This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft File: D85F6D41E807D8825356A681A7518FA27664A965.mft (raw, json) Hash identifier: WubVbhCatHKqMimaFMtLadejx/NM2J/Bqywg9UBPwmk= Subject key identifier: 4B:5A:BA:6D:BE:2A:5B:55:FF:CD:29:BC:14:F1:67:74:9B:48:DD:57 Authority key identifier: D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 Certificate issuer: /CN=D85F6D41E807D8825356A681A7518FA27664A965 Certificate serial: 74C0FEFC807502677E89127474C1DA183AE2D9C0 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject info access: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft Manifest number: 019A Signing time: Sat 20 Dec 2025 04:33:32 +0000 Manifest this update: Sat 20 Dec 2025 04:28:32 +0000 Manifest next update: Tue 23 Dec 2025 11:07:32 +0000 Files and hashes: 1: 3130332e3136372e3137302e302f32342d3234203d3e20313431393833.roa (hash: 2X5KoMU/cWrAj0o88iqREF+W66XbV79s9jtdMfDvn84=) 2: D85F6D41E807D8825356A681A7518FA27664A965.crl (hash: NZZIKuxrWS8Q2kTbvNImgSWMIdGtEmRd3+qqA9EPML8=) 3: 323430373a396363303a3a2f33322d3332203d3e20313431393833.roa (hash: X3XCCURHmUEWOKsujokS9KRQ2ATuG6WfjZ6Xo/ilPmk=) 4: 3130332e3136372e3137302e302f32332d3233203d3e20313431393833.roa (hash: hFj4Uh0PGeOBka7Cx4rmARhSt9TGPmz98D01cPT+PF4=) 5: 3130332e3136372e3137312e302f32342d3234203d3e20313431393833.roa (hash: mLhBYPkwACBbxlJsTnV03pPrOs7jfGDROaGC1YIb24I=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 11:07:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:c0:fe:fc:80:75:02:67:7e:89:12:74:74:c1:da:18:3a:e2:d9:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D85F6D41E807D8825356A681A7518FA27664A965 Validity Not Before: Dec 20 04:28:32 2025 GMT Not After : Dec 23 11:07:32 2025 GMT Subject: CN=4B5ABA6DBE2A5B55FFCD29BC14F167749B48DD57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a9:bc:a2:55:09:7b:8f:99:b2:e5:54:b6:77: 8f:5b:65:6f:dc:b7:96:15:11:10:b9:cb:cb:dd:05: 15:88:e0:93:c1:d2:3c:3c:4d:1b:2b:80:76:e7:bc: 5e:ea:22:d3:77:c8:0b:f2:cd:d8:32:62:e8:95:f3: a6:c6:23:75:47:3f:8e:08:f1:67:5f:d5:fe:e6:94: 41:11:b4:c7:da:76:39:b6:ca:68:0d:a4:6c:16:62: 49:76:5b:06:d5:d7:14:ff:8a:ca:d9:ff:9d:80:e5: 0e:2a:14:c6:ff:74:f3:62:ea:a0:2e:e9:1a:a6:00: da:c0:98:8b:21:ab:1b:85:38:12:a5:d3:03:b1:8f: 40:05:9c:a0:65:bd:ef:d3:9f:6f:09:53:4e:eb:eb: 5e:a6:f3:ba:b0:d2:88:0d:b3:38:27:83:1a:7e:c7: cc:9c:f8:68:6f:54:f6:0f:61:f8:b7:81:de:7a:be: 80:64:fa:0f:b9:56:f2:dc:35:d5:84:a6:d8:73:cd: 99:65:ed:28:17:15:d4:a4:13:ca:38:d5:78:77:bd: 22:46:cf:88:0b:10:15:2a:18:e9:b9:81:6a:53:4a: ef:62:68:ed:f5:25:77:b2:34:91:0e:af:3a:86:0e: cc:85:16:2e:1a:8a:81:5d:58:f0:a9:01:96:59:e9: d7:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5A:BA:6D:BE:2A:5B:55:FF:CD:29:BC:14:F1:67:74:9B:48:DD:57 X509v3 Authority Key Identifier: keyid:D8:5F:6D:41:E8:07:D8:82:53:56:A6:81:A7:51:8F:A2:76:64:A9:65 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D85F6D41E807D8825356A681A7518FA27664A965.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/06bedf3a-d7d1-49a6-93ed-b277f1f7a6eb/0/D85F6D41E807D8825356A681A7518FA27664A965.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption b2:de:d3:6e:f8:11:c8:8c:21:14:3b:5c:1a:cc:17:fe:03:49: 22:2b:f5:48:32:ec:a9:f3:c5:e7:08:71:0c:fe:21:e0:0f:4a: fd:65:91:0f:c7:92:1f:2e:48:6a:a3:dd:11:4d:eb:08:7c:75: 1e:ad:af:9b:58:58:06:98:fc:16:e7:7f:b4:e5:93:9e:03:8b: 72:42:32:8b:5a:58:a7:e3:13:5f:3e:d2:8f:14:51:fb:cc:be: 37:aa:86:12:d9:a7:b3:61:c8:6b:21:e9:95:cb:a5:9f:9a:39: d6:a7:99:a3:3c:5c:35:c5:c1:97:6a:95:a6:3c:2f:93:63:82: a5:49:9d:fd:49:88:32:83:1e:a7:83:53:3b:d0:b6:37:65:dc: 9a:14:c1:95:c8:c3:ea:2b:da:74:e7:ce:fa:44:1d:f7:50:0a: 56:63:20:a8:50:f9:ef:2d:79:e4:63:d6:13:04:9f:99:70:4b: 9d:e7:5a:83:a4:eb:c6:9f:3d:08:e3:7a:7f:b1:ce:d7:3a:8e: 1e:80:73:7b:ce:5e:ab:a5:64:b4:5c:3a:a3:eb:06:4b:c5:21: ca:a3:6c:5a:b3:0c:cf:73:d0:9d:e3:07:52:e0:bf:af:05:10: db:3d:75:6b:b0:3e:a4:3e:f9:6c:20:c9:99:7f:6a:5a:fe:52: 67:c9:18:6b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUdMD+/IB1Amd+iRJ0dMHaGDri2cAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3 NjY0QTk2NTAeFw0yNTEyMjAwNDI4MzJaFw0yNTEyMjMxMTA3MzJaMDMxMTAvBgNV BAMTKDRCNUFCQTZEQkUyQTVCNTVGRkNEMjlCQzE0RjE2Nzc0OUI0OERENTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKqbyiVQl7j5my5VS2d49bZW/c t5YVERC5y8vdBRWI4JPB0jw8TRsrgHbnvF7qItN3yAvyzdgyYuiV86bGI3VHP44I 8Wdf1f7mlEERtMfadjm2ymgNpGwWYkl2WwbV1xT/isrZ/52A5Q4qFMb/dPNi6qAu 6RqmANrAmIshqxuFOBKl0wOxj0AFnKBlve/Tn28JU07r616m87qw0ogNszgngxp+ x8yc+GhvVPYPYfi3gd56voBk+g+5VvLcNdWEpthzzZll7SgXFdSkE8o41Xh3vSJG z4gLEBUqGOm5gWpTSu9iaO31JXeyNJEOrzqGDsyFFi4aioFdWPCpAZZZ6ddPAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUS1q6bb4qW1X/zSm8FPFndJtI3VcwHwYDVR0j BBgwFoAU2F9tQegH2IJTVqaBp1GPonZkqWUwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NmJlZGYzYS1kN2QxLTQ5YTYtOTNlZC1iMjc3ZjFmN2E2ZWIvMC9EODVGNkQ0MUU4 MDdEODgyNTM1NkE2ODFBNzUxOEZBMjc2NjRBOTY1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThGQTI3NjY0 QTk2NS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDZiZWRmM2EtZDdkMS00OWE2LTkz ZWQtYjI3N2YxZjdhNmViLzAvRDg1RjZENDFFODA3RDg4MjUzNTZBNjgxQTc1MThG QTI3NjY0QTk2NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBALLe0274EciMIRQ7XBrMF/4DSSIr9Ugy7Knz xecIcQz+IeAPSv1lkQ/Hkh8uSGqj3RFN6wh8dR6tr5tYWAaY/Bbnf7Tlk54Di3JC MotaWKfjE18+0o8UUfvMvjeqhhLZp7NhyGsh6ZXLpZ+aOdanmaM8XDXFwZdqlaY8 L5NjgqVJnf1JiDKDHqeDUzvQtjdl3JoUwZXIw+or2nTnzvpEHfdQClZjIKhQ+e8t eeRj1hMEn5lwS53nWoOk68afPQjjen+xztc6jh6Ac3vOXqulZLRcOqPrBkvFIcqj bFqzDM9z0J3jB1Lgv68FENs9dWuwPqQ++WwgyZl/alr+UmfJGGs= -----END CERTIFICATE-----Generated at Sun Dec 21 10:34:53 2025 by rpki-client