This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft File: C70A343932991281F91796DB87B011987603BBF4.mft (raw, json) Hash identifier: 8MQu76nI/gsaEPd1hA5SfaBAt8Ue7L4EREy39Uz5h+E= Subject key identifier: E8:06:62:53:92:C6:4D:37:F8:D4:90:BB:F4:B4:6B:81:6B:34:E3:E9 Authority key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Certificate issuer: /CN=C70A343932991281F91796DB87B011987603BBF4 Certificate serial: 1BE3486F679D21989C472999061285E47BABBA0A Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject info access: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft Manifest number: 024F Signing time: Sat 06 Dec 2025 13:11:38 +0000 Manifest this update: Sat 06 Dec 2025 13:06:38 +0000 Manifest next update: Wed 10 Dec 2025 00:21:38 +0000 Files and hashes: 1: 3130332e3138342e3132312e302f32342d3234203d3e20313439363633.roa (hash: TB7U9GvlAmHnGk0/8JpxDBGjqTq2O6M0WEaScBuoS/g=) 2: 3130332e3138342e3132302e302f32342d3234203d3e20313439363633.roa (hash: K/te+OOqq38HfLYFBM6maqhYABgY51ViE5jJN8jRKPY=) 3: C70A343932991281F91796DB87B011987603BBF4.crl (hash: DmctCIkrUeywCOanMj5T7tsb7N+Io6iJftBnGELubsE=) 4: 3130332e3138342e3132302e302f32332d3233203d3e20313439363633.roa (hash: 7CE9BXOCk+npQ95V1OHYui5nCFjD3JZ2DBCvcvu4/Kk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:e3:48:6f:67:9d:21:98:9c:47:29:99:06:12:85:e4:7b:ab:ba:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C70A343932991281F91796DB87B011987603BBF4 Validity Not Before: Dec 6 13:06:38 2025 GMT Not After : Dec 10 00:21:38 2025 GMT Subject: CN=E806625392C64D37F8D490BBF4B46B816B34E3E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1c:ce:e6:d1:ca:cf:c7:ba:0c:b4:0b:ee:b6: 43:af:17:e9:3d:8a:98:2c:7d:6a:ae:d6:6a:16:72: ed:f6:f8:cd:05:25:61:f9:65:16:54:b6:7a:03:e5: 74:cb:45:29:7d:ea:0b:dc:3f:d9:6a:c9:43:8f:82: 53:4d:18:a1:d0:a9:0b:78:34:5f:58:4c:08:70:b8: ea:12:29:5f:ab:8b:da:a7:74:90:09:0a:65:77:4f: 16:ed:55:75:ef:6f:bb:a7:d1:6c:c4:7d:8e:9e:ee: 1a:1a:a2:e4:2c:79:67:33:3b:b4:ea:49:f7:7b:e2: f8:66:ea:fe:12:e2:89:81:aa:4f:d3:e6:5b:23:bf: bc:18:26:c9:3d:a6:22:fb:df:0f:03:55:b6:e6:36: c2:0c:a7:7e:d7:4b:45:27:75:6d:b6:f5:b3:45:c1: d5:ad:ba:db:c0:ea:96:d0:b0:bd:83:c3:7e:25:20: 0a:b0:90:63:9a:3e:ff:36:56:57:91:04:d2:a6:3d: 11:15:1c:1e:9c:dc:67:1f:51:e2:2b:24:16:17:c3: 8e:d2:ea:3d:ac:20:f1:1a:c9:f8:4f:4d:03:8c:71: d5:a1:c7:c4:42:a9:85:82:de:29:82:68:4a:71:91: 57:93:b1:19:b6:8f:c3:d4:3c:6a:f9:58:4b:fa:1f: bd:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:06:62:53:92:C6:4D:37:F8:D4:90:BB:F4:B4:6B:81:6B:34:E3:E9 X509v3 Authority Key Identifier: keyid:C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 09:35:9f:f8:33:3e:c5:b0:91:ed:26:02:ef:11:f7:04:5f:e4: fa:0c:34:c1:c1:ea:43:9d:1c:c9:ba:07:75:d8:90:42:5a:21: da:c3:80:a8:69:ce:ef:96:f4:79:07:9d:0b:96:79:f7:5c:4a: 43:8b:cd:54:48:da:c5:3f:b9:86:54:21:1e:33:c1:c1:7a:e0: dd:d9:f6:fb:b4:10:cf:2e:4e:52:75:9f:26:ea:52:9a:83:ac: 12:ec:82:ce:28:41:45:e3:c8:b5:4b:7e:26:2e:27:ac:07:70: 03:fc:a1:1a:31:ec:aa:e4:a5:a8:5c:40:36:d5:b8:fd:d9:22: 20:00:4c:ca:c2:ba:af:85:ac:b0:cb:47:73:5c:56:fd:f0:58: 69:2a:d5:01:e2:af:64:90:44:77:d7:90:e5:71:29:c0:bd:a3: d9:51:8d:ae:28:41:26:97:9d:c2:be:a3:1b:43:88:0b:01:16: 1f:d6:48:62:fb:4c:49:5f:e5:cd:22:1f:46:f8:31:e4:60:38: 76:0e:f4:ca:17:22:70:f7:3b:54:b8:31:fe:77:84:7d:fb:b5: 48:4c:35:1b:6d:a1:d0:de:43:38:9e:8e:95:4b:05:cd:cc:9e: d5:ef:47:f2:70:9b:a6:2c:d3:12:61:7e:36:fc:71:04:dc:bf: bb:04:4a:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUG+NIb2edIZicRymZBhKF5HurugowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3 NjAzQkJGNDAeFw0yNTEyMDYxMzA2MzhaFw0yNTEyMTAwMDIxMzhaMDMxMTAvBgNV BAMTKEU4MDY2MjUzOTJDNjREMzdGOEQ0OTBCQkY0QjQ2QjgxNkIzNEUzRTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWHM7m0crPx7oMtAvutkOvF+k9 ipgsfWqu1moWcu32+M0FJWH5ZRZUtnoD5XTLRSl96gvcP9lqyUOPglNNGKHQqQt4 NF9YTAhwuOoSKV+ri9qndJAJCmV3TxbtVXXvb7un0WzEfY6e7hoaouQseWczO7Tq Sfd74vhm6v4S4omBqk/T5lsjv7wYJsk9piL73w8DVbbmNsIMp37XS0UndW229bNF wdWtutvA6pbQsL2Dw34lIAqwkGOaPv82VleRBNKmPREVHB6c3GcfUeIrJBYXw47S 6j2sIPEayfhPTQOMcdWhx8RCqYWC3imCaEpxkVeTsRm2j8PUPGr5WEv6H713AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6AZiU5LGTTf41JC79LRrgWs04+kwHwYDVR0j BBgwFoAUxwo0OTKZEoH5F5bbh7ARmHYDu/QwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9i ZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMC9DNzBBMzQzOTMy OTkxMjgxRjkxNzk2REI4N0IwMTE5ODc2MDNCQkY0LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDExOTg3NjAz QkJGNC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYmZjMTdjYzItZjRhMi00MTVlLThl YTItZjljNDdmNzVjNGNhLzAvQzcwQTM0MzkzMjk5MTI4MUY5MTc5NkRCODdCMDEx OTg3NjAzQkJGNC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAAk1n/gzPsWwke0mAu8R9wRf5PoMNMHB6kOd HMm6B3XYkEJaIdrDgKhpzu+W9HkHnQuWefdcSkOLzVRI2sU/uYZUIR4zwcF64N3Z 9vu0EM8uTlJ1nybqUpqDrBLsgs4oQUXjyLVLfiYuJ6wHcAP8oRox7KrkpahcQDbV uP3ZIiAATMrCuq+FrLDLR3NcVv3wWGkq1QHir2SQRHfXkOVxKcC9o9lRja4oQSaX ncK+oxtDiAsBFh/WSGL7TElf5c0iH0b4MeRgOHYO9MoXInD3O1S4Mf53hH37tUhM NRttodDeQziejpVLBc3MntXvR/Jwm6Ys0xJhfjb8cQTcv7sESsg= -----END CERTIFICATE-----Generated at Sun Dec 7 12:45:31 2025 by rpki-client