This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: LBQA+wX8gaszO1QbHUs6XIRw4fRQrh4idF6Y6wqD/gQ= Subject key identifier: E5:67:76:B6:FE:D1:E5:22:16:46:55:2C:99:E2:3F:33:CC:01:BC:67 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 3BC9C257D4D578338F4DE4EBDACA6C8CA44920F8 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0258 Signing time: Sun 21 Dec 2025 00:10:05 +0000 Manifest this update: Sun 21 Dec 2025 00:05:05 +0000 Manifest next update: Wed 24 Dec 2025 02:12:05 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: sSLwAw6Cy6AyNlh4z5FGgMsiSgg4QwMl4M5z+Bw3BwQ=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 02:12:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c9:c2:57:d4:d5:78:33:8f:4d:e4:eb:da:ca:6c:8c:a4:49:20:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Dec 21 00:05:05 2025 GMT Not After : Dec 24 02:12:05 2025 GMT Subject: CN=E56776B6FED1E5221646552C99E23F33CC01BC67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:aa:5e:ef:0a:97:f9:64:0a:eb:62:03:af:c9: ae:82:61:d9:e9:50:bf:a0:30:80:3f:68:da:2d:44: 68:14:75:b8:ac:aa:6f:3e:d5:c7:12:0a:3e:73:95: ea:b3:b2:b2:25:20:8e:61:ba:37:87:b9:0b:be:27: 89:20:20:79:51:9e:48:86:ca:ff:c0:a8:e6:bc:4e: e5:d2:3d:7f:b4:bf:b7:8d:96:63:77:70:2e:8b:5f: e6:b6:f9:77:c1:79:e8:d6:d4:48:ca:54:c0:8d:b8: 18:7e:fc:f1:81:be:f1:46:8f:a7:de:89:69:a4:ea: e3:06:d9:04:a7:94:6d:8d:bf:4c:68:13:03:da:ad: bc:54:48:0b:51:b6:ec:b5:34:65:6a:d2:2d:51:eb: 7d:fc:e0:fc:c6:06:18:2c:6b:36:00:63:f6:d9:ff: 0e:9b:83:07:80:df:0e:3d:72:ca:23:58:77:6e:13: 59:1b:14:f6:4a:47:dc:fe:8f:2b:48:fe:22:5f:8d: 95:88:b3:e3:c8:c9:43:69:b2:5f:22:a2:44:e7:62: 76:5d:03:2c:5d:43:b5:16:0d:28:27:5d:89:37:79: a2:22:80:17:6e:d3:5f:70:23:9c:27:8b:96:99:9e: 82:37:b7:0d:1f:2d:3c:ae:0c:dc:57:84:08:6c:45: b2:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:67:76:B6:FE:D1:E5:22:16:46:55:2C:99:E2:3F:33:CC:01:BC:67 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:99:dd:6f:7b:6d:79:88:b0:d4:7d:4c:3e:b2:9c:c4:9a:ef: 27:17:c6:34:00:d7:48:5f:a1:cf:ed:a1:c2:e0:08:73:74:44: f0:e8:dd:93:d0:93:a1:66:0b:fe:a4:c1:ef:94:7c:d5:67:40: 57:e0:c7:f8:0f:14:7c:37:88:ac:91:d2:d1:c2:32:22:06:2a: 07:49:a4:af:4f:ed:9c:06:5c:ea:9b:af:38:05:d3:12:25:91: de:3d:01:26:53:85:fc:f2:d1:47:0c:7f:02:87:88:92:4e:e8: 3b:d0:93:1a:58:77:d4:ab:8c:53:9d:6c:0a:54:7c:cc:a1:dc: d0:ee:e0:24:8f:4c:65:19:82:d0:c4:d5:23:67:2c:2c:db:b2: cb:06:53:e5:e2:ff:17:4d:d8:89:0f:d1:b4:0d:26:f7:68:e8: 08:c2:b2:7d:5e:7d:78:c3:fd:77:14:cc:4a:de:35:ae:c8:f7: ca:e6:d9:0f:57:e9:c1:1f:33:a4:f8:2e:51:cd:b3:ae:7c:87: 2e:0f:28:6f:f0:3a:13:60:64:95:5b:62:dc:d7:a5:f6:15:dd: 0f:92:46:ba:c7:9a:1e:bc:32:28:bf:ef:07:0b:62:24:89:4c: 6d:65:10:37:1f:e1:f5:f8:da:c8:bf:93:7b:ef:de:04:60:b5: 05:6a:04:6b -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUO8nCV9TVeDOPTeTr2spsjKRJIPgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTEyMjEwMDA1MDVaFw0yNTEyMjQwMjEyMDVaMDMxMTAvBgNV BAMTKEU1Njc3NkI2RkVEMUU1MjIxNjQ2NTUyQzk5RTIzRjMzQ0MwMUJDNjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDLql7vCpf5ZArrYgOvya6CYdnp UL+gMIA/aNotRGgUdbisqm8+1ccSCj5zleqzsrIlII5hujeHuQu+J4kgIHlRnkiG yv/AqOa8TuXSPX+0v7eNlmN3cC6LX+a2+XfBeejW1EjKVMCNuBh+/PGBvvFGj6fe iWmk6uMG2QSnlG2Nv0xoEwParbxUSAtRtuy1NGVq0i1R63384PzGBhgsazYAY/bZ /w6bgweA3w49csojWHduE1kbFPZKR9z+jytI/iJfjZWIs+PIyUNpsl8iokTnYnZd AyxdQ7UWDSgnXYk3eaIigBdu019wI5wni5aZnoI3tw0fLTyuDNxXhAhsRbK7AgMB AAGjggI8MIICODAdBgNVHQ4EFgQU5Wd2tv7R5SIWRlUsmeI/M8wBvGcwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGKZ3W97bXmIsNR9TD6ynMSa7ycXxjQA10hf oc/tocLgCHN0RPDo3ZPQk6FmC/6kwe+UfNVnQFfgx/gPFHw3iKyR0tHCMiIGKgdJ pK9P7ZwGXOqbrzgF0xIlkd49ASZThfzy0UcMfwKHiJJO6DvQkxpYd9SrjFOdbApU fMyh3NDu4CSPTGUZgtDE1SNnLCzbsssGU+Xi/xdN2IkP0bQNJvdo6AjCsn1efXjD /XcUzEreNa7I98rm2Q9X6cEfM6T4LlHNs658hy4PKG/wOhNgZJVbYtzXpfYV3Q+S RrrHmh68Mii/7wcLYiSJTG1lEDcf4fX42si/k3vv3gRgtQVqBGs= -----END CERTIFICATE-----Generated at Mon Dec 22 10:37:26 2025 by rpki-client