This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft File: D68CA7C6F514D7168C00790717FB869AF68B125E.mft (raw, json) Hash identifier: nSLy/nwuxp03PYaEbG+C3O+xtXkDeqkwbL26NhddJKw= Subject key identifier: AA:87:57:BD:F5:B1:9B:EA:DB:7B:AF:4E:BC:1A:DB:8D:24:43:68:F0 Authority key identifier: D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E Certificate issuer: /CN=D68CA7C6F514D7168C00790717FB869AF68B125E Certificate serial: 588AB098F5FE74B0023AEBA4375369AC45A70C Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject info access: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft Manifest number: 0278 Signing time: Wed 17 Dec 2025 09:30:53 +0000 Manifest this update: Wed 17 Dec 2025 09:25:53 +0000 Manifest next update: Sat 20 Dec 2025 16:49:53 +0000 Files and hashes: 1: 323030313a6466313a363338303a3a2f34382d3438203d3e203435333035.roa (hash: G7BNKn0aQeDATXJ1JamzPIxZOqsRSSDm9xJMQAbHt5c=) 2: 3130332e3134322e3235342e302f32332d3234203d3e20313339333831.roa (hash: gV2Q8xF8XiWikE1+w9yu7jENKeKHaDELW9P6oOlSzDE=) 3: 3130332e3134322e3235342e302f32342d3234203d3e20313339333831.roa (hash: xpJYN2koDz6242yH404bncg8zalibRwq73KpJsJcVB8=) 4: 3130332e3134322e3235352e302f32342d3234203d3e203435333035.roa (hash: fW5qne1R9fTa45nGDciUROmSkAV8mbUeGR9m/oXMOAw=) 5: 3130332e3134322e3235342e302f32332d3234203d3e203435333035.roa (hash: 09EcthFcc0U294qSUk1qjMUpfEmQzlaHp9ePt/3ow3Q=) 6: D68CA7C6F514D7168C00790717FB869AF68B125E.crl (hash: Mq/xSNZfjQxU4Ua9g6JntDiI9vQ6eFCVqp/2tT7IhAA=) 7: 3130332e3134322e3235352e302f32342d3234203d3e20313339333831.roa (hash: tArDMQ0CljWlxInpOnDNWhLbYH4HF1sjePzkXRXnEac=) 8: 323030313a6466313a363338303a3a2f34382d3438203d3e20313339333831.roa (hash: vuTTJNURLP5vgJImsWTQOQLshtByIl8yIWAQC+TExAY=) 9: 3130332e3134322e3235342e302f32342d3234203d3e203435333035.roa (hash: ebXS+Tyb8iuyOHa8yQE2FE8hZAgaawDNcd7a/TUN4jY=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Dec 2025 16:49:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:8a:b0:98:f5:fe:74:b0:02:3a:eb:a4:37:53:69:ac:45:a7:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D68CA7C6F514D7168C00790717FB869AF68B125E Validity Not Before: Dec 17 09:25:53 2025 GMT Not After : Dec 20 16:49:53 2025 GMT Subject: CN=AA8757BDF5B19BEADB7BAF4EBC1ADB8D244368F0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:37:86:d9:03:1a:29:0f:ca:84:e3:19:97:b1: 41:e0:4c:4d:a0:ec:f3:ec:be:6c:88:31:0a:d6:be: d3:38:ff:e3:ae:cd:ab:a5:dc:f3:92:5c:b1:b6:19: bc:e3:5e:c8:51:1c:64:45:4d:cb:99:7b:25:89:de: 1d:42:c5:1d:e8:8b:a6:a7:ba:d6:1d:0a:55:52:a1: 5d:fb:db:a6:e6:db:37:4a:93:c5:c5:03:87:45:46: 27:ac:d9:cd:a0:51:91:f8:88:99:45:8e:f0:d1:5d: 61:3b:75:47:8c:02:9e:76:01:74:a0:0f:ec:da:13: e1:79:85:a1:aa:04:26:03:01:42:dd:db:7c:9f:8e: 9a:7a:cd:d4:d6:bc:5c:ce:06:18:e0:ee:83:6d:9e: 22:c4:0e:e6:95:16:69:fa:8e:4c:20:10:20:2c:fc: 65:4d:63:13:73:46:4a:24:0b:f8:fb:71:a4:99:c6: 72:39:a0:79:d4:06:c1:44:46:f7:20:c7:dc:5d:26: 6d:90:48:a8:3a:85:47:9b:44:d0:9b:59:32:a1:3e: bd:e1:5d:80:f7:e2:dd:1a:34:b1:b7:07:73:58:9e: 8d:d0:e9:22:a1:43:19:89:74:81:a9:6c:22:66:d9: c1:e4:d7:b5:bf:7a:42:83:db:99:bc:ac:c8:2a:16: 81:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:87:57:BD:F5:B1:9B:EA:DB:7B:AF:4E:BC:1A:DB:8D:24:43:68:F0 X509v3 Authority Key Identifier: keyid:D6:8C:A7:C6:F5:14:D7:16:8C:00:79:07:17:FB:86:9A:F6:8B:12:5E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D68CA7C6F514D7168C00790717FB869AF68B125E.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/1ddc1dd8-6d25-47c7-aaa4-bddf1b9d677e/0/D68CA7C6F514D7168C00790717FB869AF68B125E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1e:bd:9b:ac:ff:65:6f:db:67:11:fa:e1:16:d0:c7:2b:3a:c6: 30:1c:dc:3e:0c:49:32:af:c8:46:f3:94:d0:04:8a:97:a4:00: dd:03:74:60:d7:15:9a:85:58:44:7f:85:6e:4e:83:6d:41:ce: 89:3f:46:16:f0:5f:a8:97:f8:23:a3:3e:de:7d:aa:9f:91:6b: eb:55:f9:34:c8:d7:2b:ac:ba:98:df:d8:00:25:83:3b:8c:e5: dc:0f:91:53:84:d4:5b:13:f9:f4:8f:42:da:27:18:d7:11:b2: 15:dc:72:87:0b:89:0e:05:fc:a5:c0:e4:63:8a:68:39:2d:12: 8f:60:62:54:fe:6b:0c:1f:53:51:5e:af:22:aa:a7:da:76:dc: 12:0f:a4:fd:c2:fe:6c:ff:67:db:f0:f2:c9:8a:85:45:7f:2c: e7:f8:77:d6:24:75:19:0a:24:c4:ff:63:fe:8d:26:ca:72:92: 61:16:2d:03:79:8a:36:72:c8:32:3d:b4:56:8b:c0:f8:84:81: 68:c7:ba:da:03:c6:18:56:c8:36:c0:0b:5a:1f:2a:af:dd:4a: 86:94:f4:97:99:15:e0:58:f6:2c:e8:55:60:5a:9a:94:92:a4: 12:19:14:76:86:ce:e3:77:3d:8d:fb:90:bc:cd:a9:4d:a3:63: 94:b6:71:d3 -----BEGIN CERTIFICATE----- MIIFMTCCBBmgAwIBAgITWIqwmPX+dLACOuukN1NprEWnDDANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhENjhDQTdDNkY1MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2 OEIxMjVFMB4XDTI1MTIxNzA5MjU1M1oXDTI1MTIyMDE2NDk1M1owMzExMC8GA1UE AxMoQUE4NzU3QkRGNUIxOUJFQURCN0JBRjRFQkMxQURCOEQyNDQzNjhGMDCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALM3htkDGikPyoTjGZexQeBMTaDs 8+y+bIgxCta+0zj/467Nq6Xc85JcsbYZvONeyFEcZEVNy5l7JYneHULFHeiLpqe6 1h0KVVKhXfvbpubbN0qTxcUDh0VGJ6zZzaBRkfiImUWO8NFdYTt1R4wCnnYBdKAP 7NoT4XmFoaoEJgMBQt3bfJ+OmnrN1Na8XM4GGODug22eIsQO5pUWafqOTCAQICz8 ZU1jE3NGSiQL+PtxpJnGcjmgedQGwURG9yDH3F0mbZBIqDqFR5tE0JtZMqE+veFd gPfi3Ro0sbcHc1iejdDpIqFDGYl0galsImbZweTXtb96QoPbmbysyCoWgcMCAwEA AaOCAjwwggI4MB0GA1UdDgQWBBSqh1e99bGb6tt7r068GtuNJENo8DAfBgNVHSME GDAWgBTWjKfG9RTXFowAeQcX+4aa9osSXjAOBgNVHQ8BAf8EBAMCB4AwgYUGA1Ud HwR+MHwweqB4oHaGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFk ZGMxZGQ4LTZkMjUtNDdjNy1hYWE0LWJkZGYxYjlkNjc3ZS8wL0Q2OENBN0M2RjUx NEQ3MTY4QzAwNzkwNzE3RkI4NjlBRjY4QjEyNUUuY3JsMHQGCCsGAQUFBwEBBGgw ZjBkBggrBgEFBQcwAoZYcnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8v SUROSUMtSUQvMi9ENjhDQTdDNkY1MTRENzE2OEMwMDc5MDcxN0ZCODY5QUY2OEIx MjVFLmNlcjCBkwYIKwYBBQUHAQsEgYYwgYMwgYAGCCsGAQUFBzALhnRyc3luYzov L3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8xZGRjMWRkOC02ZDI1LTQ3YzctYWFh NC1iZGRmMWI5ZDY3N2UvMC9ENjhDQTdDNkY1MTRENzE2OEMwMDc5MDcxN0ZCODY5 QUY2OEIxMjVFLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADANBgkqhkiG9w0BAQsFAAOCAQEAHr2brP9lb9tnEfrhFtDHKzrGMBzcPgxJMq/I RvOU0ASKl6QA3QN0YNcVmoVYRH+Fbk6DbUHOiT9GFvBfqJf4I6M+3n2qn5Fr61X5 NMjXK6y6mN/YACWDO4zl3A+RU4TUWxP59I9C2icY1xGyFdxyhwuJDgX8pcDkY4po OS0Sj2BiVP5rDB9TUV6vIqqn2nbcEg+k/cL+bP9n2/DyyYqFRX8s5/h31iR1GQok xP9j/o0mynKSYRYtA3mKNnLIMj20VovA+ISBaMe62gPGGFbINsALWh8qr91KhpT0 l5kV4Fj2LOhVYFqalJKkEhkUdobO43c9jfuQvM2pTaNjlLZx0w== -----END CERTIFICATE-----Generated at Fri Dec 19 23:39:58 2025 by rpki-client