This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft File: D237DEA20D73B3F216B98336BA8307D913DDB257.mft (raw, json) Hash identifier: 8siIwvq+wte1mJ4Trkbh/WUo4+FW4iNJoz1+NHOu28s= Subject key identifier: 5F:10:09:80:E9:FB:A4:D5:FA:BC:26:65:2A:CA:AB:79:9A:7F:3F:AB Authority key identifier: D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 Certificate issuer: /CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Certificate serial: 13AF65A0B6EC2F4FB040700ED6B11C40AC2FE160 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject info access: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft Manifest number: E9 Signing time: Fri 05 Dec 2025 01:31:09 +0000 Manifest this update: Fri 05 Dec 2025 01:26:09 +0000 Manifest next update: Mon 08 Dec 2025 10:27:09 +0000 Files and hashes: 1: 3136302e32302e3130352e302f32342d3234203d3e20313532373930.roa (hash: eyJcLgwqfLDN5yf54+8qcXB3Eo84ClH1ySCmSpCcr34=) 2: 3136302e32302e3130342e302f32342d3234203d3e20313532373930.roa (hash: /XQcveyg4jv0OLVMXGF7RkM1OgqinZHYHqjopRTiyzg=) 3: D237DEA20D73B3F216B98336BA8307D913DDB257.crl (hash: IPXV2GY3RSzflLcDKv0yIM5CXO5z5eUjB47oQG7d/vk=) 4: 3136302e32302e3130342e302f32332d3233203d3e20313532373930.roa (hash: 6GiaOKLyqPYX/f1R6Pzjd3Rq6FZr1+gkkd5RuGl5VaI=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 10:27:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:af:65:a0:b6:ec:2f:4f:b0:40:70:0e:d6:b1:1c:40:ac:2f:e1:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D237DEA20D73B3F216B98336BA8307D913DDB257 Validity Not Before: Dec 5 01:26:09 2025 GMT Not After : Dec 8 10:27:09 2025 GMT Subject: CN=5F100980E9FBA4D5FABC26652ACAAB799A7F3FAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:3b:3f:28:a7:34:a6:bc:37:e2:f9:83:d7:22: ba:4e:c5:86:46:05:2c:47:86:ca:44:0e:b9:97:70: 80:21:5e:d2:2d:76:db:3e:1b:b7:16:8a:69:4f:c3: 56:33:0f:c5:ac:56:aa:53:e0:85:a2:1a:71:a2:ff: ae:32:32:70:9b:76:91:a5:82:a1:b2:42:b5:5c:78: 83:bd:c9:e8:23:60:9b:72:df:c6:2f:c2:25:5e:06: 79:de:cc:ed:f7:ac:15:d0:e4:de:25:a6:f3:91:e5: 4b:07:a4:42:ff:64:45:dc:64:06:26:b5:36:8a:39: 92:44:29:4e:3d:bf:22:dc:82:f4:49:bb:42:75:e1: 3e:24:d8:e6:eb:2f:95:99:ac:d4:ba:06:04:78:d9: 33:1e:f4:72:3c:97:d9:52:5c:82:44:a5:7a:0a:b1: 09:f1:37:d0:fd:d2:d0:66:ed:c2:05:aa:02:ea:05: 4d:10:96:26:7e:96:a0:13:4a:68:85:4e:50:2c:9f: 50:d3:95:d9:85:b7:0b:ca:c7:26:65:8d:7e:cb:05: d5:98:e0:51:9f:4b:82:e9:be:2a:48:c9:07:a4:0a: 3d:5b:81:2e:66:e5:2e:d9:06:7c:88:35:8f:1e:74: ca:b2:85:b3:bc:b6:fa:50:78:c6:a9:a2:92:ac:c7: 24:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:10:09:80:E9:FB:A4:D5:FA:BC:26:65:2A:CA:AB:79:9A:7F:3F:AB X509v3 Authority Key Identifier: keyid:D2:37:DE:A2:0D:73:B3:F2:16:B9:83:36:BA:83:07:D9:13:DD:B2:57 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/D237DEA20D73B3F216B98336BA8307D913DDB257.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/fbb5fa4a-bea6-464f-b409-11d9a3761a6c/0/D237DEA20D73B3F216B98336BA8307D913DDB257.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 66:b0:d3:ac:0e:d3:f2:73:e1:ea:77:93:09:ed:da:58:22:df: 9a:44:7c:6e:05:2c:53:62:b0:b2:62:50:a8:1d:33:ad:48:84: dd:f8:d3:88:b1:0c:5d:75:1a:6f:33:21:d3:f7:90:cc:5f:77: f1:2d:f9:79:31:a0:39:37:28:43:c4:f8:35:85:a9:9c:96:a6: 07:98:20:df:13:34:86:d8:79:7b:0a:a8:d0:4d:4b:53:8d:3b: c0:e5:63:ab:22:5d:5b:bb:6e:7a:cf:40:a6:1b:92:1b:8a:5f: 58:cb:9c:ec:27:9c:ce:17:b9:ef:83:c9:5b:61:e6:95:d7:f1: b9:bb:4d:eb:5f:18:c3:b0:a7:86:a7:a2:54:c9:c8:07:3d:23: 0d:9c:55:fa:fe:7f:7f:a6:46:64:47:96:88:b5:1c:60:12:b2: cc:8f:b9:bc:81:e3:ce:0d:0a:ee:9e:0d:71:f0:86:f7:3d:bd: 52:28:3b:85:e0:b4:e2:2d:47:ee:e7:c6:05:cc:2d:0e:35:c5: c9:80:36:c6:80:d6:08:af:c3:f8:0f:f0:d9:4e:e2:d1:ce:d8: 9e:37:25:60:7b:39:f6:3c:3d:cd:f5:f4:48:e4:e0:d4:f6:ca: 35:50:dd:f2:68:28:00:30:02:f4:80:63:45:23:a3:0b:6e:fe: 4e:47:61:97 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUE69loLbsL0+wQHAO1rEcQKwv4WAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkx M0REQjI1NzAeFw0yNTEyMDUwMTI2MDlaFw0yNTEyMDgxMDI3MDlaMDMxMTAvBgNV BAMTKDVGMTAwOTgwRTlGQkE0RDVGQUJDMjY2NTJBQ0FBQjc5OUE3RjNGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8Oz8opzSmvDfi+YPXIrpOxYZG BSxHhspEDrmXcIAhXtItdts+G7cWimlPw1YzD8WsVqpT4IWiGnGi/64yMnCbdpGl gqGyQrVceIO9yegjYJty38YvwiVeBnnezO33rBXQ5N4lpvOR5UsHpEL/ZEXcZAYm tTaKOZJEKU49vyLcgvRJu0J14T4k2ObrL5WZrNS6BgR42TMe9HI8l9lSXIJEpXoK sQnxN9D90tBm7cIFqgLqBU0QliZ+lqATSmiFTlAsn1DTldmFtwvKxyZljX7LBdWY 4FGfS4LpvipIyQekCj1bgS5m5S7ZBnyINY8edMqyhbO8tvpQeMapopKsxyT/AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUXxAJgOn7pNX6vCZlKsqreZp/P6swHwYDVR0j BBgwFoAU0jfeog1zs/IWuYM2uoMH2RPdslcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9m YmI1ZmE0YS1iZWE2LTQ2NGYtYjQwOS0xMWQ5YTM3NjFhNmMvMC9EMjM3REVBMjBE NzNCM0YyMTZCOTgzMzZCQTgzMDdEOTEzRERCMjU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3RDkxM0RE QjI1Ny5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZmJiNWZhNGEtYmVhNi00NjRmLWI0 MDktMTFkOWEzNzYxYTZjLzAvRDIzN0RFQTIwRDczQjNGMjE2Qjk4MzM2QkE4MzA3 RDkxM0REQjI1Ny5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGaw06wO0/Jz4ep3kwnt2lgi35pEfG4FLFNi sLJiUKgdM61IhN3404ixDF11Gm8zIdP3kMxfd/Et+XkxoDk3KEPE+DWFqZyWpgeY IN8TNIbYeXsKqNBNS1ONO8DlY6siXVu7bnrPQKYbkhuKX1jLnOwnnM4Xue+DyVth 5pXX8bm7TetfGMOwp4anolTJyAc9Iw2cVfr+f3+mRmRHloi1HGASssyPubyB484N Cu6eDXHwhvc9vVIoO4XgtOItR+7nxgXMLQ41xcmANsaA1givw/gP8NlO4tHO2J43 JWB7OfY8Pc319Ejk4NT2yjVQ3fJoKAAwAvSAY0Ujowtu/k5HYZc= -----END CERTIFICATE-----Generated at Sat Dec 6 17:53:49 2025 by rpki-client