This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft File: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft (raw, json) Hash identifier: /y2cyTGch38wV5fEuj/mfAS+4Y5jzOqrd7P/Dmgf+PY= Subject key identifier: 6D:14:9C:8A:BE:49:BB:26:83:6B:D5:12:BC:01:73:74:F1:42:C8:4B Authority key identifier: 2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F Certificate issuer: /CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Certificate serial: 10AA92AB822D4C4C4DB101E9F0A1D8B2408055AF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft Manifest number: 011F Signing time: Wed 17 Dec 2025 01:00:56 +0000 Manifest this update: Wed 17 Dec 2025 00:55:56 +0000 Manifest next update: Sat 20 Dec 2025 10:32:56 +0000 Files and hashes: 1: 2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl (hash: X7bdHoAL7W+2y+0TWRDme9OwD2zwTWE/1Dj4eDiJ26E=) 2: 3130332e3135362e3131302e302f32342d3234203d3e20313431303839.roa (hash: oX2rRL4yj7u4AFId0yrPwmCzP4drZZYO3pu9upGhNCY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 10:32:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:aa:92:ab:82:2d:4c:4c:4d:b1:01:e9:f0:a1:d8:b2:40:80:55:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D517DC024CEFCFAF80CF7FD392246894E94F12F Validity Not Before: Dec 17 00:55:56 2025 GMT Not After : Dec 20 10:32:56 2025 GMT Subject: CN=6D149C8ABE49BB26836BD512BC017374F142C84B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:c6:68:f8:e9:92:e4:db:cf:6d:06:45:8f:9e: 89:67:c3:eb:af:0a:74:fb:c5:bb:8f:20:45:83:f7: 21:58:c5:ca:e4:dd:80:bd:3a:7a:ba:8e:39:b4:f0: 11:ba:06:77:72:3a:b4:b3:8e:fa:25:9d:86:e4:38: e1:7d:8d:da:54:60:ec:64:3c:5a:e8:be:22:d7:cc: 7a:e6:f4:e0:ae:9f:3d:f2:1d:50:98:c3:2f:a0:03: d4:1c:b3:67:6c:70:d8:af:1f:65:47:12:55:45:bd: 0c:e1:23:9c:83:3d:78:b6:e8:ad:ad:88:57:36:4b: c7:2d:5e:34:76:ca:ec:f8:7f:90:bc:db:67:85:89: 09:63:34:44:3b:58:89:88:8c:38:0d:f1:62:4a:b6: 8c:26:09:d0:a2:a9:55:70:ef:67:64:bf:1e:86:c1: c8:aa:ed:c7:c7:2c:68:b2:03:c8:12:ea:bc:87:ed: 99:df:9c:82:6e:ba:23:f2:89:0a:af:dd:69:f5:af: 5b:f2:ad:8c:69:27:7d:e9:ab:ed:e8:b9:ec:95:f0: d4:56:e8:cb:ad:27:37:3f:58:0d:f6:17:7a:ee:d7: 78:8f:d9:b4:70:a5:fa:8c:f1:8b:3b:0b:43:bb:d8: 4d:b6:27:b3:4f:91:ff:a8:fd:d6:e5:a4:a7:09:a0: 57:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:14:9C:8A:BE:49:BB:26:83:6B:D5:12:BC:01:73:74:F1:42:C8:4B X509v3 Authority Key Identifier: keyid:2D:51:7D:C0:24:CE:FC:FA:F8:0C:F7:FD:39:22:46:89:4E:94:F1:2F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D517DC024CEFCFAF80CF7FD392246894E94F12F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1433a1c6-0f70-4c98-96b0-cab58126ab94/0/2D517DC024CEFCFAF80CF7FD392246894E94F12F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:3a:48:65:e0:5c:bf:ed:c8:ce:56:a6:95:38:1d:d2:e3:72: ab:d6:63:05:33:01:df:13:c8:06:a5:7f:64:e6:fa:a4:c0:e3: a1:d5:48:d4:55:b3:e6:c2:25:07:c6:13:01:19:72:2c:9e:36: be:2a:a8:47:ef:35:64:70:b6:98:86:ab:b5:d5:2d:26:55:4d: b1:00:bf:d9:f4:7e:10:1b:b0:76:e7:87:35:e6:1b:45:05:2a: a2:83:ff:22:c1:45:67:5a:b9:8a:d3:26:8b:d3:93:45:74:6c: 19:72:71:06:22:80:e9:de:67:b1:ff:0d:96:58:8d:9f:d8:2c: 31:16:bb:cb:88:9b:68:64:c3:3a:bf:96:35:08:65:53:f5:14: e0:85:74:0b:39:b3:cf:5c:e8:3a:d7:ae:9f:96:66:b8:0c:de: d2:e0:e9:c0:9c:04:64:8e:ba:55:b7:76:86:5b:1d:2b:64:5b: 7a:8a:55:7d:12:a0:38:fd:3e:3d:0e:b3:89:95:dd:a2:39:0c: 58:e0:72:19:4e:4b:96:c3:fb:fa:bc:66:bb:da:f6:bc:b8:a8: 97:c1:cf:46:5f:f6:15:84:8f:fe:2a:d6:c9:b2:17:d3:f6:c1: b4:eb:c8:ed:80:82:3b:b4:38:35:3d:49:df:ab:6c:e1:e9:52: 0f:2a:4c:e4 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUEKqSq4ItTExNsQHp8KHYskCAVa8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0 RTk0RjEyRjAeFw0yNTEyMTcwMDU1NTZaFw0yNTEyMjAxMDMyNTZaMDMxMTAvBgNV BAMTKDZEMTQ5QzhBQkU0OUJCMjY4MzZCRDUxMkJDMDE3Mzc0RjE0MkM4NEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTxmj46ZLk289tBkWPnolnw+uv CnT7xbuPIEWD9yFYxcrk3YC9Onq6jjm08BG6BndyOrSzjvolnYbkOOF9jdpUYOxk PFroviLXzHrm9OCunz3yHVCYwy+gA9Qcs2dscNivH2VHElVFvQzhI5yDPXi26K2t iFc2S8ctXjR2yuz4f5C822eFiQljNEQ7WImIjDgN8WJKtowmCdCiqVVw72dkvx6G wciq7cfHLGiyA8gS6ryH7ZnfnIJuuiPyiQqv3Wn1r1vyrYxpJ33pq+3oueyV8NRW 6MutJzc/WA32F3ru13iP2bRwpfqM8Ys7C0O72E22J7NPkf+o/dblpKcJoFdJAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUbRScir5JuyaDa9USvAFzdPFCyEswHwYDVR0j BBgwFoAULVF9wCTO/Pr4DPf9OSJGiU6U8S8wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x NDMzYTFjNi0wZjcwLTRjOTgtOTZiMC1jYWI1ODEyNmFiOTQvMC8yRDUxN0RDMDI0 Q0VGQ0ZBRjgwQ0Y3RkQzOTIyNDY4OTRFOTRGMTJGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2ODk0RTk0 RjEyRi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMTQzM2ExYzYtMGY3MC00Yzk4LTk2 YjAtY2FiNTgxMjZhYjk0LzAvMkQ1MTdEQzAyNENFRkNGQUY4MENGN0ZEMzkyMjQ2 ODk0RTk0RjEyRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH46SGXgXL/tyM5WppU4HdLjcqvWYwUzAd8T yAalf2Tm+qTA46HVSNRVs+bCJQfGEwEZciyeNr4qqEfvNWRwtpiGq7XVLSZVTbEA v9n0fhAbsHbnhzXmG0UFKqKD/yLBRWdauYrTJovTk0V0bBlycQYigOneZ7H/DZZY jZ/YLDEWu8uIm2hkwzq/ljUIZVP1FOCFdAs5s89c6DrXrp+WZrgM3tLg6cCcBGSO ulW3doZbHStkW3qKVX0SoDj9Pj0Os4mV3aI5DFjgchlOS5bD+/q8Zrva9ry4qJfB z0Zf9hWEj/4q1smyF9P2wbTryO2Agju0ODU9Sd+rbOHpUg8qTOQ= -----END CERTIFICATE-----Generated at Fri Dec 19 11:17:29 2025 by rpki-client