This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft File: 1952B074D19D5AB562D7EE537AD3059EA097353B.mft (raw, json) Hash identifier: OUazt82s14/JsPtWUuu7jBO5oy504bjv4EmA4rImz0Y= Subject key identifier: 3A:0A:95:02:8B:7D:F7:B5:00:43:62:B1:47:0B:E1:E7:56:35:98:A6 Authority key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Certificate issuer: /CN=1952B074D19D5AB562D7EE537AD3059EA097353B Certificate serial: 3D24FF98DA241DD32B35BF09BC6891EF8C2C1B36 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft Manifest number: 0231 Signing time: Thu 18 Dec 2025 01:01:39 +0000 Manifest this update: Thu 18 Dec 2025 00:56:39 +0000 Manifest next update: Sun 21 Dec 2025 03:19:39 +0000 Files and hashes: 1: 323430363a616563303a323a3a2f34382d3438203d3e20313431363735.roa (hash: sJCm2ee/pkpEqZ3CTb0n1XRlqsVPP4kAsamQV7lnrGA=) 2: 1952B074D19D5AB562D7EE537AD3059EA097353B.crl (hash: I9CPmsYwecQz+9XMDWUjFqEYV/Tom8ICv0ccbixk8Jg=) 3: 323430363a616563303a613a3a2f34382d3438203d3e20313431363735.roa (hash: Ty7LXGWFu77417YzD9LySsWN2AIJ4KwCcp3kNzWJAIM=) 4: 3130332e3135382e32372e302f32342d3234203d3e20313431363735.roa (hash: 83g1exgFqaTQKU38X1D6x0BtWT5D2KATwMghhQSp0Hg=) 5: 3130332e3135382e32362e302f32342d3234203d3e20313431363735.roa (hash: ykRWiMSaAsP4Z39Whyu3kvlehUT+9RaQnqBPMyF4FR0=) 6: 323430363a616563303a3a2f34382d3438203d3e20313431363735.roa (hash: AS7ErBWYOh3ltpqaacXCmV2CVPom+cE/4rFVdqtAK+c=) 7: 323430363a616563303a313a3a2f34382d3438203d3e20313431363735.roa (hash: EFHYC7XhG7MQGG+p71C9PeqM87F/0AnjgXarEbD+y4E=) 8: 323430363a616563303a623a3a2f34382d3438203d3e20313431363735.roa (hash: D0b7YQ9CGnuoR/guzqV8sUGQy2lE5KoINh6LVHdhIG8=) 9: 323430363a616563303a633a3a2f34382d3438203d3e20313431363735.roa (hash: mPh7GdsHOCij5+t8LRe0pT3jX8ibPd0uc3fcqsjEKco=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 03:19:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:24:ff:98:da:24:1d:d3:2b:35:bf:09:bc:68:91:ef:8c:2c:1b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Validity Not Before: Dec 18 00:56:39 2025 GMT Not After : Dec 21 03:19:39 2025 GMT Subject: CN=3A0A95028B7DF7B5004362B1470BE1E7563598A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f9:ec:77:81:db:3c:01:2e:85:a3:86:30:a5: cf:4a:a2:0a:08:4e:b0:bd:83:59:00:36:d6:bf:0b: 74:49:c1:e2:41:1d:4b:7a:ba:56:b9:79:7b:ef:80: b4:3e:21:a6:36:23:5e:55:d6:ea:92:99:4f:e3:9c: 9c:ca:37:db:9b:89:ef:60:5a:86:58:2c:ff:e8:cb: 36:3b:f6:cd:28:ee:c5:8c:30:f3:4c:27:60:ed:50: 34:3a:8e:54:9f:fa:0d:1c:aa:58:93:8e:c3:47:20: 38:e5:ac:5b:31:ee:23:f2:91:07:a8:e9:82:c4:fc: b2:f0:dc:0c:4d:dc:8d:61:dd:65:7e:b6:05:00:15: d5:e8:58:91:b4:17:ce:dd:50:9f:64:9d:c2:b7:0f: ec:f2:fe:cc:72:d9:1f:68:c9:27:40:cf:9f:4a:43: da:44:b9:86:17:ca:2f:6d:06:fa:58:44:26:15:b7: 69:e9:b5:75:60:c5:93:83:25:f2:ba:d6:ba:5e:fe: ec:36:9c:d1:37:40:34:f7:e8:ef:6f:39:30:f2:63: 6f:97:ef:43:04:18:58:2f:f9:50:11:3c:0a:79:ec: 99:85:d8:f7:68:a3:14:9b:4c:f2:26:7e:d4:12:4f: 50:b7:c7:2f:83:31:49:60:5d:4b:2a:ac:3a:71:2d: 66:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:0A:95:02:8B:7D:F7:B5:00:43:62:B1:47:0B:E1:E7:56:35:98:A6 X509v3 Authority Key Identifier: keyid:19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 17:eb:64:01:76:a4:59:e8:1d:68:53:0f:3b:59:a3:d2:70:8f: 30:ed:91:d6:8e:45:a0:f1:2e:29:69:48:57:18:09:b3:0f:2e: 88:d2:f5:85:47:80:34:ec:2a:a9:55:4a:31:38:1c:db:f3:bf: 3a:a1:b9:f0:11:19:98:14:c9:c9:3a:50:ec:06:f1:54:4d:24: cd:3f:04:a2:2e:fc:1c:1e:0c:c5:d7:f6:9d:0d:3c:1f:6f:9f: 0d:6f:d3:b4:ee:b9:a0:c9:01:cc:5e:2b:db:5c:f3:09:dc:36: 18:b8:fd:6b:56:df:41:56:e9:8e:6b:db:e0:41:f3:98:5f:47: b5:a8:9c:72:67:51:e1:8f:3f:15:20:ea:9d:b3:8b:8b:8a:ad: 80:ac:81:a4:37:31:21:b7:68:1d:4a:2a:d6:81:64:95:6e:61: fd:e5:d4:00:de:17:29:38:93:45:5e:89:f9:70:14:15:73:94: 68:09:5e:3b:c1:4f:a2:b5:17:05:1a:10:2c:ce:53:2f:fa:6e: f6:e7:42:ce:21:82:92:6f:6a:ac:76:d5:9b:70:a0:ef:10:e7: 9e:5c:72:08:e9:7c:b8:53:ac:bb:49:84:a5:68:b6:23:70:af: 84:79:68:54:3c:86:e0:1d:7f:35:c3:75:dd:54:f0:a3:53:24: 6d:5e:72:c0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPST/mNokHdMrNb8JvGiR74wsGzYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVB MDk3MzUzQjAeFw0yNTEyMTgwMDU2MzlaFw0yNTEyMjEwMzE5MzlaMDMxMTAvBgNV BAMTKDNBMEE5NTAyOEI3REY3QjUwMDQzNjJCMTQ3MEJFMUU3NTYzNTk4QTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx+ex3gds8AS6Fo4Ywpc9KogoI TrC9g1kANta/C3RJweJBHUt6ula5eXvvgLQ+IaY2I15V1uqSmU/jnJzKN9ubie9g WoZYLP/oyzY79s0o7sWMMPNMJ2DtUDQ6jlSf+g0cqliTjsNHIDjlrFsx7iPykQeo 6YLE/LLw3AxN3I1h3WV+tgUAFdXoWJG0F87dUJ9kncK3D+zy/sxy2R9oySdAz59K Q9pEuYYXyi9tBvpYRCYVt2nptXVgxZODJfK61rpe/uw2nNE3QDT36O9vOTDyY2+X 70MEGFgv+VARPAp57JmF2PdooxSbTPImftQST1C3xy+DMUlgXUsqrDpxLWZHAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOgqVAot997UAQ2KxRwvh51Y1mKYwHwYDVR0j BBgwFoAUGVKwdNGdWrVi1+5TetMFnqCXNTswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k NGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMC8xOTUyQjA3NEQx OUQ1QUI1NjJEN0VFNTM3QUQzMDU5RUEwOTczNTNCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1OUVBMDk3 MzUzQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZDRmMmMwMjUtMWQ3Ni00YTM2LTgx NjAtYTllOGFmZTM1NzlmLzAvMTk1MkIwNzREMTlENUFCNTYyRDdFRTUzN0FEMzA1 OUVBMDk3MzUzQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBABfrZAF2pFnoHWhTDztZo9JwjzDtkdaORaDx LilpSFcYCbMPLojS9YVHgDTsKqlVSjE4HNvzvzqhufARGZgUyck6UOwG8VRNJM0/ BKIu/BweDMXX9p0NPB9vnw1v07TuuaDJAcxeK9tc8wncNhi4/WtW30FW6Y5r2+BB 85hfR7WonHJnUeGPPxUg6p2zi4uKrYCsgaQ3MSG3aB1KKtaBZJVuYf3l1ADeFyk4 k0VeiflwFBVzlGgJXjvBT6K1FwUaECzOUy/6bvbnQs4hgpJvaqx21ZtwoO8Q555c cgjpfLhTrLtJhKVotiNwr4R5aFQ8huAdfzXDdd1U8KNTJG1ecsA= -----END CERTIFICATE-----Generated at Thu Dec 18 21:48:07 2025 by rpki-client