This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft File: F389B5570A768F4811B6377427EE5A9710A3078F.mft (raw, json) Hash identifier: 1CgZ3BpvNEed0e7nzyWUXvADdwWPTWXB6U4Zee/+dok= Subject key identifier: 8E:D8:0D:4F:E3:5E:E7:BC:98:56:EF:4B:62:70:D2:85:95:1F:28:DE Authority key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Certificate issuer: /CN=F389B5570A768F4811B6377427EE5A9710A3078F Certificate serial: 662E75A4114507190403DFE9ED7BB05EF795A365 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft Manifest number: 0382 Signing time: Sat 20 Dec 2025 23:40:55 +0000 Manifest this update: Sat 20 Dec 2025 23:35:55 +0000 Manifest next update: Wed 24 Dec 2025 07:30:55 +0000 Files and hashes: 1: 3230322e39332e32362e302f32342d3234203d3e203233393532.roa (hash: OdoRUtVMpCFrGJ6E6eEou6i5jvfLhQMLpWAp7LUsjsw=) 2: 3230322e39332e32342e302f32312d3231203d3e203233393532.roa (hash: lCpd9EDW6kxJeEntdCCqy3nxOkL8KJcbnO36OKZILBc=) 3: 3230322e39332e33312e302f32342d3234203d3e203233393532.roa (hash: JUNEmwAQ3OD9z4dCAUDRWMfxMppfea30FX3ZfMpQ2Ss=) 4: 3230322e39332e32382e302f32342d3234203d3e203233393532.roa (hash: JwKnQTdgTXzvOyRVd4mostiUpvJc30Z/4Hc/DZwjPkw=) 5: 3230322e39332e32392e302f32342d3234203d3e203233393532.roa (hash: Up+DcyPm785j9NlRpEoposKBRtppwgof2aDCtVfivl0=) 6: 3230322e39332e32342e302f32342d3234203d3e203233393532.roa (hash: kfaAp03dyflQljxrva7g4HC0eTaNF+N0ortCVYgdoCc=) 7: 3230322e39332e32372e302f32342d3234203d3e203233393532.roa (hash: PKWTtW8nxl97mf6uggx7DQTu7mPXIE9nl3tapJJEXZg=) 8: 3230322e39332e32352e302f32342d3234203d3e203233393532.roa (hash: augoYD+h3jPQ0MqbdmFoGx/xv5+vOTa/6Jcvw0aS3oI=) 9: 3230322e39332e33302e302f32342d3234203d3e203233393532.roa (hash: UrTuhs6hr6z8RmxXE0waBTEObzjTqxDo0ru50RV8iPg=) 10: F389B5570A768F4811B6377427EE5A9710A3078F.crl (hash: 7rWpJRmfAD+tzeIk0zo0uFj6OQ8I0JT2wKBzCd0PPDE=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 24 Dec 2025 07:30:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:2e:75:a4:11:45:07:19:04:03:df:e9:ed:7b:b0:5e:f7:95:a3:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F389B5570A768F4811B6377427EE5A9710A3078F Validity Not Before: Dec 20 23:35:55 2025 GMT Not After : Dec 24 07:30:55 2025 GMT Subject: CN=8ED80D4FE35EE7BC9856EF4B6270D285951F28DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f1:3c:fb:ff:54:cf:98:d4:76:a3:a0:d7:50: b3:17:91:9a:ea:ed:0a:52:08:b0:99:b6:da:b3:ad: f8:45:30:39:56:2a:58:0b:81:64:54:dc:20:ca:b0: be:34:24:97:14:81:cc:f1:bb:1a:c5:d4:02:66:df: 2e:7c:20:71:15:54:36:a1:ae:d8:f1:20:ec:85:90: 88:38:af:cc:f5:99:f0:81:da:b8:f3:fb:86:a9:48: 18:e0:84:69:8b:3f:a8:5d:57:99:7d:44:23:52:27: a4:83:4c:d7:ea:9f:a6:1d:d0:9a:6b:1b:ad:19:a1: d3:63:2a:ab:60:6f:1f:1e:71:4c:a7:f3:81:a1:ec: 31:3d:dd:37:f2:69:35:b5:bc:60:37:76:be:22:43: 89:31:16:10:61:a6:c6:58:73:86:dc:ad:67:a7:9b: 2b:77:ee:3d:1c:24:d4:26:35:74:f4:73:82:b2:c4: 15:90:08:dc:61:eb:39:f1:b0:23:45:3e:4f:b8:e4: 85:0b:3c:db:af:6a:84:02:43:24:00:11:33:ae:73: 9c:02:d3:5a:a5:5b:06:3e:2f:5d:ce:e7:6b:c8:26: 34:47:db:76:4d:f0:7e:04:48:9b:50:9c:ff:96:92: 3d:fb:34:19:d6:3f:29:28:fd:22:b1:ee:ed:e7:42: 24:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D8:0D:4F:E3:5E:E7:BC:98:56:EF:4B:62:70:D2:85:95:1F:28:DE X509v3 Authority Key Identifier: keyid:F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d5:62:ff:94:b6:ce:ba:bd:fd:04:da:4f:89:3b:44:b6:00:fc: b3:fd:28:f1:84:0d:69:a9:cd:af:5a:d7:b4:7c:7c:0f:6f:cb: 2f:ad:2e:d4:38:bc:6a:f6:78:3e:1a:18:46:d8:32:9f:8f:d0: 5b:61:36:6c:3a:97:4f:88:fd:d7:f1:1c:9f:b6:5b:43:19:96: 0b:cb:84:49:70:83:01:dd:cd:31:d6:4f:ba:28:33:ad:ca:c4: 09:c9:d6:ee:06:a2:ae:23:52:9b:6f:36:00:73:7e:c4:f7:9a: 53:66:f2:c6:53:8f:42:88:54:2a:a4:87:c1:37:8b:ec:af:59: 7e:0a:75:20:f2:9a:8f:b7:76:d9:d9:8b:b0:eb:6a:f9:a7:18: cc:ca:b7:0b:5b:1d:7d:dc:21:92:d2:2a:52:09:3b:15:f2:67: e6:8b:02:74:cf:16:05:25:87:4d:cb:c5:42:19:5f:02:cc:71: e5:91:23:89:c2:09:ea:e1:73:a8:81:0f:08:3b:e8:99:a8:dd: 06:fb:f8:31:1c:21:a9:ca:49:0e:b2:8a:11:b2:aa:cb:0a:66: 0a:83:09:91:a7:ce:3c:6a:a5:4a:ae:b8:1e:50:d3:27:1c:72: 75:70:56:75:d5:eb:cc:ee:ba:dc:26:f5:f2:aa:ad:c4:99:e2: ba:84:dd:8d -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUZi51pBFFBxkEA9/p7XuwXveVo2UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcx MEEzMDc4RjAeFw0yNTEyMjAyMzM1NTVaFw0yNTEyMjQwNzMwNTVaMDMxMTAvBgNV BAMTKDhFRDgwRDRGRTM1RUU3QkM5ODU2RUY0QjYyNzBEMjg1OTUxRjI4REUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDH8Tz7/1TPmNR2o6DXULMXkZrq 7QpSCLCZttqzrfhFMDlWKlgLgWRU3CDKsL40JJcUgczxuxrF1AJm3y58IHEVVDah rtjxIOyFkIg4r8z1mfCB2rjz+4apSBjghGmLP6hdV5l9RCNSJ6SDTNfqn6Yd0Jpr G60ZodNjKqtgbx8ecUyn84Gh7DE93TfyaTW1vGA3dr4iQ4kxFhBhpsZYc4bcrWen myt37j0cJNQmNXT0c4KyxBWQCNxh6znxsCNFPk+45IULPNuvaoQCQyQAETOuc5wC 01qlWwY+L13O52vIJjRH23ZN8H4ESJtQnP+Wkj37NBnWPyko/SKx7u3nQiTRAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUjtgNT+Ne57yYVu9LYnDShZUfKN4wHwYDVR0j BBgwFoAU84m1Vwp2j0gRtjd0J+5alxCjB48wDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z YzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMC9GMzg5QjU1NzBB NzY4RjQ4MTFCNjM3NzQyN0VFNUE5NzEwQTMwNzhGLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVBOTcxMEEz MDc4Ri5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2M4YWIzZTAtY2E2OC00MmY2LTk4 ZjYtNjU0YTI1MmE4NjQ4LzAvRjM4OUI1NTcwQTc2OEY0ODExQjYzNzc0MjdFRTVB OTcxMEEzMDc4Ri5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBANVi/5S2zrq9/QTaT4k7RLYA/LP9KPGEDWmp za9a17R8fA9vyy+tLtQ4vGr2eD4aGEbYMp+P0FthNmw6l0+I/dfxHJ+2W0MZlgvL hElwgwHdzTHWT7ooM63KxAnJ1u4Goq4jUptvNgBzfsT3mlNm8sZTj0KIVCqkh8E3 i+yvWX4KdSDymo+3dtnZi7DravmnGMzKtwtbHX3cIZLSKlIJOxXyZ+aLAnTPFgUl h03LxUIZXwLMceWRI4nCCerhc6iBDwg76Jmo3Qb7+DEcIanKSQ6yihGyqssKZgqD CZGnzjxqpUquuB5Q0ycccnVwVnXV68zuutwm9fKqrcSZ4rqE3Y0= -----END CERTIFICATE-----Generated at Sun Dec 21 17:13:21 2025 by rpki-client