This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft File: D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft (raw, json) Hash identifier: LEZMnzJo7mCGnLQWi6yB7lMlUH93GYEExpQsHzqCVSk= Subject key identifier: F3:7A:94:3F:48:59:83:E3:6F:1F:1B:FC:16:FA:AF:78:B8:78:56:EF Authority key identifier: D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 Certificate issuer: /CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Certificate serial: 471759BCB0D486297B2E6C1448A51B6CE9BA59B3 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft Manifest number: 0274 Signing time: Thu 18 Dec 2025 02:03:06 +0000 Manifest this update: Thu 18 Dec 2025 01:58:06 +0000 Manifest next update: Sun 21 Dec 2025 08:08:06 +0000 Files and hashes: 1: D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl (hash: HouNJv1rcNZAduZXAatBK8RUp6QgARQHdKXfnAVQYwY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 08:08:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:17:59:bc:b0:d4:86:29:7b:2e:6c:14:48:a5:1b:6c:e9:ba:59:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D2248A04D994A2569A8FF645D4B025A9F7CB2FE7 Validity Not Before: Dec 18 01:58:06 2025 GMT Not After : Dec 21 08:08:06 2025 GMT Subject: CN=F37A943F485983E36F1F1BFC16FAAF78B87856EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:96:08:71:3b:f6:87:c6:52:a1:bd:4a:f5: db:1a:17:b3:95:1c:e9:a7:b5:eb:52:17:6b:6e:1c: c8:4a:25:b0:b1:fa:27:ea:97:a9:22:3c:10:98:1f: e0:39:35:19:52:cd:42:24:7f:49:12:c7:25:66:44: d8:8e:72:66:bd:68:82:49:b4:19:04:ad:b3:3c:b0: ce:64:ad:0c:c6:48:6b:17:0f:e5:66:77:07:7d:4f: 46:11:8d:24:1d:07:22:e3:19:2a:3a:4a:b8:d0:39: 34:82:d5:78:ac:8d:30:50:e3:42:91:08:a8:85:67: 7b:71:a9:cb:b3:4e:55:df:be:1e:18:aa:b0:7e:b6: 24:b0:12:bf:83:97:59:18:0c:ab:70:65:2b:0a:8d: dd:79:4d:92:86:32:db:17:95:75:ae:bf:78:ea:9f: 02:aa:82:bd:4b:b8:5f:fa:31:b1:02:af:b3:33:32: 9b:39:9d:86:43:88:48:da:d1:e2:94:d1:24:ce:aa: ad:f5:b0:fd:61:e6:91:b8:3d:9f:fa:26:22:4f:a3: 50:ca:e3:8c:45:3a:8c:32:9c:65:d7:7d:75:5f:27: 5d:ec:7b:84:47:e1:c2:b8:65:d1:1e:75:f8:47:3e: e4:26:c5:05:18:3c:38:0a:7e:43:97:7c:fa:85:76: 67:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7A:94:3F:48:59:83:E3:6F:1F:1B:FC:16:FA:AF:78:B8:78:56:EF X509v3 Authority Key Identifier: keyid:D2:24:8A:04:D9:94:A2:56:9A:8F:F6:45:D4:B0:25:A9:F7:CB:2F:E7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1a3cc2c1-146c-48a9-b003-7bd83822084d/0/D2248A04D994A2569A8FF645D4B025A9F7CB2FE7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption e2:ee:b8:a1:77:4d:1e:b7:67:cd:4e:ab:62:26:a9:88:5c:95: 9f:be:94:a4:ab:1a:65:4d:af:24:5f:23:6b:36:47:da:ae:e2: 71:76:af:6f:57:ec:7c:49:e4:36:99:98:c9:f6:28:bd:ad:9e: dd:59:77:6b:63:05:20:a2:40:a3:c3:0b:81:26:86:d1:7f:a1: 58:1a:d4:83:de:28:52:09:a9:31:35:43:84:28:ea:83:6e:46: 3c:6d:1d:0a:13:ec:fe:cc:7d:f3:49:2d:5a:e4:14:2a:0b:ca: 5d:8e:c3:5d:16:a5:81:d2:81:c4:59:3b:79:9d:75:00:49:56: a5:16:c0:8a:64:21:8f:18:4b:68:39:e5:51:fc:7b:1f:ac:9c: d6:f5:30:f8:01:61:cc:27:14:02:d0:39:1f:85:d9:c4:34:68: 89:0f:f7:cc:8f:ad:6d:0b:a3:d4:77:9c:db:1a:27:74:41:3b: 8e:61:47:90:e4:5f:7c:e5:ca:58:ba:82:b6:fd:3b:e3:6e:b9: 4c:b3:57:47:0a:f1:68:a0:0a:28:bc:08:90:b1:a3:fb:c4:df: e9:ce:34:dc:89:3a:6d:52:f8:b5:47:a3:ee:14:86:da:a3:9c: ba:af:d0:bb:1f:3c:92:be:a5:bd:7e:20:ac:98:0f:52:43:42: 33:4a:02:9b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURxdZvLDUhil7LmwUSKUbbOm6WbMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlG N0NCMkZFNzAeFw0yNTEyMTgwMTU4MDZaFw0yNTEyMjEwODA4MDZaMDMxMTAvBgNV BAMTKEYzN0E5NDNGNDg1OTgzRTM2RjFGMUJGQzE2RkFBRjc4Qjg3ODU2RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMSZYIcTv2h8ZSob1K9dsaF7OV HOmntetSF2tuHMhKJbCx+ifql6kiPBCYH+A5NRlSzUIkf0kSxyVmRNiOcma9aIJJ tBkErbM8sM5krQzGSGsXD+Vmdwd9T0YRjSQdByLjGSo6SrjQOTSC1XisjTBQ40KR CKiFZ3txqcuzTlXfvh4YqrB+tiSwEr+Dl1kYDKtwZSsKjd15TZKGMtsXlXWuv3jq nwKqgr1LuF/6MbECr7MzMps5nYZDiEja0eKU0STOqq31sP1h5pG4PZ/6JiJPo1DK 44xFOowynGXXfXVfJ13se4RH4cK4ZdEedfhHPuQmxQUYPDgKfkOXfPqFdmclAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU83qUP0hZg+NvHxv8FvqveLh4Vu8wHwYDVR0j BBgwFoAU0iSKBNmUolaaj/ZF1LAlqffLL+cwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8x YTNjYzJjMS0xNDZjLTQ4YTktYjAwMy03YmQ4MzgyMjA4NGQvMC9EMjI0OEEwNEQ5 OTRBMjU2OUE4RkY2NDVENEIwMjVBOUY3Q0IyRkU3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1QTlGN0NC MkZFNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMWEzY2MyYzEtMTQ2Yy00OGE5LWIw MDMtN2JkODM4MjIwODRkLzAvRDIyNDhBMDREOTk0QTI1NjlBOEZGNjQ1RDRCMDI1 QTlGN0NCMkZFNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAOLuuKF3TR63Z81Oq2ImqYhclZ++lKSrGmVN ryRfI2s2R9qu4nF2r29X7HxJ5DaZmMn2KL2tnt1Zd2tjBSCiQKPDC4EmhtF/oVga 1IPeKFIJqTE1Q4Qo6oNuRjxtHQoT7P7MffNJLVrkFCoLyl2Ow10WpYHSgcRZO3md dQBJVqUWwIpkIY8YS2g55VH8ex+snNb1MPgBYcwnFALQOR+F2cQ0aIkP98yPrW0L o9R3nNsaJ3RBO45hR5DkX3zlyli6grb9O+NuuUyzV0cK8WigCii8CJCxo/vE3+nO NNyJOm1S+LVHo+4UhtqjnLqv0LsfPJK+pb1+IKyYD1JDQjNKAps= -----END CERTIFICATE-----Generated at Fri Dec 19 03:05:40 2025 by rpki-client