This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft File: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft (raw, json) Hash identifier: P2VbrsF+Dx0gbLLJgOYolIUgge6R7teDqRMhaPdNtiI= Subject key identifier: E1:F6:E7:7B:C5:6C:3A:6A:93:1B:97:7B:6E:3A:84:E8:79:27:DE:9D Authority key identifier: 02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 Certificate issuer: /CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Certificate serial: 7B11E15245FE0E3B0CB518F439ED4269B01714ED Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject info access: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft Manifest number: 0289 Signing time: Sat 06 Dec 2025 09:22:08 +0000 Manifest this update: Sat 06 Dec 2025 09:17:08 +0000 Manifest next update: Tue 09 Dec 2025 12:08:08 +0000 Files and hashes: 1: 3130332e3134392e3132302e302f32332d3233203d3e20313430303233.roa (hash: B08azy3XQsiTZf5UppG1ngPrOYAEwHH6x3322yJGfrI=) 2: 3130332e3134392e3132312e302f32342d3234203d3e2037373133.roa (hash: t1OWN6gm90SvImzwws28CQ53gTfOaLXKxfqrgXh94Y4=) 3: 3130332e3134392e3132302e302f32332d3233203d3e20313339393532.roa (hash: FyCE3LyMNMrGnPbdrpK5+sH4y62xX8bxVpZUT6w7BJU=) 4: 3130332e3134392e3132302e302f32332d3233203d3e2037373133.roa (hash: G0y3tssGsefR1ItOMtc1BYHuZ0hgATuC18s9snklT+E=) 5: 3130332e3134392e3132302e302f32342d3234203d3e2037373133.roa (hash: kzF5yTng2nsAricqtS3yvK+w9DfNlAwfQFzAL4v5DWA=) 6: 023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl (hash: 8b1jeesXhviHZQ9Tgi2z1T5VwtT786sNeNui8v42Zfc=) 7: 3130332e3134392e3132312e302f32342d3234203d3e20313430303233.roa (hash: Y0QuciRTpFDwvV/OBPdTjgLcEkiudatiiHEhsbTutWI=) 8: 3130332e3134392e3132302e302f32332d3234203d3e20313430303233.roa (hash: btn366wZk5X/LbhkknHgrSEj+dlkWgK4+w6HiC3XS9g=) 9: 3130332e3134392e3132312e302f32342d3234203d3e20313339393532.roa (hash: g6JykGSCyvPJN6suwP4pksfv3CU4McJpDF6g+WQNj7o=) 10: 3130332e3134392e3132302e302f32342d3234203d3e20313339393532.roa (hash: 2PpG67/Hif4l3pFwRCwEQ7HNcb5HgHsPLTC3ZJMlI9c=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 12:08:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:11:e1:52:45:fe:0e:3b:0c:b5:18:f4:39:ed:42:69:b0:17:14:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=023DAF793CD2BAF6C7BC7A45A13DF236B7401661 Validity Not Before: Dec 6 09:17:08 2025 GMT Not After : Dec 9 12:08:08 2025 GMT Subject: CN=E1F6E77BC56C3A6A931B977B6E3A84E87927DE9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5d:99:98:c8:c9:fe:29:b5:36:c3:9e:26:67: 02:2e:5a:6d:2a:b5:4a:ea:3b:20:e5:80:53:80:3d: b6:22:17:3c:3d:e0:bd:fc:6f:25:a3:ba:ae:2e:8c: d8:01:f8:b5:9a:15:69:30:d6:39:6a:6f:99:e6:bd: ac:21:ae:65:40:5a:19:a4:69:82:bc:c7:83:19:75: 6e:bd:65:af:40:65:3b:4a:1a:ca:a7:11:d1:bb:93: 58:cb:c5:f2:03:ac:2e:36:2b:c7:29:66:69:6d:34: 83:d5:5a:06:19:67:14:6b:5e:89:9d:1a:18:7f:2f: 00:66:88:97:76:d9:98:ec:74:9f:82:56:d9:2d:ff: a8:ad:bf:7e:ca:90:c5:48:72:3a:54:c5:ce:b2:9a: b9:28:88:3d:2b:b8:48:19:79:5c:f9:ab:0c:42:68: 61:45:ec:5e:7b:36:e7:c2:dc:85:84:e1:45:4d:e4: 7e:97:ba:65:81:1e:d0:39:59:a6:b5:e9:f2:20:df: fc:bc:10:1a:ae:1e:03:c2:06:f7:0c:f6:3c:ee:09: 1c:c3:46:df:5f:39:4c:22:70:e5:f6:f5:bf:9a:59: 70:3f:f8:85:85:61:6b:f3:a7:1a:2e:98:eb:30:06: 00:d2:06:47:f7:5a:18:ec:b4:c8:c4:c1:b4:67:78: f2:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:F6:E7:7B:C5:6C:3A:6A:93:1B:97:7B:6E:3A:84:E8:79:27:DE:9D X509v3 Authority Key Identifier: keyid:02:3D:AF:79:3C:D2:BA:F6:C7:BC:7A:45:A1:3D:F2:36:B7:40:16:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/c8d0e640-22e9-441c-8634-f9525307da76/0/023DAF793CD2BAF6C7BC7A45A13DF236B7401661.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 86:30:51:9a:9c:ca:5b:d1:87:82:94:25:0b:24:b3:8b:2d:d4: b0:96:64:87:8e:d3:cd:26:e2:6e:5e:14:88:42:a6:f3:d2:5c: 5b:2c:c6:9e:65:24:94:f3:0b:87:62:d7:15:05:06:1e:78:ef: 4e:03:26:63:ad:a9:7e:c0:47:9c:b5:7e:ee:66:57:cd:ab:9c: 43:02:3b:fd:4c:2f:11:cd:fd:5b:48:14:5d:ca:5c:ae:3e:79: c2:18:d6:90:5b:21:57:92:5b:65:80:dd:77:c4:e4:74:28:ec: 9f:8c:2b:ac:33:e4:a7:8a:7b:2f:ac:35:d0:28:9d:80:a0:41: 02:ca:77:4f:c1:71:ed:33:fa:04:ef:f2:5f:a9:e8:09:11:47: 1b:3d:23:d2:ff:d0:72:ce:04:16:70:8d:21:47:71:24:fe:e1: 6e:81:7e:37:07:a9:ee:99:77:f7:c9:9a:3a:cf:fa:02:d2:3b: a1:3a:8d:eb:04:1e:0d:8e:d7:97:b3:20:c0:01:03:81:f7:1a: 6c:9f:2f:23:5b:23:41:c2:14:71:ac:e9:80:cf:b2:5f:41:6d: d9:d3:56:75:c6:2b:d7:47:2e:d7:67:d9:5e:d2:26:4a:0e:f6: bc:33:2c:aa:ce:a2:9e:ab:06:f3:8a:be:49:4e:ae:d3:92:6d: 9a:52:ff:12 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUexHhUkX+DjsMtRj0Oe1CabAXFO0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZC NzQwMTY2MTAeFw0yNTEyMDYwOTE3MDhaFw0yNTEyMDkxMjA4MDhaMDMxMTAvBgNV BAMTKEUxRjZFNzdCQzU2QzNBNkE5MzFCOTc3QjZFM0E4NEU4NzkyN0RFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsXZmYyMn+KbU2w54mZwIuWm0q tUrqOyDlgFOAPbYiFzw94L38byWjuq4ujNgB+LWaFWkw1jlqb5nmvawhrmVAWhmk aYK8x4MZdW69Za9AZTtKGsqnEdG7k1jLxfIDrC42K8cpZmltNIPVWgYZZxRrXomd Ghh/LwBmiJd22ZjsdJ+CVtkt/6itv37KkMVIcjpUxc6ymrkoiD0ruEgZeVz5qwxC aGFF7F57NufC3IWE4UVN5H6XumWBHtA5Waa16fIg3/y8EBquHgPCBvcM9jzuCRzD Rt9fOUwicOX29b+aWXA/+IWFYWvzpxoumOswBgDSBkf3WhjstMjEwbRnePLTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU4fbne8VsOmqTG5d7bjqE6Hkn3p0wHwYDVR0j BBgwFoAUAj2veTzSuvbHvHpFoT3yNrdAFmEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j OGQwZTY0MC0yMmU5LTQ0MWMtODYzNC1mOTUyNTMwN2RhNzYvMC8wMjNEQUY3OTND RDJCQUY2QzdCQzdBNDVBMTNERjIzNkI3NDAxNjYxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYyMzZCNzQw MTY2MS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vYzhkMGU2NDAtMjJlOS00NDFjLTg2 MzQtZjk1MjUzMDdkYTc2LzAvMDIzREFGNzkzQ0QyQkFGNkM3QkM3QTQ1QTEzREYy MzZCNzQwMTY2MS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIYwUZqcylvRh4KUJQsks4st1LCWZIeO080m 4m5eFIhCpvPSXFssxp5lJJTzC4di1xUFBh54704DJmOtqX7AR5y1fu5mV82rnEMC O/1MLxHN/VtIFF3KXK4+ecIY1pBbIVeSW2WA3XfE5HQo7J+MK6wz5KeKey+sNdAo nYCgQQLKd0/Bce0z+gTv8l+p6AkRRxs9I9L/0HLOBBZwjSFHcST+4W6BfjcHqe6Z d/fJmjrP+gLSO6E6jesEHg2O15ezIMABA4H3GmyfLyNbI0HCFHGs6YDPsl9BbdnT VnXGK9dHLtdn2V7SJkoO9rwzLKrOop6rBvOKvklOrtOSbZpS/xI= -----END CERTIFICATE-----Generated at Sat Dec 6 21:35:27 2025 by rpki-client