This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft File: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft (raw, json) Hash identifier: T8cybZ0T9B4OBxeqhOIGGvnt9SWlrOpMWqfMy2zjkAE= Subject key identifier: 32:44:8A:16:FD:68:C6:22:B7:58:FC:8B:3B:61:D6:96:F0:83:AE:55 Authority key identifier: D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD Certificate issuer: /CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Certificate serial: 031639E58067CB041FE382B6A7D452BA546B4D8D Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft Manifest number: 01EE Signing time: Mon 22 Dec 2025 18:53:04 +0000 Manifest this update: Mon 22 Dec 2025 18:48:04 +0000 Manifest next update: Fri 26 Dec 2025 00:52:04 +0000 Files and hashes: 1: 323030313a6466313a646663303a3a2f34382d3438203d3e20313530353233.roa (hash: bKAiHhmlEj4IgvE00Lo3377sGcryUEP8JoeR2a9n6WM=) 2: 3130332e37352e3133362e302f32332d3233203d3e20313530353233.roa (hash: Hj/Oe+Radw8pbluCv/VN2XxQ+sX4+0STYPYTyYPvjyc=) 3: D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl (hash: FfT8ez3oHchvzAHgMibgFnwnfNt74JaMBDZ2/gCt074=) 4: 3130332e37352e3133362e302f32342d3234203d3e20313530353233.roa (hash: uNA/yO7Jurn3EZm3l95rlsLVpHCEIuUhUwihJjKDdLE=) 5: 3130332e37352e3133372e302f32342d3234203d3e20313530353233.roa (hash: 1yTR12zVNlgV/3lhF5YF8WQX2wlBuTs2UGOXRfg1gpk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 26 Dec 2025 00:52:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:16:39:e5:80:67:cb:04:1f:e3:82:b6:a7:d4:52:ba:54:6b:4d:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D0F79D826E43EAB61A7A834E6A2777C5EC821FFD Validity Not Before: Dec 22 18:48:04 2025 GMT Not After : Dec 26 00:52:04 2025 GMT Subject: CN=32448A16FD68C622B758FC8B3B61D696F083AE55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c6:e7:3c:f3:8d:43:77:fd:30:1c:83:49:14: f8:12:ea:3d:68:61:db:85:db:03:0b:cf:3a:f1:06: 65:c6:df:c5:be:50:58:bb:8f:db:9e:a1:52:f7:5c: 4a:83:d9:bf:d7:2c:34:93:2f:9b:95:16:4a:5b:3b: af:b7:ce:ca:b8:f7:9e:8a:88:17:37:fa:bd:0e:52: 8c:44:f3:9c:ab:cd:00:bd:82:96:40:74:b5:db:36: ee:3f:61:dc:75:a4:a9:42:45:52:84:4f:78:57:c3: 2b:07:b5:c6:99:fa:6e:73:69:47:c2:8a:d0:ac:00: 2a:27:c9:8d:7f:65:5d:b2:a1:fc:27:6e:2c:7f:16: f7:5b:6b:0b:cd:f5:cb:df:83:77:07:e6:c2:e3:9c: e8:02:8a:fd:37:35:95:0d:ba:d2:69:96:cf:4d:78: 27:7a:0e:9d:2b:25:42:15:dd:3e:da:a8:65:28:d5: b5:f4:bc:22:19:e0:a4:fa:6c:0c:4e:39:26:03:cf: 19:2a:48:8e:3e:56:86:0b:ad:91:2b:a5:67:d3:f6: 14:c1:04:8f:9f:93:eb:8f:8d:ca:0a:7b:81:33:25: 6c:bb:e6:17:50:da:30:5f:8b:78:af:2b:3d:cd:86: b1:9d:54:23:c8:d7:66:67:60:f3:1a:61:d4:30:bb: cd:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:44:8A:16:FD:68:C6:22:B7:58:FC:8B:3B:61:D6:96:F0:83:AE:55 X509v3 Authority Key Identifier: keyid:D0:F7:9D:82:6E:43:EA:B6:1A:7A:83:4E:6A:27:77:C5:EC:82:1F:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/28463285-7c28-435a-82bb-fcc32d58020e/0/D0F79D826E43EAB61A7A834E6A2777C5EC821FFD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:54:44:58:d2:35:9d:13:b9:48:42:d2:75:9e:ea:ba:2c:c1: 49:33:5d:95:60:c8:cf:fa:0b:44:6d:43:06:a9:ff:f0:f8:b2: d2:32:3e:21:a5:79:77:16:fa:34:90:03:a9:70:aa:c7:c3:f9: f5:72:bf:65:12:76:aa:80:52:47:33:46:95:91:05:ef:58:37: dc:95:b3:c0:3a:21:62:46:1b:f5:23:4f:e9:2b:51:e7:db:4a: 81:64:78:61:2f:19:4a:38:de:75:17:ee:2f:6e:7a:34:d3:0e: b1:e5:bc:f6:d6:fd:1d:d2:03:8e:13:ac:3c:cc:c8:5e:7b:dc: 87:c6:4c:87:72:0e:83:f6:18:b0:27:06:01:c8:1e:f5:6b:4b: 8c:72:96:00:7a:65:04:b8:83:3a:7b:2d:c2:07:cb:e3:7c:44: 03:e9:0d:dc:07:0e:36:52:e2:64:05:18:8a:61:ed:15:a8:c4: b1:8c:78:7a:39:9e:4a:12:5b:bb:37:9c:22:2b:d6:85:69:92: fa:54:63:34:75:d9:b9:41:84:7f:32:83:4f:50:d1:8c:fd:f0: 30:60:4b:a3:bb:df:e3:e6:39:84:06:90:a8:05:a4:8a:6d:67: 1c:cf:21:a1:ef:56:d0:03:8e:d9:88:f5:6e:92:91:9e:17:6a: fe:6f:c2:b6 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUAxY55YBnywQf44K2p9RSulRrTY0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVF QzgyMUZGRDAeFw0yNTEyMjIxODQ4MDRaFw0yNTEyMjYwMDUyMDRaMDMxMTAvBgNV BAMTKDMyNDQ4QTE2RkQ2OEM2MjJCNzU4RkM4QjNCNjFENjk2RjA4M0FFNTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDIxuc8841Dd/0wHINJFPgS6j1o YduF2wMLzzrxBmXG38W+UFi7j9ueoVL3XEqD2b/XLDSTL5uVFkpbO6+3zsq4956K iBc3+r0OUoxE85yrzQC9gpZAdLXbNu4/Ydx1pKlCRVKET3hXwysHtcaZ+m5zaUfC itCsAConyY1/ZV2yofwnbix/FvdbawvN9cvfg3cH5sLjnOgCiv03NZUNutJpls9N eCd6Dp0rJUIV3T7aqGUo1bX0vCIZ4KT6bAxOOSYDzxkqSI4+VoYLrZErpWfT9hTB BI+fk+uPjcoKe4EzJWy75hdQ2jBfi3ivKz3NhrGdVCPI12ZnYPMaYdQwu80RAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUMkSKFv1oxiK3WPyLO2HWlvCDrlUwHwYDVR0j BBgwFoAU0Pedgm5D6rYaeoNOaid3xeyCH/0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ODQ2MzI4NS03YzI4LTQzNWEtODJiYi1mY2MzMmQ1ODAyMGUvMC9EMEY3OUQ4MjZF NDNFQUI2MUE3QTgzNEU2QTI3NzdDNUVDODIxRkZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3QzVFQzgy MUZGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMjg0NjMyODUtN2MyOC00MzVhLTgy YmItZmNjMzJkNTgwMjBlLzAvRDBGNzlEODI2RTQzRUFCNjFBN0E4MzRFNkEyNzc3 QzVFQzgyMUZGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAE1URFjSNZ0TuUhC0nWe6roswUkzXZVgyM/6 C0RtQwap//D4stIyPiGleXcW+jSQA6lwqsfD+fVyv2USdqqAUkczRpWRBe9YN9yV s8A6IWJGG/UjT+krUefbSoFkeGEvGUo43nUX7i9uejTTDrHlvPbW/R3SA44TrDzM yF573IfGTIdyDoP2GLAnBgHIHvVrS4xylgB6ZQS4gzp7LcIHy+N8RAPpDdwHDjZS 4mQFGIph7RWoxLGMeHo5nkoSW7s3nCIr1oVpkvpUYzR12blBhH8yg09Q0Yz98DBg S6O73+PmOYQGkKgFpIptZxzPIaHvVtADjtmI9W6SkZ4Xav5vwrY= -----END CERTIFICATE-----Generated at Wed Dec 24 22:08:18 2025 by rpki-client