This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft File: BD809D8A065DB595DC069383736A1A9C4A96B267.mft (raw, json) Hash identifier: XIJgsQa0xOVqW6g84yBsp/zkcJCYK/Nxg7tQ2heEWTo= Subject key identifier: 7B:AE:2D:16:6E:87:B9:D1:FC:34:1E:85:FE:52:E0:43:56:8A:65:4C Authority key identifier: BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 Certificate issuer: /CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Certificate serial: 34B18D49F926848A4E8F32E5E82DD9F84067281C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft Manifest number: 0530 Signing time: Thu 04 Dec 2025 23:22:10 +0000 Manifest this update: Thu 04 Dec 2025 23:17:10 +0000 Manifest next update: Mon 08 Dec 2025 03:58:10 +0000 Files and hashes: 1: BD809D8A065DB595DC069383736A1A9C4A96B267.crl (hash: BdjCFLWGVDxOcw9331pOkekx/bEg7OS8WF5JRgE1CTk=) 2: 34352e3132372e3133332e302f32342d3234203d3e203538343737.roa (hash: m1RDFs81kJe7cLkzIuvESdF6lsbsj7FMYtNBuW0nGcE=) 3: 3130332e35362e3230372e302f32342d3234203d3e203538343737.roa (hash: +FaWxeyMSXTm1A2YbWkKpjjxd9ODF5R6bPfmYjsvC3c=) 4: 3130332e35362e3230362e302f32342d3234203d3e203538343737.roa (hash: ctlL63La/nA2o80IyG4Gn5yERO9Svxh3VS6Tj8PS2Bk=) 5: 34352e3132372e3133342e302f32342d3234203d3e203538343737.roa (hash: mAHS4RhjFlyuuj4wSTCANOzW1BtppaUwbd4+LpgqV3A=) 6: 3130332e35362e3230352e302f32342d3234203d3e203538343737.roa (hash: Y6tvd+1XtHiukr4Lnc++EG2e4/MBcfeHFg9Xd0kGFMg=) 7: 34352e3132372e3133322e302f32342d3234203d3e203538343737.roa (hash: 6P/MnisWmadZujdf0MdzBBem1MXVl8xw/vKYXqNcxoU=) 8: 3130332e35362e3230342e302f32342d3234203d3e203538343737.roa (hash: E6oSwKyWxejOo/v5HHitngqUwJ84vi0WR9s9o+kQ4qc=) 9: 34352e3132372e3133352e302f32342d3234203d3e20313335333630.roa (hash: lOPyN4jlxJmDfUm1Z5usitGLtQdiU+flslurwWQqLwM=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 03:58:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b1:8d:49:f9:26:84:8a:4e:8f:32:e5:e8:2d:d9:f8:40:67:28:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD809D8A065DB595DC069383736A1A9C4A96B267 Validity Not Before: Dec 4 23:17:10 2025 GMT Not After : Dec 8 03:58:10 2025 GMT Subject: CN=7BAE2D166E87B9D1FC341E85FE52E043568A654C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:03:63:2d:d5:01:da:f5:b8:04:b5:7b:00:24: 03:8f:5a:1f:0d:74:a9:a9:46:d7:ad:a7:ae:1f:80: 16:d3:10:a0:0e:a1:4b:68:f4:fb:e2:6b:fe:2a:d1: f5:06:b4:d0:9f:ba:2a:47:36:33:bb:0c:6a:97:e9: 88:9e:8b:0c:18:62:05:b5:b0:69:7b:db:ce:f2:4b: 22:cc:fb:bc:44:a0:7a:d2:bc:98:ea:88:59:0e:88: 7f:24:7b:e7:b3:cb:9b:9d:35:4b:dc:0f:79:95:57: 14:6c:86:a1:51:4d:35:dd:7b:07:c8:87:69:02:ec: 41:2a:3d:40:73:dd:41:f2:e0:8a:5e:ab:3b:c8:68: 07:bc:bd:bf:58:3a:f0:29:30:05:9a:d5:89:33:13: e7:c5:51:cf:02:3f:c4:32:ab:b4:21:48:ff:76:08: fc:1f:10:de:67:95:f7:0f:66:91:f1:6a:de:f7:fa: 19:cd:cd:30:1d:9f:ff:40:bf:4b:4c:ef:f6:59:68: 4b:68:3b:60:1e:31:4e:48:5d:df:a8:93:98:f0:99: 03:65:7f:99:fa:b3:ec:4d:af:14:65:0b:d8:ec:ca: 0a:4c:a3:d6:f6:31:bc:52:2d:87:7c:93:09:40:2f: 3f:c6:ef:50:a5:82:f3:b0:85:c4:7c:3e:85:71:33: a5:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:AE:2D:16:6E:87:B9:D1:FC:34:1E:85:FE:52:E0:43:56:8A:65:4C X509v3 Authority Key Identifier: keyid:BD:80:9D:8A:06:5D:B5:95:DC:06:93:83:73:6A:1A:9C:4A:96:B2:67 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BD809D8A065DB595DC069383736A1A9C4A96B267.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d3f8f55c-9e35-4ce2-890f-0de3e2404611/0/BD809D8A065DB595DC069383736A1A9C4A96B267.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c5:f8:12:b9:07:42:b3:69:fa:57:45:7e:de:11:63:67:c7:7c: 20:61:8c:9c:2b:ae:53:42:ed:5c:25:2f:9c:1b:32:5e:1f:83: a6:98:6c:e7:44:c4:0d:fe:7f:36:a5:3d:e2:72:24:71:93:96: 22:24:92:22:87:4d:2e:a3:5c:fe:eb:12:51:fb:74:2c:d0:bb: 31:b9:c4:6c:7b:cc:23:75:6c:af:6a:6a:5b:69:22:0f:bf:a0: 66:01:e5:65:eb:e0:7d:e2:e3:b9:16:7b:b4:60:9e:ed:7f:f7: c9:bc:8d:b2:de:1d:05:37:fe:35:bb:ed:c1:e6:b1:4d:28:65: d7:c2:da:d0:93:af:57:10:2a:a3:15:38:ac:da:09:01:9a:84: 63:08:a6:10:3e:11:db:7b:73:ca:24:f0:93:9c:22:78:77:25: 37:3c:08:a9:9f:eb:71:7d:10:cc:49:75:73:4a:3b:cd:c4:47: 28:b9:ca:36:09:d9:e0:42:52:cd:64:63:43:37:a7:f2:17:1d: bb:62:0e:22:c4:6f:7d:32:86:ca:38:64:cd:17:aa:e8:d5:af: 18:a3:6c:9e:72:82:8a:b5:16:c7:59:90:a6:2f:18:ef:e2:fa: b6:ef:f9:dc:ee:ec:cb:ff:61:9e:3b:0c:fd:a5:12:0c:75:fb: b8:aa:0f:5b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNLGNSfkmhIpOjzLl6C3Z+EBnKBwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0 QTk2QjI2NzAeFw0yNTEyMDQyMzE3MTBaFw0yNTEyMDgwMzU4MTBaMDMxMTAvBgNV BAMTKDdCQUUyRDE2NkU4N0I5RDFGQzM0MUU4NUZFNTJFMDQzNTY4QTY1NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDlA2Mt1QHa9bgEtXsAJAOPWh8N dKmpRtetp64fgBbTEKAOoUto9Pvia/4q0fUGtNCfuipHNjO7DGqX6YieiwwYYgW1 sGl7287ySyLM+7xEoHrSvJjqiFkOiH8ke+ezy5udNUvcD3mVVxRshqFRTTXdewfI h2kC7EEqPUBz3UHy4IpeqzvIaAe8vb9YOvApMAWa1YkzE+fFUc8CP8Qyq7QhSP92 CPwfEN5nlfcPZpHxat73+hnNzTAdn/9Av0tM7/ZZaEtoO2AeMU5IXd+ok5jwmQNl f5n6s+xNrxRlC9jsygpMo9b2MbxSLYd8kwlALz/G71ClgvOwhcR8PoVxM6VBAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUe64tFm6HudH8NB6F/lLgQ1aKZUwwHwYDVR0j BBgwFoAUvYCdigZdtZXcBpODc2oanEqWsmcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k M2Y4ZjU1Yy05ZTM1LTRjZTItODkwZi0wZGUzZTI0MDQ2MTEvMC9CRDgwOUQ4QTA2 NURCNTk1REMwNjkzODM3MzZBMUE5QzRBOTZCMjY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFBOUM0QTk2 QjI2Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDNmOGY1NWMtOWUzNS00Y2UyLTg5 MGYtMGRlM2UyNDA0NjExLzAvQkQ4MDlEOEEwNjVEQjU5NURDMDY5MzgzNzM2QTFB OUM0QTk2QjI2Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMX4ErkHQrNp+ldFft4RY2fHfCBhjJwrrlNC 7VwlL5wbMl4fg6aYbOdExA3+fzalPeJyJHGTliIkkiKHTS6jXP7rElH7dCzQuzG5 xGx7zCN1bK9qaltpIg+/oGYB5WXr4H3i47kWe7Rgnu1/98m8jbLeHQU3/jW77cHm sU0oZdfC2tCTr1cQKqMVOKzaCQGahGMIphA+Edt7c8ok8JOcInh3JTc8CKmf63F9 EMxJdXNKO83ERyi5yjYJ2eBCUs1kY0M3p/IXHbtiDiLEb30yhso4ZM0XqujVrxij bJ5ygoq1FsdZkKYvGO/i+rbv+dzu7Mv/YZ47DP2lEgx1+7iqD1s= -----END CERTIFICATE-----Generated at Sun Dec 7 03:05:44 2025 by rpki-client