This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft File: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft (raw, json) Hash identifier: 96xaGssfXGVJP1gpMyYD8NfYmHXz5RYU02zNDJjj/Bw= Subject key identifier: 49:BB:86:A6:1B:AF:A1:13:B2:91:7D:F7:BD:68:8C:D8:69:48:A3:A6 Authority key identifier: D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD Certificate issuer: /CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Certificate serial: 5767B8F7A71670971C3C6CCC356E8A777BE6C8A9 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject info access: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft Manifest number: 0533 Signing time: Sun 14 Dec 2025 03:30:47 +0000 Manifest this update: Sun 14 Dec 2025 03:25:47 +0000 Manifest next update: Wed 17 Dec 2025 09:10:47 +0000 Files and hashes: 1: 3132342e34302e3234382e302f32312d3234203d3e203435333035.roa (hash: VtiYvCa1bjH6ANhQ1ZiFk2JkSbje5+lBzE3EKLizBTk=) 2: 323030313a6466303a61333a3a2f34382d3438203d3e203435333035.roa (hash: hlUw25q5eNWFZZoKL6XJ7rDIzMv9Ha/qCoX1PFqE3P4=) 3: 3230322e35362e3136342e302f32322d3234203d3e203435333035.roa (hash: Ks6djmjYrG5U+knwJmAadX8Vs5do9/GjSatcKmwDXgM=) 4: 34332e3235322e3130342e302f32342d3234203d3e20313432333237.roa (hash: lR3gX6Bwr4ANHz1p/BofTqPyE1vSZC884k0IFEXkQqw=) 5: 3132342e34302e3234382e302f32342d3234203d3e20313432333237.roa (hash: C0CDuWEVU0SX0hds00E1HGuGHRio6g8DwzULftVgj6I=) 6: 3132342e34302e3235332e302f32342d3234203d3e20313432333237.roa (hash: ZeQ/G35c/J7hJXCvQZ6ieAUy4NBWFOv66XK2TZxgUwU=) 7: 3130332e32382e3131322e302f32322d3234203d3e203435333035.roa (hash: qTnm5CGA/RYtoBdoUqEMNKhCi+L95N248VCqrGjA3NM=) 8: D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl (hash: jVzPsI1ysEMZO2ADyjkUCd9az6iwt8A/mIrQ1rygSKY=) 9: 34332e3235322e3130342e302f32322d3234203d3e203435333035.roa (hash: PKIt6KT96DVg2otgI4L6Lbo6X1IxxuQSsidS83qyqJk=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 09:10:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:67:b8:f7:a7:16:70:97:1c:3c:6c:cc:35:6e:8a:77:7b:e6:c8:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD Validity Not Before: Dec 14 03:25:47 2025 GMT Not After : Dec 17 09:10:47 2025 GMT Subject: CN=49BB86A61BAFA113B2917DF7BD688CD86948A3A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:3d:c9:1f:29:53:ff:a9:03:c5:5b:db:ae:99: d4:3e:e9:5d:60:16:1d:00:d3:e8:4d:f7:3f:6d:90: 5c:4f:f1:92:0d:fb:26:db:ef:73:50:ba:57:85:38: fb:51:ae:53:cf:55:ef:be:eb:68:de:9f:67:ef:a8: b0:df:8e:55:0c:52:e1:49:5a:d9:e2:aa:87:fc:21: 6f:25:45:18:10:9e:ac:be:ee:61:74:5a:b0:3d:a5: 76:c1:34:db:9f:70:fe:a5:34:73:30:46:87:bf:46: f3:92:f5:f5:b1:e0:44:49:71:1c:a6:b0:09:78:a5: 67:83:ab:16:ed:65:41:8e:cb:08:b4:67:0b:2f:bb: 75:a6:a9:c5:6c:a8:cc:2f:d5:dd:03:b5:8e:08:58: a9:95:cc:b6:de:30:91:08:fc:6b:d2:0c:16:4e:79: df:cf:e2:16:b5:d3:29:30:56:7f:40:38:92:be:56: 76:31:fa:b4:e4:30:5b:eb:1b:0f:ff:f9:0e:bb:cf: e7:99:30:2d:b7:5f:16:a6:11:7d:68:8f:35:9d:80: 75:82:9f:23:15:f4:8e:91:3b:70:f2:49:0c:fc:cf: 3d:02:4d:dd:11:ea:c1:27:2d:7f:74:87:a0:d9:9f: ce:00:b7:5e:a0:d3:b0:6a:5a:ac:24:2c:8b:c8:f8: 28:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:BB:86:A6:1B:AF:A1:13:B2:91:7D:F7:BD:68:8C:D8:69:48:A3:A6 X509v3 Authority Key Identifier: keyid:D2:5A:04:A0:E4:E5:2F:F4:22:D9:D8:FB:85:7D:23:DC:61:42:E5:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/2d95c19c-3262-48c7-af02-37a835d0a779/0/D25A04A0E4E52FF422D9D8FB857D23DC6142E5FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 40:dd:01:75:1c:3f:0d:8f:46:06:e9:aa:3b:57:c4:5c:d2:6f: 17:33:91:cf:a2:fa:a6:e1:b1:20:71:50:19:0b:8a:33:5a:60: 73:0e:ea:04:07:39:6d:93:cf:50:6a:74:64:f1:19:2e:af:9b: 20:61:8d:c0:d3:1b:b5:1f:a1:87:a1:e6:db:09:69:d1:03:4a: 77:ee:2f:99:2c:b3:ca:1e:79:cd:80:6e:23:58:2c:8b:ad:57: 2c:26:bf:75:8b:9f:b8:32:fa:c9:5a:d8:6f:65:f0:6a:46:f6: 6e:66:16:ce:17:dd:3b:d6:6a:57:94:da:3c:77:96:8b:7b:92: 81:1e:bc:f6:6f:45:f4:76:df:90:a9:02:ac:25:bc:e2:75:f1: 3d:45:a1:5c:4a:85:b6:37:bc:8c:8e:c1:57:72:6b:0f:84:8b: 28:a4:cb:07:a5:cd:c7:36:f0:66:51:a5:89:a9:72:c5:d0:d3: 52:97:fa:9d:d0:47:f5:9f:5c:0e:8d:6f:50:a5:65:e2:88:00: af:20:a0:ea:df:eb:95:db:38:29:cb:fd:49:5a:b8:b5:e6:0f: 04:6d:b6:1e:3b:98:4a:66:9a:f2:60:97:10:a7:90:6f:e6:8f: 95:05:76:59:5e:65:cc:47:1d:90:d8:88:b2:23:f0:49:d0:ec: 30:f6:89:11 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUV2e496cWcJccPGzMNW6Kd3vmyKkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2 MTQyRTVGRDAeFw0yNTEyMTQwMzI1NDdaFw0yNTEyMTcwOTEwNDdaMDMxMTAvBgNV BAMTKDQ5QkI4NkE2MUJBRkExMTNCMjkxN0RGN0JENjg4Q0Q4Njk0OEEzQTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDTPckfKVP/qQPFW9uumdQ+6V1g Fh0A0+hN9z9tkFxP8ZIN+ybb73NQuleFOPtRrlPPVe++62jen2fvqLDfjlUMUuFJ Wtniqof8IW8lRRgQnqy+7mF0WrA9pXbBNNufcP6lNHMwRoe/RvOS9fWx4ERJcRym sAl4pWeDqxbtZUGOywi0Zwsvu3WmqcVsqMwv1d0DtY4IWKmVzLbeMJEI/GvSDBZO ed/P4ha10ykwVn9AOJK+VnYx+rTkMFvrGw//+Q67z+eZMC23XxamEX1ojzWdgHWC nyMV9I6RO3DySQz8zz0CTd0R6sEnLX90h6DZn84At16g07BqWqwkLIvI+ChVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUSbuGphuvoROykX33vWiM2GlIo6YwHwYDVR0j BBgwFoAU0loEoOTlL/Qi2dj7hX0j3GFC5f0wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8y ZDk1YzE5Yy0zMjYyLTQ4YzctYWYwMi0zN2E4MzVkMGE3NzkvMC9EMjVBMDRBMEU0 RTUyRkY0MjJEOUQ4RkI4NTdEMjNEQzYxNDJFNUZELmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIzREM2MTQy RTVGRC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMmQ5NWMxOWMtMzI2Mi00OGM3LWFm MDItMzdhODM1ZDBhNzc5LzAvRDI1QTA0QTBFNEU1MkZGNDIyRDlEOEZCODU3RDIz REM2MTQyRTVGRC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAEDdAXUcPw2PRgbpqjtXxFzSbxczkc+i+qbh sSBxUBkLijNaYHMO6gQHOW2Tz1BqdGTxGS6vmyBhjcDTG7UfoYeh5tsJadEDSnfu L5kss8oeec2AbiNYLIutVywmv3WLn7gy+sla2G9l8GpG9m5mFs4X3TvWaleU2jx3 lot7koEevPZvRfR235CpAqwlvOJ18T1FoVxKhbY3vIyOwVdyaw+Eiyikywelzcc2 8GZRpYmpcsXQ01KX+p3QR/WfXA6Nb1ClZeKIAK8goOrf65XbOCnL/UlauLXmDwRt th47mEpmmvJglxCnkG/mj5UFdlleZcxHHZDYiLIj8EnQ7DD2iRE= -----END CERTIFICATE-----Generated at Tue Dec 16 04:41:25 2025 by rpki-client