This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft File: 2D0745D26E59440CB71FAFE996834493DA753248.mft (raw, json) Hash identifier: gATtg0ruaqZeztVMXDVB1pzzAxyhxbJXZlhfSENtxAs= Subject key identifier: D9:F9:6E:8F:6D:EA:DB:35:A3:9C:F2:82:10:32:2F:31:C7:E5:65:45 Authority key identifier: 2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 Certificate issuer: /CN=2D0745D26E59440CB71FAFE996834493DA753248 Certificate serial: 44B9ECEA77EA9C26BC28E7ED4A9810D7A19A0864 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft Manifest number: 0206 Signing time: Fri 19 Dec 2025 13:40:54 +0000 Manifest this update: Fri 19 Dec 2025 13:35:54 +0000 Manifest next update: Mon 22 Dec 2025 22:20:54 +0000 Files and hashes: 1: 3130332e37332e3135392e302f32342d3234203d3e20313338383836.roa (hash: nxYZnXzCnu/G6Di5JhS1WLXdlQHk8fuEdbh3UpU3Jf8=) 2: 2D0745D26E59440CB71FAFE996834493DA753248.crl (hash: 5RVtr2Ubbsxm4ZAEeKwDVo/zGHj6LXvxAtMjpa+jV30=) 3: 3130332e37332e3135382e302f32342d3234203d3e203234343239.roa (hash: ujITe6uXtdvP5WOayQADk+Rg7asyYqwio86khyT1Nho=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 22 Dec 2025 22:20:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:b9:ec:ea:77:ea:9c:26:bc:28:e7:ed:4a:98:10:d7:a1:9a:08:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D0745D26E59440CB71FAFE996834493DA753248 Validity Not Before: Dec 19 13:35:54 2025 GMT Not After : Dec 22 22:20:54 2025 GMT Subject: CN=D9F96E8F6DEADB35A39CF28210322F31C7E56545 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:14:36:76:b8:00:db:5c:38:09:3e:4a:6e:d0: b0:ee:ad:fd:7e:cc:39:2b:87:85:63:79:d5:7b:ee: ab:e1:61:98:a4:a0:f1:ed:01:61:bd:08:ef:a6:20: a3:50:5e:c7:06:78:c1:d7:55:fe:e0:8b:b4:64:73: ab:22:03:3b:d3:32:42:84:7a:ed:66:69:39:65:79: c2:0e:64:7b:6f:b2:ce:52:67:5b:46:0e:d5:d7:12: d9:09:8d:f4:36:c9:6e:cf:ea:33:f8:33:17:f1:46: ae:3b:76:32:51:22:54:5d:a8:47:32:a0:eb:4a:56: 59:19:7c:62:b6:0c:3b:1d:c4:bf:f8:d1:22:09:bf: e8:0b:4d:34:8d:83:d5:cc:1c:f4:1d:9d:3b:01:f0: 8b:19:38:c9:06:20:4e:76:e4:07:5f:b9:8f:4f:ba: a0:1f:d8:4d:b6:14:dd:3c:a4:5f:fa:7b:fc:bc:72: ca:56:7a:6a:3d:98:53:8c:8a:92:50:0f:da:9a:62: aa:11:9c:35:e7:82:c6:3e:07:b6:09:5f:88:bc:c6: c2:ed:4b:e2:26:7b:91:d5:d2:00:ee:fa:65:76:67: 57:88:53:f9:ae:4b:b0:74:d1:24:96:54:e3:7a:ef: ad:ba:7f:ef:a9:6d:93:3c:2a:ce:36:83:b2:d2:33: 1c:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:F9:6E:8F:6D:EA:DB:35:A3:9C:F2:82:10:32:2F:31:C7:E5:65:45 X509v3 Authority Key Identifier: keyid:2D:07:45:D2:6E:59:44:0C:B7:1F:AF:E9:96:83:44:93:DA:75:32:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2D0745D26E59440CB71FAFE996834493DA753248.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3a406cdb-1791-478d-9d28-9e37a6f809cc/0/2D0745D26E59440CB71FAFE996834493DA753248.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:99:ea:b2:5c:81:e8:bb:94:f7:49:0a:a3:b2:37:ab:16:36: 74:e0:c3:c6:3e:00:80:ab:e5:cd:38:8a:be:41:bb:d7:18:3d: 48:63:97:e7:9f:c0:93:17:59:7e:fc:45:9b:f1:0e:66:91:00: 2f:e5:04:7c:e8:30:9c:8b:3c:e6:a8:a5:f1:db:ed:34:0c:22: 45:9b:22:3d:a8:d2:95:70:bd:bc:ce:3e:f8:db:91:24:63:96: 1f:05:3b:cf:e5:e2:96:30:aa:ce:6c:34:91:67:36:a8:2b:e9: e0:81:ac:b7:0b:ee:d6:a1:20:98:90:bf:43:94:2a:0c:f3:34: 53:c1:e7:5e:0c:fa:6d:45:b9:24:d6:c4:24:63:9b:35:80:2b: cc:b5:90:26:d1:05:01:c5:73:30:b3:c9:ba:db:6e:f2:13:eb: 90:a8:d5:f9:44:a6:25:91:40:e7:f7:1e:15:f3:98:d3:a9:27: 58:8c:4a:1b:44:96:ae:1c:93:fb:ef:6c:45:fa:4e:ba:56:0f: f8:82:b1:88:ea:41:3e:2c:10:97:43:69:8f:da:d8:51:16:73: 5a:0b:7b:ec:84:06:40:2d:7c:89:0d:b4:77:86:2d:ac:c3:06: b3:9c:17:0f:9b:a8:56:6e:0e:01:6b:80:a2:92:b6:6a:e3:1e: 0d:e5:df:fd -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIURLns6nfqnCa8KOftSpgQ16GaCGQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNE QTc1MzI0ODAeFw0yNTEyMTkxMzM1NTRaFw0yNTEyMjIyMjIwNTRaMDMxMTAvBgNV BAMTKEQ5Rjk2RThGNkRFQURCMzVBMzlDRjI4MjEwMzIyRjMxQzdFNTY1NDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRFDZ2uADbXDgJPkpu0LDurf1+ zDkrh4VjedV77qvhYZikoPHtAWG9CO+mIKNQXscGeMHXVf7gi7Rkc6siAzvTMkKE eu1maTllecIOZHtvss5SZ1tGDtXXEtkJjfQ2yW7P6jP4MxfxRq47djJRIlRdqEcy oOtKVlkZfGK2DDsdxL/40SIJv+gLTTSNg9XMHPQdnTsB8IsZOMkGIE525AdfuY9P uqAf2E22FN08pF/6e/y8cspWemo9mFOMipJQD9qaYqoRnDXngsY+B7YJX4i8xsLt S+Ime5HV0gDu+mV2Z1eIU/muS7B00SSWVON67626f++pbZM8Ks42g7LSMxxVAgMB AAGjggI8MIICODAdBgNVHQ4EFgQU2fluj23q2zWjnPKCEDIvMcflZUUwHwYDVR0j BBgwFoAULQdF0m5ZRAy3H6/ploNEk9p1MkgwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YTQwNmNkYi0xNzkxLTQ3OGQtOWQyOC05ZTM3YTZmODA5Y2MvMC8yRDA3NDVEMjZF NTk0NDBDQjcxRkFGRTk5NjgzNDQ5M0RBNzUzMjQ4LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0OTNEQTc1 MzI0OC5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2E0MDZjZGItMTc5MS00NzhkLTlk MjgtOWUzN2E2ZjgwOWNjLzAvMkQwNzQ1RDI2RTU5NDQwQ0I3MUZBRkU5OTY4MzQ0 OTNEQTc1MzI0OC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAFqZ6rJcgei7lPdJCqOyN6sWNnTgw8Y+AICr 5c04ir5Bu9cYPUhjl+efwJMXWX78RZvxDmaRAC/lBHzoMJyLPOaopfHb7TQMIkWb Ij2o0pVwvbzOPvjbkSRjlh8FO8/l4pYwqs5sNJFnNqgr6eCBrLcL7tahIJiQv0OU KgzzNFPB514M+m1FuSTWxCRjmzWAK8y1kCbRBQHFczCzybrbbvIT65Co1flEpiWR QOf3HhXzmNOpJ1iMShtElq4ck/vvbEX6TrpWD/iCsYjqQT4sEJdDaY/a2FEWc1oL e+yEBkAtfIkNtHeGLazDBrOcFw+bqFZuDgFrgKKStmrjHg3l3/0= -----END CERTIFICATE-----Generated at Sat Dec 20 03:39:18 2025 by rpki-client