This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft File: FA86E23853549D2EF1D9F9C9222147A550E36A38.mft (raw, json) Hash identifier: sD47Oklcbi/XiA4jNWUhKcYSF3cjkrTrcdDtDG134Vo= Subject key identifier: B3:82:8C:7F:A0:0A:E7:C9:05:5A:15:5C:58:0A:33:DC:51:E4:D1:59 Authority key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Certificate issuer: /CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Certificate serial: 787D851862DF78E408F2F4647419EB6754F6FD84 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject info access: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft Manifest number: 01F5 Signing time: Fri 05 Dec 2025 02:20:46 +0000 Manifest this update: Fri 05 Dec 2025 02:15:46 +0000 Manifest next update: Mon 08 Dec 2025 12:43:46 +0000 Files and hashes: 1: 3130332e35352e32382e302f32342d3234203d3e20313530343837.roa (hash: s4D3k54ePgFL3DJuO1+sPM7ighm+hIZ0dRBFdpACJIQ=) 2: 3130332e35352e32382e302f32332d3234203d3e20313530343837.roa (hash: 8iSBjCuogDhcUBYZIPXuvYllDkYyp+uiEvzE8S7/ER4=) 3: 3130332e35352e32392e302f32342d3234203d3e20313530343837.roa (hash: Zcui17ZIB7y9MI9lypagYjRYe4mnYqSwkXUNcZtsFwo=) 4: FA86E23853549D2EF1D9F9C9222147A550E36A38.crl (hash: unWD0TXXmlShNUP4QYEf7YqleaVlkx+1hr9ahdyCFn0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 12:43:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:7d:85:18:62:df:78:e4:08:f2:f4:64:74:19:eb:67:54:f6:fd:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Validity Not Before: Dec 5 02:15:46 2025 GMT Not After : Dec 8 12:43:46 2025 GMT Subject: CN=B3828C7FA00AE7C9055A155C580A33DC51E4D159 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:41:71:b4:c2:9b:ee:1b:52:06:ae:5e:f5:da: bc:af:93:7f:89:1c:a4:80:ed:3f:f0:16:f7:5f:d6: bf:47:86:7d:41:d4:2e:82:08:a4:6d:31:02:6b:c4: 69:d7:86:b7:d1:22:78:2e:c2:01:2d:fa:10:ef:99: 02:1c:f3:75:7b:75:ed:52:30:d9:44:e7:3a:aa:7b: 90:8d:cf:67:62:1e:e1:b9:a6:0d:6c:c3:8b:57:e1: 31:fc:8f:cd:35:8d:c8:3b:c3:ed:d7:a2:b9:b8:37: 93:bd:d2:d4:a5:b5:ad:25:0f:ad:a0:f6:ff:96:15: 26:77:6a:5e:7c:b5:2c:8a:38:56:d8:c4:bc:e1:59: 00:6c:8a:8e:39:31:13:e1:0c:f9:47:b1:08:ce:0b: 03:36:d6:5d:4c:3c:bd:ad:25:52:27:2e:d0:37:f0: ad:16:33:74:3c:ec:25:8f:bc:cc:10:2e:d2:8e:c8: b6:1d:fa:5f:d7:4d:9a:4c:0a:da:52:2b:59:a5:d3: 73:bd:df:34:ee:8a:99:09:f1:c1:7c:cb:63:26:7c: e6:d3:84:f3:3c:36:14:cf:c0:76:bf:c6:fa:56:4d: 02:a6:41:34:f7:9f:78:cf:15:ad:d4:a4:d4:28:8b: 9f:9f:11:78:ea:d0:22:10:58:c6:28:c2:e7:48:19: bd:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:82:8C:7F:A0:0A:E7:C9:05:5A:15:5C:58:0A:33:DC:51:E4:D1:59 X509v3 Authority Key Identifier: keyid:FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 60:6b:b3:11:3c:17:e7:05:d5:7d:04:f1:f3:62:1a:b5:dc:d0: 78:1b:77:28:04:78:63:ce:56:d2:29:64:de:e7:aa:54:e5:6f: 80:d3:9e:0a:5f:56:c7:1d:37:90:2b:4f:6f:60:39:cc:46:b3: a5:e1:b0:60:8d:47:e9:b2:4c:93:ac:2e:91:8b:14:5c:6a:4f: e1:7d:e5:05:23:1f:41:23:70:49:8f:d1:e8:17:52:43:f3:6c: 51:80:ee:f1:84:08:0e:9d:4a:bf:a8:82:9d:3f:e9:c3:8e:15: 2f:d1:99:e1:2b:73:33:16:c8:b5:76:a6:ea:25:12:11:cc:84: ef:11:d8:1e:48:39:10:33:b4:99:ac:a7:fc:50:29:10:d2:49: 37:0d:c1:cf:d6:d8:ca:e3:f4:f0:42:52:90:ef:e3:6b:a7:e1: 4f:b8:bb:53:36:09:73:0b:25:07:b9:33:88:cb:e6:c8:96:66: 73:86:b4:aa:ff:ef:13:c9:53:1f:71:0c:89:60:99:6c:14:c0: ef:a2:a0:03:0e:0d:f2:bf:6a:a8:85:a8:d1:b0:e4:17:d3:ce: b1:7c:26:28:ee:0c:85:90:3b:c9:a1:f8:33:14:17:a4:e8:b8: 0c:d7:e9:28:81:09:70:9c:06:76:fb:d4:e3:a3:fa:4b:64:02: d9:25:a7:c8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUeH2FGGLfeOQI8vRkdBnrZ1T2/YQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1 MEUzNkEzODAeFw0yNTEyMDUwMjE1NDZaFw0yNTEyMDgxMjQzNDZaMDMxMTAvBgNV BAMTKEIzODI4QzdGQTAwQUU3QzkwNTVBMTU1QzU4MEEzM0RDNTFFNEQxNTkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4QXG0wpvuG1IGrl712ryvk3+J HKSA7T/wFvdf1r9Hhn1B1C6CCKRtMQJrxGnXhrfRInguwgEt+hDvmQIc83V7de1S MNlE5zqqe5CNz2diHuG5pg1sw4tX4TH8j801jcg7w+3Xorm4N5O90tSlta0lD62g 9v+WFSZ3al58tSyKOFbYxLzhWQBsio45MRPhDPlHsQjOCwM21l1MPL2tJVInLtA3 8K0WM3Q87CWPvMwQLtKOyLYd+l/XTZpMCtpSK1ml03O93zTuipkJ8cF8y2MmfObT hPM8NhTPwHa/xvpWTQKmQTT3n3jPFa3UpNQoi5+fEXjq0CIQWMYowudIGb3VAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUs4KMf6AK58kFWhVcWAoz3FHk0VkwHwYDVR0j BBgwFoAU+obiOFNUnS7x2fnJIiFHpVDjajgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l NTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMC9GQTg2RTIzODUz NTQ5RDJFRjFEOUY5QzkyMjIxNDdBNTUwRTM2QTM4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3QTU1MEUz NkEzOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZTUwNDc5M2MtYzIwOS00NjlhLThl M2MtZWIzZjVhODM4NjNmLzAvRkE4NkUyMzg1MzU0OUQyRUYxRDlGOUM5MjIyMTQ3 QTU1MEUzNkEzOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGBrsxE8F+cF1X0E8fNiGrXc0HgbdygEeGPO VtIpZN7nqlTlb4DTngpfVscdN5ArT29gOcxGs6XhsGCNR+myTJOsLpGLFFxqT+F9 5QUjH0EjcEmP0egXUkPzbFGA7vGECA6dSr+ogp0/6cOOFS/RmeErczMWyLV2puol EhHMhO8R2B5IORAztJmsp/xQKRDSSTcNwc/W2Mrj9PBCUpDv42un4U+4u1M2CXML JQe5M4jL5siWZnOGtKr/7xPJUx9xDIlgmWwUwO+ioAMODfK/aqiFqNGw5BfTzrF8 JijuDIWQO8mh+DMUF6TouAzX6SiBCXCcBnb71OOj+ktkAtklp8g= -----END CERTIFICATE-----Generated at Sun Dec 7 02:07:55 2025 by rpki-client