This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft File: 2CCC85BF6CCD365701EFA75EE416D234F861385B.mft (raw, json) Hash identifier: bA/XuEnk6zbfsdbrCUm+iYwSi7HTrghshlO5nz9oIOY= Subject key identifier: 81:94:83:94:1D:FA:8D:C0:18:95:59:1F:8E:22:DE:DD:02:E2:A9:5C Authority key identifier: 2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B Certificate issuer: /CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Certificate serial: 37E5341554290265E2943AFED7A1D2850693FA97 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft Manifest number: EA Signing time: Sun 28 Dec 2025 08:42:26 +0000 Manifest this update: Sun 28 Dec 2025 08:37:26 +0000 Manifest next update: Wed 31 Dec 2025 14:04:26 +0000 Files and hashes: 1: 3136302e32352e3231382e302f32342d3234203d3e20313533303836.roa (hash: 8n7ggoSZj8jJnFz6/yug05Kf9QPxel8FaCv3JxdKJhk=) 2: 2CCC85BF6CCD365701EFA75EE416D234F861385B.crl (hash: CO5vStukVfb1GqiAYU+cbPtrezxBjR96CMQISM3iQ14=) 3: 3136302e32352e3231392e302f32342d3234203d3e20313533303836.roa (hash: uxK7UAyx9SPI/sYZC+vqWCKSgnZeXgqAqFmQ+2Jnazc=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 31 Dec 2025 14:04:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:e5:34:15:54:29:02:65:e2:94:3a:fe:d7:a1:d2:85:06:93:fa:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2CCC85BF6CCD365701EFA75EE416D234F861385B Validity Not Before: Dec 28 08:37:26 2025 GMT Not After : Dec 31 14:04:26 2025 GMT Subject: CN=819483941DFA8DC01895591F8E22DEDD02E2A95C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:fd:99:1e:88:06:c3:50:87:3e:1c:93:82:ba: a0:0b:02:47:3c:3b:ea:f2:53:b9:e0:ab:87:bf:21: 04:38:66:b4:31:88:13:0f:07:9d:10:4f:4f:3c:ff: da:b8:f4:1f:1d:74:58:02:34:53:5a:bd:7f:19:4c: f7:71:6e:8e:ba:6e:52:8b:96:26:8d:70:53:5e:1a: 80:9d:e7:dc:ab:f3:92:02:3c:41:5e:dd:86:fc:42: 30:8e:dd:bb:59:57:ce:97:1d:d1:c0:86:f6:f9:c1: 66:70:20:54:0b:37:b1:e2:5a:7f:5e:14:db:c3:c0: 7c:67:2c:ba:50:79:f9:c5:96:1f:71:be:16:fa:e7: 12:b6:b6:d0:8a:5b:10:1b:e5:71:d6:ac:f0:b8:ee: a0:eb:08:c0:d4:dd:38:d4:67:95:87:9b:c3:e3:f8: 5d:3c:84:43:27:bf:ef:f7:d1:69:98:dc:14:4d:1b: 42:04:57:ef:5b:8e:8b:a0:69:64:19:1f:48:7b:8c: d7:90:4c:7e:ae:9b:a4:7e:64:69:0e:36:6b:49:98: 16:7c:a9:96:2f:29:4f:0d:4c:58:61:62:0b:5f:fc: a9:43:33:a6:14:78:16:c9:51:01:2e:76:e7:e1:3e: 0a:71:17:36:82:1b:c1:50:de:02:72:0a:b6:e5:ee: f3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:94:83:94:1D:FA:8D:C0:18:95:59:1F:8E:22:DE:DD:02:E2:A9:5C X509v3 Authority Key Identifier: keyid:2C:CC:85:BF:6C:CD:36:57:01:EF:A7:5E:E4:16:D2:34:F8:61:38:5B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/2CCC85BF6CCD365701EFA75EE416D234F861385B.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3af07f18-5c49-4129-aa53-7085ccd57b63/0/2CCC85BF6CCD365701EFA75EE416D234F861385B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6a:8f:c7:ba:d1:91:fb:36:9c:5d:0d:df:8b:3e:c1:c9:a5:b4: 08:04:59:99:7e:02:6d:f9:2e:8a:97:77:51:c8:9d:16:f0:51: eb:09:be:d2:28:2b:d2:68:9a:26:0b:66:d8:eb:34:00:9e:8d: e8:6e:b6:1c:57:b4:72:85:4a:c6:01:b5:23:8a:16:f3:a1:b6: 0f:d0:69:20:c7:19:71:90:5d:e1:f8:4f:9b:3f:ca:0d:38:48: ea:b1:ed:6b:7c:bf:6a:d1:9d:e1:29:04:74:3a:bc:66:ef:ae: ed:28:ec:6d:ae:5a:dc:44:3b:01:fc:07:bc:a9:39:20:19:a0: 22:ad:3e:af:5b:d5:62:77:37:67:ff:a6:3d:35:3a:ea:72:7b: cc:93:62:ac:0e:46:6d:88:cf:ac:0f:12:f7:9c:68:fc:e8:2d: a2:24:5e:81:20:4d:5d:3c:25:e3:cc:6b:57:f9:3b:8f:3d:60: 15:9b:6b:ae:93:f8:02:aa:5d:45:f3:62:de:95:49:d6:fe:61: 25:a1:a9:fe:a4:bf:4a:e5:7f:a8:36:87:55:45:24:cd:89:d9: 60:74:3f:eb:13:76:86:05:f7:d0:b7:66:75:91:c1:d6:83:dd: d3:6c:32:76:2b:d7:1e:a1:e3:7d:1d:fd:be:81:be:fb:0d:87: 6b:b3:31:ce -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUN+U0FVQpAmXilDr+16HShQaT+pcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRG ODYxMzg1QjAeFw0yNTEyMjgwODM3MjZaFw0yNTEyMzExNDA0MjZaMDMxMTAvBgNV BAMTKDgxOTQ4Mzk0MURGQThEQzAxODk1NTkxRjhFMjJERUREMDJFMkE5NUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI/ZkeiAbDUIc+HJOCuqALAkc8 O+ryU7ngq4e/IQQ4ZrQxiBMPB50QT088/9q49B8ddFgCNFNavX8ZTPdxbo66blKL liaNcFNeGoCd59yr85ICPEFe3Yb8QjCO3btZV86XHdHAhvb5wWZwIFQLN7HiWn9e FNvDwHxnLLpQefnFlh9xvhb65xK2ttCKWxAb5XHWrPC47qDrCMDU3TjUZ5WHm8Pj +F08hEMnv+/30WmY3BRNG0IEV+9bjougaWQZH0h7jNeQTH6um6R+ZGkONmtJmBZ8 qZYvKU8NTFhhYgtf/KlDM6YUeBbJUQEudufhPgpxFzaCG8FQ3gJyCrbl7vM3AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUgZSDlB36jcAYlVkfjiLe3QLiqVwwHwYDVR0j BBgwFoAULMyFv2zNNlcB76de5BbSNPhhOFswDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YWYwN2YxOC01YzQ5LTQxMjktYWE1My03MDg1Y2NkNTdiNjMvMC8yQ0NDODVCRjZD Q0QzNjU3MDFFRkE3NUVFNDE2RDIzNEY4NjEzODVCLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQyMzRGODYx Mzg1Qi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2FmMDdmMTgtNWM0OS00MTI5LWFh NTMtNzA4NWNjZDU3YjYzLzAvMkNDQzg1QkY2Q0NEMzY1NzAxRUZBNzVFRTQxNkQy MzRGODYxMzg1Qi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAGqPx7rRkfs2nF0N34s+wcmltAgEWZl+Am35 LoqXd1HInRbwUesJvtIoK9JomiYLZtjrNACejehuthxXtHKFSsYBtSOKFvOhtg/Q aSDHGXGQXeH4T5s/yg04SOqx7Wt8v2rRneEpBHQ6vGbvru0o7G2uWtxEOwH8B7yp OSAZoCKtPq9b1WJ3N2f/pj01Oupye8yTYqwORm2Iz6wPEvecaPzoLaIkXoEgTV08 JePMa1f5O489YBWba66T+AKqXUXzYt6VSdb+YSWhqf6kv0rlf6g2h1VFJM2J2WB0 P+sTdoYF99C3ZnWRwdaD3dNsMnYr1x6h430d/b6BvvsNh2uzMc4= -----END CERTIFICATE-----Generated at Tue Dec 30 12:15:10 2025 by rpki-client