This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft File: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft (raw, json) Hash identifier: Y/lp8MJPPZzMP8HPKIjemxexcpfk9RjmgRaP3UtlDc0= Subject key identifier: B7:30:16:41:20:88:A5:BD:93:41:FA:FE:33:64:07:FE:62:FF:DF:F6 Authority key identifier: 10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B Certificate issuer: /CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Certificate serial: 6CD24CD9411E99B923ECD22D6582F7BCDC97D473 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft Manifest number: BA Signing time: Sat 06 Dec 2025 06:31:41 +0000 Manifest this update: Sat 06 Dec 2025 06:26:41 +0000 Manifest next update: Tue 09 Dec 2025 14:30:41 +0000 Files and hashes: 1: 10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl (hash: LhXf+MS07B1eQ+Z+dwxjtgXx+LXBwa7FY4FA9zv+AOE=) 2: 3130332e3137312e3235342e302f32342d3234203d3e20313432333939.roa (hash: lR/hW+eaZsPiXrhVudMo+pOinjFXG0anTiMBOASqmGk=) 3: 3130332e3137312e3235352e302f32342d3234203d3e20313432333939.roa (hash: HSGQJXythRbZW0WejIr3eu8cpvINsUXbBgpQ3Hdpzbo=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 14:30:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:d2:4c:d9:41:1e:99:b9:23:ec:d2:2d:65:82:f7:bc:dc:97:d4:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B Validity Not Before: Dec 6 06:26:41 2025 GMT Not After : Dec 9 14:30:41 2025 GMT Subject: CN=B73016412088A5BD9341FAFE336407FE62FFDFF6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:9f:fe:81:ee:69:5b:23:e9:51:c5:d7:b3:cc: 77:54:3b:5e:88:55:b9:04:dc:f3:74:7f:c9:a9:a2: ab:7e:77:0b:4f:a9:26:76:7d:16:b2:c3:8d:c1:1a: ff:3a:6c:22:35:73:4c:a7:92:2a:8f:c0:44:d6:47: f7:ec:04:77:2a:e2:5e:f0:38:61:9c:6b:5d:d9:fd: 87:8f:34:43:17:54:dd:c3:9b:81:83:2a:30:13:8a: a1:0e:63:47:3f:96:6f:88:9a:2e:9a:d7:1f:c6:dd: 9e:94:20:25:76:10:a2:33:8f:e1:e4:29:04:cd:79: 4b:e3:bb:40:6b:26:c5:b2:21:98:0e:1a:91:0d:64: 15:00:b5:42:65:32:80:39:be:e2:29:da:e8:5d:4f: 7d:db:80:11:f8:c5:0f:fe:85:c2:0c:a2:b2:0d:2f: a7:94:13:5d:5f:5d:35:7a:6d:10:69:e6:96:2e:e2: 5b:a3:a2:9c:1e:5a:de:02:01:28:f2:f3:4b:4a:4b: 9e:8b:d6:e5:0c:3b:08:93:fc:69:a4:ef:8f:11:28: 21:22:49:3f:53:17:74:49:7f:fc:de:5f:36:47:fa: 5e:32:ef:58:b6:8b:32:ab:24:be:70:7c:4c:e7:8c: 99:72:76:41:b8:cc:5d:ff:5a:84:52:62:5b:d2:a0: 12:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:30:16:41:20:88:A5:BD:93:41:FA:FE:33:64:07:FE:62:FF:DF:F6 X509v3 Authority Key Identifier: keyid:10:D3:53:6F:3D:0B:F7:F7:AC:CE:8A:68:50:5E:C0:31:4C:FA:31:7B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/cb01c967-99d0-4c21-9642-87ada67155c8/0/10D3536F3D0BF7F7ACCE8A68505EC0314CFA317B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a3:ed:7a:27:d4:d6:2b:19:c9:2b:ff:0c:f1:87:15:a3:45:9f: 37:82:97:f7:b1:0e:bf:22:54:c4:93:35:ec:b3:44:4e:97:8e: 81:e3:01:e3:f0:88:fd:fc:f2:55:61:52:54:cb:f0:09:95:bc: 10:26:41:ad:0d:dd:47:3c:66:15:e8:25:20:1b:7b:80:25:ac: 00:69:09:58:62:c9:2b:2f:a8:9c:61:9f:2c:68:b9:6d:fc:64: 7d:d9:44:2a:66:2d:ba:5f:6b:b1:a9:7c:94:bb:45:0b:20:e3: 20:9c:e8:28:0f:a9:10:6a:ce:ba:1f:9c:0d:87:4d:eb:13:89: f8:cb:7d:42:4c:3d:e1:b6:52:60:ef:ba:69:97:00:66:59:1f: a8:23:6d:97:5c:3f:ff:e7:f1:8f:14:d6:01:d7:7d:29:a7:7a: ae:c0:12:96:f0:c6:6d:71:f5:ee:19:96:c6:b9:30:a9:84:46: c6:94:ec:c5:6b:3c:79:a4:fe:71:c5:04:35:5c:ad:30:60:54: e7:ef:39:85:ef:80:d5:8f:ef:a3:08:68:88:6d:80:c4:fd:46: fa:c1:06:14:82:90:8c:74:20:b0:50:2e:f5:98:e1:6e:3d:d7: 14:ed:f5:c3:cc:26:a1:77:ab:2c:ee:99:cd:52:00:9f:a1:51: 24:75:5e:2d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUbNJM2UEembkj7NItZYL3vNyX1HMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0 Q0ZBMzE3QjAeFw0yNTEyMDYwNjI2NDFaFw0yNTEyMDkxNDMwNDFaMDMxMTAvBgNV BAMTKEI3MzAxNjQxMjA4OEE1QkQ5MzQxRkFGRTMzNjQwN0ZFNjJGRkRGRjYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOn/6B7mlbI+lRxdezzHdUO16I VbkE3PN0f8mpoqt+dwtPqSZ2fRayw43BGv86bCI1c0ynkiqPwETWR/fsBHcq4l7w OGGca13Z/YePNEMXVN3Dm4GDKjATiqEOY0c/lm+Imi6a1x/G3Z6UICV2EKIzj+Hk KQTNeUvju0BrJsWyIZgOGpENZBUAtUJlMoA5vuIp2uhdT33bgBH4xQ/+hcIMorIN L6eUE11fXTV6bRBp5pYu4lujopweWt4CASjy80tKS56L1uUMOwiT/Gmk748RKCEi ST9TF3RJf/zeXzZH+l4y71i2izKrJL5wfEznjJlydkG4zF3/WoRSYlvSoBLTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUtzAWQSCIpb2TQfr+M2QH/mL/3/YwHwYDVR0j BBgwFoAUENNTbz0L9/eszopoUF7AMUz6MXswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9j YjAxYzk2Ny05OWQwLTRjMjEtOTY0Mi04N2FkYTY3MTU1YzgvMC8xMEQzNTM2RjNE MEJGN0Y3QUNDRThBNjg1MDVFQzAzMTRDRkEzMTdCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMwMzE0Q0ZB MzE3Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vY2IwMWM5NjctOTlkMC00YzIxLTk2 NDItODdhZGE2NzE1NWM4LzAvMTBEMzUzNkYzRDBCRjdGN0FDQ0U4QTY4NTA1RUMw MzE0Q0ZBMzE3Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKPteifU1isZySv/DPGHFaNFnzeCl/exDr8i VMSTNeyzRE6XjoHjAePwiP388lVhUlTL8AmVvBAmQa0N3Uc8ZhXoJSAbe4AlrABp CVhiySsvqJxhnyxouW38ZH3ZRCpmLbpfa7GpfJS7RQsg4yCc6CgPqRBqzrofnA2H TesTifjLfUJMPeG2UmDvummXAGZZH6gjbZdcP//n8Y8U1gHXfSmneq7AEpbwxm1x 9e4Zlsa5MKmERsaU7MVrPHmk/nHFBDVcrTBgVOfvOYXvgNWP76MIaIhtgMT9RvrB BhSCkIx0ILBQLvWY4W491xTt9cPMJqF3qyzumc1SAJ+hUSR1Xi0= -----END CERTIFICATE-----Generated at Sun Dec 7 04:13:23 2025 by rpki-client