This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft File: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft (raw, json) Hash identifier: ayN8F0WcazVYypQPuClut+U/EzFu6hu0n0Et2tPmb3Q= Subject key identifier: 98:28:91:DC:BD:FC:05:89:DB:08:BF:AB:04:F8:56:06:80:84:B2:30 Authority key identifier: 3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 Certificate issuer: /CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Certificate serial: 3C4F3C764C4DB6CEA059EAEDB8F1E07AEE592206 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft Manifest number: 01F6 Signing time: Sat 06 Dec 2025 13:41:50 +0000 Manifest this update: Sat 06 Dec 2025 13:36:50 +0000 Manifest next update: Tue 09 Dec 2025 14:33:50 +0000 Files and hashes: 1: 3130332e33302e3139322e302f32342d3234203d3e20313530323537.roa (hash: ZSgY5OMesKAVjFXk2K7xGan10euYjEFEbhi4eeTqUI4=) 2: 3130332e33302e3139322e302f32332d3233203d3e20313530323537.roa (hash: c6BbZqskhId1bW3l6aSuRQLjcbQNOmGBaOGbC28FTXg=) 3: 3130332e33302e3139332e302f32342d3234203d3e20313530323537.roa (hash: GQbGwj8/3pFXSYNr52t6SKb3/O8bij4qIjKoYgJR2e8=) 4: 3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl (hash: ApVYSGczGIakFCKfpUriHkvT16tfrYkZCtoR+SIG6zk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 14:33:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:4f:3c:76:4c:4d:b6:ce:a0:59:ea:ed:b8:f1:e0:7a:ee:59:22:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D20522B51AEAA41F59490E2D55C36DEB6C21C77 Validity Not Before: Dec 6 13:36:50 2025 GMT Not After : Dec 9 14:33:50 2025 GMT Subject: CN=982891DCBDFC0589DB08BFAB04F856068084B230 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:52:8a:79:18:42:f4:44:57:4b:de:4f:9e:b0: a2:bd:85:16:42:47:9e:8a:06:ad:37:62:a9:c6:87: a3:39:15:e9:88:2c:52:3e:02:3d:ab:74:db:7f:b8: fc:ba:8d:a9:61:db:1b:65:46:4d:8c:0c:cd:cc:c6: f0:31:d6:a0:63:6b:7e:e1:cb:d7:5f:1a:b7:a6:e0: d3:91:c6:41:80:fb:f0:4f:ad:5c:25:8a:2e:f8:d2: 45:77:40:ca:78:80:43:63:ea:df:62:2b:e0:0d:a1: 92:72:b5:44:e4:48:f1:98:d1:f3:85:18:9a:d3:1b: 5c:0a:34:86:eb:1c:4f:7e:6f:36:30:4e:f7:bc:7c: 54:96:d0:cf:51:40:a3:3b:4b:bc:ac:53:09:67:bf: 3d:28:59:19:9e:f1:b5:64:60:a8:80:a8:6a:31:0f: 61:2f:1e:2a:fb:ad:03:08:ae:06:70:4c:6e:01:4a: ba:f5:d5:79:9f:b9:cf:58:37:a6:f4:38:95:f2:3a: 51:b7:5c:5d:9f:95:9c:a8:d1:39:25:05:d6:32:91: a5:e1:2a:a0:99:8d:c4:22:15:3d:7b:74:7d:ba:7d: 3c:48:b9:ea:22:3a:2b:18:db:37:ea:6a:16:8a:1e: f9:1c:b3:38:e6:84:6e:aa:40:ce:07:26:9b:93:11: da:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:28:91:DC:BD:FC:05:89:DB:08:BF:AB:04:F8:56:06:80:84:B2:30 X509v3 Authority Key Identifier: keyid:3D:20:52:2B:51:AE:AA:41:F5:94:90:E2:D5:5C:36:DE:B6:C2:1C:77 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ee61e5ae-e45f-4ee3-8f6b-7cb59d61783b/0/3D20522B51AEAA41F59490E2D55C36DEB6C21C77.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 47:27:54:9b:73:cf:ae:62:4b:1c:7a:55:86:bd:7f:9b:c4:84: cc:f4:0b:5c:73:ee:27:cf:6b:b0:62:33:e3:2c:23:d8:40:7e: 3d:30:61:1c:d3:be:9c:56:2e:1a:34:af:ef:99:70:21:a4:a9: 82:6b:02:1e:c0:ab:c6:fc:29:4f:50:5e:47:41:3e:91:6f:17: e3:ec:d6:4c:98:8a:df:88:bd:29:e3:3d:f6:cf:fb:e2:1b:b4: b9:7c:8c:d3:4c:e0:79:e6:34:72:61:9b:9a:a9:08:10:83:1c: af:1b:8c:72:38:e5:ca:2d:3d:16:30:a7:d2:78:52:0c:8b:ab: 62:90:11:5d:99:da:db:15:a9:e0:81:b3:52:47:99:41:c0:42: 6d:9f:40:1a:d9:69:c8:cb:ad:9d:9b:01:78:b9:58:07:8b:bf: b7:55:4c:ab:dc:e4:78:43:43:41:c2:f7:03:df:e6:37:f8:6f: 59:52:24:2e:1c:48:03:17:a4:c0:80:df:40:57:15:04:52:cc: 0d:b8:44:a6:2a:27:0a:9a:d2:a9:ad:0f:82:d8:64:0f:a0:37: 66:63:59:30:81:1c:13:78:bc:8e:7e:5c:5c:e7:35:30:b5:92: 79:47:fe:86:4a:c1:3d:6b:fe:73:18:29:7a:7a:9a:c7:1e:e6: f1:dc:bc:17 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPE88dkxNts6gWertuPHgeu5ZIgYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVC NkMyMUM3NzAeFw0yNTEyMDYxMzM2NTBaFw0yNTEyMDkxNDMzNTBaMDMxMTAvBgNV BAMTKDk4Mjg5MURDQkRGQzA1ODlEQjA4QkZBQjA0Rjg1NjA2ODA4NEIyMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDnUop5GEL0RFdL3k+esKK9hRZC R56KBq03YqnGh6M5FemILFI+Aj2rdNt/uPy6jalh2xtlRk2MDM3MxvAx1qBja37h y9dfGrem4NORxkGA+/BPrVwlii740kV3QMp4gENj6t9iK+ANoZJytUTkSPGY0fOF GJrTG1wKNIbrHE9+bzYwTve8fFSW0M9RQKM7S7ysUwlnvz0oWRme8bVkYKiAqGox D2EvHir7rQMIrgZwTG4BSrr11Xmfuc9YN6b0OJXyOlG3XF2flZyo0TklBdYykaXh KqCZjcQiFT17dH26fTxIueoiOisY2zfqahaKHvkcszjmhG6qQM4HJpuTEdrXAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUmCiR3L38BYnbCL+rBPhWBoCEsjAwHwYDVR0j BBgwFoAUPSBSK1GuqkH1lJDi1Vw23rbCHHcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9l ZTYxZTVhZS1lNDVmLTRlZTMtOGY2Yi03Y2I1OWQ2MTc4M2IvMC8zRDIwNTIyQjUx QUVBQTQxRjU5NDkwRTJENTVDMzZERUI2QzIxQzc3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2REVCNkMy MUM3Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZWU2MWU1YWUtZTQ1Zi00ZWUzLThm NmItN2NiNTlkNjE3ODNiLzAvM0QyMDUyMkI1MUFFQUE0MUY1OTQ5MEUyRDU1QzM2 REVCNkMyMUM3Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEcnVJtzz65iSxx6VYa9f5vEhMz0C1xz7ifP a7BiM+MsI9hAfj0wYRzTvpxWLho0r++ZcCGkqYJrAh7Aq8b8KU9QXkdBPpFvF+Ps 1kyYit+IvSnjPfbP++IbtLl8jNNM4HnmNHJhm5qpCBCDHK8bjHI45cotPRYwp9J4 UgyLq2KQEV2Z2tsVqeCBs1JHmUHAQm2fQBrZacjLrZ2bAXi5WAeLv7dVTKvc5HhD Q0HC9wPf5jf4b1lSJC4cSAMXpMCA30BXFQRSzA24RKYqJwqa0qmtD4LYZA+gN2Zj WTCBHBN4vI5+XFznNTC1knlH/oZKwT1r/nMYKXp6msce5vHcvBc= -----END CERTIFICATE-----Generated at Sat Dec 6 22:57:13 2025 by rpki-client