This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft File: D00472C77B42BC0E23D929360AA568BBAE2AA668.mft (raw, json) Hash identifier: fACd7PRMkSNaOT3V0RyVHGeGqSpgcKnxhvSSG1Xc98U= Subject key identifier: E9:36:73:EC:C7:42:5D:61:E8:2F:A8:37:8A:36:E9:31:D6:D4:3A:81 Authority key identifier: D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 Certificate issuer: /CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Certificate serial: 14F0246725F1C363236FFA3F86BB3FB56CE2720B Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft Manifest number: 0257 Signing time: Thu 18 Dec 2025 14:40:04 +0000 Manifest this update: Thu 18 Dec 2025 14:35:04 +0000 Manifest next update: Mon 22 Dec 2025 00:05:04 +0000 Files and hashes: 1: D00472C77B42BC0E23D929360AA568BBAE2AA668.crl (hash: YKUs74rR2q3ET3jWdIYmKrGKBFjnkDM8xezyCQtaO34=) 2: 3130332e3138352e3235342e302f32332d3234203d3e20313439363838.roa (hash: 6gEpief7n0b1o5LDXUhCiEL/rkB2mrhMUs19uxqg/vs=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 00:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:f0:24:67:25:f1:c3:63:23:6f:fa:3f:86:bb:3f:b5:6c:e2:72:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D00472C77B42BC0E23D929360AA568BBAE2AA668 Validity Not Before: Dec 18 14:35:04 2025 GMT Not After : Dec 22 00:05:04 2025 GMT Subject: CN=E93673ECC7425D61E82FA8378A36E931D6D43A81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:b7:8b:8e:e5:c3:db:28:03:3f:b2:13:90:a3: c8:eb:07:75:c6:bf:19:1a:cb:98:88:33:eb:6d:48: 1f:1f:db:6a:ce:9a:9b:f2:7a:bd:ac:e9:bd:d0:b7: 21:40:9e:3e:3a:1e:14:7a:c3:44:d8:e0:e5:f1:b7: 6b:03:10:cf:7a:9f:54:69:75:f8:83:9e:3e:18:ff: 48:8b:73:2e:0d:ee:3f:f2:60:aa:b2:d6:31:30:c1: 8a:23:b5:b7:d8:ad:75:91:81:c4:c5:7a:08:5a:45: 6e:3f:44:e7:47:e2:3b:15:46:3d:a2:8e:19:c6:7d: 1d:a3:86:d9:26:9b:67:77:6c:7d:2c:5b:b9:06:ec: 2d:f3:2d:77:a9:2e:d2:de:66:c3:8f:3c:e1:a7:e4: ec:2c:33:5a:e4:cb:bd:79:22:b4:12:41:30:6e:63: 62:f4:50:3a:5e:1d:78:03:fa:8d:7b:2b:a5:64:d7: 1b:38:79:7b:c6:76:78:eb:a7:f7:38:2d:7f:43:eb: c9:68:b9:e8:75:6d:f2:70:5e:23:51:98:fc:e6:f4: 11:73:97:aa:88:be:f3:ae:c1:af:bc:eb:e1:32:b5: c1:05:90:51:5f:24:6c:f8:30:dc:88:09:31:6e:93: 58:90:cf:45:b8:54:90:21:9e:cc:8a:33:f0:b2:eb: 8e:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:36:73:EC:C7:42:5D:61:E8:2F:A8:37:8A:36:E9:31:D6:D4:3A:81 X509v3 Authority Key Identifier: keyid:D0:04:72:C7:7B:42:BC:0E:23:D9:29:36:0A:A5:68:BB:AE:2A:A6:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D00472C77B42BC0E23D929360AA568BBAE2AA668.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2c17369a-bcc1-42bc-b8b2-f96d50d3749d/0/D00472C77B42BC0E23D929360AA568BBAE2AA668.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:8c:c9:8d:f2:09:7d:8f:3a:11:43:40:39:07:9b:0b:c8:89: 9f:62:ba:b9:21:5f:b6:4b:d8:d1:c9:72:ab:4e:d5:6b:70:09: 71:e9:e9:e6:1c:29:66:af:d9:19:bb:09:e9:64:35:70:60:ea: 46:84:86:84:db:01:59:2f:ec:4e:61:6f:39:11:4a:cd:fc:e6: cf:94:69:ae:bf:2c:a0:0c:58:75:5f:8f:c8:75:e0:db:f5:fd: d2:61:6f:f1:89:67:51:d7:4d:ac:1c:d4:1b:43:99:91:0d:14: 0b:b6:19:87:48:3f:16:99:7d:bf:89:18:fc:0d:76:ae:4f:47: ec:70:5e:17:46:1f:69:c2:f8:19:02:1b:6d:d5:17:63:c6:d2: e0:28:8d:fe:23:99:32:d0:da:1d:fa:a8:0d:54:3b:87:4f:d7: 1d:2d:0e:a6:37:19:1d:77:f2:1e:08:f7:f3:0b:33:ff:46:86: f2:59:f9:df:64:ff:d3:5e:6f:22:3a:70:a3:8e:a8:7c:fa:88: 8c:5c:d4:a9:9f:d5:08:eb:96:51:96:4b:f7:6e:44:0f:07:f3: 5e:74:fe:bf:af:c1:f9:ad:ed:b0:26:71:ef:22:1b:ab:15:e4: 44:3d:88:49:4d:a7:ad:03:52:af:b7:08:10:60:0c:65:d9:b2: 60:72:3a:39 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUFPAkZyXxw2Mjb/o/hrs/tWzicgswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJB RTJBQTY2ODAeFw0yNTEyMTgxNDM1MDRaFw0yNTEyMjIwMDA1MDRaMDMxMTAvBgNV BAMTKEU5MzY3M0VDQzc0MjVENjFFODJGQTgzNzhBMzZFOTMxRDZENDNBODEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDct4uO5cPbKAM/shOQo8jrB3XG vxkay5iIM+ttSB8f22rOmpvyer2s6b3QtyFAnj46HhR6w0TY4OXxt2sDEM96n1Rp dfiDnj4Y/0iLcy4N7j/yYKqy1jEwwYojtbfYrXWRgcTFeghaRW4/ROdH4jsVRj2i jhnGfR2jhtkmm2d3bH0sW7kG7C3zLXepLtLeZsOPPOGn5OwsM1rky715IrQSQTBu Y2L0UDpeHXgD+o17K6Vk1xs4eXvGdnjrp/c4LX9D68loueh1bfJwXiNRmPzm9BFz l6qIvvOuwa+86+EytcEFkFFfJGz4MNyICTFuk1iQz0W4VJAhnsyKM/Cy644fAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU6TZz7MdCXWHoL6g3ijbpMdbUOoEwHwYDVR0j BBgwFoAU0ARyx3tCvA4j2Sk2CqVou64qpmgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y YzE3MzY5YS1iY2MxLTQyYmMtYjhiMi1mOTZkNTBkMzc0OWQvMC9EMDA0NzJDNzdC NDJCQzBFMjNEOTI5MzYwQUE1NjhCQkFFMkFBNjY4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4QkJBRTJB QTY2OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmMxNzM2OWEtYmNjMS00MmJjLWI4 YjItZjk2ZDUwZDM3NDlkLzAvRDAwNDcyQzc3QjQyQkMwRTIzRDkyOTM2MEFBNTY4 QkJBRTJBQTY2OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAJKMyY3yCX2POhFDQDkHmwvIiZ9iurkhX7ZL 2NHJcqtO1WtwCXHp6eYcKWav2Rm7CelkNXBg6kaEhoTbAVkv7E5hbzkRSs385s+U aa6/LKAMWHVfj8h14Nv1/dJhb/GJZ1HXTawc1BtDmZENFAu2GYdIPxaZfb+JGPwN dq5PR+xwXhdGH2nC+BkCG23VF2PG0uAojf4jmTLQ2h36qA1UO4dP1x0tDqY3GR13 8h4I9/MLM/9GhvJZ+d9k/9NebyI6cKOOqHz6iIxc1Kmf1QjrllGWS/duRA8H8150 /r+vwfmt7bAmce8iG6sV5EQ9iElNp60DUq+3CBBgDGXZsmByOjk= -----END CERTIFICATE-----Generated at Fri Dec 19 19:35:51 2025 by rpki-client