This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft File: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft (raw, json) Hash identifier: C8dUwvIi//KjPC7fPIwZNawJw6huMubP950N9WCp4hw= Subject key identifier: 60:09:9A:1E:4B:08:51:7A:FA:37:88:A3:C5:E9:63:0C:CD:20:7D:05 Authority key identifier: AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 Certificate issuer: /CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Certificate serial: 0205FCF1842E3B0935F1E35CF96AA2FF6EF06465 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject info access: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft Manifest number: 019D Signing time: Mon 15 Dec 2025 08:32:12 +0000 Manifest this update: Mon 15 Dec 2025 08:27:12 +0000 Manifest next update: Thu 18 Dec 2025 19:41:12 +0000 Files and hashes: 1: AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl (hash: 17ofJ62VJMsY+gGbpQ9cu6+vxTAgH1tG20FQ1Uv9AvA=) 2: 3130332e3135392e36322e302f32332d3233203d3e20313431353931.roa (hash: HdUQMZ7SOKpAyFz6JesRqd55RtIwIZs1nM/RQd+kRrc=) 3: 3130332e3135392e36332e302f32342d3234203d3e20313431353931.roa (hash: jZdzzwUnE5NySNtgaEjKcLOBnZGLd0OeUfLgUNjS8h8=) 4: 3130332e3135392e36322e302f32342d3234203d3e20313431353931.roa (hash: Ss0eIh55eF1+18NBRc56XTthBY2pyra5MKG9X4X5KfE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Dec 2025 19:41:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:05:fc:f1:84:2e:3b:09:35:f1:e3:5c:f9:6a:a2:ff:6e:f0:64:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=AE4002B7E92AF59C76E7F8BE4B349193F05481B1 Validity Not Before: Dec 15 08:27:12 2025 GMT Not After : Dec 18 19:41:12 2025 GMT Subject: CN=60099A1E4B08517AFA3788A3C5E9630CCD207D05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d5:27:cd:5c:12:f7:01:9d:77:a1:69:40:43: ae:41:ba:b7:69:19:d9:54:a1:a9:35:5b:1f:93:ce: f9:5a:f6:8a:f3:78:73:62:fc:4c:ed:42:39:6a:26: 28:9d:b4:38:f0:0b:d6:8e:1a:f9:8b:b5:e4:fa:2e: 43:d6:04:c1:71:a3:be:d5:02:e6:6a:d5:67:5c:c4: 21:5f:cc:a3:9f:ca:71:f8:61:6e:bb:02:9b:7a:75: d8:56:07:10:ef:05:9f:8c:30:66:38:12:30:da:bb: 96:9f:ac:8f:0d:c8:b9:3c:3e:66:90:f2:af:0b:43: 86:f3:b9:2d:29:64:2c:24:f7:00:44:78:b3:a7:0f: ff:59:82:13:d3:c3:6e:e8:a4:41:6a:a9:61:5c:90: e7:7b:1a:f7:f7:77:ff:ca:58:fc:3e:a9:e1:7f:23: e4:5b:e7:54:10:fa:b6:2e:84:09:66:57:a1:37:3e: 4f:63:5a:01:5a:c7:e2:23:cf:29:4c:28:6a:68:77: 5a:78:d7:52:e6:a3:f2:3f:47:ec:cf:f6:1e:02:70: 2b:8c:1e:d9:bf:95:55:fd:04:a4:32:d3:de:e8:04: 77:e6:bb:e2:4a:41:4e:80:58:b7:5c:98:d5:42:68: da:7d:7d:73:1f:b3:5d:d8:10:f5:25:e5:c6:f5:1f: 14:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:09:9A:1E:4B:08:51:7A:FA:37:88:A3:C5:E9:63:0C:CD:20:7D:05 X509v3 Authority Key Identifier: keyid:AE:40:02:B7:E9:2A:F5:9C:76:E7:F8:BE:4B:34:91:93:F0:54:81:B1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/20c171f4-bd11-48ed-87f0-27ea1209064f/0/AE4002B7E92AF59C76E7F8BE4B349193F05481B1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:51:ae:2a:ee:4a:27:24:9f:a7:07:ef:34:dd:d6:ac:2d:69: a3:53:2c:9f:04:78:98:73:99:23:5e:50:87:eb:83:98:65:0f: 51:1e:b5:b7:8d:57:62:a2:26:33:5f:7a:bc:15:b7:da:99:f0: c3:74:2d:83:13:65:e4:79:0f:05:42:8f:ea:ba:60:4f:2a:82: 80:ab:bc:55:f8:23:49:39:4e:bb:b0:c8:cc:8b:a7:47:4d:33: fd:ee:30:5f:6f:6e:fb:61:12:68:3d:04:96:7a:f8:a5:cc:45: 89:69:38:fe:03:7c:f0:3c:53:a5:a2:ed:0a:8d:7f:f6:bf:d9: e6:be:e3:e5:66:ea:3f:7b:85:23:1b:eb:50:ad:d1:af:03:ec: 94:9d:95:35:55:21:5d:49:c4:f5:78:24:75:50:f6:bb:0e:ba: 0d:a8:ec:7e:e3:77:41:1e:a1:bd:20:52:1a:3e:c1:79:fc:9f: ec:76:62:9f:9c:1b:42:13:ce:48:a2:d3:ee:e1:c7:a0:f7:fc: 63:b4:c6:81:b0:08:a2:c4:4c:b7:b4:06:ec:f6:37:36:52:2e: 92:03:03:13:ba:76:e1:98:7c:76:ea:03:a3:2e:d6:91:e6:fd: a7:76:38:1a:86:e5:65:ef:37:06:30:3b:50:36:50:70:1d:e8: 4b:9d:c8:da -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAgX88YQuOwk18eNc+Wqi/27wZGUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNG MDU0ODFCMTAeFw0yNTEyMTUwODI3MTJaFw0yNTEyMTgxOTQxMTJaMDMxMTAvBgNV BAMTKDYwMDk5QTFFNEIwODUxN0FGQTM3ODhBM0M1RTk2MzBDQ0QyMDdEMDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCt1SfNXBL3AZ13oWlAQ65Burdp GdlUoak1Wx+Tzvla9orzeHNi/EztQjlqJiidtDjwC9aOGvmLteT6LkPWBMFxo77V AuZq1WdcxCFfzKOfynH4YW67Apt6ddhWBxDvBZ+MMGY4EjDau5afrI8NyLk8PmaQ 8q8LQ4bzuS0pZCwk9wBEeLOnD/9ZghPTw27opEFqqWFckOd7Gvf3d//KWPw+qeF/ I+Rb51QQ+rYuhAlmV6E3Pk9jWgFax+IjzylMKGpod1p411Lmo/I/R+zP9h4CcCuM Htm/lVX9BKQy097oBHfmu+JKQU6AWLdcmNVCaNp9fXMfs13YEPUl5cb1HxSTAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUYAmaHksIUXr6N4ijxeljDM0gfQUwHwYDVR0j BBgwFoAUrkACt+kq9Zx25/i+SzSRk/BUgbEwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y MGMxNzFmNC1iZDExLTQ4ZWQtODdmMC0yN2VhMTIwOTA2NGYvMC9BRTQwMDJCN0U5 MkFGNTlDNzZFN0Y4QkU0QjM0OTE5M0YwNTQ4MUIxLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkxOTNGMDU0 ODFCMS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjBjMTcxZjQtYmQxMS00OGVkLTg3 ZjAtMjdlYTEyMDkwNjRmLzAvQUU0MDAyQjdFOTJBRjU5Qzc2RTdGOEJFNEIzNDkx OTNGMDU0ODFCMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAIxRriruSickn6cH7zTd1qwtaaNTLJ8EeJhz mSNeUIfrg5hlD1EetbeNV2KiJjNferwVt9qZ8MN0LYMTZeR5DwVCj+q6YE8qgoCr vFX4I0k5TruwyMyLp0dNM/3uMF9vbvthEmg9BJZ6+KXMRYlpOP4DfPA8U6Wi7QqN f/a/2ea+4+Vm6j97hSMb61Ct0a8D7JSdlTVVIV1JxPV4JHVQ9rsOug2o7H7jd0Ee ob0gUho+wXn8n+x2Yp+cG0ITzkii0+7hx6D3/GO0xoGwCKLETLe0Buz2NzZSLpID AxO6duGYfHbqA6Mu1pHm/ad2OBqG5WXvNwYwO1A2UHAd6EudyNo= -----END CERTIFICATE-----Generated at Wed Dec 17 18:40:28 2025 by rpki-client