This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft File: AA97B959271291FBE142491B81063AD5B04487FA.mft (raw, json) Hash identifier: Hw2lVF2yfuQQTcQM9VkLR8vVN/2W57C0rNEqK9MkYmY= Subject key identifier: 46:82:1B:97:C6:4B:1D:13:5C:06:FD:D5:6C:C2:95:53:04:83:C9:A5 Authority key identifier: AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA Certificate issuer: /CN=AA97B959271291FBE142491B81063AD5B04487FA Certificate serial: 0E9E69F51E972753DBBFC5DDE8819BFC917D602C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft Manifest number: 0114 Signing time: Mon 15 Dec 2025 21:00:41 +0000 Manifest this update: Mon 15 Dec 2025 20:55:41 +0000 Manifest next update: Fri 19 Dec 2025 08:13:41 +0000 Files and hashes: 1: AA97B959271291FBE142491B81063AD5B04487FA.crl (hash: wjbUn93gzJytHRTQSZq5sjKy8ohQHmqtiRiIT1e71ws=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 08:13:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:9e:69:f5:1e:97:27:53:db:bf:c5:dd:e8:81:9b:fc:91:7d:60:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AA97B959271291FBE142491B81063AD5B04487FA Validity Not Before: Dec 15 20:55:41 2025 GMT Not After : Dec 19 08:13:41 2025 GMT Subject: CN=46821B97C64B1D135C06FDD56CC295530483C9A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:52:fa:5f:36:78:2b:e4:33:29:44:f8:31:25: 83:56:3f:cb:05:05:d9:c5:5f:5f:a6:f7:36:ba:9e: 33:2e:73:36:66:65:44:9c:5d:6b:e1:a6:85:cf:15: 77:d8:26:4a:6d:06:c9:bb:a7:c1:5b:ea:a5:74:e9: 5f:16:e9:b7:54:96:cf:1a:2c:64:33:b0:69:e9:c9: 26:d8:a9:0f:26:14:be:75:9e:2e:0f:7f:e3:f4:38: 52:b5:0b:64:48:2a:0b:14:22:d0:c4:28:24:aa:73: 65:50:06:20:b3:18:01:84:15:2f:d8:c3:4d:09:2f: b2:01:35:d7:e4:ff:21:06:a1:d6:04:61:a8:f1:4a: 6e:51:3d:52:87:e3:a2:53:8a:59:3e:46:35:99:f5: 25:e4:2e:76:4c:1e:7a:30:ae:62:53:e1:69:c1:ff: 34:66:a4:1e:2b:c4:17:57:1e:1b:c6:df:51:52:f8: f0:29:a8:5e:07:b3:ac:41:4d:4c:8c:66:2f:a2:dc: b1:52:c0:e6:86:19:85:3b:fb:40:10:d7:53:0c:3a: b2:67:ac:8d:24:4a:39:d4:30:0c:7d:fb:8c:66:59: 20:9f:6d:6f:6d:de:8e:99:b4:e0:75:ad:84:cb:a9: 7f:2a:ed:ee:e6:80:14:37:39:94:75:f1:80:d6:59: eb:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:82:1B:97:C6:4B:1D:13:5C:06:FD:D5:6C:C2:95:53:04:83:C9:A5 X509v3 Authority Key Identifier: keyid:AA:97:B9:59:27:12:91:FB:E1:42:49:1B:81:06:3A:D5:B0:44:87:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AA97B959271291FBE142491B81063AD5B04487FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ede8ccb9-0a63-49a9-aa8a-ed016ee351f0/0/AA97B959271291FBE142491B81063AD5B04487FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:fd:5c:33:14:08:45:2e:67:26:9a:ab:28:36:3b:b1:c7:87: 84:73:04:c9:9d:5d:6c:03:2a:63:51:c0:f1:a6:99:4b:53:a5: ab:60:60:9d:c1:b7:ca:38:70:96:f2:52:78:57:69:e9:ae:69: c1:8d:ab:3e:87:4a:dc:1c:b4:d4:67:2e:23:78:46:f0:b2:d5: ff:78:18:10:fa:a4:d9:82:5a:ad:87:d6:8c:2c:20:09:13:7d: 3b:c5:05:b4:9a:04:23:71:90:a3:10:f1:ec:a5:fa:a6:fb:82: 84:4e:a6:de:2a:00:20:3c:13:0a:e4:a4:42:48:5b:74:46:4a: 01:47:c9:ec:95:86:e9:e4:db:4d:d5:44:fe:6c:84:d4:dc:be: 7d:36:41:47:1f:b7:ac:4a:fa:bb:53:33:fe:fd:78:db:42:3e: 01:cd:75:73:00:15:b6:88:c3:55:37:94:0f:ff:12:f7:66:aa: 62:6f:69:d9:53:dc:79:b0:3c:45:1f:64:fb:cd:ac:61:74:fe: ff:90:8e:53:e4:ce:a0:ce:08:42:e0:21:e3:5e:ad:d8:6a:99: f6:ff:31:e6:01:29:ec:b2:51:d2:92:60:24:5b:1e:03:c4:7d: 93:02:15:d6:83:71:43:ec:2b:14:9a:ca:26:51:09:d7:5e:9b: 90:14:1e:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUDp5p9R6XJ1Pbv8Xd6IGb/JF9YCwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVC MDQ0ODdGQTAeFw0yNTEyMTUyMDU1NDFaFw0yNTEyMTkwODEzNDFaMDMxMTAvBgNV BAMTKDQ2ODIxQjk3QzY0QjFEMTM1QzA2RkRENTZDQzI5NTUzMDQ4M0M5QTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcUvpfNngr5DMpRPgxJYNWP8sF BdnFX1+m9za6njMuczZmZUScXWvhpoXPFXfYJkptBsm7p8Fb6qV06V8W6bdUls8a LGQzsGnpySbYqQ8mFL51ni4Pf+P0OFK1C2RIKgsUItDEKCSqc2VQBiCzGAGEFS/Y w00JL7IBNdfk/yEGodYEYajxSm5RPVKH46JTilk+RjWZ9SXkLnZMHnowrmJT4WnB /zRmpB4rxBdXHhvG31FS+PApqF4Hs6xBTUyMZi+i3LFSwOaGGYU7+0AQ11MMOrJn rI0kSjnUMAx9+4xmWSCfbW9t3o6ZtOB1rYTLqX8q7e7mgBQ3OZR18YDWWeuVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQURoIbl8ZLHRNcBv3VbMKVUwSDyaUwHwYDVR0j BBgwFoAUqpe5WScSkfvhQkkbgQY61bBEh/owDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZGU4Y2NiOS0wYTYzLTQ5YTktYWE4YS1lZDAxNmVlMzUxZjAvMC9BQTk3Qjk1OTI3 MTI5MUZCRTE0MjQ5MUI4MTA2M0FENUIwNDQ4N0ZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNBRDVCMDQ0 ODdGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWRlOGNjYjktMGE2My00OWE5LWFh OGEtZWQwMTZlZTM1MWYwLzAvQUE5N0I5NTkyNzEyOTFGQkUxNDI0OTFCODEwNjNB RDVCMDQ0ODdGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBADD9XDMUCEUuZyaaqyg2O7HHh4RzBMmdXWwD KmNRwPGmmUtTpatgYJ3Bt8o4cJbyUnhXaemuacGNqz6HStwctNRnLiN4RvCy1f94 GBD6pNmCWq2H1owsIAkTfTvFBbSaBCNxkKMQ8eyl+qb7goROpt4qACA8EwrkpEJI W3RGSgFHyeyVhunk203VRP5shNTcvn02QUcft6xK+rtTM/79eNtCPgHNdXMAFbaI w1U3lA//EvdmqmJvadlT3HmwPEUfZPvNrGF0/v+QjlPkzqDOCELgIeNerdhqmfb/ MeYBKeyyUdKSYCRbHgPEfZMCFdaDcUPsKxSayiZRCddem5AUHkk= -----END CERTIFICATE-----Generated at Wed Dec 17 21:55:40 2025 by rpki-client