvO/BAl47oyVZ3iI84cQnKXIl8zlXQTtXE ipU1wz2LqdzkfuvmthQxrT/MmLgt3IcOiG31Ojb4suLsC2v7dIeZMowh+uuV0VDu JWZ8j+t4MYI8lpiQIvmTRPP7c1sX47tgqK5usbAUj1v0XlcMyh75O9vJbNBGwEAL bGCD/Jn2MxvlAagwD3FKMFVxsAGGaGKntvXbgneZfADT50hq9a6+dsXBZsw3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU86N3/rljBVxS0ZEJ3LVbvmqeH4MwHwYDVR0j BBgwFoAUPRPG+52yLOE0cGMlNXwg4dyaEmkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZDFlZTVlMi0zMzhjLTRkMjAtODA3ZS1lNTBiNzU1ODNkYjgvMC8zRDEzQzZGQjlE QjIyQ0UxMzQ3MDYzMjUzNTdDMjBFMURDOUExMjY5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIwRTFEQzlB MTI2OS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmQxZWU1ZTItMzM4Yy00ZDIwLTgw N2UtZTUwYjc1NTgzZGI4LzAvM0QxM0M2RkI5REIyMkNFMTM0NzA2MzI1MzU3QzIw RTFEQzlBMTI2OS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIblHU9IyrIwZt3pq4vTca+q4MZjPyA8Q20O 0xC2dQYMtC9sjVvbBBxZ065n4cRnF5AafDalB+QCbe4khQvj9dGZ2guOQ3CD1x/A IK6juWhhb6L9c1O3nbGnKmoz3sXTMItjm1FLO8yo8W99rWRXVkAQ/131hpsyGA8P Ybcz0uc9toYR92dLndYD/JzUXZrQu0vW6E5vzB1oRvDCVi14gy1xhwV17Sskr8pz 1Y34LSU0/G9OLt4HRzwl5oZLdm889bjsT4+2fTJXkKw8jqt8otInSr3/UreTdp2I X5UusarltS/k8sZ0IfmVQ6qL54sKmPEBMoHDsiYzjh5/HCe5O+Y= -----END CERTIFICATE-----Generated at Sun Dec 7 09:36:31 2025 by rpki-client