This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft File: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft (raw, json) Hash identifier: JtzEkKfHgOS5nE6Bdd5QwvMx5dajsmrMYDY1EGEBmpM= Subject key identifier: AF:F6:B6:E4:FD:D9:7C:AB:D8:2E:B1:C3:85:5E:21:82:6C:B5:90:1D Authority key identifier: 66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 Certificate issuer: /CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Certificate serial: 273C516312E372679BED45B32ABFEE86B9CB68BB Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft Manifest number: 04C0 Signing time: Fri 05 Dec 2025 15:11:20 +0000 Manifest this update: Fri 05 Dec 2025 15:06:20 +0000 Manifest next update: Tue 09 Dec 2025 00:01:20 +0000 Files and hashes: 1: 66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl (hash: ER+cC6DNGnbYQJQYvAonVPP5AGfPe9pL0eg7aSriLYE=) 2: 3130332e3135362e37312e302f32342d3234203d3e20313431303831.roa (hash: j9xUg13KQEtQqrg9g3ERUl0kaedTdjzl5FAcPmtGqCE=) 3: 3130332e3135362e37302e302f32342d3234203d3e20313431303831.roa (hash: e3tuv4bUE+5sOOhpfdGmGuOFPlroiW0z6wkdn0Eg6vM=) 4: 3130332e3135362e37302e302f32332d3233203d3e20313431303831.roa (hash: q5CuF5e5qYX8bk7E7KseYjajuExzeTaBW1PNtQOhgkQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 00:01:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3c:51:63:12:e3:72:67:9b:ed:45:b3:2a:bf:ee:86:b9:cb:68:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=66DB47E8CDAAD5D95729871FDBE0F33DA55F2072 Validity Not Before: Dec 5 15:06:20 2025 GMT Not After : Dec 9 00:01:20 2025 GMT Subject: CN=AFF6B6E4FDD97CABD82EB1C3855E21826CB5901D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:c1:ac:2b:09:10:e6:1a:fe:c0:41:f5:ff:e7: a3:ba:d3:fe:fa:ab:c2:1a:e8:d0:7f:f3:6d:4a:df: 47:ce:f2:5a:01:17:95:a8:a8:cb:2f:0d:14:0a:b3: 7b:57:0d:4b:8f:02:9d:4d:8c:06:93:af:6d:09:31: 5d:06:0d:31:73:d2:53:10:11:6f:60:d0:20:b2:c2: 0c:ad:36:c7:27:62:b2:a5:d0:02:c0:23:6c:35:77: f9:40:51:e4:31:83:db:03:d9:dd:5b:e4:60:94:4e: ac:d0:93:e8:2c:0a:a3:99:20:f6:2d:d7:01:31:0c: 31:08:90:14:a1:38:74:17:4d:57:55:46:11:0b:c1: d2:01:4e:03:a1:43:18:66:e4:33:ff:08:59:51:42: 42:16:0e:e6:96:92:ad:79:e7:69:b5:c8:1d:16:8b: 84:c2:2d:37:7c:c0:f2:d3:52:cb:0f:85:2d:a6:22: cf:de:54:65:dd:dd:2e:1f:2b:bc:ce:41:54:8d:da: a9:8f:b6:1e:72:a7:24:ca:76:16:12:33:50:5b:bd: f6:db:f7:c3:66:6f:af:60:37:06:e1:b9:38:a9:49: 3c:77:c5:9b:65:86:cb:c5:a3:5b:8f:bf:3b:43:6c: 23:76:ae:6d:20:75:8d:c1:3b:d4:16:a0:20:b4:e4: d5:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:F6:B6:E4:FD:D9:7C:AB:D8:2E:B1:C3:85:5E:21:82:6C:B5:90:1D X509v3 Authority Key Identifier: keyid:66:DB:47:E8:CD:AA:D5:D9:57:29:87:1F:DB:E0:F3:3D:A5:5F:20:72 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f3babf0b-1101-4aa9-a4df-52714934db7c/0/66DB47E8CDAAD5D95729871FDBE0F33DA55F2072.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption cb:ff:7c:51:66:8b:7b:23:cc:24:5d:50:15:60:18:b8:bf:04: 83:11:b9:2d:55:09:f0:65:82:96:db:03:8e:c3:c1:55:4d:21: 7a:9c:09:90:6e:98:8e:54:46:da:ca:76:f7:ed:ab:24:4c:54: 5b:2f:b6:27:09:be:5f:3f:68:e5:ba:48:38:6d:95:70:17:ef: 24:19:fc:c1:48:bc:b6:6e:dc:61:71:a6:d1:c7:e4:40:b7:83: cf:e2:0b:82:70:49:af:33:9a:66:aa:c0:8c:b4:99:80:ba:14: 85:2e:87:49:34:b6:8b:e3:78:ff:1b:9a:53:64:6c:db:53:5b: 0f:86:51:9a:b4:a8:0e:e9:31:2e:49:cf:de:f9:4c:d0:31:9d: 11:88:d5:fa:5c:94:20:e7:99:ce:b2:44:6c:76:61:27:ff:6f: 48:d8:16:6b:fe:54:51:3b:d6:29:2f:2a:c8:70:52:f1:9e:20: 1c:8a:e0:dc:5a:7a:cd:da:73:68:09:2d:55:df:6c:c5:34:a8: ec:77:ae:17:a7:65:84:f7:56:1a:74:6a:09:a1:d0:73:89:64: 24:20:2e:a8:6a:aa:a4:36:f9:78:08:25:ea:ab:da:4a:74:71: 3a:c2:d4:59:b3:71:9e:10:99:84:32:f8:3b:07:16:d0:0f:3f: 22:f3:c5:08 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUJzxRYxLjcmeb7UWzKr/uhrnLaLswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RB NTVGMjA3MjAeFw0yNTEyMDUxNTA2MjBaFw0yNTEyMDkwMDAxMjBaMDMxMTAvBgNV BAMTKEFGRjZCNkU0RkREOTdDQUJEODJFQjFDMzg1NUUyMTgyNkNCNTkwMUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtwawrCRDmGv7AQfX/56O60/76 q8Ia6NB/821K30fO8loBF5WoqMsvDRQKs3tXDUuPAp1NjAaTr20JMV0GDTFz0lMQ EW9g0CCywgytNscnYrKl0ALAI2w1d/lAUeQxg9sD2d1b5GCUTqzQk+gsCqOZIPYt 1wExDDEIkBShOHQXTVdVRhELwdIBTgOhQxhm5DP/CFlRQkIWDuaWkq1552m1yB0W i4TCLTd8wPLTUssPhS2mIs/eVGXd3S4fK7zOQVSN2qmPth5ypyTKdhYSM1Bbvfbb 98Nmb69gNwbhuTipSTx3xZtlhsvFo1uPvztDbCN2rm0gdY3BO9QWoCC05NX1AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUr/a25P3ZfKvYLrHDhV4hgmy1kB0wHwYDVR0j BBgwFoAUZttH6M2q1dlXKYcf2+DzPaVfIHIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m M2JhYmYwYi0xMTAxLTRhYTktYTRkZi01MjcxNDkzNGRiN2MvMC82NkRCNDdFOENE QUFENUQ5NTcyOTg3MUZEQkUwRjMzREE1NUYyMDcyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYzM0RBNTVG MjA3Mi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjNiYWJmMGItMTEwMS00YWE5LWE0 ZGYtNTI3MTQ5MzRkYjdjLzAvNjZEQjQ3RThDREFBRDVEOTU3Mjk4NzFGREJFMEYz M0RBNTVGMjA3Mi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAMv/fFFmi3sjzCRdUBVgGLi/BIMRuS1VCfBl gpbbA47DwVVNIXqcCZBumI5URtrKdvftqyRMVFsvticJvl8/aOW6SDhtlXAX7yQZ /MFIvLZu3GFxptHH5EC3g8/iC4JwSa8zmmaqwIy0mYC6FIUuh0k0tovjeP8bmlNk bNtTWw+GUZq0qA7pMS5Jz975TNAxnRGI1fpclCDnmc6yRGx2YSf/b0jYFmv+VFE7 1ikvKshwUvGeIByK4Nxaes3ac2gJLVXfbMU0qOx3rhenZYT3Vhp0agmh0HOJZCQg LqhqqqQ2+XgIJeqr2kp0cTrC1FmzcZ4QmYQy+DsHFtAPPyLzxQg= -----END CERTIFICATE-----Generated at Sun Dec 7 00:14:48 2025 by rpki-client