This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft File: CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft (raw, json) Hash identifier: q/3hGjDcD2HFLa8/mC0yDuLuCC31yXM1rU6/xCzfD8A= Subject key identifier: E6:A5:A1:8B:7F:80:7B:8A:AB:4E:E2:32:52:B9:D8:5A:B3:7B:C4:18 Authority key identifier: CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 Certificate issuer: /CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Certificate serial: 702719C41134E47B2823F930933D8468D2D2ADDE Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft Manifest number: 01B0 Signing time: Sat 06 Dec 2025 10:31:10 +0000 Manifest this update: Sat 06 Dec 2025 10:26:10 +0000 Manifest next update: Tue 09 Dec 2025 20:20:10 +0000 Files and hashes: 1: 3130332e3133322e34302e302f32342d3234203d3e20313432333836.roa (hash: 7CbGL2bVFpRfzWEmJ1nxU8TaU3ck1Im05psWj/JHkPU=) 2: CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl (hash: WrAZ+HbztVIAw4L2GyiGVYg4RvlZHB4RfEzs+EXr6JM=) 3: 3130332e3133322e34312e302f32342d3234203d3e20313530393730.roa (hash: tzY1XNU5cVp0pp1q9NAQ2OMSeEZ2zfRfv6jNIeP9/Ac=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:27:19:c4:11:34:e4:7b:28:23:f9:30:93:3d:84:68:d2:d2:ad:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CB9662733153C02E4C411B7D2F2B9E22D2F0EB85 Validity Not Before: Dec 6 10:26:10 2025 GMT Not After : Dec 9 20:20:10 2025 GMT Subject: CN=E6A5A18B7F807B8AAB4EE23252B9D85AB37BC418 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f2:54:40:40:e8:b0:61:f3:fe:ba:15:75:05: fb:42:1b:f1:d9:e4:e3:9a:24:c6:83:16:c8:aa:27: ae:47:a5:0c:22:fb:5c:09:eb:87:9e:23:fd:a1:9a: eb:c5:70:eb:a8:0c:15:1a:67:cb:9c:e5:7f:c3:6f: 3c:7d:a5:a3:94:28:62:2e:f7:08:59:db:d7:9f:a5: 79:78:5f:9b:db:98:e8:ab:16:5a:67:81:fd:6f:1a: 5c:64:47:af:14:c5:08:ec:d5:46:6c:38:5c:31:c6: a1:73:7b:f3:1b:ef:f4:9d:59:4b:29:c8:a6:68:0e: 3b:72:55:4d:81:be:23:9e:4d:4f:58:f5:30:73:50: fe:d9:12:d5:97:11:38:ba:d3:a4:de:c5:02:7e:10: b6:92:4e:88:32:0d:e0:d9:a2:5f:1a:44:f6:ff:e2: b8:91:5a:cf:96:60:d1:e7:c6:34:ce:f7:c6:5a:c2: c2:b7:c8:8c:66:79:cd:82:4c:15:ce:b8:59:29:0d: 4f:4d:98:18:2c:a9:49:a2:63:35:8d:d7:8e:73:2d: 96:b8:a2:bb:f4:3f:2e:13:c5:45:27:3f:0e:b1:69: 9f:7c:ab:20:a0:2b:35:83:35:fe:3b:74:bb:18:86: f7:03:6b:ce:14:f4:68:43:e9:2b:d5:a8:57:b1:f4: 1c:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A5:A1:8B:7F:80:7B:8A:AB:4E:E2:32:52:B9:D8:5A:B3:7B:C4:18 X509v3 Authority Key Identifier: keyid:CB:96:62:73:31:53:C0:2E:4C:41:1B:7D:2F:2B:9E:22:D2:F0:EB:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ddf2ffda-05d1-4085-a135-03987a07f39e/0/CB9662733153C02E4C411B7D2F2B9E22D2F0EB85.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2b:60:de:ba:40:48:a9:dc:a0:3b:35:33:de:da:8d:5a:8b:fc: fa:8f:0a:d1:a9:4d:3d:8c:fa:6d:77:06:a1:87:fa:88:fe:b0: 2c:9f:bc:1f:26:fa:2c:28:f8:53:81:ee:85:39:59:04:8f:a3: 14:9c:bb:14:96:67:42:a2:73:a0:11:46:74:57:f7:12:24:7b: 95:e7:9c:3a:7c:e4:8f:8c:87:db:bc:35:be:28:75:2c:ac:99: 33:e6:8f:68:71:46:b4:ee:6b:70:65:fe:e9:23:a2:90:e7:e8: dd:ee:19:d1:6c:84:4e:2d:10:fb:a4:d2:47:5b:44:fb:40:3a: 9a:1c:66:69:cd:e4:0a:e3:71:c2:dd:34:05:2a:b3:16:72:43: 3c:29:5f:35:ea:57:39:ca:8f:9b:b2:af:33:d0:bc:fc:6f:b6: 1f:ba:f9:c4:7f:e8:44:92:ac:7d:39:0a:87:7d:9e:ce:08:e0: a8:2f:b5:ec:48:6a:9e:67:0d:ed:7b:6c:ca:48:8a:68:03:91: 15:a2:35:71:0c:9c:d9:54:c4:0f:6d:31:06:9a:38:6b:1a:e3: c6:81:16:4d:29:31:7e:d0:48:3b:79:cc:98:ab:5e:80:14:17: 04:d7:d6:d6:57:ff:75:eb:3d:29:f6:df:5d:b8:88:df:9f:0d: 34:c2:6f:1f -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUcCcZxBE05HsoI/kwkz2EaNLSrd4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJE MkYwRUI4NTAeFw0yNTEyMDYxMDI2MTBaFw0yNTEyMDkyMDIwMTBaMDMxMTAvBgNV BAMTKEU2QTVBMThCN0Y4MDdCOEFBQjRFRTIzMjUyQjlEODVBQjM3QkM0MTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDB8lRAQOiwYfP+uhV1BftCG/HZ 5OOaJMaDFsiqJ65HpQwi+1wJ64eeI/2hmuvFcOuoDBUaZ8uc5X/Dbzx9paOUKGIu 9whZ29efpXl4X5vbmOirFlpngf1vGlxkR68UxQjs1UZsOFwxxqFze/Mb7/SdWUsp yKZoDjtyVU2BviOeTU9Y9TBzUP7ZEtWXETi606TexQJ+ELaSTogyDeDZol8aRPb/ 4riRWs+WYNHnxjTO98ZawsK3yIxmec2CTBXOuFkpDU9NmBgsqUmiYzWN145zLZa4 orv0Py4TxUUnPw6xaZ98qyCgKzWDNf47dLsYhvcDa84U9GhD6SvVqFex9ByNAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5qWhi3+Ae4qrTuIyUrnYWrN7xBgwHwYDVR0j BBgwFoAUy5ZiczFTwC5MQRt9LyueItLw64UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9k ZGYyZmZkYS0wNWQxLTQwODUtYTEzNS0wMzk4N2EwN2YzOWUvMC9DQjk2NjI3MzMx NTNDMDJFNEM0MTFCN0QyRjJCOUUyMkQyRjBFQjg1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlFMjJEMkYw RUI4NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGRmMmZmZGEtMDVkMS00MDg1LWEx MzUtMDM5ODdhMDdmMzllLzAvQ0I5NjYyNzMzMTUzQzAyRTRDNDExQjdEMkYyQjlF MjJEMkYwRUI4NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACtg3rpASKncoDs1M97ajVqL/PqPCtGpTT2M +m13BqGH+oj+sCyfvB8m+iwo+FOB7oU5WQSPoxScuxSWZ0Kic6ARRnRX9xIke5Xn nDp85I+Mh9u8Nb4odSysmTPmj2hxRrTua3Bl/ukjopDn6N3uGdFshE4tEPuk0kdb RPtAOpocZmnN5ArjccLdNAUqsxZyQzwpXzXqVznKj5uyrzPQvPxvth+6+cR/6ESS rH05Cod9ns4I4KgvtexIap5nDe17bMpIimgDkRWiNXEMnNlUxA9tMQaaOGsa48aB Fk0pMX7QSDt5zJirXoAUFwTX1tZX/3XrPSn23124iN+fDTTCbx8= -----END CERTIFICATE-----Generated at Sun Dec 7 04:12:35 2025 by rpki-client