This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft File: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft (raw, json) Hash identifier: rYKNJoCyxoEI8vVk6+6A5wPpiMvXSA+WvdwKFIS1W90= Subject key identifier: 4A:5F:E1:94:3D:C9:63:D1:53:30:59:5F:A6:4C:F1:4E:4A:23:07:75 Authority key identifier: 8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 Certificate issuer: /CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Certificate serial: 79C19361F038CCA881D0CB7E21A7EB8EAC80E026 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft Manifest number: 03AB Signing time: Fri 05 Dec 2025 21:30:43 +0000 Manifest this update: Fri 05 Dec 2025 21:25:43 +0000 Manifest next update: Tue 09 Dec 2025 08:25:43 +0000 Files and hashes: 1: 8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl (hash: Wui1ZafnnsSr/sx3VX1aD9a9yCWgMEaqoFiGcJmcf7I=) 2: 3130332e3136322e3134362e302f32332d3234203d3e203137393935.roa (hash: glmRxvHF4g4HTvz1muaudxYOmNWHdjodUPYRc5xhUvY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 08:25:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c1:93:61:f0:38:cc:a8:81:d0:cb:7e:21:a7:eb:8e:ac:80:e0:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0 Validity Not Before: Dec 5 21:25:43 2025 GMT Not After : Dec 9 08:25:43 2025 GMT Subject: CN=4A5FE1943DC963D15330595FA64CF14E4A230775 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a4:37:60:c4:5f:a8:ec:4c:ab:59:3e:24:0b: d3:31:48:2b:63:2b:50:c1:f4:b8:b9:2e:14:d5:d5: f6:b3:51:99:8b:3f:9d:8f:79:a6:3d:a2:a0:80:00: 12:0a:32:c9:4d:dc:6a:f9:f7:92:41:21:86:fb:57: c4:fe:27:48:b2:44:b8:fa:8d:eb:0b:cb:ac:e2:68: bf:21:89:83:21:6b:98:cb:25:3b:30:ee:21:fb:a3: 3c:3c:c4:aa:6b:e2:f3:b3:b9:17:6a:77:db:d1:38: 43:0d:24:73:ed:97:e2:1c:01:bd:61:9d:7a:2a:21: 3f:30:af:1e:d7:b6:81:2f:c1:2e:f4:a2:95:89:b5: 49:21:c1:71:f7:5a:0c:2f:90:78:95:d1:92:1e:c4: 97:5d:b6:29:97:ce:30:f0:c0:79:33:2f:14:fd:a8: 9e:3d:25:54:a9:cc:e6:4c:fc:b6:95:48:85:60:72: a0:17:14:b2:9e:ed:4b:9c:ea:c3:d4:57:b2:42:9c: 34:43:43:4e:40:2d:50:58:1a:e7:ec:d3:7b:82:59: 28:05:9b:47:a3:24:2b:af:17:44:ab:ed:ed:b6:40: 05:14:c0:7d:ef:71:b5:69:66:c9:c0:28:b0:6c:78: 3f:42:b0:99:2f:9d:2f:4f:5e:3e:cb:52:10:a9:68: 08:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:5F:E1:94:3D:C9:63:D1:53:30:59:5F:A6:4C:F1:4E:4A:23:07:75 X509v3 Authority Key Identifier: keyid:8C:DF:71:6F:25:D6:4D:EB:3E:10:36:E6:A3:6D:B7:24:CD:E1:E5:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f0520b54-3ba7-4631-af0b-55984b0ba7f2/0/8CDF716F25D64DEB3E1036E6A36DB724CDE1E5D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:d8:2a:ef:2f:56:fa:e5:0f:d2:9d:90:45:d4:4a:2e:4e:72: c6:5c:dc:cb:ae:16:6e:3c:79:29:e0:d9:3f:fe:e4:a3:68:e0: 77:fb:f0:a8:03:e2:32:ed:98:9f:41:0c:61:1c:80:6a:6d:1f: 1e:96:4b:d7:2d:32:69:0a:10:fa:ce:06:8c:06:9c:06:07:56: a7:21:be:5c:49:db:2e:48:a4:2c:3c:17:55:9e:e9:16:38:6d: d1:43:50:cf:22:ca:01:f3:63:c8:21:68:be:e4:28:17:80:69: e1:36:1a:3f:1e:6b:0b:75:7c:f5:13:a7:69:40:cc:b5:c6:d6: 9b:2b:0e:41:b0:33:36:c9:d6:e9:fd:c6:08:90:0b:04:1b:50: ad:bf:90:4a:84:a0:1e:e5:18:a3:13:ec:46:e5:e1:c8:68:f2: b5:95:98:70:a0:e0:69:00:98:d7:73:18:14:bc:88:9c:64:82: 0a:1e:85:66:fa:82:73:4c:1c:e1:79:9e:e1:2f:b2:01:9d:c6: 7f:c9:31:8b:80:5b:0a:be:1c:76:f7:8d:0e:88:d3:2c:9f:0e: b0:87:11:64:29:5e:94:aa:d0:bd:45:fb:75:2c:06:be:cb:d5: 87:2d:ef:49:f1:32:c4:93:72:4b:56:76:0d:cd:78:86:08:e0: 08:04:4e:37 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUecGTYfA4zKiB0Mt+IafrjqyA4CYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRD REUxRTVEMDAeFw0yNTEyMDUyMTI1NDNaFw0yNTEyMDkwODI1NDNaMDMxMTAvBgNV BAMTKDRBNUZFMTk0M0RDOTYzRDE1MzMwNTk1RkE2NENGMTRFNEEyMzA3NzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTpDdgxF+o7EyrWT4kC9MxSCtj K1DB9Li5LhTV1fazUZmLP52PeaY9oqCAABIKMslN3Gr595JBIYb7V8T+J0iyRLj6 jesLy6ziaL8hiYMha5jLJTsw7iH7ozw8xKpr4vOzuRdqd9vROEMNJHPtl+IcAb1h nXoqIT8wrx7XtoEvwS70opWJtUkhwXH3WgwvkHiV0ZIexJddtimXzjDwwHkzLxT9 qJ49JVSpzOZM/LaVSIVgcqAXFLKe7Uuc6sPUV7JCnDRDQ05ALVBYGufs03uCWSgF m0ejJCuvF0Sr7e22QAUUwH3vcbVpZsnAKLBseD9CsJkvnS9PXj7LUhCpaAhTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSl/hlD3JY9FTMFlfpkzxTkojB3UwHwYDVR0j BBgwFoAUjN9xbyXWTes+EDbmo223JM3h5dAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m MDUyMGI1NC0zYmE3LTQ2MzEtYWYwYi01NTk4NGIwYmE3ZjIvMC84Q0RGNzE2RjI1 RDY0REVCM0UxMDM2RTZBMzZEQjcyNENERTFFNUQwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3MjRDREUx RTVEMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjA1MjBiNTQtM2JhNy00NjMxLWFm MGItNTU5ODRiMGJhN2YyLzAvOENERjcxNkYyNUQ2NERFQjNFMTAzNkU2QTM2REI3 MjRDREUxRTVEMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBACXYKu8vVvrlD9KdkEXUSi5OcsZc3MuuFm48 eSng2T/+5KNo4Hf78KgD4jLtmJ9BDGEcgGptHx6WS9ctMmkKEPrOBowGnAYHVqch vlxJ2y5IpCw8F1We6RY4bdFDUM8iygHzY8ghaL7kKBeAaeE2Gj8eawt1fPUTp2lA zLXG1psrDkGwMzbJ1un9xgiQCwQbUK2/kEqEoB7lGKMT7Ebl4cho8rWVmHCg4GkA mNdzGBS8iJxkggoehWb6gnNMHOF5nuEvsgGdxn/JMYuAWwq+HHb3jQ6I0yyfDrCH EWQpXpSq0L1F+3UsBr7L1Yct70nxMsSTcktWdg3NeIYI4AgETjc= -----END CERTIFICATE-----Generated at Sun Dec 7 07:21:48 2025 by rpki-client