This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft File: D4DD8244BC2EB2B187B4181226714505DF8F4452.mft (raw, json) Hash identifier: dBPMeV2udxLJudkceLqtbtrvqdz93r3/vYPYgjkjMss= Subject key identifier: D0:14:B7:C3:7F:66:D5:1F:BC:E7:DF:A7:EB:90:21:5F:BF:62:46:3D Authority key identifier: D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 Certificate issuer: /CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Certificate serial: 133E8D7DA40EA306DA90C897EFEE1611CCBF660E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject info access: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft Manifest number: 0221 Signing time: Fri 05 Dec 2025 22:51:14 +0000 Manifest this update: Fri 05 Dec 2025 22:46:14 +0000 Manifest next update: Tue 09 Dec 2025 07:16:14 +0000 Files and hashes: 1: 3130332e3137302e3138362e302f32342d3234203d3e20313432333635.roa (hash: OXRZ526Vg7TmkLT93n/Qe4MisAG7vaUJuVBZqKmzdzU=) 2: D4DD8244BC2EB2B187B4181226714505DF8F4452.crl (hash: 8furHpvYih6AzPT5wDyIWPGeH5klaGUrW3DPM7cLASs=) 3: 3130332e3137302e3138372e302f32342d3234203d3e20313432333635.roa (hash: WbsQ68Cu40oqUa2yh2wFEKvkhfxO2KVKndxoFM4DO5k=) 4: 3130332e3137302e3138362e302f32332d3234203d3e20313432333635.roa (hash: H+FNrGTWOm2rEbzW4c22NCPKDmaY/bFliACB6RDfaOU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 07:16:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:3e:8d:7d:a4:0e:a3:06:da:90:c8:97:ef:ee:16:11:cc:bf:66:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4DD8244BC2EB2B187B4181226714505DF8F4452 Validity Not Before: Dec 5 22:46:14 2025 GMT Not After : Dec 9 07:16:14 2025 GMT Subject: CN=D014B7C37F66D51FBCE7DFA7EB90215FBF62463D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:54:9e:4e:7a:d5:b0:f4:8a:c9:94:de:b5:ca: 8f:bb:9d:32:84:e8:2b:7e:a8:55:3b:69:70:35:0e: 0c:c8:a0:7d:1a:d7:b7:37:b3:d8:75:61:20:96:8e: 2d:91:39:af:2c:e1:8f:5c:71:c1:2f:ca:66:7f:57: d2:53:d8:ba:39:ef:53:82:64:a7:d1:e5:85:68:6b: a5:c8:09:8a:35:ac:f2:57:0b:c4:71:1b:1b:ab:7b: 90:09:8b:a1:1f:ad:b0:6e:41:80:60:5c:54:dd:45: 2a:50:91:87:cb:f6:7a:31:c4:f4:1a:e4:f0:88:8e: 01:ee:e7:c7:b8:d8:cb:9d:fa:6f:19:46:20:40:07: 63:c6:f1:2b:d2:a0:d7:71:5a:33:b1:30:25:72:62: 16:17:a6:60:28:18:13:d3:ed:7a:60:9f:18:6c:44: 40:18:8b:ec:fb:8c:c6:2c:e0:a6:d7:cb:32:e9:7e: f5:e8:03:3e:fd:1f:d0:a8:e0:11:37:82:d2:ee:75: 35:e0:96:7e:b3:a9:ed:f7:ba:a7:b6:f1:33:de:47: 58:01:83:74:28:b7:39:3f:d9:f5:e1:63:a5:4f:68: 70:8c:fe:03:3a:c0:39:e2:f8:4d:8a:f0:cc:1f:de: 4a:d9:6f:1a:b5:47:5f:94:02:ec:17:cd:5a:5b:51: eb:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:14:B7:C3:7F:66:D5:1F:BC:E7:DF:A7:EB:90:21:5F:BF:62:46:3D X509v3 Authority Key Identifier: keyid:D4:DD:82:44:BC:2E:B2:B1:87:B4:18:12:26:71:45:05:DF:8F:44:52 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4DD8244BC2EB2B187B4181226714505DF8F4452.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/eaf0f423-3bed-4938-9f89-15e6269bddca/0/D4DD8244BC2EB2B187B4181226714505DF8F4452.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c9:18:e8:a5:ff:44:86:97:84:ef:25:8d:d6:d6:ca:ce:89:56: 01:42:4c:41:41:5e:c3:56:b9:cb:d0:55:36:cb:98:56:45:68: 28:ac:b1:00:7b:e7:d4:b9:0b:8d:80:64:c7:f6:55:a9:25:0c: 35:dc:6f:a6:b9:45:d8:88:b5:5e:e5:4a:5e:58:01:e1:41:fb: 9e:fa:c5:36:6a:e7:fa:6c:ba:ff:a9:a1:3b:73:70:81:0e:5f: 81:f3:2c:85:3b:61:1b:ee:7d:0e:26:ee:58:7a:4d:d7:b8:ff: 13:49:4a:b8:fb:b3:99:af:f7:70:92:dc:ff:d5:0f:ba:23:50: 8e:e6:14:78:ad:0f:21:5c:c0:08:fe:42:63:60:2a:0f:ca:8a: fb:1e:1f:48:e5:0d:53:fc:26:88:dd:df:d7:9b:6f:78:37:8a: 32:4f:24:8b:5f:63:c4:6d:a0:29:e9:5b:3a:b2:0a:28:cb:5f: 21:6a:77:d0:d2:cf:26:7c:68:4b:77:35:0a:24:4a:8f:43:ab: dd:a7:d0:9a:f0:d6:3f:3d:bd:a6:6d:fc:01:4d:ed:b5:7c:41: 01:5e:d3:6c:d7:fe:7b:c2:78:6b:7a:25:c4:c5:a4:69:a1:3c: a1:e1:89:07:c2:92:ac:fc:3f:71:8f:4f:58:14:9f:b1:dc:6c: 5b:f4:90:2e -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEz6NfaQOowbakMiX7+4WEcy/Zg4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVE RjhGNDQ1MjAeFw0yNTEyMDUyMjQ2MTRaFw0yNTEyMDkwNzE2MTRaMDMxMTAvBgNV BAMTKEQwMTRCN0MzN0Y2NkQ1MUZCQ0U3REZBN0VCOTAyMTVGQkY2MjQ2M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDtVJ5OetWw9IrJlN61yo+7nTKE 6Ct+qFU7aXA1DgzIoH0a17c3s9h1YSCWji2ROa8s4Y9cccEvymZ/V9JT2Lo571OC ZKfR5YVoa6XICYo1rPJXC8RxGxure5AJi6EfrbBuQYBgXFTdRSpQkYfL9noxxPQa 5PCIjgHu58e42Mud+m8ZRiBAB2PG8SvSoNdxWjOxMCVyYhYXpmAoGBPT7Xpgnxhs REAYi+z7jMYs4KbXyzLpfvXoAz79H9Co4BE3gtLudTXgln6zqe33uqe28TPeR1gB g3Qotzk/2fXhY6VPaHCM/gM6wDni+E2K8Mwf3krZbxq1R1+UAuwXzVpbUeuxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU0BS3w39m1R+859+n65AhX79iRj0wHwYDVR0j BBgwFoAU1N2CRLwusrGHtBgSJnFFBd+PRFIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l YWYwZjQyMy0zYmVkLTQ5MzgtOWY4OS0xNWU2MjY5YmRkY2EvMC9ENEREODI0NEJD MkVCMkIxODdCNDE4MTIyNjcxNDUwNURGOEY0NDUyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1MDVERjhG NDQ1Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWFmMGY0MjMtM2JlZC00OTM4LTlm ODktMTVlNjI2OWJkZGNhLzAvRDRERDgyNDRCQzJFQjJCMTg3QjQxODEyMjY3MTQ1 MDVERjhGNDQ1Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMkY6KX/RIaXhO8ljdbWys6JVgFCTEFBXsNW ucvQVTbLmFZFaCissQB759S5C42AZMf2VaklDDXcb6a5RdiItV7lSl5YAeFB+576 xTZq5/psuv+poTtzcIEOX4HzLIU7YRvufQ4m7lh6Tde4/xNJSrj7s5mv93CS3P/V D7ojUI7mFHitDyFcwAj+QmNgKg/KivseH0jlDVP8Jojd39ebb3g3ijJPJItfY8Rt oCnpWzqyCijLXyFqd9DSzyZ8aEt3NQokSo9Dq92n0Jrw1j89vaZt/AFN7bV8QQFe 02zX/nvCeGt6JcTFpGmhPKHhiQfCkqz8P3GPT1gUn7HcbFv0kC4= -----END CERTIFICATE-----Generated at Sun Dec 7 01:09:51 2025 by rpki-client