This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft File: 2985976A4B3081770748882703E16497964D05A6.mft (raw, json) Hash identifier: 0VVviHOp0ws7NF9gFf4O7zG147c21jAkA8LvHlEK8TQ= Subject key identifier: 3A:CC:CF:EE:7F:2A:A8:95:54:38:95:18:4D:C4:00:7D:83:53:BF:AB Authority key identifier: 29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 Certificate issuer: /CN=2985976A4B3081770748882703E16497964D05A6 Certificate serial: 36C704697464957B4D90A8421E2A5FDD3CCDEB58 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft Manifest number: 0223 Signing time: Tue 23 Dec 2025 21:00:43 +0000 Manifest this update: Tue 23 Dec 2025 20:55:43 +0000 Manifest next update: Sat 27 Dec 2025 02:16:43 +0000 Files and hashes: 1: 323430333a38303a3a2f33322d3332203d3e20313334363233.roa (hash: 6DmXkqMFBwmOgmu7GrU8MAR3khWhl6gAoERCQcW2kCE=) 2: 3130332e3139372e39332e302f32342d3234203d3e20313334363233.roa (hash: RrW5I2lzLuA+7ZMS1LEMZMinrm7Ftg4PYDdGcwSGY08=) 3: 2985976A4B3081770748882703E16497964D05A6.crl (hash: U+Kdabl6tnNHUI+FLLFmwI5kciq4cvxJcMCn0k8PRQw=) 4: 3130332e3139372e39322e302f32342d3234203d3e20313334363233.roa (hash: s3jB5rGy3ygjsQ7KSNEtfVl4k8P8QCufhhtVBzaX2IQ=) 5: 3130332e3139372e39342e302f32342d3234203d3e20313334363233.roa (hash: fbMC3foKpfnHAAX7CqNwv+8CUIBKmVdM4iWFdYY2w+c=) 6: 3130332e3139372e39352e302f32342d3234203d3e20313334363233.roa (hash: h0i6o1md9zXeZ9ZcSa+PGKss268qYszF+iOxTtMdu4E=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 27 Dec 2025 02:16:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:c7:04:69:74:64:95:7b:4d:90:a8:42:1e:2a:5f:dd:3c:cd:eb:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2985976A4B3081770748882703E16497964D05A6 Validity Not Before: Dec 23 20:55:43 2025 GMT Not After : Dec 27 02:16:43 2025 GMT Subject: CN=3ACCCFEE7F2AA895543895184DC4007D8353BFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:b3:04:48:4d:ce:77:c5:7b:fd:d2:c4:4a:be: a0:d1:a0:7b:1b:5e:7a:ea:16:75:d9:7b:35:ec:33: 1a:7f:ab:09:4c:bb:f6:36:db:cc:b0:72:cb:5e:ca: 10:bb:b3:cb:91:ea:72:44:69:f2:8e:ed:99:9b:87: 09:e0:af:dd:29:ea:da:ef:bd:4b:4e:61:18:8f:c1: f9:b4:b4:24:8f:5d:f6:cd:f0:f2:82:a0:3e:12:39: 03:82:f6:d4:4f:3b:4d:67:1e:db:fa:d3:e3:4d:0e: 3e:2d:ab:fb:b1:c8:4a:23:2e:2c:1a:f4:04:6b:5b: 89:39:34:75:4b:06:a4:92:fe:de:2e:16:d6:78:91: 83:88:c2:40:79:15:fc:8d:c8:76:25:78:dc:9a:d7: db:51:82:0a:16:bf:bb:bc:58:dc:c3:bc:8c:1a:1b: 7a:0a:0c:6e:6d:3b:f2:e6:e4:ac:d0:1b:73:a3:98: a8:b5:0f:7c:00:5b:48:11:e0:9a:8a:8a:e3:fb:e9: 6f:83:1f:5f:ad:5b:91:fb:59:99:5c:ef:9d:c7:b5: 06:7c:c7:0c:55:8f:2b:fd:2d:ed:a9:3a:33:ec:0e: ea:a6:51:e1:ae:9b:25:51:56:f2:31:e7:38:17:67: 83:c7:e3:28:a8:28:9f:6c:82:f9:d6:3f:db:1f:19: fa:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:CC:CF:EE:7F:2A:A8:95:54:38:95:18:4D:C4:00:7D:83:53:BF:AB X509v3 Authority Key Identifier: keyid:29:85:97:6A:4B:30:81:77:07:48:88:27:03:E1:64:97:96:4D:05:A6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/2985976A4B3081770748882703E16497964D05A6.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3ed100df-0441-4381-a3fa-587db9e9c2f0/0/2985976A4B3081770748882703E16497964D05A6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:ab:19:eb:68:02:1a:ef:8e:c9:59:61:58:3e:01:56:14:47: 54:8f:7e:22:cf:f2:67:bd:b5:33:c9:32:1a:30:73:74:38:52: bd:b2:76:14:d3:42:7c:95:e2:c6:09:a0:35:c2:2a:d9:a9:a5: 6b:63:66:6a:12:b0:63:8d:07:1b:09:f3:bd:26:16:0a:63:78: 4a:b7:62:e5:ba:75:8e:0c:21:df:a4:44:75:6e:80:80:ff:a7: 84:6a:3e:5d:10:b0:15:04:03:7d:da:1a:d2:cc:14:fe:65:d2: c6:fb:5e:5f:31:39:b0:d4:48:c1:39:b2:ce:be:18:ba:56:0e: f0:1d:11:be:e8:c1:cb:f5:2b:2c:c5:30:3f:d8:08:50:18:06: 76:97:3b:67:4c:ed:2e:d6:f9:7c:66:e0:c1:c5:9d:23:d7:44: a6:cb:5f:55:ee:94:cf:5d:35:ad:df:b1:87:e6:f8:e8:b4:4d: b3:e4:b5:08:8b:df:61:3c:0d:61:f1:11:a0:dc:0d:2f:c3:6d: a4:5a:15:14:14:75:25:3a:ea:ac:fc:20:5d:fe:81:5e:6e:19: 82:ba:e0:6e:66:7a:9e:22:b8:57:90:bd:91:2a:a5:ad:26:59: b3:c6:f9:a2:41:0d:aa:e7:77:c7:40:90:c4:de:d5:97:60:96: a8:c3:91:a8 -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUNscEaXRklXtNkKhCHipf3TzN61gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5 NjREMDVBNjAeFw0yNTEyMjMyMDU1NDNaFw0yNTEyMjcwMjE2NDNaMDMxMTAvBgNV BAMTKDNBQ0NDRkVFN0YyQUE4OTU1NDM4OTUxODREQzQwMDdEODM1M0JGQUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8swRITc53xXv90sRKvqDRoHsb XnrqFnXZezXsMxp/qwlMu/Y228ywcsteyhC7s8uR6nJEafKO7Zmbhwngr90p6trv vUtOYRiPwfm0tCSPXfbN8PKCoD4SOQOC9tRPO01nHtv60+NNDj4tq/uxyEojLiwa 9ARrW4k5NHVLBqSS/t4uFtZ4kYOIwkB5FfyNyHYleNya19tRggoWv7u8WNzDvIwa G3oKDG5tO/Lm5KzQG3OjmKi1D3wAW0gR4JqKiuP76W+DH1+tW5H7WZlc753HtQZ8 xwxVjyv9Le2pOjPsDuqmUeGumyVRVvIx5zgXZ4PH4yioKJ9sgvnWP9sfGfr9AgMB AAGjggI8MIICODAdBgNVHQ4EFgQUOszP7n8qqJVUOJUYTcQAfYNTv6swHwYDVR0j BBgwFoAUKYWXakswgXcHSIgnA+Fkl5ZNBaYwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZWQxMDBkZi0wNDQxLTQzODEtYTNmYS01ODdkYjllOWMyZjAvMC8yOTg1OTc2QTRC MzA4MTc3MDc0ODg4MjcwM0UxNjQ5Nzk2NEQwNUE2LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0OTc5NjRE MDVBNi5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vM2VkMTAwZGYtMDQ0MS00MzgxLWEz ZmEtNTg3ZGI5ZTljMmYwLzAvMjk4NTk3NkE0QjMwODE3NzA3NDg4ODI3MDNFMTY0 OTc5NjREMDVBNi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAKyrGetoAhrvjslZYVg+AVYUR1SPfiLP8me9 tTPJMhowc3Q4Ur2ydhTTQnyV4sYJoDXCKtmppWtjZmoSsGONBxsJ870mFgpjeEq3 YuW6dY4MId+kRHVugID/p4RqPl0QsBUEA33aGtLMFP5l0sb7Xl8xObDUSME5ss6+ GLpWDvAdEb7owcv1KyzFMD/YCFAYBnaXO2dM7S7W+Xxm4MHFnSPXRKbLX1XulM9d Na3fsYfm+Oi0TbPktQiL32E8DWHxEaDcDS/DbaRaFRQUdSU66qz8IF3+gV5uGYK6 4G5mep4iuFeQvZEqpa0mWbPG+aJBDarnd8dAkMTe1ZdglqjDkag= -----END CERTIFICATE-----Generated at Thu Dec 25 07:08:08 2025 by rpki-client