This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft File: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft (raw, json) Hash identifier: Vsupiz2Ji4nMmNfz0NHRO2VKvFhfA5Kl9KXwqDrlAvQ= Subject key identifier: 3A:6C:8D:3A:66:B1:F3:AF:C1:C3:01:5F:B9:A7:66:9E:E7:30:2E:F0 Authority key identifier: BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE Certificate issuer: /CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Certificate serial: 4C4BD3064806AB20D1E17C7681B72A4E2A79684E Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject info access: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft Manifest number: 021E Signing time: Fri 05 Dec 2025 09:51:34 +0000 Manifest this update: Fri 05 Dec 2025 09:46:34 +0000 Manifest next update: Mon 08 Dec 2025 13:21:34 +0000 Files and hashes: 1: BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl (hash: N51FjijYQCRvPqgRcbjveZxuEuIrQ2cnm4+6ktZMuok=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 13:21:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:4b:d3:06:48:06:ab:20:d1:e1:7c:76:81:b7:2a:4e:2a:79:68:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE Validity Not Before: Dec 5 09:46:34 2025 GMT Not After : Dec 8 13:21:34 2025 GMT Subject: CN=3A6C8D3A66B1F3AFC1C3015FB9A7669EE7302EF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:ba:e7:f9:d6:a1:c9:8d:5f:e5:87:dc:72:8c: 95:2d:5b:13:3b:96:4f:c0:55:3d:8f:a5:30:39:c1: 22:ff:8d:1e:86:d0:2c:92:7b:05:26:97:9e:cd:16: 6b:27:91:7e:5f:f1:55:90:0d:80:b3:15:62:48:74: 6d:18:09:01:59:a7:52:b5:af:d1:be:52:ac:ab:4d: 49:ed:1e:bf:ab:3e:bc:40:df:48:1d:f3:2a:db:f9: 24:e4:af:4e:a8:88:6d:80:3d:78:ac:20:9e:11:80: 40:26:66:47:b4:86:94:aa:8f:fd:65:e0:8a:b9:81: bb:1b:f3:7d:4e:05:8d:90:9a:94:27:a9:4e:e7:b7: c3:a8:04:c2:bd:85:bd:af:ff:8a:18:21:0b:fc:72: be:2f:1b:0b:76:a8:a4:fc:97:10:aa:30:99:1a:d8: ea:16:4d:21:15:2c:3c:e1:62:71:36:00:6e:b7:0d: a8:07:04:aa:93:f2:01:3f:90:85:ba:57:10:c0:50: cd:26:c8:ae:d7:45:17:bb:7e:ac:2d:e6:43:7f:57: 12:b2:80:2a:66:5c:05:b0:56:7c:93:8e:38:d4:66: f8:8a:de:33:d3:64:b4:e5:f1:54:99:d3:75:cc:66: 97:f3:59:92:94:b7:05:49:47:bb:bb:d1:c9:e0:8f: 6b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:6C:8D:3A:66:B1:F3:AF:C1:C3:01:5F:B9:A7:66:9E:E7:30:2E:F0 X509v3 Authority Key Identifier: keyid:BC:0E:CF:DD:D0:81:CE:51:32:BE:C9:CF:DC:1A:39:0A:9A:F3:BC:BE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/f86a13bd-b79a-450e-9be3-3d5a03ab93b1/0/BC0ECFDDD081CE5132BEC9CFDC1A390A9AF3BCBE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:36:4c:20:ab:d0:6f:cc:68:3f:8d:45:e1:f4:04:dc:64:81: 26:5a:a3:9b:e7:82:1d:91:e3:45:49:35:83:ce:95:ee:45:aa: 91:36:f3:f0:6f:62:16:d6:c2:90:16:6d:f2:34:6d:cf:2a:f8: 03:57:08:b8:34:e4:be:af:45:e0:a0:c6:38:b2:02:4d:3c:90: 9a:43:b0:09:1b:2c:4d:78:a5:0f:a3:8a:01:d6:e9:fc:d4:95: 6d:26:b0:ae:ef:07:fb:ad:63:d7:f1:47:23:fe:72:24:9d:9f: 68:2f:38:84:44:89:e2:1c:a8:17:0a:75:1c:5f:35:fa:e7:77: 7f:00:c8:b5:5a:95:54:35:f3:ac:45:1a:f5:ae:67:d5:3d:fa: e6:8c:83:6a:41:5f:64:69:fa:a7:12:3c:86:c2:f1:2f:73:13: 94:f4:8a:02:fe:eb:5f:87:fa:4c:86:84:f1:76:68:f7:fa:7e: 4d:be:5e:dc:ac:91:e8:c3:73:43:64:e9:7f:e0:51:71:ed:72: 68:89:29:c0:af:ce:20:61:63:f2:ee:39:bc:ed:e6:fd:b5:a8: b5:c3:e9:08:31:c6:93:21:10:ff:56:38:f8:11:96:4f:6e:5f: f7:6b:4a:f7:f5:ed:de:78:d0:9f:21:53:a7:f6:03:c0:22:c7: 0a:fb:83:49 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUTEvTBkgGqyDR4Xx2gbcqTip5aE4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5 QUYzQkNCRTAeFw0yNTEyMDUwOTQ2MzRaFw0yNTEyMDgxMzIxMzRaMDMxMTAvBgNV BAMTKDNBNkM4RDNBNjZCMUYzQUZDMUMzMDE1RkI5QTc2NjlFRTczMDJFRjAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPuuf51qHJjV/lh9xyjJUtWxM7 lk/AVT2PpTA5wSL/jR6G0CySewUml57NFmsnkX5f8VWQDYCzFWJIdG0YCQFZp1K1 r9G+UqyrTUntHr+rPrxA30gd8yrb+STkr06oiG2APXisIJ4RgEAmZke0hpSqj/1l 4Iq5gbsb831OBY2QmpQnqU7nt8OoBMK9hb2v/4oYIQv8cr4vGwt2qKT8lxCqMJka 2OoWTSEVLDzhYnE2AG63DagHBKqT8gE/kIW6VxDAUM0myK7XRRe7fqwt5kN/VxKy gCpmXAWwVnyTjjjUZviK3jPTZLTl8VSZ03XMZpfzWZKUtwVJR7u70cngj2uhAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOmyNOmax86/BwwFfuadmnucwLvAwHwYDVR0j BBgwFoAUvA7P3dCBzlEyvsnP3Bo5CprzvL4wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m ODZhMTNiZC1iNzlhLTQ1MGUtOWJlMy0zZDVhMDNhYjkzYjEvMC9CQzBFQ0ZEREQw ODFDRTUxMzJCRUM5Q0ZEQzFBMzkwQTlBRjNCQ0JFLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5MEE5QUYz QkNCRS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZjg2YTEzYmQtYjc5YS00NTBlLTli ZTMtM2Q1YTAzYWI5M2IxLzAvQkMwRUNGREREMDgxQ0U1MTMyQkVDOUNGREMxQTM5 MEE5QUYzQkNCRS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJQ2TCCr0G/MaD+NReH0BNxkgSZao5vngh2R 40VJNYPOle5FqpE28/BvYhbWwpAWbfI0bc8q+ANXCLg05L6vReCgxjiyAk08kJpD sAkbLE14pQ+jigHW6fzUlW0msK7vB/utY9fxRyP+ciSdn2gvOIREieIcqBcKdRxf Nfrnd38AyLValVQ186xFGvWuZ9U9+uaMg2pBX2Rp+qcSPIbC8S9zE5T0igL+61+H +kyGhPF2aPf6fk2+XtyskejDc0Nk6X/gUXHtcmiJKcCvziBhY/LuObzt5v21qLXD 6QgxxpMhEP9WOPgRlk9uX/drSvf17d540J8hU6f2A8Aixwr7g0k= -----END CERTIFICATE-----Generated at Sun Dec 7 05:58:54 2025 by rpki-client