This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft File: DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft (raw, json) Hash identifier: /YCdFZdUNoIydPG34Sn1vhgmRc2d3zttGQFO6wdUZ90= Subject key identifier: A4:7B:9D:B9:54:36:86:98:F2:AA:E7:33:6B:01:74:DA:B0:52:24:B2 Authority key identifier: DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 Certificate issuer: /CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Certificate serial: 3F37D0281EC16A1C9AB8CB538E6EEAB2613B4749 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject info access: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft Manifest number: ED Signing time: Sun 21 Dec 2025 04:53:32 +0000 Manifest this update: Sun 21 Dec 2025 04:48:32 +0000 Manifest next update: Wed 24 Dec 2025 08:04:32 +0000 Files and hashes: 1: 3130332e38312e3131302e302f32332d3234203d3e20313530393538.roa (hash: yOguTTJn/ofmmFRzNxB5PQD5Wur97XppCIr80azCbnE=) 2: 3130332e38312e3131312e302f32342d3234203d3e20313530393538.roa (hash: CSEyFnNOQdFjnYqiU1M0FD+ncVnXGi/YiRfm0U9hHlg=) 3: 3130332e38312e3131302e302f32342d3234203d3e20313530393538.roa (hash: l+woQG8NGXwscppt3BLv8pY3gFICf9F1+Mc2HYpLxj0=) 4: 323030313a6466323a623263303a3a2f34382d3438203d3e20313530393538.roa (hash: BIDljILBNKsrSwzyZxnTSaIaANst4K6p4IMi96hI1tI=) 5: DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl (hash: GmW91sDUocIT+bZDf1T2+EOXXoDWgAbY8DB3lu6z5rg=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 07:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:37:d0:28:1e:c1:6a:1c:9a:b8:cb:53:8e:6e:ea:b2:61:3b:47:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DA737E8BB9E3519F19E608DC3E839F360D2C4623 Validity Not Before: Dec 21 04:48:32 2025 GMT Not After : Dec 24 08:04:32 2025 GMT Subject: CN=A47B9DB954368698F2AAE7336B0174DAB05224B2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:c7:9a:9b:23:82:aa:8d:d4:c4:5a:c2:23:b0: e6:50:9e:93:9e:77:e8:a8:53:ee:73:6b:ac:b5:fb: f6:ce:b7:53:c3:fb:40:2b:1e:32:9f:5b:c8:9e:5b: f3:24:c1:6a:25:72:54:d1:2c:14:63:4e:5a:84:86: ac:e9:30:72:ee:79:a5:72:42:ae:8d:0d:0c:10:82: 66:60:33:c9:09:a1:49:74:2f:77:ce:64:0e:dd:47: 85:7d:2c:41:a9:35:71:b6:ba:69:8e:e7:ad:fb:88: 06:29:ea:7d:18:c4:9f:b6:5a:f6:8c:e4:16:e8:62: 05:66:1a:88:d6:22:02:f0:92:df:f0:12:25:ea:9b: 31:c5:59:e5:04:94:34:4d:96:d8:9e:2d:3c:d3:fc: 9c:84:7d:4d:d7:59:25:89:c8:05:72:72:f7:4c:f7: 97:80:29:23:9a:09:a8:0f:fe:d2:54:05:a6:84:ec: 00:08:8e:e5:dd:d8:4f:53:f0:81:c4:d6:05:c1:05: 91:1b:eb:81:a0:43:d6:0a:7a:7b:7f:d4:e9:1f:66: ff:d0:5d:fd:b4:b0:8c:75:92:d5:8c:9f:52:1b:67: 3d:54:5b:87:f7:34:7d:0d:c5:2b:0a:f4:a1:d2:6c: 23:c0:29:10:11:c8:f3:54:62:0c:76:51:0e:03:38: e7:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:7B:9D:B9:54:36:86:98:F2:AA:E7:33:6B:01:74:DA:B0:52:24:B2 X509v3 Authority Key Identifier: keyid:DA:73:7E:8B:B9:E3:51:9F:19:E6:08:DC:3E:83:9F:36:0D:2C:46:23 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/DA737E8BB9E3519F19E608DC3E839F360D2C4623.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/0f0bcdc3-0fea-4747-9907-656486bae8da/0/DA737E8BB9E3519F19E608DC3E839F360D2C4623.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9d:d5:cb:76:cd:e5:46:3b:3e:11:53:e3:2d:28:0e:8b:07:fd: 0c:40:54:c4:8f:01:43:47:41:07:0f:dc:91:01:26:d3:b1:d1: c4:42:48:14:2d:2e:a6:44:60:23:59:e1:96:f0:b1:13:d4:a6: e0:05:be:9b:de:da:76:54:f3:c8:df:fd:24:0d:c2:27:f7:b2: dd:44:11:73:2f:b9:5d:20:00:0d:8c:9c:5c:2e:66:4f:5b:8f: 0d:00:bd:67:1d:91:f1:a4:c6:63:d6:10:05:e2:71:4a:23:5c: 62:a3:b1:b7:80:ae:ba:06:90:5f:26:74:2a:94:e2:75:72:1a: a7:ee:dd:17:70:33:f7:af:03:10:5b:7e:85:bb:30:f6:60:65: 1c:78:1e:bd:8c:8b:0e:83:5d:2f:3c:53:4c:94:4e:04:b7:1d: 6f:dc:6c:6b:8f:58:dc:7f:25:9c:6b:c0:19:ef:ef:26:ed:f6: 20:87:0e:9b:5d:97:5f:3c:b8:75:b5:5c:72:f1:58:19:61:3e: 83:32:ca:66:34:45:7a:47:48:59:a7:5b:45:6b:36:0c:2a:d4: 0d:41:23:ed:4f:03:23:de:4a:f9:86:4c:c3:05:dd:7c:a2:f1: ff:46:40:6f:ef:77:a8:fb:d0:a2:de:d5:64:bc:d6:5c:dc:24: 99:e1:38:e0 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUPzfQKB7BahyauMtTjm7qsmE7R0kwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYw RDJDNDYyMzAeFw0yNTEyMjEwNDQ4MzJaFw0yNTEyMjQwODA0MzJaMDMxMTAvBgNV BAMTKEE0N0I5REI5NTQzNjg2OThGMkFBRTczMzZCMDE3NERBQjA1MjI0QjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsx5qbI4KqjdTEWsIjsOZQnpOe d+ioU+5za6y1+/bOt1PD+0ArHjKfW8ieW/MkwWolclTRLBRjTlqEhqzpMHLueaVy Qq6NDQwQgmZgM8kJoUl0L3fOZA7dR4V9LEGpNXG2ummO5637iAYp6n0YxJ+2WvaM 5BboYgVmGojWIgLwkt/wEiXqmzHFWeUElDRNltieLTzT/JyEfU3XWSWJyAVycvdM 95eAKSOaCagP/tJUBaaE7AAIjuXd2E9T8IHE1gXBBZEb64GgQ9YKent/1OkfZv/Q Xf20sIx1ktWMn1IbZz1UW4f3NH0NxSsK9KHSbCPAKRARyPNUYgx2UQ4DOOebAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUpHuduVQ2hpjyquczawF02rBSJLIwHwYDVR0j BBgwFoAU2nN+i7njUZ8Z5gjcPoOfNg0sRiMwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8w ZjBiY2RjMy0wZmVhLTQ3NDctOTkwNy02NTY0ODZiYWU4ZGEvMC9EQTczN0U4QkI5 RTM1MTlGMTlFNjA4REMzRTgzOUYzNjBEMkM0NjIzLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlGMzYwRDJD NDYyMy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMGYwYmNkYzMtMGZlYS00NzQ3LTk5 MDctNjU2NDg2YmFlOGRhLzAvREE3MzdFOEJCOUUzNTE5RjE5RTYwOERDM0U4MzlG MzYwRDJDNDYyMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJ3Vy3bN5UY7PhFT4y0oDosH/QxAVMSPAUNH QQcP3JEBJtOx0cRCSBQtLqZEYCNZ4ZbwsRPUpuAFvpve2nZU88jf/SQNwif3st1E EXMvuV0gAA2MnFwuZk9bjw0AvWcdkfGkxmPWEAXicUojXGKjsbeArroGkF8mdCqU 4nVyGqfu3RdwM/evAxBbfoW7MPZgZRx4Hr2Miw6DXS88U0yUTgS3HW/cbGuPWNx/ JZxrwBnv7ybt9iCHDptdl188uHW1XHLxWBlhPoMyymY0RXpHSFmnW0VrNgwq1A1B I+1PAyPeSvmGTMMF3Xyi8f9GQG/vd6j70KLe1WS81lzcJJnhOOA= -----END CERTIFICATE-----Generated at Tue Dec 23 17:18:58 2025 by rpki-client