This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft File: DD68C98D519CC8D624F664B026AEB9B289EE819C.mft (raw, json) Hash identifier: iXbtW5kR8GJ4aaWLgUX6lylaKzNISQN7fUfvwKyFGUY= Subject key identifier: 00:90:30:1F:70:61:41:E5:11:AB:77:68:5C:64:ED:44:C4:3A:B9:C0 Authority key identifier: DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C Certificate issuer: /CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Certificate serial: 70791FAA3670B3A27D50089D66D5AF8F4670F9E3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft Manifest number: 01F6 Signing time: Fri 05 Dec 2025 01:42:25 +0000 Manifest this update: Fri 05 Dec 2025 01:37:25 +0000 Manifest next update: Mon 08 Dec 2025 05:13:25 +0000 Files and hashes: 1: 3130332e33362e35322e302f32342d3234203d3e2039333431.roa (hash: 4vYKKc9gCQNLGbY6CdycYfIML4Cvt54/Y7bjgPLGEYU=) 2: DD68C98D519CC8D624F664B026AEB9B289EE819C.crl (hash: aHAa5CtHOBglipEpEJMZBm26dDGADNiqAU7K8SwsvD8=) 3: 3130332e33362e35332e302f32342d3234203d3e2039333431.roa (hash: 9XabV5C+bxTzwQpxWRFJ2J0ODxVlFWpwxY4ZIRRll5s=) 4: 3130332e33362e35322e302f32332d3233203d3e2039333431.roa (hash: avxCSiDbdDW7kOsh1a+dBlMPbboYpQF+S49u7QzrJXw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 05:13:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:79:1f:aa:36:70:b3:a2:7d:50:08:9d:66:d5:af:8f:46:70:f9:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DD68C98D519CC8D624F664B026AEB9B289EE819C Validity Not Before: Dec 5 01:37:25 2025 GMT Not After : Dec 8 05:13:25 2025 GMT Subject: CN=0090301F706141E511AB77685C64ED44C43AB9C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:c7:b9:32:70:50:71:79:6a:68:30:96:0a:61: 09:19:0d:88:de:00:f0:1c:b9:4a:67:17:73:25:8b: 45:e1:e3:9d:e0:8f:44:37:00:9b:a6:02:ae:b8:23: f5:18:10:09:90:3d:fb:b6:e9:5c:e8:44:d9:a6:78: 17:f4:67:1d:9a:6f:ee:58:5b:9c:f6:39:3c:3a:b7: a4:d0:ef:cb:76:e1:55:6f:41:33:95:15:d2:58:81: 10:7c:11:e8:9d:d9:e9:9b:9f:11:c2:5e:70:d0:72: 41:9a:b8:ee:e7:ab:12:21:e1:c4:22:d7:75:35:fb: 9b:8b:14:d3:59:58:15:3d:9f:90:e8:c7:f8:c2:96: 38:fd:bd:78:5d:bd:8b:91:8d:cf:4c:2a:8f:11:5c: 34:e5:21:98:74:21:3d:57:76:19:37:1a:f7:41:d7: b6:d6:7b:f1:f0:a1:e8:16:44:7e:63:53:3d:b0:c6: 4e:40:fa:0c:e5:22:32:e2:37:0b:99:68:04:18:ba: d9:58:ff:4b:be:0d:15:f2:9f:5f:c3:7d:1e:73:77: 10:f7:ea:3f:58:59:88:a5:36:ea:ae:62:08:67:d1: 52:4d:1e:67:cc:6e:8d:26:59:2a:0c:34:09:5f:d4: ad:f4:a9:b8:3c:71:cd:d9:ce:5b:8a:c6:78:1d:1c: 45:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:90:30:1F:70:61:41:E5:11:AB:77:68:5C:64:ED:44:C4:3A:B9:C0 X509v3 Authority Key Identifier: keyid:DD:68:C9:8D:51:9C:C8:D6:24:F6:64:B0:26:AE:B9:B2:89:EE:81:9C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DD68C98D519CC8D624F664B026AEB9B289EE819C.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d043a889-c861-4d29-9d77-923d927e7634/0/DD68C98D519CC8D624F664B026AEB9B289EE819C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5c:f3:2e:2e:0f:7c:1b:20:a0:bf:3b:ba:32:e5:89:a1:3b:a9: 23:58:94:7d:2f:83:b6:2d:4a:f1:e0:25:dd:99:6c:15:46:ea: ec:58:93:fd:a0:98:5a:93:80:56:0f:1f:ef:fd:59:1c:03:34: 79:2b:55:2d:c9:d9:04:2d:5f:b4:c3:dc:d8:e6:2d:f7:02:d3: e7:38:af:a3:a1:5c:10:20:18:09:55:51:90:25:78:e8:1f:d2: 94:ad:00:d1:a7:e9:e1:e9:df:4d:be:c4:39:5d:01:24:55:64: f1:e3:d6:b4:3b:72:a0:70:b2:74:e5:2f:f8:88:7b:25:4c:03: 63:ba:2e:ee:68:aa:fe:a0:db:56:ba:b9:b1:3e:4b:44:77:44: 67:28:1e:c9:2b:07:ae:6b:96:a7:2a:15:f4:56:73:4c:a0:c2: c1:b4:2b:4a:f8:b6:ea:4e:bd:d2:82:54:05:5a:58:04:ce:50: 91:6a:63:75:ef:6e:72:c1:d2:8f:e0:2e:48:56:ff:0b:6d:8a: b2:ad:3e:a3:d8:39:29:76:15:3c:87:5a:85:73:ff:a7:75:db: df:80:ea:77:e6:bb:7f:4e:75:b9:42:4b:23:0f:36:64:a7:71: 49:25:43:3f:2b:b1:a9:73:32:94:27:a6:21:89:7b:e2:b2:ed: bd:89:0f:ca -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcHkfqjZws6J9UAidZtWvj0Zw+eMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4 OUVFODE5QzAeFw0yNTEyMDUwMTM3MjVaFw0yNTEyMDgwNTEzMjVaMDMxMTAvBgNV BAMTKDAwOTAzMDFGNzA2MTQxRTUxMUFCNzc2ODVDNjRFRDQ0QzQzQUI5QzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDNx7kycFBxeWpoMJYKYQkZDYje APAcuUpnF3Mli0Xh453gj0Q3AJumAq64I/UYEAmQPfu26VzoRNmmeBf0Zx2ab+5Y W5z2OTw6t6TQ78t24VVvQTOVFdJYgRB8Eeid2embnxHCXnDQckGauO7nqxIh4cQi 13U1+5uLFNNZWBU9n5Dox/jCljj9vXhdvYuRjc9MKo8RXDTlIZh0IT1Xdhk3GvdB 17bWe/HwoegWRH5jUz2wxk5A+gzlIjLiNwuZaAQYutlY/0u+DRXyn1/DfR5zdxD3 6j9YWYilNuquYghn0VJNHmfMbo0mWSoMNAlf1K30qbg8cc3ZzluKxngdHEWVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUAJAwH3BhQeURq3doXGTtRMQ6ucAwHwYDVR0j BBgwFoAU3WjJjVGcyNYk9mSwJq65sonugZwwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k MDQzYTg4OS1jODYxLTRkMjktOWQ3Ny05MjNkOTI3ZTc2MzQvMC9ERDY4Qzk4RDUx OUNDOEQ2MjRGNjY0QjAyNkFFQjlCMjg5RUU4MTlDLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5QjI4OUVF ODE5Qy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDA0M2E4ODktYzg2MS00ZDI5LTlk NzctOTIzZDkyN2U3NjM0LzAvREQ2OEM5OEQ1MTlDQzhENjI0RjY2NEIwMjZBRUI5 QjI4OUVFODE5Qy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFzzLi4PfBsgoL87ujLliaE7qSNYlH0vg7Yt SvHgJd2ZbBVG6uxYk/2gmFqTgFYPH+/9WRwDNHkrVS3J2QQtX7TD3NjmLfcC0+c4 r6OhXBAgGAlVUZAleOgf0pStANGn6eHp302+xDldASRVZPHj1rQ7cqBwsnTlL/iI eyVMA2O6Lu5oqv6g21a6ubE+S0R3RGcoHskrB65rlqcqFfRWc0ygwsG0K0r4tupO vdKCVAVaWATOUJFqY3XvbnLB0o/gLkhW/wttirKtPqPYOSl2FTyHWoVz/6d129+A 6nfmu39OdblCSyMPNmSncUklQz8rsalzMpQnpiGJe+Ky7b2JD8o= -----END CERTIFICATE-----Generated at Sun Dec 7 02:14:08 2025 by rpki-client