This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft File: CA978B7ACEF55A251B74721E04A034CA3601A88B.mft (raw, json) Hash identifier: T4/3M888OYlVVKuE9GyeOFulpmtxuQdaRxHDmWqhHmM= Subject key identifier: 5C:D3:C8:A4:34:AC:AD:72:84:D7:CC:BC:E4:E6:3B:3A:0A:2E:FE:D9 Authority key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Certificate issuer: /CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Certificate serial: 6C4929490B5B4BC3A48E9B38C3F307E65DBA366A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft Manifest number: 0149 Signing time: Fri 05 Dec 2025 18:01:32 +0000 Manifest this update: Fri 05 Dec 2025 17:56:32 +0000 Manifest next update: Mon 08 Dec 2025 18:30:32 +0000 Files and hashes: 1: CA978B7ACEF55A251B74721E04A034CA3601A88B.crl (hash: 6/qPzCJepUYH5VW7bMQ8MQEYy/xFdx55/AhROSwkeSE=) 2: 3130332e38332e3233362e302f32342d3234203d3e20313530353430.roa (hash: 5p6wjGyXDMhYJEnC8e2hHCinkGJrBkWoW7KvueEj5dQ=) 3: 3130332e38332e3233372e302f32342d3234203d3e20313530353430.roa (hash: Y1BreLVa1ZjV8+fm+79oJJhjLUjz8il238UQwEnA8vE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 18:30:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:49:29:49:0b:5b:4b:c3:a4:8e:9b:38:c3:f3:07:e6:5d:ba:36:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Validity Not Before: Dec 5 17:56:32 2025 GMT Not After : Dec 8 18:30:32 2025 GMT Subject: CN=5CD3C8A434ACAD7284D7CCBCE4E63B3A0A2EFED9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7d:2c:11:5e:d8:8f:4b:26:6a:91:b0:20:80: 9b:40:b6:85:a5:46:2c:7f:a6:f0:64:ab:00:44:98: dd:4a:73:d6:ef:43:3d:8c:70:ee:05:2a:1e:ce:c5: 21:d7:51:68:36:9b:54:28:5b:b9:54:91:d5:1b:94: 95:aa:ff:8f:a3:11:2e:44:ba:d2:da:8c:fc:9f:09: d2:f5:77:dd:54:0c:85:51:f7:18:fc:54:de:7c:87: d4:19:fc:16:97:46:41:f6:ac:85:cf:39:07:12:40: 5b:d7:b5:08:c3:21:2a:13:e1:65:e2:6e:ee:f3:e4: b1:dc:f5:a4:1f:05:9a:4d:3c:35:ec:67:2e:24:ef: 44:07:96:a0:ff:03:8e:fc:35:01:23:02:2e:5b:d0: 9b:77:60:f3:61:8c:c0:73:76:b7:ea:80:8d:b5:7d: ee:47:bc:52:91:9a:ba:12:12:f6:ca:02:43:35:ec: 26:64:bb:94:ce:08:9b:ff:a4:14:d8:6e:30:67:d5: 34:ce:3e:5f:60:44:8b:d0:03:bd:55:63:8b:7c:4d: 9f:83:f4:12:90:49:a7:25:7d:e6:ab:33:b2:51:a2: 75:6d:b7:87:63:2f:4e:ac:58:9d:b9:d6:a9:ba:3d: 89:dc:2b:ea:ad:d6:b8:ba:2f:50:1b:b9:fc:ab:39: 8f:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:D3:C8:A4:34:AC:AD:72:84:D7:CC:BC:E4:E6:3B:3A:0A:2E:FE:D9 X509v3 Authority Key Identifier: keyid:CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6c:5c:55:23:9c:88:0a:10:58:cd:79:08:30:ef:69:39:70:f4: a1:74:4c:a2:12:f1:0a:e5:2c:d1:f2:21:ee:23:53:77:6a:9e: 29:b4:c8:0f:eb:f9:33:49:71:8f:d6:56:e4:97:c4:bb:0f:ec: ca:94:7b:cd:79:05:2c:83:4a:59:d1:98:f4:f0:c4:7a:30:a8: cd:27:84:41:e1:05:85:7d:66:0c:44:f4:0d:c3:d1:0c:d9:a1: 78:4a:f3:a9:72:d0:bb:73:92:79:b1:bf:79:54:b8:78:40:b0: c4:17:74:08:9e:cd:54:04:14:97:5d:47:41:df:c0:0f:fc:0f: 7a:86:db:53:f9:5a:fb:c0:7e:ae:dd:12:00:de:32:58:bb:0d: fa:2d:65:1e:e1:75:20:ee:9b:e0:15:2e:95:0c:0a:8f:fa:03: ad:ea:74:4a:f8:3a:8d:67:45:4e:a9:41:0f:97:d1:c3:3c:71: 4f:7e:59:70:c9:70:2e:cb:34:54:66:5d:85:2b:2c:04:85:ab: 0f:1b:0f:b4:09:02:fb:d2:00:26:f9:42:fe:6f:99:97:33:9d: bb:80:04:ca:55:55:60:fe:2d:a6:7f:01:c2:dc:11:24:c0:ac: 61:8d:5f:6c:c5:9c:42:8e:25:0c:e0:a3:08:9d:1d:8d:23:fd: 83:89:1d:53 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbEkpSQtbS8Okjps4w/MH5l26NmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0Ez NjAxQTg4QjAeFw0yNTEyMDUxNzU2MzJaFw0yNTEyMDgxODMwMzJaMDMxMTAvBgNV BAMTKDVDRDNDOEE0MzRBQ0FENzI4NEQ3Q0NCQ0U0RTYzQjNBMEEyRUZFRDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDafSwRXtiPSyZqkbAggJtAtoWl Rix/pvBkqwBEmN1Kc9bvQz2McO4FKh7OxSHXUWg2m1QoW7lUkdUblJWq/4+jES5E utLajPyfCdL1d91UDIVR9xj8VN58h9QZ/BaXRkH2rIXPOQcSQFvXtQjDISoT4WXi bu7z5LHc9aQfBZpNPDXsZy4k70QHlqD/A478NQEjAi5b0Jt3YPNhjMBzdrfqgI21 fe5HvFKRmroSEvbKAkM17CZku5TOCJv/pBTYbjBn1TTOPl9gRIvQA71VY4t8TZ+D 9BKQSaclfearM7JRonVtt4djL06sWJ251qm6PYncK+qt1ri6L1AbufyrOY9FAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXNPIpDSsrXKE18y85OY7Ogou/tkwHwYDVR0j BBgwFoAUypeLes71WiUbdHIeBKA0yjYBqIswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMC9DQTk3OEI3QUNF RjU1QTI1MUI3NDcyMUUwNEEwMzRDQTM2MDFBODhCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0Q0EzNjAx QTg4Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZhM2NmZjctMmFhMS00NGRmLTkx NGMtZjE5MTg0ZjZmM2IxLzAvQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3MjFFMDRBMDM0 Q0EzNjAxQTg4Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGxcVSOciAoQWM15CDDvaTlw9KF0TKIS8Qrl LNHyIe4jU3dqnim0yA/r+TNJcY/WVuSXxLsP7MqUe815BSyDSlnRmPTwxHowqM0n hEHhBYV9ZgxE9A3D0QzZoXhK86ly0Ltzknmxv3lUuHhAsMQXdAiezVQEFJddR0Hf wA/8D3qG21P5WvvAfq7dEgDeMli7DfotZR7hdSDum+AVLpUMCo/6A63qdEr4Oo1n RU6pQQ+X0cM8cU9+WXDJcC7LNFRmXYUrLASFqw8bD7QJAvvSACb5Qv5vmZcznbuA BMpVVWD+LaZ/AcLcESTArGGNX2zFnEKOJQzgowidHY0j/YOJHVM= -----END CERTIFICATE-----Generated at Sun Dec 7 02:16:32 2025 by rpki-client