This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft File: DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft (raw, json) Hash identifier: yRTtrQG7wQ/kQL0BR0NsZESHd52XchNBK7/WyrXq4o8= Subject key identifier: 0E:B5:F3:F0:09:29:29:22:92:59:B4:AB:08:CD:56:E3:07:9B:7E:17 Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 1811B0371D8EB2D82C6B7D2A56F019C8F37F9AA1 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft Manifest number: EC Signing time: Thu 18 Dec 2025 22:43:58 +0000 Manifest this update: Thu 18 Dec 2025 22:38:58 +0000 Manifest next update: Mon 22 Dec 2025 04:46:58 +0000 Files and hashes: 1: DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl (hash: JL7hfCTCZfQQciKm0DdCrLMA/dPaW/Z6uOUTFjlah0Q=) 2: 3130332e38312e3131302e302f32342d3234203d3e20313530393538.roa (hash: l+woQG8NGXwscppt3BLv8pY3gFICf9F1+Mc2HYpLxj0=) 3: 3130332e38312e3131312e302f32342d3234203d3e20313530393538.roa (hash: CSEyFnNOQdFjnYqiU1M0FD+ncVnXGi/YiRfm0U9hHlg=) 4: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (hash: BIDljILBNKsrSwzyZxnTSaIaANst4K6p4IMi96hI1tI=) 5: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (hash: yOguTTJn/ofmmFRzNxB5PQD5Wur97XppCIr80azCbnE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 03:43:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:11:b0:37:1d:8e:b2:d8:2c:6b:7d:2a:56:f0:19:c8:f3:7f:9a:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Dec 18 22:38:58 2025 GMT Not After : Dec 22 04:46:58 2025 GMT Subject: CN=0EB5F3F0092929229259B4AB08CD56E3079B7E17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0b:73:3c:23:8f:3e:b0:3d:0f:6a:2d:8e:a5: 03:ab:a9:4d:08:2a:bf:90:af:2f:7a:04:bb:43:6a: 39:8c:33:f5:b4:d4:23:37:4c:eb:27:2e:be:4a:98: e5:35:47:45:56:00:50:22:c9:4b:6d:c2:9d:ae:92: b1:77:59:4e:52:71:43:a2:70:e3:62:1c:e5:bb:12: 3c:0d:97:6f:1d:00:44:13:83:23:16:4a:2a:da:78: 95:9f:fb:dd:14:f3:3b:7c:93:3c:39:ef:63:2d:a5: 9f:f9:be:fd:d8:3e:14:eb:a0:43:f8:ce:9d:89:ea: 49:0f:96:ba:a0:d5:6f:33:6c:be:e0:d5:42:be:05: b2:6f:10:de:b4:4d:f4:d2:4d:c2:7e:5f:84:86:b1: d8:15:8b:24:1f:53:39:da:4c:e7:a9:dd:15:fd:43: ee:3a:c3:00:fe:2d:d0:10:67:6b:27:f5:f0:f7:9d: 83:39:72:17:4a:14:84:bc:70:81:7c:65:19:d6:fd: 7a:e6:c6:94:b6:62:f7:c7:63:6a:2f:fe:cc:6d:25: ab:e2:03:8f:22:5c:38:96:00:ff:b8:88:f4:03:91: 7e:84:1a:c0:39:85:e1:f0:b6:2e:55:dc:a3:55:00: f0:bc:a8:8a:05:08:e8:5c:c9:89:de:f9:98:04:0f: 1f:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:B5:F3:F0:09:29:29:22:92:59:B4:AB:08:CD:56:E3:07:9B:7E:17 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:1c:d9:c6:be:ed:a0:7c:a5:de:f2:4e:03:44:c7:cc:97:cf: 64:c9:eb:cf:aa:7b:e1:0d:8e:9d:c9:5d:3b:d1:b5:a0:b9:3e: 01:fe:47:2f:35:64:3a:a4:67:6d:fb:5c:d1:0b:ca:16:de:06: 64:da:59:9e:3a:ca:ee:34:fe:73:ff:f3:fd:b2:d7:e7:26:04: 9c:0a:00:42:e3:c0:3f:5e:33:64:b4:7c:e7:17:8e:f2:8a:59: 72:c0:9b:4a:1d:e3:1d:26:68:8e:35:50:f1:30:70:3b:d1:12: ad:f5:5d:5b:bd:34:3f:8f:9e:f6:6d:d8:5f:6e:7a:2d:6d:01: ed:69:f6:9d:50:bf:e2:c1:a2:f2:22:2d:4f:3a:e0:db:47:6b: 61:5a:31:de:e6:9e:5d:4b:69:1c:dc:55:17:5e:15:06:73:bd: 6b:ca:b6:1d:f4:c3:ce:49:39:f2:b3:aa:e5:6b:ce:53:75:e0: 4d:a8:c9:0f:d8:5f:83:a9:a4:be:a0:00:f1:83:d1:a2:c1:b6: e0:f1:26:d7:fb:96:01:67:f1:92:42:49:3a:34:f4:05:f0:77: ee:4b:91:4a:0b:c5:9e:f0:a5:bb:c7:ba:74:a5:81:15:25:4c: 30:f2:fc:df:8c:09:fd:05:29:4a:54:6e:8b:7e:7e:dc:32:7a: a6:f9:33:43 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUGBGwNx2Ostgsa30qVvAZyPN/mqEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNTEyMTgyMjM4NThaFw0yNTEyMjIwNDQ2NThaMDMxMTAvBgNV BAMTKDBFQjVGM0YwMDkyOTI5MjI5MjU5QjRBQjA4Q0Q1NkUzMDc5QjdFMTcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3C3M8I48+sD0Pai2OpQOrqU0I Kr+Qry96BLtDajmMM/W01CM3TOsnLr5KmOU1R0VWAFAiyUttwp2ukrF3WU5ScUOi cONiHOW7EjwNl28dAEQTgyMWSiraeJWf+90U8zt8kzw572MtpZ/5vv3YPhTroEP4 zp2J6kkPlrqg1W8zbL7g1UK+BbJvEN60TfTSTcJ+X4SGsdgViyQfUznaTOep3RX9 Q+46wwD+LdAQZ2sn9fD3nYM5chdKFIS8cIF8ZRnW/XrmxpS2YvfHY2ov/sxtJavi A48iXDiWAP+4iPQDkX6EGsA5heHwti5V3KNVAPC8qIoFCOhcyYne+ZgEDx9NAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUDrXz8AkpKSKSWbSrCM1W4webfhcwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGYwYmNkYzMtMGZlYS00NzQ3LTk5 MDctNjU2NDg2YmFlOGRhLzAvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlG MzYwRDJDNDYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHAc2ca+7aB8pd7yTgNEx8yXz2TJ68+qe+EN jp3JXTvRtaC5PgH+Ry81ZDqkZ237XNELyhbeBmTaWZ46yu40/nP/8/2y1+cmBJwK AELjwD9eM2S0fOcXjvKKWXLAm0od4x0maI41UPEwcDvREq31XVu9ND+PnvZt2F9u ei1tAe1p9p1Qv+LBovIiLU864NtHa2FaMd7mnl1LaRzcVRdeFQZzvWvKth30w85J OfKzquVrzlN14E2oyQ/YX4OppL6gAPGD0aLBtuDxJtf7lgFn8ZJCSTo09AXwd+5L kUoLxZ7wpbvHunSlgRUlTDDy/N+MCf0FKUpUbot+ftwyeqb5M0M= -----END CERTIFICATE-----Generated at Fri Dec 19 18:11:51 2025 by rpki-client