This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft File: 25D788BD2A450C01354B9AB70826895FDFF56208.mft (raw, json) Hash identifier: l3zeL7rMJaOBaw3GQPdGONfpfGAF4gNTXC0YdTUw4WM= Subject key identifier: 97:12:B5:D4:0D:1D:1C:4F:76:98:52:73:40:B5:70:16:31:16:4B:33 Authority key identifier: 25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 Certificate issuer: /CN=25D788BD2A450C01354B9AB70826895FDFF56208 Certificate serial: 65CA33A88C547A3C21CA3571F9EEB3B69F46757D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft Manifest number: 0382 Signing time: Tue 16 Dec 2025 20:41:08 +0000 Manifest this update: Tue 16 Dec 2025 20:36:08 +0000 Manifest next update: Fri 19 Dec 2025 21:51:08 +0000 Files and hashes: 1: 3132332e3235332e3234382e302f32332d3234203d3e20313336383235.roa (hash: g29pf8GRD5KEsQ3xMiXcjqqLaCsv5cRFguqUqUNSeQU=) 2: 3130332e39312e32342e302f32322d3234203d3e20313432333739.roa (hash: AU2BjjxLKOB7x1afsJypIVoDqfBt5Pa++/i1Uy3JBXs=) 3: 25D788BD2A450C01354B9AB70826895FDFF56208.crl (hash: +QXRELu7Tx6pH+Rz7F1Dz3/jm5yodFcJMz0ZqGKq9Cs=) 4: 3132332e3235332e3234382e302f32332d3234203d3e20313432333739.roa (hash: T9vPzFVrVbtfkOIbIR0gBtReDHG4KgAtDeHT2T3EGwQ=) 5: 323030313a6466303a663530303a3a2f34382d3438203d3e20313432333739.roa (hash: BfvR/So226bitOLhPr9CHxhxgb1Q7qOXOhbe2UXDXlU=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Dec 2025 21:51:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:ca:33:a8:8c:54:7a:3c:21:ca:35:71:f9:ee:b3:b6:9f:46:75:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=25D788BD2A450C01354B9AB70826895FDFF56208 Validity Not Before: Dec 16 20:36:08 2025 GMT Not After : Dec 19 21:51:08 2025 GMT Subject: CN=9712B5D40D1D1C4F7698527340B5701631164B33 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b6:39:91:8d:1a:a8:08:22:3a:6c:e5:e6:1d: e3:41:0e:ed:43:5d:d3:8d:1c:f3:be:fe:70:01:3e: 4d:35:db:3b:b4:ef:f7:81:78:9b:1a:b3:78:52:10: 2b:9e:af:7a:40:97:d2:7f:59:41:cd:7d:20:ac:ac: 8f:3e:93:37:8a:4e:cc:f7:11:3b:04:2a:79:7c:22: 8b:0e:f0:d0:75:71:6b:7e:8a:b3:c6:5a:73:00:4a: ec:82:18:f5:4d:2b:6d:4b:e7:a3:38:24:96:14:cd: bb:dd:be:db:2e:2d:d8:cb:7d:79:4e:f4:57:f3:7b: 99:46:87:ac:85:83:86:d0:72:02:37:f4:af:77:22: 7d:ae:2a:b5:e9:a4:92:96:48:37:83:68:30:4f:c1: fd:a6:c5:00:92:74:ad:38:a9:b7:2c:df:c6:35:b5: 11:7f:4a:c7:56:8b:88:ad:f2:a6:5f:11:f9:9c:36: 36:68:e3:1a:99:4e:33:ad:01:19:66:c5:a4:4c:82: 3c:e5:4a:65:f6:cf:e7:11:9a:3d:e2:d4:7d:92:70: 08:fa:b7:98:ae:5b:36:63:05:fa:ff:04:0f:78:88: 82:33:9e:77:ff:d8:6e:9e:1f:8f:da:41:35:98:9c: fc:37:f3:18:c9:12:74:cf:42:92:d6:d0:5a:5f:e4: 5a:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:12:B5:D4:0D:1D:1C:4F:76:98:52:73:40:B5:70:16:31:16:4B:33 X509v3 Authority Key Identifier: keyid:25:D7:88:BD:2A:45:0C:01:35:4B:9A:B7:08:26:89:5F:DF:F5:62:08 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/25D788BD2A450C01354B9AB70826895FDFF56208.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06a7665a-b50b-4a45-a8f9-0d69bd7d743d/0/25D788BD2A450C01354B9AB70826895FDFF56208.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1d:07:5d:32:9b:35:f6:78:d3:73:b6:05:8d:03:a3:0f:f7:f1: ad:0f:16:af:71:73:63:e2:e7:af:ee:91:5b:49:0b:75:08:85: 98:01:c2:c9:cc:fc:d0:9e:37:a0:1f:7f:18:b2:24:12:37:ea: 81:a2:b5:49:63:72:aa:ec:fb:b3:9f:14:d5:89:60:fa:88:b7: 82:bf:ea:e5:f9:97:99:d9:da:e9:a0:b0:e3:57:d3:33:81:0b: c3:5b:1a:3f:64:25:41:b9:bc:6d:36:85:9a:17:5a:c2:ce:50: 4b:a3:f7:93:f7:8c:be:0d:7f:1e:07:96:a9:72:9e:d7:f8:b0: 6c:61:44:6c:e5:76:3c:bd:59:7f:8b:ef:05:59:6d:1a:a2:86: c3:b0:0c:4d:82:17:23:fc:d1:3a:dd:ff:98:d2:a0:d7:63:f6: 07:21:b2:96:e8:1d:7c:10:de:b7:8f:b3:2c:4a:c2:b7:d9:24: bf:96:68:76:1e:fa:a5:b6:e8:ed:b9:f8:7b:29:fe:5d:2a:7d: 3e:97:dc:54:80:77:f0:c5:58:1d:70:8d:df:87:8c:83:70:f3: 8f:a0:f6:93:94:00:f8:d1:2a:95:15:c5:41:a5:0e:99:79:45: 77:8c:44:1b:f1:1c:fa:55:f8:3e:a8:7f:e3:9c:aa:9c:8c:e5: f9:d3:65:c1 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZcozqIxUejwhyjVx+e6ztp9GdX0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZE RkY1NjIwODAeFw0yNTEyMTYyMDM2MDhaFw0yNTEyMTkyMTUxMDhaMDMxMTAvBgNV BAMTKDk3MTJCNUQ0MEQxRDFDNEY3Njk4NTI3MzQwQjU3MDE2MzExNjRCMzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDXtjmRjRqoCCI6bOXmHeNBDu1D XdONHPO+/nABPk012zu07/eBeJsas3hSECuer3pAl9J/WUHNfSCsrI8+kzeKTsz3 ETsEKnl8IosO8NB1cWt+irPGWnMASuyCGPVNK21L56M4JJYUzbvdvtsuLdjLfXlO 9Ffze5lGh6yFg4bQcgI39K93In2uKrXppJKWSDeDaDBPwf2mxQCSdK04qbcs38Y1 tRF/SsdWi4it8qZfEfmcNjZo4xqZTjOtARlmxaRMgjzlSmX2z+cRmj3i1H2ScAj6 t5iuWzZjBfr/BA94iIIznnf/2G6eH4/aQTWYnPw38xjJEnTPQpLW0Fpf5Fq9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUlxK11A0dHE92mFJzQLVwFjEWSzMwHwYDVR0j BBgwFoAUJdeIvSpFDAE1S5q3CCaJX9/1YggwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmE3NjY1YS1iNTBiLTRhNDUtYThmOS0wZDY5YmQ3ZDc0M2QvMC8yNUQ3ODhCRDJB NDUwQzAxMzU0QjlBQjcwODI2ODk1RkRGRjU2MjA4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5NUZERkY1 NjIwOC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZhNzY2NWEtYjUwYi00YTQ1LWE4 ZjktMGQ2OWJkN2Q3NDNkLzAvMjVENzg4QkQyQTQ1MEMwMTM1NEI5QUI3MDgyNjg5 NUZERkY1NjIwOC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB0HXTKbNfZ403O2BY0Dow/38a0PFq9xc2Pi 56/ukVtJC3UIhZgBwsnM/NCeN6AffxiyJBI36oGitUljcqrs+7OfFNWJYPqIt4K/ 6uX5l5nZ2umgsONX0zOBC8NbGj9kJUG5vG02hZoXWsLOUEuj95P3jL4Nfx4Hlqly ntf4sGxhRGzldjy9WX+L7wVZbRqihsOwDE2CFyP80Trd/5jSoNdj9gchspboHXwQ 3rePsyxKwrfZJL+WaHYe+qW26O25+Hsp/l0qfT6X3FSAd/DFWB1wjd+HjINw84+g 9pOUAPjRKpUVxUGlDpl5RXeMRBvxHPpV+D6of+OcqpyM5fnTZcE= -----END CERTIFICATE-----Generated at Wed Dec 17 09:46:56 2025 by rpki-client