This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft (raw, json) Hash identifier: sAm82PPlhfAJit0kj9Jqjy16jb3aerobPo4F70q0HV8= Subject key identifier: 2B:AE:58:08:EA:F1:8E:A5:66:4B:81:CB:89:00:AF:CF:40:7F:9E:9D Authority key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Certificate issuer: /CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Certificate serial: 141B843A4E832B782A543360D88B3EA9FB5D6E62 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft Manifest number: 052F Signing time: Sat 06 Dec 2025 09:41:18 +0000 Manifest this update: Sat 06 Dec 2025 09:36:18 +0000 Manifest next update: Tue 09 Dec 2025 16:03:18 +0000 Files and hashes: 1: 3130332e35322e31382e302f32342d3234203d3e20313333383131.roa (hash: MpDUQT8A3dZvwWRQtlzD2B+hHv7+ces35KG+DCb4lSw=) 2: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl (hash: QOBfPxr+YhzKVd+f+DZtIPdHNXz/WHNTSC5feBqTGrI=) 3: 3130332e35322e31362e302f32342d3234203d3e20313333383131.roa (hash: KMXBXh+Hz9t8Vs+CANui3lrLwoDdVGoivVhKoGTM+n0=) 4: 3130332e35322e31362e302f32322d3234203d3e20313333383131.roa (hash: E70nlSvwN/YRzt3ipt5eUpiof5ZiDppc9oAiJGHFIb4=) 5: 3130332e35322e31392e302f32342d3234203d3e20313333383131.roa (hash: frS3InbJAyXvfYFJ9oqdkhlt6S7xP80lfV9ZpnmpcMc=) 6: 3130332e35322e31372e302f32342d3234203d3e20313333383131.roa (hash: hHPw+Xqwsov7fA4EH++xE5Fe/5zBy6SOylLmX+aVZlE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 09 Dec 2025 15:57:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:1b:84:3a:4e:83:2b:78:2a:54:33:60:d8:8b:3e:a9:fb:5d:6e:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Validity Not Before: Dec 6 09:36:18 2025 GMT Not After : Dec 9 16:03:18 2025 GMT Subject: CN=2BAE5808EAF18EA5664B81CB8900AFCF407F9E9D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:36:00:b3:09:52:bf:9a:85:37:5b:80:c0:51: b9:9c:c3:ec:d2:05:d9:e2:90:26:ce:aa:66:a7:2b: e4:5c:57:c3:56:ce:fa:4d:ad:6b:fa:f7:ff:c0:3e: 50:5e:ab:7e:d4:85:6e:a6:8f:2a:19:b6:8a:71:1c: 4c:4d:c9:70:d2:55:91:77:5c:3d:ed:e4:04:94:eb: 30:f1:72:f5:93:e5:f7:fe:17:d7:8b:3d:2f:e3:5b: df:bf:77:3e:29:4c:cf:75:a0:a4:25:e3:a3:52:f4: 63:a2:f8:83:c3:86:14:f0:e8:65:70:90:ab:63:44: 28:14:02:20:07:f5:ab:dc:85:3b:9c:1b:52:74:60: 91:56:35:9f:23:47:9c:b1:93:32:0a:b1:10:5e:07: 9d:26:79:7b:a3:e0:d2:80:8b:b3:25:a4:ec:44:35: 3e:8c:82:96:3c:0a:bb:2f:19:d2:05:90:d6:7a:53: 1c:80:7b:e2:39:12:22:59:53:6b:8d:09:42:8f:36: a7:d2:db:b4:6c:7a:d8:c4:79:fd:51:01:9f:18:bf: 97:51:78:8b:0e:87:95:c5:f5:ec:a6:60:6c:ea:48: cc:73:e5:54:55:34:b7:5b:d1:fd:d6:98:56:40:7f: ac:57:40:e5:49:3f:b0:62:4a:fd:00:96:f8:81:ed: 2e:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:AE:58:08:EA:F1:8E:A5:66:4B:81:CB:89:00:AF:CF:40:7F:9E:9D X509v3 Authority Key Identifier: keyid:82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:f9:74:14:ef:aa:2c:9a:ec:50:bb:f9:0b:5f:00:ea:ea:88: a7:a0:0e:9a:38:58:34:46:c3:c4:46:bd:24:8c:92:d2:67:ae: 89:11:61:34:12:a8:d4:bc:f7:b8:ca:df:b1:0f:bf:16:6c:a7: 63:fc:91:3f:4c:cc:92:ec:79:19:6a:34:1c:7d:79:c7:41:ab: c1:ef:ed:40:df:ba:9e:1f:d2:02:7b:32:2e:05:e3:37:27:48: c2:8e:e7:17:e3:a1:37:74:d2:0a:cb:12:1d:c8:47:58:8d:02: 9b:7a:f5:0c:f7:04:21:fa:c1:9c:6d:fd:95:54:9d:8b:40:e4: dd:73:9c:89:f0:0f:26:5a:fa:b4:63:61:b4:85:4a:f0:78:7f: b8:70:b9:c7:15:1b:e6:65:41:9e:b2:66:8c:2b:92:b3:ee:64: a6:ee:de:49:c4:b8:9b:71:37:25:4d:44:1f:0c:90:45:5b:ed: 4c:4f:22:2d:80:e4:08:e4:7b:08:f7:93:6c:ae:51:dc:fd:e4: 1f:51:aa:e6:8a:41:12:38:03:37:46:83:18:1c:5e:4f:1d:f3: 01:c0:0a:99:a3:55:22:61:37:4f:11:65:ec:2c:73:71:62:74: 11:dd:d8:be:0c:3d:e5:57:0a:46:02:f4:bf:c6:02:62:bd:6b: ed:3b:61:74 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFBuEOk6DK3gqVDNg2Is+qftdbmIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNB OUMwQjZBMDAeFw0yNTEyMDYwOTM2MThaFw0yNTEyMDkxNjAzMThaMDMxMTAvBgNV BAMTKDJCQUU1ODA4RUFGMThFQTU2NjRCODFDQjg5MDBBRkNGNDA3RjlFOUQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDhNgCzCVK/moU3W4DAUbmcw+zS BdnikCbOqmanK+RcV8NWzvpNrWv69//APlBeq37UhW6mjyoZtopxHExNyXDSVZF3 XD3t5ASU6zDxcvWT5ff+F9eLPS/jW9+/dz4pTM91oKQl46NS9GOi+IPDhhTw6GVw kKtjRCgUAiAH9avchTucG1J0YJFWNZ8jR5yxkzIKsRBeB50meXuj4NKAi7MlpOxE NT6MgpY8CrsvGdIFkNZ6UxyAe+I5EiJZU2uNCUKPNqfS27RsetjEef1RAZ8Yv5dR eIsOh5XF9eymYGzqSMxz5VRVNLdb0f3WmFZAf6xXQOVJP7BiSv0AlviB7S4DAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUK65YCOrxjqVmS4HLiQCvz0B/np0wHwYDVR0j BBgwFoAUgh8WWB+TGhmhS0Db8eKwU6nAtqAwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMC84MjFGMTY1ODFG OTMxQTE5QTE0QjQwREJGMUUyQjA1M0E5QzBCNkEwLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIwNTNBOUMw QjZBMC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmFkZDdjMGYtMDJkMy00MjE3LTlm YzMtMDA0N2FlMTgzNmRjLzAvODIxRjE2NTgxRjkzMUExOUExNEI0MERCRjFFMkIw NTNBOUMwQjZBMC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHf5dBTvqiya7FC7+QtfAOrqiKegDpo4WDRG w8RGvSSMktJnrokRYTQSqNS897jK37EPvxZsp2P8kT9MzJLseRlqNBx9ecdBq8Hv 7UDfup4f0gJ7Mi4F4zcnSMKO5xfjoTd00grLEh3IR1iNApt69Qz3BCH6wZxt/ZVU nYtA5N1znInwDyZa+rRjYbSFSvB4f7hwuccVG+ZlQZ6yZowrkrPuZKbu3knEuJtx NyVNRB8MkEVb7UxPIi2A5Ajkewj3k2yuUdz95B9RquaKQRI4AzdGgxgcXk8d8wHA CpmjVSJhN08RZewsc3FidBHd2L4MPeVXCkYC9L/GAmK9a+07YXQ= -----END CERTIFICATE-----Generated at Sun Dec 7 04:13:42 2025 by rpki-client