This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft File: 7433AB64571BE1827F0BC97ED291976B6E3429FA.mft (raw, json) Hash identifier: EbDnnLpnMntbKM/DJkr6Gf1lUMCd1DO7JKtQI3ct1u4= Subject key identifier: AA:51:2C:38:98:8D:AB:40:17:47:DC:2B:B6:72:40:25:C6:B8:CF:B3 Authority key identifier: 74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA Certificate issuer: /CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Certificate serial: 069E3088467C77F1B457303654ABAD48D3E11CC8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject info access: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft Manifest number: 01CE Signing time: Wed 17 Dec 2025 21:12:24 +0000 Manifest this update: Wed 17 Dec 2025 21:07:24 +0000 Manifest next update: Sun 21 Dec 2025 06:07:24 +0000 Files and hashes: 1: 3130332e37352e36322e302f32342d3234203d3e20313530353339.roa (hash: U3QvM9qWK+TJhBGDojanDKA8oPNCYIB5ZhNuA/z08gw=) 2: 3130332e37352e36332e302f32342d3234203d3e20313530353339.roa (hash: OMSstG+v7qZjFWCJ4NvuRl4cKaVI80js4sry1SoLSN0=) 3: 7433AB64571BE1827F0BC97ED291976B6E3429FA.crl (hash: KAMtbN+tR9JZWT5XsiNRqqHiSj5UTC0kC+6HOmK/81E=) 4: 3130332e37352e36322e302f32332d3234203d3e20313530353339.roa (hash: 96CJnoxRV4HGvhsn3PFsL8qIqJQvuSs5NCO8lzcHZm0=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 06:07:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:9e:30:88:46:7c:77:f1:b4:57:30:36:54:ab:ad:48:d3:e1:1c:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7433AB64571BE1827F0BC97ED291976B6E3429FA Validity Not Before: Dec 17 21:07:24 2025 GMT Not After : Dec 21 06:07:24 2025 GMT Subject: CN=AA512C38988DAB401747DC2BB6724025C6B8CFB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:d4:7d:6d:7b:12:ac:94:1c:5e:18:55:fc:f8: d5:18:6a:36:7c:98:4b:3c:ef:b1:ec:37:1f:8b:b8: 9d:03:80:0d:06:65:a2:17:ac:9e:46:db:62:2b:64: 43:ab:f2:b1:1a:3b:6f:79:7d:2e:48:8e:a3:2e:b5: 36:ab:4e:f2:0d:7b:80:04:6b:40:95:5e:88:3d:63: 22:56:0a:64:f1:c7:10:3f:8f:35:c2:fd:82:5f:02: fa:d2:53:b2:c8:10:0e:5c:5b:0d:74:e6:88:4d:02: 26:52:b6:80:07:cd:90:08:6d:be:48:aa:e4:05:ed: bd:d0:ad:42:1a:f2:88:15:8d:9f:75:e4:16:65:c4: 17:f9:32:e5:f5:4a:d2:28:bf:b8:ec:d0:0d:34:73: 28:7b:d9:dd:fd:52:a8:8f:2e:85:f9:47:b6:bb:c5: e3:26:66:fa:a7:50:05:fa:d5:97:0e:ed:1d:38:ee: 8b:06:26:b1:0d:f0:68:68:42:7f:e6:e9:d6:49:33: 4d:be:45:e0:69:73:14:5e:28:1f:72:f1:6b:e8:24: a9:1a:2e:fb:12:12:1d:f1:5e:d3:55:18:d3:4b:5d: c6:be:57:aa:37:e0:8c:26:a3:bd:f6:66:62:4a:21: 07:06:42:3a:0f:f6:2d:34:e9:14:fa:51:38:10:e1: 0f:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:51:2C:38:98:8D:AB:40:17:47:DC:2B:B6:72:40:25:C6:B8:CF:B3 X509v3 Authority Key Identifier: keyid:74:33:AB:64:57:1B:E1:82:7F:0B:C9:7E:D2:91:97:6B:6E:34:29:FA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/7433AB64571BE1827F0BC97ED291976B6E3429FA.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/07c8a0c3-37f5-4667-a430-6fa111d343aa/0/7433AB64571BE1827F0BC97ED291976B6E3429FA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 77:0e:82:e2:00:58:58:58:22:8c:e6:8a:e2:dd:c6:ce:5f:6f: 93:3b:ca:1f:38:43:d9:39:b9:b9:97:7e:dc:61:de:6f:c1:ae: e8:a5:52:17:b1:6f:d1:26:fe:12:34:7d:55:db:f3:9a:b8:09: 74:84:64:e9:53:58:03:e8:a3:95:2b:51:d3:95:2d:98:af:47: 6a:41:e4:37:10:c2:29:dc:28:70:59:ad:58:2c:d6:3b:60:84: aa:7d:29:e1:de:9c:cf:5d:30:91:8c:5f:06:18:ff:0d:e2:ac: b4:6c:d9:30:a9:f1:26:d0:62:48:52:f8:42:a1:26:a8:49:88: df:d3:44:36:77:c3:93:a2:f0:ec:dc:64:ef:d0:29:7a:fb:b3: ea:48:d2:f2:5b:50:eb:e6:63:f1:f8:e2:e8:dd:43:c1:c9:d3: 0c:5c:30:94:75:5f:d4:1d:dd:e9:61:03:70:41:15:bc:48:67: d4:4d:10:ec:4f:b0:e2:0a:c2:70:26:a5:83:11:c5:04:91:20: 2c:c2:de:34:99:28:08:e0:84:28:e1:39:b0:43:d3:5a:35:37: 27:85:55:88:5d:04:c8:b6:a4:f3:82:03:95:35:5b:10:6d:b3: eb:72:d5:7b:13:d7:24:7e:fb:ea:cd:06:00:74:ef:18:2f:07: 96:72:ae:bd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUBp4wiEZ8d/G0VzA2VKutSNPhHMgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2 RTM0MjlGQTAeFw0yNTEyMTcyMTA3MjRaFw0yNTEyMjEwNjA3MjRaMDMxMTAvBgNV BAMTKEFBNTEyQzM4OTg4REFCNDAxNzQ3REMyQkI2NzI0MDI1QzZCOENGQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDV1H1texKslBxeGFX8+NUYajZ8 mEs877HsNx+LuJ0DgA0GZaIXrJ5G22IrZEOr8rEaO295fS5IjqMutTarTvINe4AE a0CVXog9YyJWCmTxxxA/jzXC/YJfAvrSU7LIEA5cWw105ohNAiZStoAHzZAIbb5I quQF7b3QrUIa8ogVjZ915BZlxBf5MuX1StIov7js0A00cyh72d39UqiPLoX5R7a7 xeMmZvqnUAX61ZcO7R047osGJrEN8GhoQn/m6dZJM02+ReBpcxReKB9y8WvoJKka LvsSEh3xXtNVGNNLXca+V6o34Iwmo732ZmJKIQcGQjoP9i006RT6UTgQ4Q+9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUqlEsOJiNq0AXR9wrtnJAJca4z7MwHwYDVR0j BBgwFoAUdDOrZFcb4YJ/C8l+0pGXa240KfowDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w N2M4YTBjMy0zN2Y1LTQ2NjctYTQzMC02ZmExMTFkMzQzYWEvMC83NDMzQUI2NDU3 MUJFMTgyN0YwQkM5N0VEMjkxOTc2QjZFMzQyOUZBLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3NkI2RTM0 MjlGQS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMDdjOGEwYzMtMzdmNS00NjY3LWE0 MzAtNmZhMTExZDM0M2FhLzAvNzQzM0FCNjQ1NzFCRTE4MjdGMEJDOTdFRDI5MTk3 NkI2RTM0MjlGQS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHcOguIAWFhYIozmiuLdxs5fb5M7yh84Q9k5 ubmXftxh3m/BruilUhexb9Em/hI0fVXb85q4CXSEZOlTWAPoo5UrUdOVLZivR2pB 5DcQwincKHBZrVgs1jtghKp9KeHenM9dMJGMXwYY/w3irLRs2TCp8SbQYkhS+EKh JqhJiN/TRDZ3w5Oi8OzcZO/QKXr7s+pI0vJbUOvmY/H44ujdQ8HJ0wxcMJR1X9Qd 3elhA3BBFbxIZ9RNEOxPsOIKwnAmpYMRxQSRICzC3jSZKAjghCjhObBD01o1NyeF VYhdBMi2pPOCA5U1WxBts+ty1XsT1yR+++rNBgB07xgvB5Zyrr0= -----END CERTIFICATE-----Generated at Fri Dec 19 19:35:52 2025 by rpki-client