This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft File: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft (raw, json) Hash identifier: qkDvsUkg1qxSs81Ei/UfagTXj1cwBoN1ZuntBMGJehg= Subject key identifier: CF:31:03:14:00:D1:6A:63:C7:56:CB:7E:28:74:DA:63:BD:42:5B:CE Authority key identifier: C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 Certificate issuer: /CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Certificate serial: 62A1172D493CB0B91321CB2132B997CDCF83EACF Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject info access: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft Manifest number: 012B Signing time: Wed 24 Dec 2025 03:40:55 +0000 Manifest this update: Wed 24 Dec 2025 03:35:55 +0000 Manifest next update: Sat 27 Dec 2025 11:00:55 +0000 Files and hashes: 1: 3230332e3134352e35392e302f32342d3234203d3e20313432333735.roa (hash: XQ5YOO3QMAmUiXXyDyAvfXAeHqliwoa7oF/Rg8qefuw=) 2: C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl (hash: cx/hvfY3XIlpC5mJDb3wUL6kS1YvI4U2IcCob1BtvkM=) 3: 3230332e3134352e35382e302f32342d3234203d3e20313432333735.roa (hash: bBnfqhprKZxO7GNHi6JFSi7ubIWOVMTy7/ydlUAr+qE=) 4: 3230332e3134352e35382e302f32332d3234203d3e20313432333735.roa (hash: lPAaUMCnmORN0lcIkL1SdTQ//TRobbXWIgBrv9ai9Yc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 11:00:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:a1:17:2d:49:3c:b0:b9:13:21:cb:21:32:b9:97:cd:cf:83:ea:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C2F956B126884B5EFD8DDADCEB0E33E1B5306336 Validity Not Before: Dec 24 03:35:55 2025 GMT Not After : Dec 27 11:00:55 2025 GMT Subject: CN=CF31031400D16A63C756CB7E2874DA63BD425BCE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b1:c2:c4:ab:ab:5d:7a:e2:2c:29:95:14:f9: 4a:eb:97:dd:1a:2e:01:89:86:f5:c6:99:30:79:9a: 7c:64:20:bb:1e:89:4b:60:96:50:68:3f:d3:c2:e9: d3:0d:b3:db:3d:20:23:0c:ca:3e:a8:06:bb:a9:25: ca:e3:8c:c3:e1:01:26:78:ff:b8:96:7d:25:2a:fe: 1d:ed:19:29:8c:0b:99:ca:c0:ca:ca:77:bc:b7:67: ff:7c:e3:74:6f:a6:4b:98:6f:20:ae:50:60:92:66: 20:86:a3:6f:b7:f2:62:8e:a4:7e:ba:31:55:d2:c2: 67:96:49:5c:b7:50:dc:ae:fe:7e:81:cc:01:65:a3: 53:12:51:88:da:01:84:aa:44:b3:20:75:9f:02:16: 69:8a:39:be:12:31:d5:fa:d5:65:03:98:dc:43:5e: e3:da:67:7b:12:e8:65:52:a4:75:5b:a9:df:e0:ba: 1a:71:42:dd:c8:28:46:0f:ed:51:08:de:51:b1:ee: 33:3e:33:df:67:54:a5:11:e7:eb:b3:ad:af:ff:a7: 5c:4e:ea:75:c0:83:e6:4b:08:94:6e:9a:7b:b0:28: 0a:0e:56:6d:15:75:84:d0:5e:b3:b2:4c:f6:3c:78: 28:0f:95:e3:83:f3:ad:86:f4:cf:d0:34:20:bf:5c: 27:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:31:03:14:00:D1:6A:63:C7:56:CB:7E:28:74:DA:63:BD:42:5B:CE X509v3 Authority Key Identifier: keyid:C2:F9:56:B1:26:88:4B:5E:FD:8D:DA:DC:EB:0E:33:E1:B5:30:63:36 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/36aa3beb-5761-4c34-88d3-015ccc64002f/0/C2F956B126884B5EFD8DDADCEB0E33E1B5306336.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:43:9b:64:49:0e:44:05:47:cf:26:b3:b6:d2:0f:08:2d:36: 2e:3b:a6:0f:57:fa:24:cd:88:18:59:a3:e9:b6:1e:d7:e6:a7: 72:f3:32:47:f5:63:d6:46:8c:3e:7f:2f:e8:59:b0:e9:f3:67: aa:5d:03:b5:c9:ad:91:4b:6c:4d:8b:7d:85:f8:79:3d:be:d0: 0f:d0:29:9f:9b:3d:e3:63:ad:10:c8:b8:7e:2a:70:78:29:c4: 90:13:cf:0b:1f:e1:de:5e:33:43:76:d8:98:01:e9:ee:0d:47: f5:fc:dd:e9:af:7f:f8:50:97:33:fd:14:f6:40:66:10:90:1a: 9b:78:f3:87:20:18:cc:12:71:5d:ad:3d:06:1e:ea:13:89:d1: 17:dc:07:f8:40:8f:0a:38:75:cd:b3:a4:13:8f:4f:8e:11:7e: 0f:99:65:83:d2:8c:95:ef:e8:bb:cb:26:88:94:c0:fe:3f:bb: f5:6c:27:af:4d:f5:9c:8e:36:8f:b9:65:0c:4f:fb:a9:6c:b2: 94:8c:a2:28:31:a3:c2:27:04:23:6e:9d:17:f9:ad:64:fd:af: e4:f7:b5:c0:35:04:f4:45:19:5d:91:0f:fb:25:33:65:cf:b5: 4c:a5:26:63:48:b5:d7:f9:10:ed:f9:49:fa:b8:66:9c:54:5d: 26:d2:d2:db -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYqEXLUk8sLkTIcshMrmXzc+D6s8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFC NTMwNjMzNjAeFw0yNTEyMjQwMzM1NTVaFw0yNTEyMjcxMTAwNTVaMDMxMTAvBgNV BAMTKENGMzEwMzE0MDBEMTZBNjNDNzU2Q0I3RTI4NzREQTYzQkQ0MjVCQ0UwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFscLEq6tdeuIsKZUU+Urrl90a LgGJhvXGmTB5mnxkILseiUtgllBoP9PC6dMNs9s9ICMMyj6oBrupJcrjjMPhASZ4 /7iWfSUq/h3tGSmMC5nKwMrKd7y3Z/9843RvpkuYbyCuUGCSZiCGo2+38mKOpH66 MVXSwmeWSVy3UNyu/n6BzAFlo1MSUYjaAYSqRLMgdZ8CFmmKOb4SMdX61WUDmNxD XuPaZ3sS6GVSpHVbqd/guhpxQt3IKEYP7VEI3lGx7jM+M99nVKUR5+uzra//p1xO 6nXAg+ZLCJRumnuwKAoOVm0VdYTQXrOyTPY8eCgPleOD862G9M/QNCC/XCc5AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUzzEDFADRamPHVst+KHTaY71CW84wHwYDVR0j BBgwFoAUwvlWsSaIS179jdrc6w4z4bUwYzYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z NmFhM2JlYi01NzYxLTRjMzQtODhkMy0wMTVjY2M2NDAwMmYvMC9DMkY5NTZCMTI2 ODg0QjVFRkQ4RERBRENFQjBFMzNFMUI1MzA2MzM2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMzRTFCNTMw NjMzNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vMzZhYTNiZWItNTc2MS00YzM0LTg4 ZDMtMDE1Y2NjNjQwMDJmLzAvQzJGOTU2QjEyNjg4NEI1RUZEOEREQURDRUIwRTMz RTFCNTMwNjMzNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAABDm2RJDkQFR88ms7bSDwgtNi47pg9X+iTN iBhZo+m2Htfmp3LzMkf1Y9ZGjD5/L+hZsOnzZ6pdA7XJrZFLbE2LfYX4eT2+0A/Q KZ+bPeNjrRDIuH4qcHgpxJATzwsf4d5eM0N22JgB6e4NR/X83emvf/hQlzP9FPZA ZhCQGpt484cgGMwScV2tPQYe6hOJ0RfcB/hAjwo4dc2zpBOPT44Rfg+ZZYPSjJXv 6LvLJoiUwP4/u/VsJ69N9ZyONo+5ZQxP+6lsspSMoigxo8InBCNunRf5rWT9r+T3 tcA1BPRFGV2RD/slM2XPtUylJmNItdf5EO35Sfq4ZpxUXSbS0ts= -----END CERTIFICATE-----Generated at Wed Dec 24 13:13:25 2025 by rpki-client