This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft (raw, json) Hash identifier: O9nFMHyngnUelhxcPL2TVtHWSmKj8qxroa/1Gr7/NWI= Subject key identifier: 80:E5:C6:89:7E:42:06:DA:3C:89:9D:F1:5C:F7:79:94:DB:40:25:CE Authority key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Certificate issuer: /CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Certificate serial: 10755D6855A594ACD2323B1069A1BD5563630C15 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft Manifest number: 0222 Signing time: Tue 23 Dec 2025 10:12:17 +0000 Manifest this update: Tue 23 Dec 2025 10:07:17 +0000 Manifest next update: Fri 26 Dec 2025 11:18:17 +0000 Files and hashes: 1: D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl (hash: G5XrBgfm+cs+GdpHd2cvuPKLFXTanZSVpWPIv9S3ayg=) 2: 3130332e3138362e3230342e302f32342d3234203d3e20313439373233.roa (hash: 6UhOGV8DI7PfyTejWhCSmpLpe0trLgn56lREPd3WDVA=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 11:18:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:75:5d:68:55:a5:94:ac:d2:32:3b:10:69:a1:bd:55:63:63:0c:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Validity Not Before: Dec 23 10:07:17 2025 GMT Not After : Dec 26 11:18:17 2025 GMT Subject: CN=80E5C6897E4206DA3C899DF15CF77994DB4025CE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:54:bf:81:2d:85:38:ce:36:3e:0c:17:36:99: d6:6e:d0:f3:59:3a:10:7e:31:c0:4e:79:f2:fe:28: 4e:b4:de:22:54:31:66:05:cb:fd:ff:fb:18:70:d8: 34:b6:a0:39:76:d5:0d:da:df:bd:a1:1c:a1:03:bb: 91:54:e3:74:6e:aa:a6:d9:95:e5:2b:9d:7e:15:35: c6:c5:08:7d:7b:27:54:ed:a1:c1:f2:9e:38:40:33: 08:b6:a2:a1:75:50:15:39:a8:3f:f7:45:69:8a:e3: 60:88:06:23:08:49:c3:04:db:fa:c8:b6:eb:5a:14: 36:ca:40:af:17:07:2e:ec:60:7b:a5:9a:23:da:14: 86:24:3c:a2:65:a1:9a:96:ca:7c:e9:33:79:20:e9: 82:94:dc:40:3b:c7:91:5b:b3:7a:b5:09:f5:1f:10: 1f:2b:6d:df:11:7e:d5:21:f6:58:15:d6:d4:1a:44: bf:e7:8f:35:c6:b5:af:28:2e:0c:cd:38:59:ab:08: a9:c1:6a:21:c2:01:23:00:8d:10:59:bb:5b:43:4d: db:94:89:91:7a:65:06:a2:88:3e:24:74:04:66:2e: 04:48:29:df:ab:b4:15:bd:29:5a:7f:5b:3a:32:71: 91:eb:e3:73:fe:c4:7a:b3:b5:68:89:30:73:4f:0a: f1:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:E5:C6:89:7E:42:06:DA:3C:89:9D:F1:5C:F7:79:94:DB:40:25:CE X509v3 Authority Key Identifier: keyid:D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:8f:f1:bb:df:54:fb:4f:ed:d7:87:b3:00:c0:21:07:70:fb: c3:1b:61:d7:ae:fe:70:cc:21:7f:ae:db:34:20:1b:92:05:8f: c6:94:8e:2b:bc:8a:8b:48:82:68:f0:49:3d:3c:88:ce:f0:9d: 55:76:e1:02:00:30:1c:62:e3:05:da:93:2f:d8:cd:f9:dc:0a: 17:8e:13:3c:5b:be:ca:0b:70:37:20:7f:2e:21:51:03:63:ec: 9a:25:a1:10:2c:5b:bb:c5:8b:69:45:9b:f7:39:76:6c:87:70: fa:8c:9a:c4:24:37:f1:05:90:62:a8:31:0d:9c:f5:ca:c3:c8: 41:91:dd:95:e2:2e:90:65:70:4c:82:f1:44:1f:79:ec:91:0e: 5b:f6:59:d4:9a:b5:7e:a2:fe:0d:d0:76:51:2b:ed:56:57:c0: cd:0c:ea:45:1c:ee:3b:d3:79:7a:71:d6:77:0c:07:8c:d4:83: d2:29:fd:ff:e7:42:cf:2d:42:35:68:a6:0f:ca:18:bb:75:e0: 6f:3d:88:e6:d5:90:37:8b:d4:d6:ea:aa:7f:1f:9d:b4:de:2b: 28:2a:e7:87:0f:44:bd:b6:a8:cf:c3:1c:a3:55:1f:8d:aa:f0: b2:aa:85:36:a1:21:8d:27:41:64:4d:1f:75:2a:c2:da:7f:f9: 5c:4b:57:71 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEHVdaFWllKzSMjsQaaG9VWNjDBUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAx RUMyNkREMTAeFw0yNTEyMjMxMDA3MTdaFw0yNTEyMjYxMTE4MTdaMDMxMTAvBgNV BAMTKDgwRTVDNjg5N0U0MjA2REEzQzg5OURGMTVDRjc3OTk0REI0MDI1Q0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDvVL+BLYU4zjY+DBc2mdZu0PNZ OhB+McBOefL+KE603iJUMWYFy/3/+xhw2DS2oDl21Q3a372hHKEDu5FU43RuqqbZ leUrnX4VNcbFCH17J1TtocHynjhAMwi2oqF1UBU5qD/3RWmK42CIBiMIScME2/rI tutaFDbKQK8XBy7sYHulmiPaFIYkPKJloZqWynzpM3kg6YKU3EA7x5Fbs3q1CfUf EB8rbd8RftUh9lgV1tQaRL/njzXGta8oLgzNOFmrCKnBaiHCASMAjRBZu1tDTduU iZF6ZQaiiD4kdARmLgRIKd+rtBW9KVp/WzoycZHr43P+xHqztWiJMHNPCvGfAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgOXGiX5CBto8iZ3xXPd5lNtAJc4wHwYDVR0j BBgwFoAU1BccTAaXWkMJ/Fny00DWgB7CbdEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w NzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMC9ENDE3MUM0QzA2 OTc1QTQzMDlGQzU5RjJEMzQwRDY4MDFFQzI2REQxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2ODAxRUMy NkREMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDc2ODBkMGQtZTI0MC00YWFmLWJj MjMtMjgyMzU5MzczMjg5LzAvRDQxNzFDNEMwNjk3NUE0MzA5RkM1OUYyRDM0MEQ2 ODAxRUMyNkREMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAB6P8bvfVPtP7deHswDAIQdw+8MbYdeu/nDM IX+u2zQgG5IFj8aUjiu8iotIgmjwST08iM7wnVV24QIAMBxi4wXaky/YzfncCheO EzxbvsoLcDcgfy4hUQNj7JoloRAsW7vFi2lFm/c5dmyHcPqMmsQkN/EFkGKoMQ2c 9crDyEGR3ZXiLpBlcEyC8UQfeeyRDlv2WdSatX6i/g3QdlEr7VZXwM0M6kUc7jvT eXpx1ncMB4zUg9Ip/f/nQs8tQjVopg/KGLt14G89iObVkDeL1Nbqqn8fnbTeKygq 54cPRL22qM/DHKNVH42q8LKqhTahIY0nQWRNH3Uqwtp/+VxLV3E= -----END CERTIFICATE-----Generated at Wed Dec 24 13:09:40 2025 by rpki-client