This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft File: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft (raw, json) Hash identifier: Ugmdh5En/U9a85mim3m0Dlr7Y4pJ5CNjat2Qt4LCGeQ= Subject key identifier: 30:73:AB:64:2F:B9:B6:B2:B9:1F:3B:E8:E1:24:DA:C5:2C:B6:54:D8 Authority key identifier: 33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 Certificate issuer: /CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Certificate serial: 466EC39926A79E35ADB5822C5151FB089D3D85F5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft Manifest number: 04D1 Signing time: Sat 20 Dec 2025 05:00:43 +0000 Manifest this update: Sat 20 Dec 2025 04:55:43 +0000 Manifest next update: Tue 23 Dec 2025 14:04:43 +0000 Files and hashes: 1: 3130332e3135382e3235322e302f32342d3234203d3e20313431313337.roa (hash: laLJUGonDC43HjG3ZGNawYIEQ9ln67j38UngxvM2zgQ=) 2: 3130332e3135382e3235332e302f32342d3234203d3e20313431313337.roa (hash: Hp5JXQrEPxCMGP++NvFxm2uvusi9TtoQlGvA7/UOH1I=) 3: 323430363a633634303a313a3a2f34382d3438203d3e20313431313337.roa (hash: Mt5SrkBl0TnCuOW6KjiUo7KU17URT0CCUG/IFHUWPhI=) 4: 323430363a633634303a3a2f33322d3332203d3e20313431313337.roa (hash: 5V8TdCs3cgs+nmmoF4z5Y22rIV0qGc1uTgZVGMrslKU=) 5: 3130332e3135382e3235322e302f32332d3233203d3e20313431313337.roa (hash: MfxGUIrhtjjGajjX90ABbBqTVuaaEFP6XuBr1Yslsx0=) 6: 323430363a633634303a323a3a2f34382d3438203d3e20313431313337.roa (hash: DTVsh2XoacQGQ0M4VZPcXWe9xYvlSB7Zv3KJ/YTK1Yw=) 7: 33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl (hash: emc9W1etkXmgOI4hfS5XZOVoJ0KU7ke7CUkBgTJAU6A=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 14:04:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:6e:c3:99:26:a7:9e:35:ad:b5:82:2c:51:51:fb:08:9d:3d:85:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=33FD31277D728C6A6715B913D5A4795CA79CAAD9 Validity Not Before: Dec 20 04:55:43 2025 GMT Not After : Dec 23 14:04:43 2025 GMT Subject: CN=3073AB642FB9B6B2B91F3BE8E124DAC52CB654D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:7e:9d:01:53:e2:26:54:eb:3d:7e:d6:f0:c4: 22:f9:b1:8c:e2:41:10:c6:ae:3c:f1:ab:a1:1a:9d: 4f:12:9d:10:6a:f0:c1:39:0b:02:e7:0f:ca:dd:02: 70:12:b8:0b:cf:31:75:16:c2:c7:36:96:13:22:de: 1b:9d:6a:52:a3:2b:5b:cf:b6:b8:e2:a9:21:23:50: 1a:01:7a:05:23:c0:d9:70:24:c6:84:32:72:b4:59: 5a:0e:63:52:10:7d:97:6f:11:6b:85:6d:86:9e:2c: c3:14:44:68:50:a1:15:38:10:fc:27:88:3b:01:b2: 97:e4:f2:f5:54:98:3f:69:54:d8:ec:a5:bd:14:c2: ea:46:b4:ad:f7:13:5c:0a:f4:08:f2:03:c7:62:05: f6:7a:fd:10:af:0b:32:9f:46:c2:2c:53:ba:a7:03: 15:3f:f1:dd:50:9a:86:04:63:1f:6d:1e:04:ed:c9: 64:c0:bc:52:7e:5b:8a:92:96:e1:6c:11:13:ee:8c: 27:91:ba:f5:2a:f5:da:53:69:64:a6:c7:34:c3:85: 17:51:fa:ac:6f:ac:8c:5d:30:4a:86:ca:2f:55:47: 08:e7:81:08:6b:47:6b:ab:65:f2:63:7d:0d:12:e9: b0:63:2f:b2:b4:96:5f:74:81:2b:13:e1:c9:7a:e2: b4:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:73:AB:64:2F:B9:B6:B2:B9:1F:3B:E8:E1:24:DA:C5:2C:B6:54:D8 X509v3 Authority Key Identifier: keyid:33:FD:31:27:7D:72:8C:6A:67:15:B9:13:D5:A4:79:5C:A7:9C:AA:D9 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/33FD31277D728C6A6715B913D5A4795CA79CAAD9.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2490345e-2d57-4349-b78f-c8b18a442445/0/33FD31277D728C6A6715B913D5A4795CA79CAAD9.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7e:d6:c6:cd:d0:44:06:75:37:91:f3:7f:76:df:ac:49:ba:d5: a7:03:5b:f0:e2:ec:8c:7d:9d:4e:89:08:5c:a3:27:c3:cc:e9: ab:a9:88:e9:35:93:92:db:e1:04:46:4c:8d:77:04:2e:76:71: 3b:99:d1:f5:b1:e2:b5:5b:72:ce:ef:81:c3:65:e4:9c:e4:0a: f4:36:bf:00:d5:9d:65:5a:2a:52:0a:65:73:d5:85:c0:f2:9a: 7c:b6:50:d5:c0:45:ac:14:c7:19:c5:0a:87:6e:17:16:ad:f5: c1:b8:51:ca:40:92:14:04:97:cc:00:4d:05:53:a3:c5:a7:92: fc:f3:f9:9c:38:13:91:58:8d:ea:ab:c4:92:92:c4:56:77:fa: f5:95:d0:67:70:4f:fc:b9:0b:f7:09:9e:19:8c:0e:87:be:a8: cf:3d:98:98:e1:99:4f:5e:0a:36:c0:33:28:28:ce:d2:5a:a9: 2e:5a:a1:34:61:da:00:9f:1c:2d:47:e8:4e:f9:65:60:2d:f5: f1:ce:0e:c7:96:c5:48:e0:0f:7d:9a:fb:8a:e3:45:ef:90:00: a9:d1:51:73:06:31:f2:47:d5:db:95:1d:08:04:44:79:df:f2: 74:70:02:f7:cf:f9:89:25:7a:8d:b2:e2:85:33:f3:6d:91:57: 1d:b1:1c:a5 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURm7DmSannjWttYIsUVH7CJ09hfUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNB NzlDQUFEOTAeFw0yNTEyMjAwNDU1NDNaFw0yNTEyMjMxNDA0NDNaMDMxMTAvBgNV BAMTKDMwNzNBQjY0MkZCOUI2QjJCOTFGM0JFOEUxMjREQUM1MkNCNjU0RDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCsfp0BU+ImVOs9ftbwxCL5sYzi QRDGrjzxq6EanU8SnRBq8ME5CwLnD8rdAnASuAvPMXUWwsc2lhMi3hudalKjK1vP trjiqSEjUBoBegUjwNlwJMaEMnK0WVoOY1IQfZdvEWuFbYaeLMMURGhQoRU4EPwn iDsBspfk8vVUmD9pVNjspb0UwupGtK33E1wK9AjyA8diBfZ6/RCvCzKfRsIsU7qn AxU/8d1QmoYEYx9tHgTtyWTAvFJ+W4qSluFsERPujCeRuvUq9dpTaWSmxzTDhRdR +qxvrIxdMEqGyi9VRwjngQhrR2urZfJjfQ0S6bBjL7K0ll90gSsT4cl64rQxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMHOrZC+5trK5Hzvo4STaxSy2VNgwHwYDVR0j BBgwFoAUM/0xJ31yjGpnFbkT1aR5XKecqtkwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y NDkwMzQ1ZS0yZDU3LTQzNDktYjc4Zi1jOGIxOGE0NDI0NDUvMC8zM0ZEMzEyNzdE NzI4QzZBNjcxNUI5MTNENUE0Nzk1Q0E3OUNBQUQ5LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5NUNBNzlD QUFEOS5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjQ5MDM0NWUtMmQ1Ny00MzQ5LWI3 OGYtYzhiMThhNDQyNDQ1LzAvMzNGRDMxMjc3RDcyOEM2QTY3MTVCOTEzRDVBNDc5 NUNBNzlDQUFEOS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAH7Wxs3QRAZ1N5Hzf3bfrEm61acDW/Di7Ix9 nU6JCFyjJ8PM6aupiOk1k5Lb4QRGTI13BC52cTuZ0fWx4rVbcs7vgcNl5JzkCvQ2 vwDVnWVaKlIKZXPVhcDymny2UNXARawUxxnFCoduFxat9cG4UcpAkhQEl8wATQVT o8Wnkvzz+Zw4E5FYjeqrxJKSxFZ3+vWV0GdwT/y5C/cJnhmMDoe+qM89mJjhmU9e CjbAMygoztJaqS5aoTRh2gCfHC1H6E75ZWAt9fHODseWxUjgD32a+4rjRe+QAKnR UXMGMfJH1duVHQgERHnf8nRwAvfP+Ykleo2y4oUz822RVx2xHKU= -----END CERTIFICATE-----Generated at Sun Dec 21 05:50:46 2025 by rpki-client