This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft File: 645C9D445B2796662EE98A03E50C124F3E962CAB.mft (raw, json) Hash identifier: RT/6fb5wQPstPYS716LWXzuEFLSrPLhO4dRaO1isoVo= Subject key identifier: 42:7C:D6:C7:AC:0D:CF:ED:7D:0A:D0:72:FB:86:F4:49:15:0F:A3:8D Authority key identifier: 64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB Certificate issuer: /CN=645C9D445B2796662EE98A03E50C124F3E962CAB Certificate serial: 5122CEDBD7E1C0E50F1FC5477BC274CCFA41E625 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft Manifest number: 03D8 Signing time: Fri 26 Dec 2025 17:11:11 +0000 Manifest this update: Fri 26 Dec 2025 17:06:11 +0000 Manifest next update: Mon 29 Dec 2025 19:48:11 +0000 Files and hashes: 1: 323430313a626534303a3a2f33322d3332203d3e20313336383431.roa (hash: UnpWLg0+2SsmnDXBrwzCKp1VDUDBelXMewYvLJ0BJ+c=) 2: 3130332e3130302e3137342e302f32342d3234203d3e20313336383431.roa (hash: pfMM3/ygiEY34vdGoVOYeg8tWN4ZaCnJmX0NJOGEX00=) 3: 3130332e3130302e3137352e302f32342d3234203d3e20313336383431.roa (hash: qbkH1qedbuL2nkb9oW2AlysgwJB8XaNgGrzurioAZP0=) 4: 645C9D445B2796662EE98A03E50C124F3E962CAB.crl (hash: ZHuRgUhtA6SfewuQuP7Aptgf7zoSJCFmVijL/c6QN3o=) 5: 3130332e3130302e3137332e302f32342d3234203d3e20313336383431.roa (hash: Yo/r10NdHpCyWdp4iTpRbnPv2TKKyCyVTnBiO8AmbDc=) 6: 3130332e3130302e3137322e302f32342d3234203d3e20313336383431.roa (hash: ehP408+CXUe13X4F5TvwPj6ddCoH7T+4InUUhWjVyGw=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 29 Dec 2025 11:33:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:22:ce:db:d7:e1:c0:e5:0f:1f:c5:47:7b:c2:74:cc:fa:41:e6:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=645C9D445B2796662EE98A03E50C124F3E962CAB Validity Not Before: Dec 26 17:06:11 2025 GMT Not After : Dec 29 19:48:11 2025 GMT Subject: CN=427CD6C7AC0DCFED7D0AD072FB86F449150FA38D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ce:2e:04:f5:0a:91:44:c1:6c:a3:3e:0f:f4: 76:3a:ad:12:34:32:1b:52:87:bb:91:b5:d4:6d:0a: fb:ec:6c:e8:6f:12:64:c2:bc:a9:63:27:5d:02:6e: 38:c0:ad:e5:93:6f:3f:f2:5a:47:c5:14:36:63:3d: 5a:a7:92:a7:cf:bb:33:7b:c3:5c:02:a5:1e:45:3d: e6:90:69:98:e8:35:99:eb:b8:f2:e4:05:0c:3e:f7: 6c:7f:4e:0e:eb:e4:40:d9:e4:dc:1c:85:0e:33:80: 8d:32:53:c4:6f:66:e2:f1:82:63:e4:79:cc:9e:b7: 24:4a:73:89:f3:2a:b5:4e:f0:73:be:59:48:bc:88: f6:e9:05:93:fb:58:b6:22:18:61:2b:1b:32:5d:35: ef:16:2b:0d:c7:ef:3b:c2:cc:cd:f8:24:8a:c2:46: a5:84:52:dd:ee:0d:08:cf:70:f8:4b:52:d3:a3:ce: 0a:f1:bf:62:10:28:6b:e7:64:36:a9:54:a6:f5:0e: 44:77:d4:27:44:dc:67:cb:60:68:27:13:12:d2:7e: 82:7f:19:da:ed:e1:a1:db:e6:51:76:8e:56:df:28: e6:a8:53:6c:74:7b:02:67:f7:b5:53:3c:d5:f5:32: 49:e4:11:6e:50:e8:e2:61:bb:c4:40:5b:6b:8c:12: 64:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:7C:D6:C7:AC:0D:CF:ED:7D:0A:D0:72:FB:86:F4:49:15:0F:A3:8D X509v3 Authority Key Identifier: keyid:64:5C:9D:44:5B:27:96:66:2E:E9:8A:03:E5:0C:12:4F:3E:96:2C:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/645C9D445B2796662EE98A03E50C124F3E962CAB.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07304b83-30aa-4bbf-9fd7-2fceadbf0030/0/645C9D445B2796662EE98A03E50C124F3E962CAB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 43:da:b3:32:1d:e4:fe:c5:8d:08:c8:06:6b:a9:14:fb:2b:62: fd:6b:c7:2d:fa:01:67:b0:8c:00:18:75:15:86:7b:62:d3:ec: fe:02:a8:cf:de:be:70:60:96:1e:68:93:c8:a4:b9:c8:8f:fd: e0:03:fa:8a:ab:79:ad:63:db:0b:c4:35:f7:09:71:c6:e7:fd: ca:fc:7a:84:4b:20:9e:98:c5:63:b9:c6:65:61:5a:14:6e:95: 8d:89:62:ee:e2:c8:52:87:2a:cf:04:b5:6f:e8:05:4b:10:cb: 42:bb:7c:45:7f:b2:e1:7f:00:c4:14:22:2c:51:50:82:02:dd: 36:1d:a1:46:83:ac:4d:23:51:2e:3a:b4:aa:7b:a1:e7:71:20: 88:ec:e0:7c:4f:0f:ec:ad:37:ea:ea:26:9f:81:9c:90:d0:0a: 9f:66:09:0d:a0:12:f1:1a:3a:55:1a:6e:f6:07:06:ff:13:e8: 98:38:12:27:c3:ab:00:7e:4e:39:20:00:68:ac:e1:b5:bb:a1: 92:4e:fb:74:be:f2:82:e4:f0:6c:02:8c:c3:09:1b:12:1b:99: 17:96:ae:62:22:de:b2:98:95:5d:ce:d3:21:10:ce:67:d3:ed: 6f:06:56:58:65:9f:ed:26:81:75:66:21:49:50:19:e1:40:6b: 32:1b:67:b8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUUSLO29fhwOUPH8VHe8J0zPpB5iUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYz RTk2MkNBQjAeFw0yNTEyMjYxNzA2MTFaFw0yNTEyMjkxOTQ4MTFaMDMxMTAvBgNV BAMTKDQyN0NENkM3QUMwRENGRUQ3RDBBRDA3MkZCODZGNDQ5MTUwRkEzOEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYzi4E9QqRRMFsoz4P9HY6rRI0 MhtSh7uRtdRtCvvsbOhvEmTCvKljJ10CbjjAreWTbz/yWkfFFDZjPVqnkqfPuzN7 w1wCpR5FPeaQaZjoNZnruPLkBQw+92x/Tg7r5EDZ5NwchQ4zgI0yU8RvZuLxgmPk ecyetyRKc4nzKrVO8HO+WUi8iPbpBZP7WLYiGGErGzJdNe8WKw3H7zvCzM34JIrC RqWEUt3uDQjPcPhLUtOjzgrxv2IQKGvnZDapVKb1DkR31CdE3GfLYGgnExLSfoJ/ Gdrt4aHb5lF2jlbfKOaoU2x0ewJn97VTPNX1MknkEW5Q6OJhu8RAW2uMEmSfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUQnzWx6wNz+19CtBy+4b0SRUPo40wHwYDVR0j BBgwFoAUZFydRFsnlmYu6YoD5QwSTz6WLKswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzMwNGI4My0zMGFhLTRiYmYtOWZkNy0yZmNlYWRiZjAwMzAvMC82NDVDOUQ0NDVC Mjc5NjY2MkVFOThBMDNFNTBDMTI0RjNFOTYyQ0FCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEyNEYzRTk2 MkNBQi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDczMDRiODMtMzBhYS00YmJmLTlm ZDctMmZjZWFkYmYwMDMwLzAvNjQ1QzlENDQ1QjI3OTY2NjJFRTk4QTAzRTUwQzEy NEYzRTk2MkNBQi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEPaszId5P7FjQjIBmupFPsrYv1rxy36AWew jAAYdRWGe2LT7P4CqM/evnBglh5ok8ikuciP/eAD+oqrea1j2wvENfcJccbn/cr8 eoRLIJ6YxWO5xmVhWhRulY2JYu7iyFKHKs8EtW/oBUsQy0K7fEV/suF/AMQUIixR UIIC3TYdoUaDrE0jUS46tKp7oedxIIjs4HxPD+ytN+rqJp+BnJDQCp9mCQ2gEvEa OlUabvYHBv8T6Jg4EifDqwB+TjkgAGis4bW7oZJO+3S+8oLk8GwCjMMJGxIbmReW rmIi3rKYlV3O0yEQzmfT7W8GVlhln+0mgXVmIUlQGeFAazIbZ7g= -----END CERTIFICATE-----Generated at Sun Dec 28 07:30:11 2025 by rpki-client